search

Physical Link Mapping

hashtag
Cheat Sheet

hashtag
Active Physical Link Mapping

hashtag
Nmaparrow-up-right

circle-info

ARP Scan

Nmap -sn -Pn -PR --send-eth $TARGET

hashtag
Netdiscoverarrow-up-right

circle-info

Build a Layer-2 Topology

sudo netdiscover -r 192.168.1.0/24

hashtag
arp-scanarrow-up-right

circle-info

ARP scan on local network

sudo arp-scan --localnet
circle-info

ARP scan on a subnet using a specific interface

sudo arp-scan -I eth0 192.168.1.0/24

hashtag
Passive Physical Link Mapping

hashtag
Wiresharkarrow-up-right

1. Open Wireshark

2. Capture traffic on a specific interface

3. Filter layer 2 protocols: arp or lldp or cdp or stp or l2tp

hashtag
tsharkarrow-up-right

circle-info

Passive layer-2 packet capture

hashtag
Netdiscoverarrow-up-right

circle-info

Passive ARP Monitoring

hashtag
Nmaparrow-up-right

circle-info

Sniffs the network for incoming broadcast communication

PreviousNetwork Vulnerability AssessmentNextOperational Activity Mapping

Last updated