In a wireless environment, a Man-in-the-Middle (MITM) attack takes place whilst a threat actor intercepts communication between two devices, generally a user's device and a Wi-Fi access point. At a point, an attacker can eavesdrop, inject malware, or steal delicate information. This paper discusses types of Man-in-the-Middle (MITM) attacks in wireless environments. This study focuses on address resolution protocol (ARP) poisoning. An ARP is a type of cyberattack in which a threat actor impersonates someone else and use local area network (LAN) to transmit fictitious ARP (Address Resolution Protocol) packets in an attempt to create a parallel connection to their own MAC (Media Access Control) address with the IP address of a legitimate device in the access point. These lead to intercepting data intended for a legitimate device, stealing sensitive information, or launching further attacks. So, with the help of Kali Linux using a virtual box the Arp poisoning attack can be detected using tools like Wireshark, Nmap, and Ettercap.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A Comprehensive Review of MITM Attack Based on Detection and Prevention in Wireless Network Environment

  • J. Chandru,
  • C. Bagyalakshmi

摘要

In a wireless environment, a Man-in-the-Middle (MITM) attack takes place whilst a threat actor intercepts communication between two devices, generally a user's device and a Wi-Fi access point. At a point, an attacker can eavesdrop, inject malware, or steal delicate information. This paper discusses types of Man-in-the-Middle (MITM) attacks in wireless environments. This study focuses on address resolution protocol (ARP) poisoning. An ARP is a type of cyberattack in which a threat actor impersonates someone else and use local area network (LAN) to transmit fictitious ARP (Address Resolution Protocol) packets in an attempt to create a parallel connection to their own MAC (Media Access Control) address with the IP address of a legitimate device in the access point. These lead to intercepting data intended for a legitimate device, stealing sensitive information, or launching further attacks. So, with the help of Kali Linux using a virtual box the Arp poisoning attack can be detected using tools like Wireshark, Nmap, and Ettercap.