For research purpose, I want to launch a MitM attack on computers that are conne
ID: 657896 • Letter: F
Question
For research purpose, I want to launch a MitM attack on computers that are connected to my wireless network.
I wonder what is the best way to do so. Notice that I control the router, and do not want to launch constantly attacks like ARP poisoning or something like this. I want to use my router and a dedicated computer for this goal, in as clean as possible manner.
I thought about the following option:
Change the DNS server address in the router to my dedicated computer, and just impersonate every interesting website.
However, I'm sure there are some other options, and I would like to get information about them. In particular, is there something similar I can do via ARP? e.g., change some settings in the router to make everyone think that the gateway is my computer?
If there are other ways, which one is better?
References to other methods and tools will be appreciated.
Explanation / Answer
f the clients were given IPs via DHCP, you could perform some kind of ARP poisoning attack. Essentially, when a computer broadcasts to determine what MAC the router IP has, you respond with your MAC before the router can respond with its MAC.
Another option is to masquerade as an access point and trick the clients into connecting to your fake access point. Airbase-ng is good for this type of attack.
There really isn't a way to change a setting on the router that will make clients think you are the gateway. Also, the DNS idea, while it would work for connections using domains, it would not catch IP traffic where the IP was not discovered via DNS.