Professional Documents
Culture Documents
Layer 2 Attacks and Defenses by Karim
Layer 2 Attacks and Defenses by Karim
#interface g0/0
switchport port-security
Here what we did is enable the port-security that for example will limit the connexion to the port up
to 3 max, more and i twill be on restrict mode, meaning drops the connexions and send SNMP
message but keep the port Up (contrairement a shut down).
The Switchport port-security command saves against Mac Spoofing and Mac flooding.
Let’s try the MAC Flooding attack on Parrot using the macof command :
Here we can go on the switch and see if it shut down the G0/1 Port ( we changed for SHUTDOWN) :
b) CDP Attacks :
CDP is a Cisco protocol that sends CDP Neighbors packets to detect it’s environment.
The thing is with this CDP protocol an attacker can gain much information about the network bcz CDP
sends it’s version (switch) etc.
c) DHCP Starving :
Deuxieme chose a faire est de voir si on a eu une adresse IP sur la machine Client Windows 10.