Penetration Testing mailing list archives

Re: Ping a mac address

From: kuisma <kuisma () ping se>
Date: Sun, 04 Dec 2005 19:24:58 +0100

Tricky;

a) The MAC address may no have an IP address at all

b) The MAC address may send IP frames for many IP addresses (a routerfor example)


You can do a few tricks;

1) Broadcast Reverse ARP for that MAC address, but it's likely not togive any response at all.

2) Send that MAC address a packet with YOUR OWN IP as target, and see ifyou get it back in return. You then know that the MAC address exists, itcan speak IP and have IP forwarding capabilities.

3) Send that MAC address an ICMP Echo on IP broadcast address(es). YouMAY get a reply, and the reply may give away the primary (or closest) IPaddress, or it may return the broadcast address as source. But remember,an ICMP Echo Request destined to an IP broadcast or IP multicast addressMAY be silently discarded according to rfc792.


Good luck,
-- Mikael Kuisma, Ping Research


Roni Bachar wrote:

Hi again
I guess I didn't explain my self good.
What I want is tool that i can do:
Ping 00:0F:EA:8C:FC:5A


And in return get the ip of this mac









------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:Hackers are concentrating their efforts on attacking applications on yourwebsite. Up to 75% of cyber attacks are launched on shopping carts, forms,login pages, dynamic content etc. Firewalls, SSL and locked-down servers arefutile against web application hacking. Check your website for vulnerabilitiesto SQL injection, Cross site scripting and other web attacks before hackers do!Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Attachment: kuisma.vcf
Description:

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Re: Ping a mac address, (continued)
- - - Re: Ping a mac address Thor (Hammer of God) (Dec 04)
    - Re: Ping a mac address Cedric Blancher (Dec 04)
    - Re: Ping a mac address Mohamadi ZONGO (Dec 05)
    - RE: Ping a mac address Roni Bachar (Dec 05)
    - RE: Ping a mac address Barrie Dempster (Dec 06)
    - Re: Ping a mac address Joachim Schipper (Dec 06)
    - Re: Ping a mac address Brian Loe (Dec 06)
    - Re: Ping a mac address Joachim Schipper (Dec 07)
    - Re: Ping a mac address Samuel R. Baskinger (Dec 08)
    - Re: Ping a mac address Samuel R. Baskinger (Dec 08)
    - Re: Ping a mac address kuisma (Dec 04)
- Re: Ping a mac address Joshua Shaffer (Dec 03)
- Re: Ping a mac address Maxime Ducharme (Dec 05)
- RE: Ping a mac address John Tavares (Dec 03)
- Re: Ping a mac address rob . dijkshoorn (Dec 04)
  - Re: Ping a mac address James Eaton-Lee (Dec 07)
  - Re: Ping a mac address mccauley () gmx net (Dec 09)
    - Re: Ping a mac address Bob Foxworth (Dec 11)
- RE: Ping a mac address Dario Ciccarone (dciccaro) (Dec 04)
- RE: Ping a mac address Dario Ciccarone (dciccaro) (Dec 05)
- RE: Ping a mac address Dario Ciccarone (dciccaro) (Dec 05)

(Thread continues...)