MAC address
From Partyvan Wiki
Contents |
What is a MAC address?
A Media Access Control address is a specific, unique value assigned to most network equipment. It is a 48-bit string, and is usually grouped together is a series of 2x6 alphanumeric characters.
Example: 12-34-56-78-9A-BC
There are different types of MAC addresses. One for LAN, and one for WAN. (Remember, your ISP's router has a MAC address, too)
Here is an example of it being used on a LAN:
Host 1 (192.168.1.1): Yo everyone on the LAN (FF:FF:FF:FF:FF:FF), who has the IP 192.168.1.2? My MAC is DE:AD:BE:EF:CA:FE so you can respond back to me. Host 2 (192.168.1.2): Hello DE:AD:BE:EF:CA:FE, I have IP 192.168.1.2 and my MAC address is 12:34:56:78:90:12 so you can send your IP packets to me.
How to see your LAN's MAC address'
MAC address' are stored in a table called the address resolution table (ARP).
To see the table (The MAC address will be in the format **:**:**:**:**:**):
Windows:
#Type {windows key} + r
#Type "arp -a"
#Hit enter.
Linux:
#Open terminal. #Enter command "arp" #Hit enter.
Changing LAN MAC address'
Windows:
#Go to Start -> Run, type "regedt32" to start registry editor. Do not use "Regedit".
#Go to "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}".
Double click on it to expand the tree. The subkeys are 4-digit numbers, which represent particular network adapters.
You should see it starts with 0000, then 0001, 0002, 0003 and so on.
#Find the interface you want by searching for the proper "DriverDesc" key.
#Edit, or add, the string key "NetworkAddress" (has the data type "REG_SZ") to contain the new MAC address.
#Disable then re-enable the network interface that you changed (or reboot the system).
It is dangerous to go alone. Take this: http://www.irongeek.com/i.php?page=security/madmacs-mac-spoofer
- Quick Tip: If you are in a hurry; Google "Technitium MAC Address Changer", install, click click and your MACID is changed.
Linux:
#ifconfig eth0 down hw ether xx:xx:xx:xx:xx:xx #ifconfig eth0 up
Note: Change (xx:xx:xx:xx:xx:xx to what you desire. Must be hexadecimal in value)
MAC addresses use hexadecimal values. Characters 0, 1, 2, 3, 4, 5, 6, 7, 8, 9, a, b, c, d, e, and f are acceptable. Protip: DEADBEEFCAFE is a valid MAC
Spoofing
This section explains how to spoof with MAC address' The examples are for w/i/ndows, because *nix fags are smart enuf to know how to gather information from the top of the article
Uses
With MAC Address Spoofing you can:
- Locally lock/freeze/DoS the network
- Impersonate another user on the network. This has many advantages.
- Avoid FBI (Read: Paranoia) security logs by changing it.
Keep your MAC address out of Address Log Tables
Change your router/NAT's MAC Address. See your Documentation provided by your router/NAT maker.
Impersonation
- Use your operating systems appropriate command to display the ARP table.
e.g., Windows: arp -a
- Select one that is not you (use ipconfig /all to get your local IP)
- Change your MAC to theirs.
- WIN!
All this does is cause network breakdown, but it also alows you to send and recive data that goes to both computers. although hard and ineffective, you can gain access to information on their computer as it is transmitted.
Free Hotel Internet
A lot of hotels use MAC address filtering in their "pay to surf" schemes, so impersonating a user via MAC address spoofing will allow you to surf while the victim pays.
Local Denial of Service
Many WiFi routers will lock up if a client tries to connect with the same MAC as the router's BSSID. Idea: Do this at a public access point with many users.
