如何查出局域网内的ARP攻击源,请高手指点 如何查出局域网内的ARP攻击源
\u5982\u4f55\u67e5\u51fa\u5c40\u57df\u7f51\u5185\u7684ARP\u653b\u51fb\u6e90,\u8bf7\u9ad8\u624b\u6307\u70b9\u4f60\u597d\uff0c\u5176\u5b9eARP\u653b\u51fb\u5f88\u597d\u67e5\u7684\uff0c\u5982\u679c\u4f60\u7684\u5185\u7f51IP\u90fd\u662f\u9759\u6001\u5206\u914d\u7684\uff0c\u67e5\u8d77\u6765\u5c31\u5f88\u8f7b\u677e\u7684\uff0c\u5177\u4f53\u65b9\u6cd5\u5982\u4e0b\uff1a
1.\u627e\u4e00\u53f0\u5df2\u7ecf\u88ab\u653b\u51fb\u4e0a\u4e0d\u4e86\u7f51\uff0c\u76f4\u63a5Ping\u7f51\u5173IP\uff0c\u5b8c\u6210Ping\u540e\uff0c\u7528ARP
\u2013a\u67e5\u770b\u7f51\u5173IP\u5bf9\u5e94\u7684MAC\u5730\u5740\uff0c\u6b64MAC\u5730\u5740\u5e94\u8be5\u4e3a\u6b3a\u9a97\u7684,\u5982\u679c\u4f60\u505a\u4e86\u9759\u6001ip\u5206\u914d\u8868\uff0c\u76f4\u63a5\u67e5\u627e\u4e0b\u8be5mac\u5730\u5740\u5bf9\u5e94\u7684ip\u5c31\u53ef\u4ee5\u4e86\uff08\u6240\u4ee5\u5728\u7f51\u7edc\u89c4\u6a21\u4e0d\u662f\u5f88\u5927\u7684\u65f6\u5019\uff0c\u4e2a\u4eba\u8ba4\u4e3a\u5e94\u8be5\u91c7\u7528\u9759\u6001ip\u5206\u914d\uff0c\u66f4\u6613\u4e8e\u7ba1\u7406\uff09\u3002
\u5982\u679c\u6ca1\u6709\u505a\u8fd9\u4e2a\u5de5\u4f5c\uff0c\u4e0d\u7528\u6025\u53ef\u4ee5\u4f7f\u7528NBTSCAN\u6765\u53d6\u5230\u8be5\u653b\u51fbPC\u7684\u771f\u5b9eIP\u5730\u5740\u3001\u673a\u5668\u540d\u548cMAC\u5730\u5740\u3002
\u3000\u3000\u547d\u4ee4\u793a\u4f8b\u5982\u4e0b\uff1a\u201cnbtscan
-r
192.168.16.0/24\u201d(\u641c\u7d22\u6574\u4e2a192.168.16.0/24\u7f51\u6bb5,
\u5373192.168.16.1-192.168.16.254);\u6216\u201cnbtscan
192.168.16.25-137\u201d\u641c\u7d22192.168.16.25-137
\u7f51\u6bb5\uff0c\u5373192.168.16.25-192.168.16.137\u3002\u8f93\u51fa\u7ed3\u679c\u7b2c\u4e00\u5217\u662fIP\u5730\u5740\uff0c\u6700\u540e\u4e00\u5217\u662fMAC\u5730\u5740\u3002
2.\u88ab\u52a8\u5b9a\u4f4d\u65b9\u5f0f\uff1a\u5728\u5c40\u57df\u7f51\u53d1\u751fARP\u653b\u51fb\u65f6\uff0c\u67e5\u770b\u4ea4\u6362\u673a\u7684\u52a8\u6001ARP\u8868\u4e2d\u7684\u5185\u5bb9\uff0c\u786e\u5b9a\u653b\u51fb\u6e90\u7684MAC\u5730\u5740;\u4e5f\u53ef\u4ee5\u5728\u5c40\u57df\u5c45\u4e8e\u7f51\u4e2d\u90e8\u7f72Sniffer\u5de5\u5177\uff0c\u5b9a\u4f4dARP\u653b\u51fb\u6e90\u7684MAC\u3002
