Switch connected to the attacker. Configure eth1 as a trunk port with native VLAN (vulnerability).
# Enter SW1 console
docker exec -it clab-vlan_hopping_lab_sw2-sw1 Cli
# cEOS Configuration
enable
ojsnTTS
ojsnTTS
/ sw_configuration.md
Last active
January 13, 2026 23:57
ojsnTTS
/ attacker.py
Last active
January 13, 2026 23:51
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| VLAN Hopping Attack Demo (Educational Purpose Only) | |
| Demonstrates single-tagged VLAN hopping exploit | |
| """ | |
| from scapy.all import Ether, Dot1Q, IP, ICMP, sendp | |
| def main(): | |
| print("[DEMO] Sending single-tagged ICMP packet (VLAN 20)...") | |
ojsnTTS
/ vlanhop.clab.yml
Created
November 21, 2025 13:23
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: vlan_hopping_lab_sw2 | |
| topology: | |
| nodes: | |
| sw1: | |
| kind: arista_ceos | |
| # Note: Adjust this image tag to match the tag you used for docker import | |
| image: ceos:4.34.0F | |
| sw2: |