Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/shawnanastasio/arpspoof-detect
Detects change in Linux ARP tables for common ARP Spoofing/Poisoning techniques.
https://github.com/shawnanastasio/arpspoof-detect
Last synced: 8 days ago
JSON representation
Detects change in Linux ARP tables for common ARP Spoofing/Poisoning techniques.
- Host: GitHub
- URL: https://github.com/shawnanastasio/arpspoof-detect
- Owner: shawnanastasio
- Created: 2015-01-18T07:27:43.000Z (almost 10 years ago)
- Default Branch: master
- Last Pushed: 2016-01-23T03:06:36.000Z (almost 9 years ago)
- Last Synced: 2024-10-30T18:51:11.225Z (14 days ago)
- Language: Perl
- Size: 2.93 KB
- Stars: 2
- Watchers: 5
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# arpspoof-detect
Detects change in Linux ARP tables for common ARP Spoofing/Poisoning techniques.
Currently Linux only.
## ARP Spoofing
ARP Spoofing is a common and dangerous attack in which a malicious user on a network sends falsified ARP messages in order to convince a victim computer to send all traffic to them, as opposed to the actual router. This is effectively a Man In the Middle attack that allows malicious actors to view, and tamper with, all internet traffic coming from a device. This script aims to allow users to detect when their ARP tables are being tampered with so that they may take necessary precautions to prevent any of their personal data from being intercepted.
## Usage
To use the script, simply run
`perl arpspoof-detect.pl`
This will activate the script and watch for any changes in your router's MAC address, which is normally the result of ARP Spoofing attacks.
If you know what your router's MAC address is supposed to be, you can specify it to the script directly.
`perl arpspoof-detect.pl -m `
### TODO
- Add other notification options (email, libnotify?)
- Add option to run script upon ARP spoof detection
- ??