Virtual Private Networks and Man In The Middle

The goal of this activity is to configure a VPN server with L2TP and PPTP protocols. Then, connect to the created VPN network and verify communication. The attacker's goal is to obtain the user's login credentials to the VPN (PPTP) using a Man In The Middle (MITM) attack with the ARP Poisoning (ARP Spoofing) method. The attacker will use the captured traffic to decrypt the VPN login credentials (using a dictionary attack).

What you will learn in this task

• Create a VPN server (L2TP and PPTP) on a MikroTik device.
• Connect to a VPN network in a Windows OS environment.
• Basic scheme and execution of an MITM attack (ARP spoofing).
• Basic operations with the Bettercap application.
• Basic operations with the Wireshark application.
• Intercepting VPN PPTP communication.
• Decrypting login credentials in the VPN PPTP protocol (using the dictionary method).

Ongoing tasks are

• VPN configuration
• VPN setup
• Man-in-the-Middle Attack (MITM)
• Traffic capture and VPN compromise
• Password decryption

Workstations available for the task

• User (victim) – Windows OS
• Attacker – Kali OS
• Web server – Ubuntu Server OS
• Management – Xubuntu OS
• MikroTik

Network diagram

The maximum time required for the lab task is 45 minutes.