On-Path

Also known as Man-in-the-Middle or Machine-in-the-Middle attacks. An attacker places themselves between two devices or individuals who are communicating to eavesdrop or manipulate the data being sent.

ARP Spoofing or ARP Cache Poisoning are attacks that can lead to an on-path attack. By poisoning the ARP caches of systems connected to the subnet an attacker can make a device believe that the layer 2 address of their device is their default gateway.

MAC Spoofing can also result in this, a threat actor could impersonate a router or virtual system to perform an on-path attack.

Last updated 21 days ago