DHCP Security - faisal-alghamdi/Net-330 GitHub Wiki

DHCP is a critical service for Enterprise Networking. As a result, of this importance it can also raise some security concerns.

Research DHCP security and identify at least 3 potential security issues with DHCP

Denial of service attack Rogue DHCP server Man in the middle attack

For each issue, write a paragraph or more describing the vulnerability/risk and how an attacker could exploit it.

Denial of service attack It will stop accepting any new IP address, no one who wants to join the network can join. It will take full control of the DHCP server.

Rogue DHCP server and Man in the middle attack is A hacker can set up a fake DHCP server and instruct the client to use it and now the hackers can control the packets traffic. This is very similar to a man in the middle attack.

For each issue, also write a paragraph or more on defensive measures that can reduce the risk.

There are several tools that can be used to reduce DHCP attacks, including rogue detect is a script that sends packets to a network and listens to DHCP servers and checks them. dhcploc.exe is a command line and is part of the Windows tools used to display all current DHCP servers. Also,dhcp_probe is a tool developed by the Office of Information Technology at Princeton University that attempts to detect DHCP servers directly connected to the network.

Use references to support your findings

DHCP security. (n.d.). Retrieved September 20, 2021, from http://www.softpanorama.org/Net/Application_layer/DHCP/dhcp_security.shtml.