Printable View
Hello,
This is my first post here been fiddling with backtrack and ubuntu for about half a year, getting pretty good at using them both, love them.
My question is (and I hope this is the right place to post it) is it possible to determine the name of a pc using your AP? Like I know you can get the mac from airodump-ng, but is there a way to determine the pc name from that, or another tool?
If the access point is just an access point, not really. If it's the router, then maybe. Some routers will get the hostname of the machines, some won't. Also some machines won't tell the router anyway. If you have the mac and ip, you really don't need the hostname anyway.
If you have the IP address of the device you can determine it's hostname most of the time by running an nmap scan against it nmap [IP]. If you know only the MAC address but not the IP address you can optain this by issuing an injected RARP request (reverse ARP) (inject it using something like scapy and sniff the reply using TCPDump/Wireshark). Failing this you could run an nmap scan of the entire network nmap [networkaddress]/[subnetsize] e.g. nmap 192.168.0.0/24 which will scan every host on the network and return all the hostnames it finds along with other details such as open ports.