Hijacking sessions using HUNT
Dear all,
I am trying to understand hijacking a tcp session.
I use hunt 1.5 for debian in my own lab of 3 pcs connected using a hub and I cannot list any active session even though....
1. I have managed to arpspoof the 2 pcs with the mac address of my attacking pc even though the hunt screen was telling my that the arpspoofing failed. I confirm from tcpdump that I am actually seeing arp reply for my 2 pcs having the same mac address of my attacking pc.
2. Assuming that the arpspoof is successful. Then why i am not able to list any active session between the 2 pcs ? I have tried to initate a telnet connection from one pc but the hunt program is still not showing any active connection.
3. I am sure u gurus out there, may have played with hunt before and can some kind soul tell me what did i do wrong or maybe even whipped out a tutorial on this...
regards,birdee
|