DHCP Attacks and Defense Strategies
Vložit
- čas přidán 21. 09. 2021
- Check Out the 1st Module from a Course for FREE
kwtrain.com/course-samples
***********************************
In this video, you'll see how an attacker might launch a DHCP attack against your network, and you'll learn how to defend yourself. For example, an attacker might flood your DHCP server with thousands of DHCP Discover messages, which can very quickly deplete your DHCP server's pool of IP addresses.
You'll see how an attacker might launch such an attack using a utility called Yersinia, and then you'll see how to configure Port Security to prevent such an attack.
However, that still doesn't prevent an attacker from adding a rogue DHCP server to the network and possibly handing out incorrect IP address information to clients. So, we'll then dive into the configuration of DHCP Snooping, which can block DHCP Offer messages from any untrusted DHCP server.
These topics are covered both on the Certified Ethical Hacker (CEHv11) exam blueprint, and they're also helpful in your Cisco CCNA and CCNP Enterprise studies.
Enjoy the training!
NOTE: This channel does not endorse or encourage malicious or illegal activity using hacking tools.
=====================================================
Don't miss a single one of Kevin's CZcams videos. Subscribe here:
czcams.com/users/subscription_cente...
=====================================================
=====================================================
Kevin Wallace, CCIEx2 #7945 Emeritus (Collaboration and R&S)
Homepage: kwtrain.com
Twitter: / kwallaceccie
Facebook: / kwallaceccie
CZcams: / kwallaceccie
LinkedIn: / kwallaceccie
=====================================================
=====================================================
If you enjoyed this video, here is the video title and also the link for you to share:
DHCP Attacks and Defense Strategies
• DHCP Attacks and Defen...
===================================================== - Věda a technologie
Thanks for the interesting information.
One thing to add is that the DHCP pool is not exhausted from DHCPDISCOVER messages, but from a complete DORA process that it is faked by Yersinia which means that for every DISCOVER, an OFFER will be sent from the router, then a REQUEST from Yersinia will be sent to finally recieve an ACK to create a binding in the DHCP server, which is the router in your example.
Great job. You are so fluent and professional with the terms. By far the best on CZcams.
Great video...thank you Mr Wallace. One other thing I noticed was Switch actually can show you ip addresses attached to specific ports by using dhcp snooping. This is great.
Thank you Kevin. I really enjoy watching your videos and learning new stuff. Thanks a looooooooot
Thank you Kevin...another great recap as usual, looking forward to the DAI video
Great video and demonstration. Thankyou!
Thank you, Kevin, for another classic video.
Thanks for another great learning video Kevin!
Kevin, you’re invaluable. Thank you!
Love your vid format
Thank
you
Kevin.
Thanks for sharing
Thank You !
Very good video.
Great video and one question. Since a NON trusted port will never accept any DHCP offers, why SEND OUT the DHCP request out of that port in the first place ? All DHCP messages can be blocked from being transmitted OUT from NON trusted ports hence reducing the traffic, say after something like a power outage ? Thanks
DORA DORA DHCP EXPLORER 🤟 - I giggled so much at this and I will now DEF remember lol
God bless you
What should we do about wireless devices and wireless access point? which assign ip to multiple devices.
What if the DHCP server is a virtual machine on ESXi and not connected directly to the switch, can we still use DHCP snooping? shall we configure it on the trunk port?
The ceh course is gona be packed
Is there a hardening or IDS for DHCP Coerce?
Rouge DHCP server 7:30
DHCP snooping
your title could maybe be dhcp attacks and defence strategies
IF YOU HAVE A CISCO ROUTER *"#¤%#"#¤