Task 3.7: ARP Poisoning with Cain & Abel

Computer security is something the Security+ certified professional must always be thinking about. In addition to security countermeasures and controls, a security professional must understand the ways in which attackers bypass security. This task will examine one of these bypass methods.

This task will examine Address Resolution Protocol (ARP) poisoning. ARP is used to resolve known IP addresses to unknown (MAC) physical addresses. ARP poisoning allows an attacker to bypass the functionality of a switch. This makes it possible for an attacker to attempt a man-in-the-middle attack and to intercept traffic that they would not normally be able to access.

Scenario

Your manager is concerned about the security ...

Get Security Administrator Street Smarts: A Real World Guide to CompTIA Security+™ Skills, Third Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.