> If you have access to a machine connected to the switch you could try > arp-spoofing ( http://en.wikipedia.org/wiki/ARP_spoofing )and redirect > traffic to this machine and sniff it there. > > More Info: > http://wiki.ethereal.com/CaptureSetup/Ethernet?action=show > http://su2.info/doc/arpspoof.php
he might be running Windows. get cain http://oxid.it arp spoof then sniff while your routing packets cheers _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
