ARP as a network auditing tool
Posted by: Troy Tate
ARP, protocol, testing, tools, toolkit, scanning, education, video, training, protocol analysis, Laura Chappell
ARP - or Address Resolution Protocol is a necessary element for network traffic. Per Wikipedia: “In computer networking, the Address Resolution Protocol (ARP) is the method for finding a host’s link layer (hardware) address when only its Internet Layer (IP) or some other Network Layer address is known. ARP is defined in RFC 826.[1] It is Internet Standard STD 37.” It is not an IP only protocol.
What this means, is that ARP is not a protocol that is easily blocked or disabled on a network. This is as designed but this also means that attackers can use this protocol for malicious activities. It is important that you understand the ARP protocol and the ways it is used and the dangers associated with it.
Laura Chappell, the BitGirl, has created a new tutorial on using ARP to scan networks which may be firewalled or ICMP pings are blocked. ARP will permit you - and attackers - to find hosts on the network. Take some time and watch this short video and gain some valuable insights into ARP.
Watch Chappell University - Ethical Hacking with NetScanTools Pro - ARP Scanning
Thanks for your time and let’s be good network citizens!
Comment
RSS Feed
Email a friend
You must be logged-in to post a comment. Log-in/Register