112 chapter 6 Man-in-the-Middle The final step of this attack involves using the arpspoof tool to perform a MITM cache poison attack against the victim's computer. In the following code example, arpspoof uses the attacker's eth0 network interface to perform the MITM attack between the target computer 192.168.204.139 and the default gateway address of 192.168.204.1: arpspoof ­i eth0 -10 192.168.204.139 192.168.204.1 After a few minutes of running the sslstrip tool, the attacker views the log files for the tool and can then use the credentials obtained to access accounts that would have been otherwise secure. The execution of this type of attack is fairly straightforward, and the consequences for falling victim to the attack can be disastrous, depending on the type of credentials obtained. Domain name System Spoofing The final scenario we discuss in this chapter involves an attacker using the Domain Name System (DNS) to transmit false information about the true location of services requested by legitimate users. Before moving too far into how the attacker performs