Penetration Testing mailing list archives
Re: remote MAC address discovery?
From: Stephen Friedl <steve () unixwiz net>
Date: Tue, 10 Dec 2002 10:01:32 -0800
Is there any way to discover the MAC address of a device if you're not connected to the local subnet?
In general, no. But sometimes yes.
1) If they have open NETBIOS, this can be fetched as a result of a NETBIOS
namserver query. See my nbtscan tool:
http://www.unixwiz.net/tools/nbtscan.html
2) if they have open SNMP, this can often be queried from the interface.
3) if a *neighboring* machine has SNMP open, you can often query the ARP
table to find it.
Steve
---
Stephen J Friedl | Software Consultant | Tustin, CA | +1 714 544-6561
www.unixwiz.net | I speak for me only | KA8CMY | steve () unixwiz net
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Current thread:
- remote MAC address discovery? Tina Bird (Dec 10)
- <Possible follow-ups>
- RE: remote MAC address discovery? Wolf, Glenn (Dec 10)
- RE: remote MAC address discovery? Rich Pulver (Dec 10)
- Re: remote MAC address discovery? Stephen Friedl (Dec 10)
- Testing Hubs and Switches Julian Young (Dec 11)
- Re: Testing Hubs and Switches Cedric Blancher (Dec 11)
- Re: Testing Hubs and Switches Valgasu (Dec 11)
- Testing Hubs and Switches Julian Young (Dec 11)