Network Traffic Redirection and Man in the Middle (MitM) attacks are some of the most misunderstood and most devastating attacks organizations can face, yet few understand the type of attacks, and even fewer understand the countermeasures. This is a red/blue cross talk to understand both the network traffic redirection attacks that exist and countermeasures organizations should consider. This will go well beyond ARP spoofing to discuss the many methods attackers can manipulate traffic within a network. We will explain Tactics, Tools and Procedures (TTPs) for these style of attacks, along with easy and complex countermeasures that can be put in place to mitigate the risks. These will include DNS manipulation, Name Spoofing attacks, routing protocol tampering, layer 2 VLAN manipulation, and many more methods to manipulate and redirect network traffic.

Back to Derbycon 2014 video list