Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Mikhail Elizarov - MITM

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for DC7499 DC7499
July 03, 2015
Research
0
92

Mikhail Elizarov - MITM

DEFCON Moscow 9

Avatar for DC7499

DC7499

July 03, 2015
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
Avatar for DC7499 defcon
0
570
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
Avatar for DC7499 defcon
0
290
Anton Lopanitsyn - Initial reconnaissance of web applications.
Avatar for DC7499 defcon
0
310
Dmitry Volkov - Private messengers: without pain??
Avatar for DC7499 defcon
1
240
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
Avatar for DC7499 defcon
2
220
Sergey Belov - Another side of Bug Bounty programs
Avatar for DC7499 defcon
0
320
Dmitry Sklyarov - Intel ME: Flash file system explained
Avatar for DC7499 defcon
0
550
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
Avatar for DC7499 defcon
0
650
Sergey Golovanov - Indecent Response 2018
Avatar for DC7499 defcon
0
570

Other Decks in Research

See All in Research
[チュートリアル] 電波マップ構築入門 :研究動向と課題設定の勘所
Avatar for Koya SATO k_sato
0
340
20年前に50代だった人たちの今
Avatar for marimari hysmrk
0
170
データサイエンティストの業務変化
Avatar for The Japan DataScientist Society datascientistsociety
PRO
0
300
From Data Meshes to Data Spaces
Avatar for Posedio posedio
PRO
0
390
A History of Approximate Nearest Neighbor Search from an Applications Perspective
Avatar for Yusuke Matsui matsui_528
1
200
2025-11-21-DA-10th-satellite
Avatar for Yuka Egusa yegusa
0
130
姫路市 -都市OSの「再実装」-
Avatar for Hopin hopin
0
1.7k
2026年3月1日(日)福島「除染土」の公共利用をかんがえる
Avatar for Masano Atsuko atsukomasano2026
0
460
Can We Teach Logical Reasoning to LLMs? – An Approach Using Synthetic Corpora (AAAI 2026 bridge keynote)
Avatar for もりし morishtr
1
170
空間音響処理における物理法則に基づく機械学習
Avatar for NII S. Koyama's Lab skoyamalab
0
240
さまざまなAgent FrameworkとAIエージェントの評価
Avatar for Kento.Yamada ymd65536
1
460
SREのためのテレメトリー技術の探究 / Telemetry for SRE
Avatar for Yuuki Tsubouchi (yuuk1) yuukit
13
3.3k

Featured

See All Featured
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
Avatar for Beat Signer signer
PRO
0
3.3k
Everyday Curiosity
Avatar for Cassini Nazir cassininazir
0
160
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
Stop Working from a Prison Cell
Avatar for Chris Michel hatefulcrawdad
274
21k
Mind Mapping
Avatar for Hélio Medeiros helmedeiros
PRO
1
120
Dealing with People You Can't Stand - Big Design 2015
Avatar for Cassini Nazir cassininazir
367
27k
How to Build an AI Search Optimization Roadmap - Criteria and Steps to Take #SEOIRL
Avatar for Aleyda Solis aleyda
1
2k
16th Malabo Montpellier Forum Presentation
Avatar for AKADEMIYA2063 akademiya2063
PRO
0
72
Reality Check: Gamification 10 Years Later
Avatar for Sebastian Deterding codingconduct
0
2k
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
370
20k
First, design no harm
Avatar for Per Axbom axbom
PRO
2
1.1k
The Psychology of Web Performance [Beyond Tellerrand 2023]
Avatar for Tammy Everts tammyeverts
49
3.3k

Transcript

  1. @_Saplt

  2. MitM

  3. • Введение (история появления атаки) • Цель проведения атаки Человек

    по середине • Виды атак (пассивны/активный) • Инструменты • Полученные результаты
  4. None
  5. None

  6. PWN ‘em all

  7. Пассивный сбор данных

  8. None

  9. Активный перехват

  10. • ARP spoofing (полудуплекс) • ARP poisoning (полный дуплекс) •

    ICMP перенаправление • IP spoofing • DHCP spoofing,поддельный IPv6 DHCP • WPAD MitM, MDNS, LLMNR (APIPA) • BPDU(STP) Spoofing • DNS spoofing • Evil WiFi AP (Зараженные точки доступа WiFI)

  11. ARP таблица

  12. ARP spoofing

  13. ARP poisoning

  14. ICMP перенаправление

  15. IP spoofing

  16. поддельный IPv6 DHCP работает в сетях с IPv6

  17. Атака на WPAD MitM, MDNS, LLMNR (APIPA)

  18. BPDU(STP) Spoofing работает в сетях с IPv6

  19. BPDU(STP) Spoofing конечный результат

  20. DNS spoofing

  21. Поддельная WiFi сеть