Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Mikhail Elizarov - MITM

Avatar for DC7499 DC7499
July 03, 2015
Research
0
88

Mikhail Elizarov - MITM

DEFCON Moscow 9

Avatar for DC7499

DC7499

July 03, 2015
Tweet

More Decks by DC7499

See All by DC7499
Sergey Sobko - Hackashop: Hackathon + Pentest + Workshop [RU]
Avatar for DC7499 defcon
0
540
Dmitry Sklyarov - Intel ME: Security keys Genealogy, Obfuscation and other Magic
Avatar for DC7499 defcon
0
270
Anton Lopanitsyn - Initial reconnaissance of web applications.
Avatar for DC7499 defcon
0
300
Dmitry Volkov - Private messengers: without pain??
Avatar for DC7499 defcon
1
240
Andrey Skuratov and Sergey Migalin - DNS tunneling in 2018. What is that, and what to do with it?
Avatar for DC7499 defcon
2
210
Sergey Belov - Another side of Bug Bounty programs
Avatar for DC7499 defcon
0
300
Dmitry Sklyarov - Intel ME: Flash file system explained
Avatar for DC7499 defcon
0
530
Maxim Goryachiy & Mark Ermolov - Inside Intel Management Engine
Avatar for DC7499 defcon
0
610
Sergey Golovanov - Indecent Response 2018
Avatar for DC7499 defcon
0
530

Other Decks in Research

See All in Research
【輪講資料】Moshi: a speech-text foundation model
for real-time dialogue
Avatar for Hayato Tsukagoshi hpprc
3
750
日本語新聞記事を用いた大規模言語モデルの暗記定量化 / LLMC2025
Avatar for Shotaro Ishihara upura
0
250
アニメにおける宇宙猫ミームとその表現
Avatar for yttrium173340 yttrium173340
0
100
Nullspace MPC
Avatar for MizuhoAOKI mizuhoaoki
1
200
Vision and LanguageからのEmbodied AIとAI for Science
Avatar for Yoshitaka Ushiku yushiku
PRO
1
560
超高速データサイエンス
Avatar for Yusuke Matsui matsui_528
1
150
スキマバイトサービスにおける現場起点でのデザインアプローチ
Avatar for 眞行寺由郎 yoshioshingyouji
0
250
説明可能な機械学習と数理最適化
Avatar for kelicht kelicht
0
170
財務諸表監査のための逐次検定
Avatar for MasaKat0 masakat0
0
140
Mamba-in-Mamba: Centralized Mamba-Cross-Scan in Tokenized Mamba Model for Hyperspectral Image Classification
Avatar for SatAI.challenge satai
3
100
snlp2025_prevent_llm_spikes
Avatar for Sho Takase takase
0
380
[輪講] SigLIP 2: Multilingual Vision-Language Encoders with Improved Semantic Understanding, Localization, and Dense Features
Avatar for Naoki Kato nk35jk
3
1.2k

Featured

See All Featured
Building an army of robots
Avatar for Kyle Neath kneath
306
46k
We Have a Design System, Now What?
Avatar for Morgane Peng morganepeng
53
7.8k
Faster Mobile Websites
Avatar for Dean Hume deanohume
310
31k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
Avatar for Kevin Liebholz kevinliebholz
35
6.1k
KATA
Avatar for Megan Lloyd mclloyd
32
15k
Reflections from 52 weeks, 52 projects
Avatar for Jefferson Lam jeffersonlam
353
21k
Building Adaptive Systems
Avatar for Chris Keathley keathley
44
2.8k
Agile that works and the tools we love
Avatar for Rasmus Luckow-Nielsen rasmusluckow
331
21k
Side Projects
Avatar for Sacha Greif sachag
455
43k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
Avatar for Dan Newman danielanewman
230
22k
Practical Tips for Bootstrapping Information Extraction Pipelines
Avatar for Matthew Honnibal honnibal
PRO
23
1.5k
Become a Pro
Avatar for Speaker Deck speakerdeck
PRO
29
5.6k

Transcript

  1. @_Saplt

  2. MitM

  3. • Введение (история появления атаки) • Цель проведения атаки Человек

    по середине • Виды атак (пассивны/активный) • Инструменты • Полученные результаты
  4. None
  5. None

  6. PWN ‘em all

  7. Пассивный сбор данных

  8. None

  9. Активный перехват

  10. • ARP spoofing (полудуплекс) • ARP poisoning (полный дуплекс) •

    ICMP перенаправление • IP spoofing • DHCP spoofing,поддельный IPv6 DHCP • WPAD MitM, MDNS, LLMNR (APIPA) • BPDU(STP) Spoofing • DNS spoofing • Evil WiFi AP (Зараженные точки доступа WiFI)

  11. ARP таблица

  12. ARP spoofing

  13. ARP poisoning

  14. ICMP перенаправление

  15. IP spoofing

  16. поддельный IPv6 DHCP работает в сетях с IPv6

  17. Атака на WPAD MitM, MDNS, LLMNR (APIPA)

  18. BPDU(STP) Spoofing работает в сетях с IPv6

  19. BPDU(STP) Spoofing конечный результат

  20. DNS spoofing

  21. Поддельная WiFi сеть