\u5e0c\u671b\u4ee5\u4e0a\u56de\u7b54\u5bf9\u4f60\u6709\u6240\u5e2e\u52a9\u3002
\u8fd9\u4e2a\u5f88\u660e\u663e\u662farp\u6b3a\u9a97\uff0c
\u89e3\u51b3\u529e\u6cd5
1\u3001\u5728\u4f60\u4e0a\u4e0d\u53bb\u7684\u7535\u8111\u4e0aarp -a\u4e00\u4e0b\uff0c\u770b\u770b\u83b7\u53d6\u5230\u7684MAC\u548cIP\u548c\u7f51\u5173mac\u548cip\u662f\u5426\u4e00\u81f4\uff01
2\u3001\u5982\u679c\u4e0d\u4e00\u81f4\uff0c\u68c0\u67e5\u7f51\u7edc\u91cc\u9762\u662f\u5426\u6709\u8fd9\u4e2aMAC-IP\u7684\u8def\u7531\u8bbe\u5907\uff0c\u6216\u8005\u901a\u8fc7\u6293\u5305\u627e\u51fa\u53d1\u8d77arp\u653b\u51fb\u7684IP
3\u3001\u901a\u8fc7\u4e00\u4e9barp\u68c0\u67e5\u5de5\u5177\u67e5\u627e\u653b\u51fb\u6e90\uff0c\u627e\u51fa\u540e\u91cd\u505a\u7cfb\u7edf\uff08\u53d1arp\u7684\u673a\u5668\u672a\u5fc5\u662f\u4e0a\u4e0d\u53bb\u7f51\u7684\u54e6\uff09
\u6211\u4e2a\u4eba\u8ba4\u4e3a\u6389\u7ebf\u95ee\u9898\u90fd\u662f\u7531\u4e8e\u5e95\u5c42\u6f0f\u6d1e\u51fa\u7684\u95ee\u9898 \u4f8b\u5982(arp\udp\tcp syn\uff09\u653b\u51fb\u3002\u4e00\u4e9b\u4f20\u7edf\u7684360\u536b\u58eb\u3001arp\u9632\u706b\u5899\uff0c\u6740\u6bd2\u8f6f\u4ef6\u6211\u90fd\u8bd5\u8fc7\u4e86\u4e5f\u90fd\u4e0d\u884c\u3002
\u6700\u540e\u6211\u662f\u901a\u8fc7\u514d\u75ab\u7f51\u7edc\u5f7b\u5e95\u7684\u89e3\u51b3\u4e86\u7f51\u7edc\u5e95\u5c42\u95ee\u9898\uff0c\u8fd9\u4e1c\u897f\u7f51\u4e0a\u6709\u5f88\u591a\uff0c\u4f46\u597d\u50cf\u53ea\u6709\u4e00\u4e2a\u53eb\u5de1\u8def\u7684\u5728\u505a\uff0c\u800c\u4e14\u8fd8\u6709\u514d\u8d39\u7684\u3002\u5efa\u8bae\u697c\u4e3b\u81ea\u5df1\u627e\u627e\u3002
如何查询局域网内在用的IP地址?
绛旓細琚姩瀹氫綅鏂瑰紡锛氬湪灞鍩熺綉鍙戠敓ARP鏀诲嚮鏃讹紝鏌ョ湅浜ゆ崲鏈虹殑鍔ㄦ丄RP琛ㄤ腑鐨勫唴瀹癸紝纭畾鏀诲嚮婧愮殑MAC鍦板潃锛涗篃鍙互鍦ㄥ眬鍩熷眳浜庣綉涓儴缃睸niffer宸ュ叿锛屽畾浣岮RP鏀诲嚮婧愮殑MAC銆備篃鍙互鐩存帴Ping缃戝叧IP锛屽畬鎴怭ing鍚庯紝鐢ˋRP 鈥揳鏌ョ湅缃戝叧IP瀵瑰簲鐨凪AC鍦板潃锛屾MAC鍦板潃搴旇涓烘楠楃殑,浣跨敤NBTSCAN鍙互鍙栧埌PC鐨勭湡瀹濱P鍦板潃銆佹満鍣ㄥ悕鍜孧AC鍦...
