[PEN-TEST] Hiding IP address and changing MAC

[ian.vitek () IXSECURITY COM]

I held a speech about IP-spoofing on DEF CON 8.
Read "Full Connection Vanilla IP-Spoof" in the presentation at
http://www.wittys.com/files/defcon_vitek.ppt
It says that you can take the upstream router MAC address and the spoofed
IP-address
 to make these full connection spoofs.
At the "Ending" there is a picture of how to do this on the local area network.
With the new features in Windows 2000 where you easily can change MAC address,
 this type of spoofs should now be possible to do from Windows 2000.

All responses containing:
1: "But on a switched environment ..."
2: "But if you take same MAC as the ..."
will be redirected to /dev/null

//Ian Vitek, iXsecurity