ARP spoofing
What is ARP spoofing?
ARP spoofing is a technique where an attacker manipulates the Address Resolution Protocol (ARP) by sending specially crafted messages to a local network. The attacker tries to associate a selected MAC address with the IP address of another host. A common target is the default gateway to intercept traffic.
See ARP cache poisoning for more details.
Related guides
- Network attacks » Attacking the local area network from within
Tool categories
There are 2 tool collections available that cover ARP spoofing:
Security tools
The following security tools are linked to ARP spoofing and are worth investigating.
- KickThemOut (ARP spoofing tool)
- larp (ARP poisoning tool)
- SCUTUM (ARP filtering)