Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PEN-TEST] Changing MAC address on Win2k

From: Shoten <shoten () starpower net>
Date: Tue, 13 Feb 2001 14:51:06 -0500
Kevin's point was that the MAC addresses of packets get changed every time
they go through a router/firewall/proxy.  Unless you're on the local net of
the computer you're talking to, there is no way they will know what your MAC
address is.

----- Original Message -----
From: "Nelson Brito" <nelson () SECUNET COM BR>
To: <PEN-TEST () SECURITYFOCUS COM>
Sent: Saturday, February 12, 2000 11:46 AM
Subject: Re: [PEN-TEST] Changing MAC address on Win2k



kevin Timm wrote:


would it really give you better anonymity if there is any sort of router
in between the networks?


I don't know, and never test it, but in Windows NT you can do this with
Nathan D. Faber's "Either.exe" app:
http://packetstorm.securify.com/9901-exploits/either.exe

It's a good idea read Kingpin's(L0pht) text about MAC Addres Cloning:
http://packetstorm.securify.com/docs/infosec/mac_address_cloning.pdf

Sem mais,
--
Nelson Brito
"Windows NT can also be protected from nmap OS detection scans thanks
to *Nelson Brito* ..."
              Trecho do livro "Hack Proofing your Network", página 93
Previous By Date Next
Previous By Thread Next

Current thread: