In order to understand this post I recommend you to first read the post Sniffers & process of Sniffing.
A DHCP starvation attack works by broadcasting DHCP requests with spoofed MAC address.This can be done by using tools like gobbler.
How this attack works ??
If enough requests are sent over the network, then the attacker can exhaust the address space available to the DHCP server for some interval of time.
The attacker can then setup a rogue DHCP server on his/her machine & respond to new DHCP request of the clients in the network.
Thus by this technique Attacker can easily provide information to other clients on the network.
As DHCP responses typically include information about default gateway and DNS server.
So attacker can supply his/her machine as Gateway and DNS server and can implement Man In Middle attack...!!!
nice tutorial......
ReplyDelete