Collaborate Disseminate
Scenario
An attacker successfully infiltrates the LAN and infects a device that acts as a future bridge. Once inside, the infected device can communicate with a malicious source outside of the local area network. We assume that only one d… Continue reading Can an infected device within the LAN still be a threat if turned off?
I have a BT Smart Hub as my router which has no guest network functionality, I also have a Netgear Nighthawk D7000.
Initially I attempted to use only the D7000 and take advantage of the guest wifi feature but I couldn’t get … Continue reading Second router setup for secure subnet
Is there a reliable way to retrieve hostnames from LAN devices without having to install extra software or performing nmap-style OS fingerprinting?
I’m ideally looking for either a protocol that has something like this buil… Continue reading Process of finding device hostnames on LAN
I have a Windows Server 2008 r2 machine on DMZ. We have a shared folder on there that one day a couple weeks ago was no longer able to be accessed. No changes occurred except for maybe windows updates. I am having an issue… Continue reading DMZ to LAN. SMB Print and File Sharing not working!! PLEASE HELP! [migrated]
I am using VPN and encrypting my web traffic through them. However, When I do Lan Scan I can see my real ip address. All other websites, IPleak.net, WebRTC leaks, DNS leak, Email Leak and IPv6 leak do not reveal my real IP ad… Continue reading IP Address leak on LAN scan
No matter how much I google I can’t get a definitive answer.
Static ARP entries:
Static ARP addresses prevent only simple attacks and do not scale on a
large network, since the mapping has to be set for each pair of
machines resulting in n^2-n ARP entries that have to be configured
when n machines are present: On every machine there must be an ARP
entry for every other machine on the network, which are n-1 ARP
entries on each of the n machines. While static entries provide some
security against spoofing if the operating system handles them
correctly, they result in maintenance efforts as address mappings of
all systems in the network have to be distributed.
ARP detection software:
This method is pretty useless. There are very few ARP detection
programs out there, and the few that do exist are either free junk or
over priced. In addition, to use these programs on a windows machine
requires installing special drivers for your wireless cards.
Recommendation: Don’t use.
http://lewiscomputerhowto.blogspot.com/2014/03/perform-man-in-middle-attack-with-kali.html
So if neither anti-ARP software nor Static ARP entries work then how do you protect against ARP spoofing in a big network?
Continue reading How exactly do you protect against ARP spoofing in large LANs?
No matter how much I google I can’t get a definitive answer.
Static ARP entries:
Static ARP addresses prevent only simple attacks and do not scale on a
large network, since the mapping has to be set for each pair of
… Continue reading How exactly do you protect against ARP spoofing in large LANs?
I want to decrypt my own network traffic.
I have Linux Mint on Samsung Laptop with a AR542x Wireless Network Adapter.
Open Wireshark, start capture in promiscuous mode & monitor mode and I receive all the packages around me.
The… Continue reading Wireshark can’t decrypt WPA2 LAN traffic
I am very new to networking and I wanted to put my theorical knoledge to practice by mounting a serve at home. A friend of mine told me to make separte networks in order for easy testing with no worries of breaking something … Continue reading Home server network layout help?
Does it make any difference from a security perspective to use any other IP ranges than RFC1918 addresses within LAN segments ?