Wireless MnM
-
Am I right in thinking that sniffing and man in middle attacks are much easier with wireless? You would need to poison arp cache on switch. Once you connect to wireless ssid everyone on that ssid is sharing the same wire (media) - more like hub technology. You would just need to start wireshark in p mode right?
-
Hey David! I would say that, yes it is "easier" because you have one less obstacle to clear before you can launch your MITM attack, but the skill necessary to pull off the attack doesn't change.
-
Sniffing wireless traffic from other devices is theoretically possible since the radio waves hit your antenna, but the mechanics of setting it up is a bit involved and is very specific to your hardware and OS. Most wireless traffic is encrypted, so that is an additional hurdle. For Wireshark specifics, see https://wiki.wireshark.org/Wi-Fi and the pages it links to.
A common wireless MitM attack method is to set up a rogue access point with the same SSID as the one your intended victim will connect to.