I have been attempting to run a MiTM on a very old XP SP3 computer. I have attempted it with 3 products, as listed below:
Wireshark: Traffic from the computer did not even show up. (I did see traffic from multiple IP's, so I think I have the right adapter)
ARP Spoof: (with and without SSL Strip): As soon as attack took place victim was kicked off my network and not allowed back on until attack stopped
Cain: Showed a "half-routing" symbol. When I put in the command "ping google.com" on the victim the 4 packets went out and registered in Cain, but no response came back.
It seems to me that my router is detecting that I am MiTMing my computer, and refusing to allow it to connect. Does anyone know how I can circumvent this?