Arp spoofing is a technique to get the information between two computers which is the password and username when the victim sign in with another website.

First of all, it needs two virtual machines which are two Kali Linux and the adapter should be a bridge adapter.  if you have done it, turn on two virtual Kali Linux and open the command line each Kali Linux.

Kali Linux as the attacker should open two tab command line. The first tab should type :

echo 1 > /proc/sys/net/ipv4/ip_forward

after that, type “arpspoof -t [IP target] [IP gate]”

and open another tab type “arpspoof -t [IP gate] [IP target]”

next, execute both terminals.

furthermore, the attacker opens the wireshark and wait until the target opens the browser for sign in.

if the target open the browser to sign in, and then type the username and the password.

the attacker got the data in wireshark :

and the info data is HTTP which is number 757199:

after that, right click on there and select HTTP stream, the result like this :

The attacker got the username and password which is a@mo.com and hahaha.