Results 1 to 2 of 2

Thread: [BT4] Mac Filter

Hybrid View

  1. #1
    Senior Member
    Join Date
    Feb 2009
    Posts
    153

    Default

    I just have a question on, "What is the best way of receiving an Authentication through aireplay, when a router is MAC filtered?" When I use this command:

    Code:
    aireplay-ng -1 0 -a xx:xx:xx:xx:xx:xx -h 00:11:22:33:44:55 -e Blah mon0
    With a router that is MAC Filtered, I will not receive the Authentication with the above address. On the other hand, when i spoof the Station Mac that is connected to the router I only get up to [ACK] but then the process keeps repeating. I am in best range.

    So what i am basically looking to do is drop the Station MAC which is connected to the router and spoof it on my computer, hopefully succeeding. How would I drop the Station MAC in order for the Authentication to work properly? Is there an attack which will allow me to do this?

    To add, all my tests are from my router. And this is WEP cracking 64/128bit.

    Thank You

    Any comments on this? Been about two days.

  2. #2
    Junior Member otkaz's Avatar
    Join Date
    Jan 2010
    Location
    Houston, TX
    Posts
    38

    Default

    Quote Originally Posted by fossilk1 View Post
    I just have a question on, "What is the best way of receiving an Authentication through aireplay, when a router is MAC filtered?" When I use this command:

    Code:
    aireplay-ng -1 0 -a xx:xx:xx:xx:xx:xx -h 00:11:22:33:44:55 -e Blah mon0
    With a router that is MAC Filtered, I will not receive the Authentication with the above address. On the other hand, when i spoof the Station Mac that is connected to the router I only get up to [ACK] but then the process keeps repeating. I am in best range.

    So what i am basically looking to do is drop the Station MAC which is connected to the router and spoof it on my computer, hopefully succeeding. How would I drop the Station MAC in order for the Authentication to work properly? Is there an attack which will allow me to do this?


    To add, all my tests are from my router. And this is WEP cracking 64/128bit.

    Thank You

    Any comments on this? Been about two days.
    if a client is connected deauth it with
    aireplay-ng -0 5 -a <ap mac> -c <client mac> <interface>
    then inject with the clients mac I usually use -3 which is an arp attack first then try other injection attacks if unsuccessful
    aireplay-ng -3 -b <ap mac> -h <client mac> <interface>
    it can take a while before you start receiving arp
    in other words the only way I know of to inject on a ap with mac filtering is by using a mac that you know is not filtered such as using a clients mac thats connected to the network just deauth them first.

    you can use macchanger to change your mac on your interface to match the unfiltered mac

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •