Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: MAC address spoofing - conflict?

from [penetrationtestmail] Network Security [Permanent Link]
Subject: Re: MAC address spoofing - conflict?
Date: 15 Aug 2006 01:38:21 -0000 
Morning Wood wrote:

What happens? Do you kick the other client off


use aireplay to deauth the original client
http://www.wirelessdefence.org/Contents/Aircrack_aireplay.htm


Yes, but once they had been deauthed they would almost undoubtedly try to 
reconnect, so that would in turn kick me off.... Wouldn't it?

In addition to this, if I'm conducting a pen test (or attempting to), I want to 
be as conspicuous as possible, and minimise my effects on the productivity of 
the company's employees, however temporary.


Pieter Danhieux wrote:

if you spoof the MAC, there are several options:
- you ask IP through DHCP -> dhcp server could refuse giving another IP if 
the MAC is still active. Depends on the implementation
- you set an IP -> if you choose the SAME ip, this will cause problems
        -> if you choose another ip, you won't see any problems. All packets 
for the authorized client, are going to be discarded by your IP stack, and 
all your packets, by his IP stack.

Right. So it depends on whether a DHCP server is in place, and, if it is, how 
it is configured?

And if you choose another IP address (manually), it doesn't matter if you have 
the same MAC as the other client or not... Doesn't this depend on what type of 
hardware it is? I suppose it depends on what is being used to route the 
packets, as (if I'm not mistaken) some do this by MAC and others by internal 
(NATed) IP?


So, if you are both connected to a wireless router, and you have decided upon a 
static IP address different to the other client's (even though you have the 
same MAC address), the packets should not go to the wrong clients, and all 
should be as if your MAC address weren't the same as the other client's anyway?


Thank you :)

Flail

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: xss....what next???, steven
Next by Date:  Re: arp injection for wifi pentesting, DaKahuna
Previous by Thread:  Re: MAC address spoofing - conflict?, Morning Wood
Next by Thread:  Re: MAC address spoofing - conflict?, Lubos Kolouch
Indexes:  [Date] [Thread] [Top] [All Lists]