Man-in-the-Middle: 1. Eavesdropping 2. Obtain information secretly 3. Allows control over network

1. Wireless: automatically allows On-Path attack 2. LAN requires physical connections

1. position 2. victim is not aware 3. info collected

1. Works only in LANs 2. Uses victim's MAC address

3. MITM Attacks Flashcards by Jose N FESTIN

On-Path

Man-in-the-Middle:

Eavesdropping
Obtain information secretly
Allows control over network

How well did you know this?

Not at all

Perfectly

On-path positioning

Wireless: automatically allows On-Path attack

2. LAN requires physical connections

How well did you know this?

Not at all

Perfectly

On-path steps

position
victim is not aware
info collected

How well did you know this?

Not at all

Perfectly

APR Poisoning

Address Resolution Protocol - OSI Layer 2.

MITM mac address

How well did you know this?

Not at all

Perfectly

arpspoof

Tool for ARP Spoofing

How well did you know this?

Not at all

Perfectly

dnsspoof

sub dns for legit site

How well did you know this?

Not at all

Perfectly

bettercap

Tool for ARP and DNS poisoning

How well did you know this?

Not at all

Perfectly

Port Stealing

Works only in LANs

2. Uses victim’s MAC address

How well did you know this?

Not at all

Perfectly

SSL Stripping

converts HTTPS to HTTP

Redirect https port (80) to stripped http port (8080)

How well did you know this?

Not at all

Perfectly

sslstrip

tool for SSLSTRIPPING

How well did you know this?

Not at all

Perfectly

ARP Poisoning

Floods ARP tables

How well did you know this?

Not at all

Perfectly

3. MITM Attacks Flashcards

(11 cards)