绛旓細涓銆鏌ョ湅闃茬伀澧欐棩蹇灞鍩熺綉涓湁鐢佃剳鎰熸煋ARP绫诲瀷鐥呮瘨鍚庯紝涓鑸粠闃茬伀澧欑殑鏃ュ織涓彲浠ュ垵姝ュ垽鏂嚭鎰熸煋鐥呮瘨鐨勪富鏈恒傛劅鏌撶梾姣掔殑鏈哄櫒鐨勫吀鍨嬬壒寰佷究鏄細涓嶆柇鐨勫彂鍑哄ぇ閲忔暟鎹寘锛屽鏋滃湪鏃ュ織涓兘鐪嬪埌鏉ヨ嚜鍚屼竴IP鐨勫ぇ閲忔暟鎹寘锛屽鍗婃儏鍐典笅鏄繖鍙版満鍣ㄦ劅鏌撶梾姣掍簡銆傝繖閲屼互Nokia IP40闃茬伀澧欎负渚嬶紝杩涘叆闃茬伀澧欑鐞嗙晫闈㈠悗锛屾煡鐪嬫棩蹇楅」...
绛旓細绗竴姝:arp -a 鏌ョ湅鐩湴MAC鍦板潃灏辨槸鏀诲嚮鑰呯殑MAC,涓鑸儏鍐典笅涓嶄細鏇存敼MAC鍦板潃.璁颁笅鏉.绗簩姝:arp-d娓呴櫎绗笁姝rp-a鏌ョ湅鐪熸鐨勭綉鍏矼AC鍦板潃绗洓姝rp -s 缁戝畾鐪熸鐨勭綉鍏矼AC鍦板潃.涔熷氨鏄矾鐢卞櫒鎴栦笁灞備氦鎹㈡満鐨勪互澶綉绔彛鐨凪AC鍦板潃.绗簲姝:杩愯闀胯鐗涚綉绠¤蒋浠,鏌ュ嚭瀛愮綉閲岀殑绗竴姝ユ敾鍑昏呯殑MAC鍦板潃.灏卞彲...
绛旓細浣犲ソ锛屽叾瀹濧RP鏀诲嚮寰堝ソ鏌ョ殑锛屽鏋滀綘鐨勫唴缃慖P閮芥槸闈欐佸垎閰嶇殑锛屾煡璧锋潵灏卞緢杞绘澗鐨勶紝鍏蜂綋鏂规硶濡備笅锛1.鎵句竴鍙板凡缁忚鏀诲嚮涓婁笉浜嗙綉锛岀洿鎺ing缃戝叧IP锛屽畬鎴怭ing鍚庯紝鐢ˋRP 鈥揳鏌ョ湅缃戝叧IP瀵瑰簲鐨凪AC鍦板潃锛屾MAC鍦板潃搴旇涓烘楠楃殑,濡傛灉浣犲仛浜嗛潤鎬乮p鍒嗛厤琛紝鐩存帴鏌ユ壘涓嬭mac鍦板潃瀵瑰簲鐨刬p灏卞彲浠ヤ簡锛堟墍浠ュ湪缃戠粶瑙勬ā涓...
绛旓細1銆佸皢IP鍜孧AC鍦板潃杩涜閭﹀畾锛氶氳繃鏄湪璺敱鍣ㄧ灏灞鍩熺綉涓鍚勮绠楁満鐨処P鍦板潃涓庡叾瀵瑰簲鐨勭綉鍗AC鍦板潃瀹炶閭﹀畾銆傛墦寮璺敱鍣ㄧ鐞嗙晫闈⑩斺斺淚P涓嶮AC閭﹀畾鈥濃斺斺滈潤鎬ARP閭﹀畾璁剧疆鈥濋」锛屸斺斺滄坊鍔犲崟涓」鐩濇寜閽傚湪鎵撳紑鐨勨淎RP闈欐侀偊瀹氣濈獥鍙d腑锛岃緭鍏ヨ閭﹀畾鐨処P鍜孧AC锛岀劧鍚庣偣鍑烩滀繚瀛樷濇寜閽嵆鍙傜敤鍚屾牱鐨勬柟娉曟坊...
