Real-time collaboration for Jupyter Notebooks, Linux Terminals, LaTeX, VS Code, R IDE, and more,
all in one place.
Real-time collaboration for Jupyter Notebooks, Linux Terminals, LaTeX, VS Code, R IDE, and more,
all in one place.
Path: blob/master/documentation/modules/auxiliary/scanner/discovery/arp_sweep.md
Views: 11623
Vulnerable Application
ARP (the Address Resolution Protocol) is a companion protocol to IPv4. Its purpose is to resolve internet layer addresses (as IPv4) of stations on the local network to their corresponding link layer addresses (for example, Ethernet).
(As a side note, in IPv6 this task is assolved by the Neighbour Discovery protocol.)
The discovery is limited to the broadcast domain of the local network; so you cannot discover hosts that aren't directly connected to your LAN.
Target Devices
All the devices on a network should reply to ARP requests for communication and duplicate address detection, so usually every device should be discoverable.
Verification Steps
Here we suppose the local network is 192.168.0.0/24:
Start msfconsole
Do
use auxiliary/scanner/discovery/arp_sweepSet the RHOSTS according to your local network. For example, on a 192.168.0.0/24 network:
set rhosts 192.168.0.0/24Do
run
Scenarios
An example output on a home network:
Confirming using NMAP
The -PR flags are utilized to perform ARP/Neighbor Discovery scans.