AP without DHCP

[gameman.pdcmail at myworkarea.net (gameman733)]

If you are sure you have the right key, the first thing I would try to do is
guess at some common ranges (10.0.0.x, 192.168.0.x .1.x and 254.x). But the
reason I mention the right key is because I have seen client's say they
authenticated to an access point but nothing works. This is usually the
result of a wrong key, but don't ask me how it thinks it authenticated (not
familiar with lower level WiFi enough to answer that). I've seen this most
common on WPA protected AP's though. 

My next guess would be a wireless card in monitor mode. If you have any
clients that are sending any data, that should pick up the source and
destination IP's and give you an obvious idea of what to start guessing for.

-----Original Message-----
From: pauldotcom-bounces at mail.pauldotcom.com
[mailto:pauldotcom-bounces at mail.pauldotcom.com] On Behalf Of Bert Van Kets
Sent: Thursday, November 12, 2009 4:32 AM
To: PaulDotCom Security Weekly Mailing List
Subject: [Pauldotcom] AP without DHCP

Hi guys,

I was wondering what methods or commands can be used to get past the
following situation:
You access a WiFi AP with WEP encryption, you get the key and can
connect but do not get an IP address. I assume this is due to the use of
fixed IPs only (no dhcp). How do you get past this? How do you get info
in the IP range? Do I need to nMap scan every possible internal IP range???
What if no clients are connected and Mac address filtering is switched
on on top of the lack of dhcp? I luckily do have a client Mac address,
but if I didn't have this it would be an extra hurdle.
My knowledge and experience have encountered a concrete wall. How do I
climb it?

Thanks for any help.

Bert
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com