in reply to
Re^2: ARP spoofing attack ---- Advice Needed
in thread ARP spoofing attack ---- Advice Needed
Thanks for your suggestions & comments, maybe some of you think this is funniest post but let me tell you my intensions were not wrong, I did it becuase i was not aware wether it will work or not. And after doing this I told by Team Leader about it and he ordered me to immediately stop whatever i am doing. Yes, you all are right, I should have done it in test environment, but as of now I do not have any test environment at home or office and now I plan to build one for me at home. I appologies for all my wrong doings.
I myself started leaning all these because we used to face a lot of attacks from hackers.
We have protected our network from numerous security devices like Firewalls, VPN Concentartor, IPS, NAC Device, Proxy, RSA, Router ACLs, Antivirus, Email Security etc.
But even then somehow hackers pentrate into our network and do malicious activities and what is more frustrating for me was the fact that a lot of times we didnt understand from where this virus came and what actually it is doing.
Also I wanted this to be checked by you guys becuase I was confused how all this is happening, initialy I thought it could be a bug in MS XP but later i found out that i am able to corrupt Cisco L3 swtich's ARP as well. So i become more confused. Every PC has a Antiviurs installed, atleast Antivirus should have detected a ARP flooding attack since as per my script every PC was reciving a fake ARP reply packet after every 1 minute.