Skip to content

fork1488/arp_hooking

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
arpshit
arpshit
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
arpshit.sln
arpshit.sln
 
 

Repository files navigation

Utilizing major function swaps to hook the ioctl request used to query the ARP table.

Remarks:

  • Designed to be loaded via a manual mapper like TheCruZ's "KDMAPPER"
  • Simply makes the function return ACCESS_DENIED, but ideally you should parse the ioctl buffer and instead change every mac entry (assuming this will be used for spoofing)

Demonstration:

  • Before Mapping image

  • After Mapping image

About

Using ioctl major function swaps to "spoof" the ARP table

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C++ 100.0%