WEBVTT 00:02.280 --> 00:09.880 Now that we know the theory behind ARP spoofing attack, I am going to show you a prebuilt program that 00:09.880 --> 00:14.480 has already provided in Kali Linux and we can use it. 00:14.880 --> 00:22.720 So in this course, actually I am not going to use pre-built tools a lot because this course is a programming 00:22.720 --> 00:23.160 course. 00:23.160 --> 00:25.960 I am going to create my own tools to use it. 00:25.960 --> 00:26.440 Okay. 00:27.200 --> 00:30.800 So here we have a Arpspoof. 00:30.840 --> 00:32.960 This program is called Arpspoof. 00:33.000 --> 00:33.440 Okay. 00:34.080 --> 00:43.600 We can use it like this Arpspoof Dash I and then provide the interface dash C host IP and then dash 00:43.800 --> 00:44.960 the target IP. 00:45.680 --> 00:46.560 And like this. 00:46.600 --> 00:49.760 And it gives you a little description here that you can use it. 00:49.960 --> 00:58.120 And if you found some kind of error like this that arpspoof command not found, you can. 00:58.880 --> 01:02.240 That is because it is not installed in the system that you are using. 01:02.240 --> 01:05.880 So you can And that error like this. 01:05.880 --> 01:17.880 If you're using Kali Linux, use apt, get install rds and if and or you could use sudo apt get install. 01:17.920 --> 01:18.600 Okay. 01:18.640 --> 01:25.280 If you're in Debian or Ubuntu anything you can use this one and it will solve your problem. 01:25.280 --> 01:35.320 So here let's use that tools to become man in the middle between Windows 7 that we have here, here 01:35.640 --> 01:38.040 and also the router. 01:38.400 --> 01:39.880 So very easy. 01:39.880 --> 01:50.360 Let's use sudo arpspoof okay dash I for interface and then provide the interface which is eth0. 01:50.360 --> 01:54.840 Right now dash t which is the target and then provide that target. 01:55.160 --> 01:57.520 So let's go and see that target. 01:57.800 --> 02:02.600 Uh so this is the IPv4 target ten zero 215. 02:03.040 --> 02:04.280 And that is here. 02:04.920 --> 02:13.790 And 0.2. 15 and also then provide the router IP. 02:13.830 --> 02:16.030 You may ask how can I find it? 02:16.030 --> 02:16.270 Okay. 02:16.310 --> 02:18.670 The router IP is very easy. 02:18.670 --> 02:22.310 Just write root and hit enter. 02:22.550 --> 02:24.230 You see here get away. 02:25.150 --> 02:27.390 And this is provided here okay. 02:28.710 --> 02:32.790 So in 021 okay. 02:32.910 --> 02:33.990 Let that be here. 02:33.990 --> 02:36.510 Let me clear the other terminal. 02:36.510 --> 02:38.310 And this time here. 02:38.310 --> 02:45.390 As you see I am following the windows machine that I am going to be the router okay. 02:45.470 --> 02:52.190 And here in the other terminal I'm going to fold the router that I am the Windows 7. 02:52.430 --> 02:57.670 So let's say I can use sudo arpspoof. 02:59.870 --> 03:10.270 Dash IX0-T which is targeting 0 to 1 for router and 0 to 15 for Windows. 03:10.310 --> 03:12.190 Now let's hit enter and see. 03:14.350 --> 03:15.230 Also here. 03:16.390 --> 03:16.750 Okay. 03:17.030 --> 03:20.750 Now this booth is start doing its job. 03:21.390 --> 03:24.430 And let's go back to our windows machine here. 03:24.430 --> 03:28.750 You see the router is ten 021. 03:30.030 --> 03:34.870 And the Mac address for that is zero zero. 03:34.910 --> 03:35.310 Okay. 03:37.350 --> 03:42.910 Now let's re-execute that ARP dash a hit. 03:42.910 --> 03:43.350 Enter. 03:43.350 --> 03:46.190 This time you see that we have ten 021. 03:46.190 --> 03:50.350 And then we have the Mac address which is not the Mac address of the router. 03:50.350 --> 03:55.910 It is my own Mac address, my colleague machine Mac address okay. 03:55.910 --> 04:04.670 So now the connection between router and this windows machine is flowing through my computer which is 04:04.670 --> 04:05.990 Kali Linux okay. 04:06.030 --> 04:10.550 And here now if I have another program, if I do that okay. 04:10.590 --> 04:16.500 That later we will do that here we can capture all the data that is flowing through this. 04:16.660 --> 04:17.060 Okay. 04:17.700 --> 04:23.820 In some cases you need to enable port forwarding in your Kali Linux. 04:23.860 --> 04:24.300 Okay. 04:24.980 --> 04:27.940 So you need to know how to do that. 04:27.980 --> 04:29.900 So you first you need to go to sudo. 04:29.940 --> 04:30.340 Okay. 04:30.380 --> 04:37.060 So as you and here just write echo one two. 04:39.460 --> 04:39.940 Okay. 04:40.420 --> 04:44.060 Proc this net. 04:45.700 --> 04:53.700 And we have IP version four IP underscore forward. 04:53.740 --> 04:54.340 Hit enter. 04:54.340 --> 04:55.380 You see no error. 04:55.380 --> 04:56.660 That means it is enabled. 04:56.700 --> 04:59.700 Now port forwarding is enabled in windows machine. 04:59.740 --> 05:03.100 The machine and you're good to go. 05:03.500 --> 05:03.820 Okay. 05:04.180 --> 05:10.540 So here you learn how to use a prebuilt tool that is already provided in Kali Linux. 05:10.820 --> 05:15.940 And let's go build our own program to do such kind of task.