绛旓細1銆佺敤LanSee163灏缃戝唴鐨鐢佃剳IP MAC 鎵弿鍑烘潵锛屽凡澶囨帓闄や腑鎷涙満鍣ㄣ傚湪鑳戒笂缃戞椂锛岃繘鍏S-DOS绐楀彛锛岃緭鍏ュ懡浠わ細arp 鈥揳 鏌ョ湅缃戝叧IP瀵瑰簲鐨勬纭甅AC鍦板潃锛屽皢鍏惰褰曚笅鏉ャ2銆佸鏋滄湁鐟炴槦鎴栧叾浠栭槻鐏锛屽彲浠ユ妸闈欐佺綉鍏冲垹闄わ紝鐪嬬湅鑳戒笉鑳芥嫤鎴埌銆傛嫤鍒癕AC鍦板潃灏卞彲浠ョ敤鍒氭墠鎵潰鍑烘潵鐨凪AC瀵规瘮浜嗭紝鎵惧埌涓嫑鏈哄櫒銆3銆佸鏋...
绛旓細涓銆侀鍏堣瘖鏂槸鍚︿负ARP鐥呮瘨鏀诲嚮 1銆佸綋鍙戠幇涓婄綉鏄庢樉鍙樻參锛屾垨鑰呯獊鐒舵帀绾挎椂锛屾垜浠彲浠ョ敤锛歛rp -a 鍛戒护鏉ユ鏌RP琛細鐐瑰嚮“寮濮”鎸夐挳-閫夋嫨“杩愯”-杈撳叆“cmd”鐐瑰嚮“纭畾”鎸夐挳锛屽湪绐楀彛涓杈撳叆锛歛rp -a 鍛戒护銆傚浣曟帓鏌鍐呯綉ARP鏂綉鏀诲嚮绁搁?灞鍩熺綉ARP鏀诲嚮妫娴...
绛旓細1锛屾瘮杈冪畝鍗曠殑鍔炴硶 a,杩愯cmd b,鍦ㄥ懡浠よ鐣岄潰涓嬶紝杈撳叆arp -a鍥炶溅 c,鍏堢湅浣犲綋鍓嶇綉鍏砳p鐨刴ac鏁版嵁锛屼緥濡傛槸10.16.0.1 MAC涓 00-00-00-00-00-00(纭涓涓嬫槸涓嶆槸浣犳湰韬綉鍏崇殑mac锛屽鏋滀笉鏄紝閭e氨鍙兘鍙楀埌arp鏀诲嚮)锛岃涓嬭繖涓亣鐨刴ac鍦板潃锛岀劧鍚庯紝鍐嶅湪浣犲垰鎵峚rp -a鍑烘潵鐨勬暟鎹閲锛屾壘鍑哄拰杩欎釜mac...
绛旓細1銆佹墦寮鈥滆繍琛屸濈獥鍙o紝杈撳叆鈥淐MD鈥濊繘鍏SDOS绐楀彛銆2銆佸湪鍛戒护鎻愮ず绗︾獥鍙涓锛岃緭鍏モ渁rp -a鈥濆嵆鍙鏌ョ湅璁$畻鏈鐨凙RP鏀诲嚮鍒楄〃銆3銆佷粠涓浣曞彂鐜板鏉AC鍦板潃涓庣綉鍏矷P锛堥氬父涓192.168.0.1锛夊搴斿叧绯伙紝鍒欒〃鏄庣數鑴戝彈鍒癆RP鏀诲嚮锛屽搴旂殑MAC鍦板潃鍗充负鏀诲嚮婧璁$畻鏈恒傛嵁姝ゅ彲浠ヨ拷韪埌鐩爣璁$畻鏈恒4銆佹澶栵紝鎴戜滑杩樺彲浠ュ熷姪...
绛旓細1.棣栧厛涓嬭浇涓涓灞鍩熺綉MAC鎵弿杞欢銆傝繖浜涜蒋浠舵湁寰堝鎴戜篃灏变笉涓涓鍒椾妇浜嗐2.鍚姩鎵弿杞欢鎵弿瀹屾瘯灞鍩熺綉MAC浠ュ悗瀵规瘮浣犲凡鐭ラ亾鐨勬敾鍑绘簮MAC锛屽苟浼氭樉绀哄嚭鏀诲嚮婧愮殑IP鍦板潃鍜屾敾鍑绘簮璁$畻鏈虹殑鍚嶇О銆傝繖鏍锋湁鍒╀簬浣犳煡鎵俱 浣嗘槸涔熶笉鏄100%鑳芥壘鍒帮紝瀵规柟涔熷彲浠ラ氳繃鏇存敼MAC涓庤绠楁満鍚嶇О鏉ユ敾鍑汇
