Option 1: Address Resolution Protocol Poisoning (100 points)

For this project, act like you are conducting a man in the middle attack in a Starbucks or the dining hall at Maryville University. Discuss (and create appropriate diagrams for) how you plan on this attack and show how this attack will occur. You are also encouraged to create actual fake websites (included screenshots as appropriate) that you could use to capture user credentials. Lastly, discuss what information you think you'll collect and what you think you won't be able to collect.

For more information, please review the following:

http://www.irongeek.com/i.php?page=security/arpspoof (Links to an external site.)Links to an external site.

Ettercap is a tool you should consider using for this project. Ettercap automates all of the manual arpspoof steps. For more information on using Ettercap, see the video below:

Alpine Security. (Feb 19, 2018). Man-in-the-Middle Attack Using Ettercap. Youtube.

You should be able to perform the MITM using your Kali VM as the MITM between the default gateway and another "target" virtual machine. You can download various Windows VMs here that you can use as a target VM