Hi Robin,
Definitely arspoof works. Can you check the network mask on the three systems?

You can use other tools, like Cain, ettercap, or arpplet, just to name a few.

Cheers,
--
Raul Siles
www.raulsiles.com

On Thu, Jul 17, 2008 at 12:51 AM, Robin Wood <dninja (at) gmail (dot) com [email concealed]> wrote:
> Hi
> I'm trying to get arp cache poisoning working on my wireless network.
> The setup is an AP with IP 192.168.0.100, a client with IP .55 and an
> attacker with IP .56. All devices can ping each other and looking at
> the arp table shows that they all know the MAC addresses of the
> others.
>
> I'm trying to use arpspoof to do ARP spoofing against the AP.
>
> On the attacker machine I've used the command:
>
> arpspoof -i ath0 -t 192.168.0.55 192.168.0.100
>
> but get the response
>
> "arpspoof: couldn't arp for the host 192.168.0.55"
>
> If I try the attack the other way so targetting the AP it still fails.
>
> Looking at the FAQ on monkey.org it says that this error is because
> the machines must be on the same subnet but they are in this
> situation, aren't they?
>
> If not, what is the best way to poison a wireless network?
>
> Robin
>

[ reply ]