How to get the MAC address of an ANTENNA on my roof
in [Wireless Internet]
|
Prev: ===Christian Louboutin - www.vipchristianlouboutin.com
Next: NEWS: Hackers release carrier unlock for Apple's iPhone 4
From: Brent on 6 Aug 2010 03:36 On Thu, 05 Aug 2010 01:03:39 -0700, Jeff Liebermann wrote: >>00-16-B6-32-43-27 looks like the WAN interface with >>00-16-B6-32-43-26 the LAN interface of your "antenna" (WISP router). >>The two interfaces are often just one number apart. > Agreed. Well, given that, the first "attempt" at changing the MAC on the PC to that of the bridge on the roof failed but with interesting results. 1. I disconnected the power to the antenna (so that two devices wouldn't have the same MAC address at the same time). 2. I changed the MAC address of the PC to 00-16-B6-32-43-26 (the WISP router on my roof). 3. I pulled the wire of the PC so that only wireless was working, and I connected to the ISPs access point that was beaming to my antenna, but, now is beaming to the PC instead. 3. I directed the web browser on the laptop to http://192.168.3.1 and hit return; the url changed to the following: http://192.168.4.1/login?dst=http%3A%2F%2F192.168.3.1%2F and a hotspot login came up (which I'm familiar with as the ISP's interface when you connect to it from a MAC address which is not allowed due to their filters). 4. Even more interesting was when I directed the browser to http://www.google.com and the Firefox browser (with security for unrequested popups) came up blank but with the message: Request {GET http://192.168.4.1/login?dst=http%3A%2F%2Fwww.google.com%2F <<<http://www.google.com/, http://www.google.com/ -6} fuktered by ABE: <LOCAL> Deny 5. So I turned off all my Firefox Addons (Tools->Addons), and disabled Ghostery 2.2.1, Flashblock 1.5.11.2, Adblock Plus 1.1.3, NoScript 1.9.9.97, etc. and restarted Firefox. 6. Drat. This time, going to http://www.google.com gets redirected to: http://192.168.4.1/login?dst=http%3A%2F%2Fwww.google.com%2F But, the ISP's hotspot login prompt comes up again. So, either that MAC address isn't the bridge on the roof; or, there's more "authentication" goin on than just MAC filtering. In addition, an arp reported no entries: C:\Documents and Settings\brent>arp -a No ARP Entries Found I'll debug some more because maybe I chose the wrong IP address to use or maybe I did something wrong. I'm reading the arp on wikipedia at the same time to figure out more about the arp command output. Thanks for all your help. I have a lot to work with now!
From: bod43 on 6 Aug 2010 04:45 On 4 Aug, 23:26, Brent <beemdoub...(a)Use-Author-Supplied- Address.invalid> wrote: > Here's a summary of the proposed methods to obtain the MAC address of the > ethernet card on the rooftop antenna box. > i. Install Linux > ii. Install Kismet > iii. Sniff for the MAC address of the etherner card on the roof Somewhat easier might be to get a backtrack CD image from t'interweb and burn a CD. Boot a PC off it and bobs your uncle. The hardest bit for me was to find out how to switch round between consoles. That took about two hours since all I knew was I needed more windows. The rest was easy. aLT-f1, f2 ... f6 -- Default linux consoles. 6 of them. Mind you you don't seem to mind quite hard:) With either kismet or backtrack the main issue is to make sure that your wireless card is supported for "monitor mode" with available drivers. There are lists. This will allow you to sniff the conversation off the air as it transits from your LAN to the internet. The packets will contain the MAC addresses of both your bridge and the remote ISP router. OOPS. I have just realised that I don't know enough about how wireless works and that the strategy might not work. Someone will likely correct me if required:-) In any case backtrack or kismet will let you see the beacons which I believe contain the SSID and certainly the MAC.
From: Jeff Liebermann on 6 Aug 2010 05:18 On Fri, 6 Aug 2010 07:36:01 +0000 (UTC), Brent <beemdoubleu(a)Use-Author-Supplied-Address.invalid> wrote: >5. So I turned off all my Firefox Addons (Tools->Addons), and disabled >Ghostery 2.2.1, Flashblock 1.5.11.2, Adblock Plus 1.1.3, NoScript 1.9.9.97, >etc. and restarted Firefox. Try: Start -> Run Firefox -safe-mode There's also a short cut at: Start -> Programs -> Mozilla Firefox -> Firefox (safe mode). Make sure you do *NOT* have another copy of Firefox running or this will fail. -- Jeff Liebermann jeffl(a)cruzio.com 150 Felker St #D http://www.LearnByDestroying.com Santa Cruz CA 95060 http://802.11junk.com Skype: JeffLiebermann AE6KS 831-336-2558
From: Jeff Liebermann on 6 Aug 2010 05:27 On Fri, 6 Aug 2010 01:45:05 -0700 (PDT), bod43 <Bod43(a)hotmail.co.uk> wrote: >Somewhat easier might be to get a backtrack CD image from >t'interweb and burn a CD. It's grown to a DVD with 2 GB of programs. That's 500GB of new stuff since the "final" release. The new "Backtrack 4 r1" version just appeared today after Defcon 18. I just downloaded it (it took all day). As before, it's a pain to run as a Live-DVD and works better on a seperate hard disk partition. Do NOT run install.sh unless you plan to install it on your hard disk drive: <http://www.backtrack-linux.org> -- Jeff Liebermann jeffl(a)cruzio.com 150 Felker St #D http://www.LearnByDestroying.com Santa Cruz CA 95060 http://802.11junk.com Skype: JeffLiebermann AE6KS 831-336-2558
From: bod43 on 6 Aug 2010 08:51
On 6 Aug, 10:27, Jeff Liebermann <je...(a)cruzio.com> wrote: > On Fri, 6 Aug 2010 01:45:05 -0700 (PDT), bod43 <Bo...(a)hotmail.co.uk> > wrote: > > >Somewhat easier might be to get a backtrack CD image from > >t'interweb and burn a CD. > > It's grown to a DVD with 2 GB of programs. That's 500GB of new stuff > since the "final" release. The new "Backtrack 4 r1" version just > appeared today after Defcon 18. I just downloaded it (it took all > day). As before, it's a pain to run as a Live-DVD and works better on > a seperate hard disk partition. Do NOT run install.sh unless you plan > to install it on your hard disk drive: > <http://www.backtrack-linux.org> I just used v3 since I didn't have any DVDs. Obviously the new one will have more and more-recent drivers. v3 did automagically mount my NTFS partitions (Vista) which allowed me to save files without any messing about despite claiming not to be able to. If all that is required is the MAC of a single bridge then booting off a CD/DVD is likely to be sufficient:) E:\backtrack>type step1 modprobe -r iwl3945 # load your driver here modprobe ipwraw iwconfig airmon-ng stop wifi0 ifconfig wifi0 down # mess around in here a bit to set up for my needs airmon-ng start wifi0 airodump-ng wifi0 I think that is enough to see the SSIDs but I forget for now. You may need to run these in more than one window. I have the idea that you may need to stop airmon-ng if you want airodump-ng. Again I forget. I had some crashes before I realised that there was a clash somewhere anyway. |