Security Basics mailing list archives

RE: Detecting Spoofed MAC

From: "Lall, Navneet Singh" <nlall () ipolicynetworks com>
Date: Thu, 30 Nov 2006 10:18:01 +0530

Hi ankur

One good tool to prevent arp spoofing is arpwatch.

Navneet

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of divinepresence () gmail com
Sent: Wednesday, November 29, 2006 3:15 PM
To: security-basics () securityfocus com
Subject: Detecting Spoofed MAC

Hi all
Is there a tool to determine whether the MAC has been spoofed on a
system (Win/*nix) for a given interface? Also, is it possible to know
the real MAC in such a case? I was wondering if you could hook up to
some system info API which would provide you with this information
assuming that this detail is stored at some location which is not
affected by spoofing.

Thanks
Ankur Jindal

Current thread:

RE: Detecting Spoofed MAC Lall, Navneet Singh (Dec 01)
- <Possible follow-ups>
- Re: Detecting Spoofed MAC crazy frog crazy frog (Dec 01)
- RE: Detecting Spoofed MAC Maxime Ducharme (Dec 01)
- Re: Detecting Spoofed MAC israel (Dec 01)
- Re: RE: Detecting Spoofed MAC vachanta (Dec 01)
- Re: Detecting Spoofed MAC Jason Muskat, GCFA, GCUX, de VE3TSJ (Dec 06)