I used ettercap to perform this attack. In theory, it arp poisoning victim machine ( use dynamic map), said victime that " DNS Server has MAC address is xxxxxx". Of course, all DNS request will be going to Attacker Machine. You must distinguish between ARP Poisoning - DNS Spoofing with DNS Poison. Above, DNS Spoofing id a part of ARP Poisoning ( a plugin of ettercap), it perform ARP Posoning, then, Man in the Middle ( Attacker is DNS agent). But, DNS Poisong is we attack DNS Server ( not AiRP Poisonging), it can be DNS Server bug, cache posion, sub-domain poisoning. Victim is XP SP2, use dynamic MAC to update MAC table, Attacker is Backtrack, use ettercap to poison. You can use cain&amp;abel, similar to do. Video i made :) Exe file: <a target="_blank" href="http://www.mediafire.com/?xp6cp5217d28kab">http://www.mediafire.com/?xp6cp5217d28kab</a> Avi file - too big: <a target="_blank" href="http://www.mediafire.com/?r6p47gtj8d4n8oo">http://www.mediafire.com/?r6p47gtj8d4n8oo</a> Youtube: 
------------------------------------------------------------ Thanks for reading -------------------------------------------------------------------------- All my Lab: <a target="_blank" href="http://www.mediafire.com/?sharekey=c4f421784e6b4f90391d7d881749d3a77182db3bb3645b0cb8eada0a1ae8665a">Linux Lab</a> -- <a target="_blank" href="http://www.mediafire.com/?sharekey=c4f421784e6b4f90391d7d881749d3a769ca3d7d44ee28e5c95965eaa7bc68bc">window and Cisco Lab</a> to be continued - I will update more. 
Nam Habach


I used ettercap to perform this attack. In theory, it arp poisoning victim machine ( use dynamic map), said victime that " DNS Server has MAC address is xxxxxx". Of course, all DNS request will be going to Attacker Machine. You must distinguish between ARP Poisoning - DNS Spoofing with DNS Poison. Above, DNS Spoofing id a part of ARP Poisoning ( a plugin of ettercap), it perform ARP Posoning, then, Man in the Middle ( Attacker is DNS agent). But, DNS Poisong is we attack DNS Server ( not AiRP Poisonging), it can be DNS Server bug, cache posion, sub-domain poisoning.  
Victim is XP SP2, use dynamic MAC to update MAC table, Attacker is Backtrack, use ettercap to poison. You can use cain&abel, similar to do.  
Video i made :)  
Exe file: [http://www.mediafire.com/?xp6cp5217d28kab](http://www.mediafire.com/?xp6cp5217d28kab)  
Avi file - too big: [http://www.mediafire.com/?r6p47gtj8d4n8oo](http://www.mediafire.com/?r6p47gtj8d4n8oo)  
Youtube:  
  
  
  
  
\------------------------------------------------------------  
Thanks for reading  
\--------------------------------------------------------------------------  
All my Lab:  
[Linux Lab](http://www.mediafire.com/?sharekey=c4f421784e6b4f90391d7d881749d3a77182db3bb3645b0cb8eada0a1ae8665a) -- [window and Cisco Lab](http://www.mediafire.com/?sharekey=c4f421784e6b4f90391d7d881749d3a769ca3d7d44ee28e5c95965eaa7bc68bc)  
to be continued - I will update more.   
  

Nam Habach