[Royal_Tr1ck]

Hello everyone, I work in an IT department at a University. I get incredibly bored when running updates of labs or dbanning hdd, so i decided to use cain to ARP attack a network(We have multiple at the university) This one particular is where cyber defense/ everything having to do with technology is. So after about 20 minutes of ARP attacks I found in plain text about 10 professors emails, The president of the college's email, plaintext both user/pass + a bunch of students.....

Now I work there, I'm not in security but I am wondering what should I do? I'm on the verge of telling them i did the spoofing attack, So the university can fix this issue. I have been doing research on protecting against ARP atttacks and i'm not an ADMIN just a lowly peon. But If you had this data what would you do?

I am currently working on a power point that shows how the attack took place and then how The university could start protecting ourselves from it. It's ridiculus how much of the IT world knows nothing and I MEAN NOTHING ABOUT SECURITY............. CRAZY

Thanks for the read, please inform me any idea's or if you think imma get the university's cops called instantly.. THANKS AGAIN

[chmod]

It would only be right to bring this forward to the appropriate authorities you could do a powerpoint presentation on the subject or document your findings into a report and pass it on to the people concerned since you work there you my even get some recognition for it. If you feel confident you could even offer a full pentest to see if there are any other security risks.

[Royal_Tr1ck]

I thoroughly appreciate your response. I am working on a powerpoint currently. I plan on bringing it forward i need to look up the laws regarding this subject just so im prepared to give a counter argument if they decide to get dirty. but I was thinking the exact same thing really. All i want from it is a recommendation letter, i'm still a student so this could be big for me

[Ligeti]

What you've done is classified under grey hat: they scan/attack first, then they offer help (not for free of course), this is illegal, even scanning ports, DNS, IPs in some countries is considered a crime, SO BE CAREFUL!!!

What I do advice you to do is to raise the question "How solid is our security against ARP Poisoning Attacks" and do a presentation about how this attack can be conducted (in theory only) but DO NOT show them anything in practice unless there is a signed contract that will protect you, believe me, some narrow minded admins that would cause you big problem because of that, just to show off, so don't trust anyone!

Again, you SHOULD raise the question, and present your findings in an indirect way, and never run a demo unless there is a signed contract that will protect you.

Thanks and good luck.

[Exploits]

I agree with Chmod bring it to them show how it was done powerpoint and all.
They obviously arent going to give you any trouble as long as you state nothing was taken or recorded.
My initial thought is they would very much appreciate it!
I can also see them possibly making you do a seminar of ARP attacks lol

[Royal_Tr1ck]

Alright everyone thanks so much for the comments. It reaaly gave me the courage to go ahead and tell the system admin. So what happened is I went and sent him the presentation I did it was like 16 pages power point on how to ARP spoof attack and steal any type of info. After I showed him that he gave me the third degree asking me about why i did it, what i was thinkigng, I told him I was bored and Did it because I knew id be able to exploit it, and He was very impressed, He then asked if i had shared it with anyone which i havent.
I then asked him how he would feel if I continue searching for exploits and he said as long as you dont screw anything up. So anyone have any suggestions the server I'm looking at is behind a firewall all 1000 ports are filtered I have basic services though.

Again thanks again to everyone who answered

[Royal_Tr1ck]

Alright everyone thanks so much for the comments. It reaaly gave me the courage to go ahead and tell the system admin. So what happened is I went and sent him the presentation I did it was like 16 pages power point on how to ARP spoof attack and steal any type of info. After I showed him that he gave me the third degree asking me about why i did it, what i was thinkigng, I told him I was bored and Did it because I knew id be able to exploit it, and He was very impressed, He then asked if i had shared it with anyone which i havent.
I then asked him how he would feel if I continue searching for exploits and he said as long as you dont screw anything up. So anyone have any suggestions the server I'm looking at is behind a firewall all 1000 ports are filtered I have basic services though.

Again thanks again to everyone who answered

[Royal_Tr1ck]

Alright everyone thanks so much for the comments. It reaaly gave me the courage to go ahead and tell the system admin. So what happened is I went and sent him the presentation I did it was like 16 pages power point on how to ARP spoof attack and steal any type of info. After I showed him that he gave me the third degree asking me about why i did it, what i was thinkigng, I told him I was bored and Did it because I knew id be able to exploit it, and He was very impressed, He then asked if i had shared it with anyone which i havent.
I then asked him how he would feel if I continue searching for exploits and he said as long as you dont screw anything up. So anyone have any suggestions the server I'm looking at is behind a firewall all 1000 ports are filtered I have basic services though.

Again thanks again to everyone who answered

[Ex094]

As chmod said, You can prepare a presentation related to the vulnerabilities found on their network, Don't tell them the technical stuff i.e you ARP Spoofed and got emails etc etc. Just tell em you ran some test and luckily you were able to get hold of some vulnerabilities that may be a threat to the network and the data stored...

[hunt3r972]

As other people said, be careful. Even if you start from a good intention they can turn it into a way to tell that it was from a bad intention and maybe you did this many times before. If you really want to protect the network you are working on, just tell them that you did some test with some spare computers to see if the network was secured and you discovered that the network is vulnerable to MITM attack.

Good luck, hope your boss is not fool ;-)