: Validates ARP packets on the network to prevent spoofing.
: In an STP attack, a malicious actor sends Bridge Protocol Data Units (BPDUs) with a higher priority (lower numerical value) to force the network to elect their device as the "Root Bridge". This causes all network traffic to flow through the attacker's device for interception. ARP a STP Гєtoky.pptx
: While often associated with switches, this attack fills a switch's CAM table with fake MAC addresses, forcing it to act like a hub and broadcast all traffic to every port, where an attacker can sniff it. Common Mitigations : Validates ARP packets on the network to prevent spoofing
: Both protocols can be exploited to cause Denial of Service (DoS) . For example, flooding a network with ARP requests can overwhelm device tables, while STP loops (caused by disabled or misconfigured STP) can create broadcast storms that crash the network. : While often associated with switches, this attack