网络安全Ethernet协议和ARP协议分析 - Powered by Discuz! Archiver

干翻全岛蛙蛙 发表于 2025-3-7 19:38:22

Ethernet协议和ARP协议分析

实验先容：

在信息的传输中，协议至关紧张。
使用的实验环境是 kali 2017。arp协议还需要用到靶机centos7

如果是kali的其他版本可能会导致无法抓包。
一：网络分析工具（kali）

Scapy

scapy功能强大，这里紧张使用伪造并发送不同协议数据包的功能。
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307152921173-187695437.png
Wireshark

功能是截取网络封包，并尽可能显示出最为详细的网络封包资料。
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307162744126-374761310.png
二：Ethernet协议

1.给kali配置IP

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307160405868-1841215851.png
要在root权限下配置暂时IP，重启失效

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307160533770-820605352.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307155956907-1131932735.png
2.引入scapy，用scapy模仿数据包

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307160115345-186955661.png
找到Ether类

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307163619860-962118711.png
3.实例化Ether类

Ether类相当于车的图纸，实例化就相当于将车制造出来并给他一个名字，比如小米汽车。
eth{小米汽车}= Ether（）{车的图纸}
修改eth的属性值

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307165420603-1121962437.png
4.启动wireshark

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307162744126-374761310.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307165928909-1830211351.png
不退出，保留界面
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307170221181-600199609.png
返回终端
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307170145757-1808976125.png
返回wireshark,发现已经捕获到数据包
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307170338967-1238028963.png
在数据包上查看我们的配置

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307170944940-1489752887.png
三：arp协议分析

arp协议是将mac地址和IP地址交换的东西
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307174238968-869487869.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307173305834-1732829660.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307173557815-1880078286.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307175234206-1897601200.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307174619912-55885115.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307175411572-1212191682.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307175932626-974057455.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307180011429-1410995009.png
https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307180213725-1240725060.png

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307180226934-153054376.png
在数据包上查看我们的配置

https://img2024.cnblogs.com/blog/3382715/202503/3382715-20250307180148605-109272123.png

免责声明：如果侵犯了您的权益，请联系站长，我们会及时删除侵权内容，谢谢合作！更多信息从访问主页：qidao123.com:ToB企服之家，中国第一个企服评测及商务社交产业平台。

页: [1]

IT评测·应用市场-qidao123.com技术社区's Archiver

Ethernet协议和ARP协议分析