Credential Harvesting Lab Setup

Purpose

Build a controlled credential harvesting lab environment using ARP spoofing, DNS spoofing, and Apache web server hosting. This skill covers creating phishing pages, redirecting traffic, and capturing credentials for authorized penetration testing and security awareness demonstrations.

Prerequisites

Required Environment

• Kali Linux or similar penetration testing OS
• Apache2 web server
• dsniff package (arpspoof, dnsspoof)
• Network access to target segment
• Written authorization for testing