Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 22

Thread: bypassing mac filters?

  1. #11
    Member
    Join Date
    May 2011
    Location
    Israel
    Posts
    74

    Default Re: bypassing mac filters?

    Well I must be missing something then, I can spoof an approved MAC addy on a WPA2 network just fine,
    You can spoof data frames when WPA2 is used only when you have recovered a key , otherwise your data frames will be rejected.
    perhaps you have a trial example you would care to share with us .. ?
    Perhaps you should have toroughly read and be able to understand 802.11 standard before you are trying to discredit my post.
    In my post i was only suggesting the methods that could be implemented in order to give more protection against the aircrack attacks.
    Try to broaden and deeper your knowledge because it is lacking at some areas.
    Btw what is your education are you programmer? If you are you should have known how the frames are represented in the driver code how Nic hardware counters could be used to track frame statistics and even scalar values like power measurement could be useful to fight off spoofing (think about this)
    This link only has proven to me what i have stated above that your knowledge is simply not deep enough to even understand my suggestion.
    Go and learn.
    Last edited by iliyapolak; 06-26-2011 at 02:34 PM.
    Scientia ac Labore

  2. #12
    Very good friend of the forum TAPE's Avatar
    Join Date
    Jan 2010
    Location
    Europe
    Posts
    599

    Default Re: bypassing mac filters?

    tut tut.. such attitude .. kinda expected it though..
    of course I am no programmer.. that much should be more than clear by my posts and blog..

    I am learning when time permits and continue to do so, with all respect to others. suggest you try the same.


    Will now stop feeding trolls.

  3. #13
    Member
    Join Date
    May 2011
    Location
    Israel
    Posts
    74

    Default Re: bypassing mac filters?

    By displaying my knowledge am i hurting you?
    Is it forbidden here to be a knowledgeable person?
    I respect other people and i often offer them a helping hand , but sometimes my language is going to be a little bit more advanced if it is offending you please let me know.
    Scientia ac Labore

  4. #14
    Just burned his ISO
    Join Date
    Jun 2011
    Posts
    7

    Default Re: bypassing mac filters?

    Quote Originally Posted by TAPE View Post
    Well I must be missing something then, I can spoof an approved MAC addy on a WPA2 network just fine,
    just set up a test router (Linksys WRT54G) with hidden SSID, WPA2 AES and no problems spoofing.
    (now connecting straight away with WICD.. thats a different story.. sjeesh.. gotta get back to cli)
    and your 'easy' spoofing prevention... doesnt sound so easy !
    perhaps you have a trial example you would care to share with us .. ?



    If you have nothing in the filter.. then there is surely nothing to bruteforce ? All MAC addies should be able to connect ?

    I had a go at it a while ago, forget which type of router I was using at the time, but you should read this
    thread for the response I got from the author of MDK3;
    http://www.backtrack-linux.org/forum...c-filters.html



    Might have another shot with wireshark running to see what's going on exactly.
    Well the mac filter is on but I did not add anyone to the exceptions list, and can't connect so I'm sure its working.

  5. #15
    Very good friend of the forum Gitsnik's Avatar
    Join Date
    Jan 2010
    Location
    The Crystal Wind
    Posts
    851

    Default Re: bypassing mac filters?

    Alright guys, you should probably stop before Amael comes in here with that lock button.

    Strictly speaking, you need to know the password to inject ethernet frames. You can inject wireless frames without knowing the password though (otherwise the disassosc wouldn't work). Those of you with actual networking knowledge should be seeing the bottom two layers of the OSI model right here.

    TAPE wasn't talking about injecting Data frames.
    iliyapolak wasn't talking about injecting Link Layer frames.

    Ergo, you are both right and you are both wrong. iliyapolak you need to go through a few more of the posts to get a feel for how the community tries to interact with each other. It's a manners thing.

    Tape, hey I've been watching your career with some interest. So now you know something else - without a password you can't inject data frames.

    Moreover (I love that word) spoofing is only easily preventable when the device is static and is active on the network, otherwise you would get locked out if you suddenly took your laptop to the rear of the coverage zone (something I frequently do). Unless you are running a fully compliant 802.1X environment and then VPN'ing through the firewall you would put in, you are probably vulnerable to something.

    Congratulations guys you both learned something new.
    Still not underestimating the power...

    There is no such thing as bad information - There is truth in the data, so you sift it all, even the crap stuff.

  6. #16
    Member
    Join Date
    May 2011
    Location
    Israel
    Posts
    74

    Default Re: bypassing mac filters?

    Moreover (I love that word) spoofing is only easily preventable when the device is static and is active on the network
    Yes i agree with you, but as far as i know there is an ongoing research on more advanced counter-spoofing methods like a spectral analysis of various wi-fi chipsets , driver timing analysis and fingerprinting
    also new 802.11w should prevent spoofing of management frames when it is implemented.
    With current 802.11n standard you can spoof management and control frames because of the lack of protection and if there are other means of protections they are not a part of official 802.11 standard.
    Scientia ac Labore

  7. #17
    Just burned his ISO
    Join Date
    Jun 2011
    Posts
    7

    Default Re: bypassing mac filters?

    Well currently I'm not trying to hack wpa/wpa2 with mac filtering in place. Does anyone know of a good program to just hack an open network and bypass the mac filter w/o a client/spoofing? That is what I'm currently trying to do. Thank you again for any help.

  8. #18
    Junior Member
    Join Date
    Aug 2007
    Location
    Aussie
    Posts
    25

    Default Re: bypassing mac filters?

    I don't know of anyway to "bypass" a MAC filter unless you have access to change the database of MAC adresses. Layer 2 filtering does not pass any frames to the higher layers where applications or software maybe vunerable, there is still MAC filtering used in CCNA training and there was no reference as to any issues to it's use on wired networks apart from spoofing.

  9. #19
    Junior Member M00kaw's Avatar
    Join Date
    Oct 2010
    Location
    127.0.0.1
    Posts
    47

    Default Re: bypassing mac filters?

    Quote Originally Posted by funnybob View Post
    Well currently I'm not trying to hack wpa/wpa2 with mac filtering in place. Does anyone know of a good program to just hack an open network and bypass the mac filter w/o a client/spoofing? That is what I'm currently trying to do. Thank you again for any help.
    That does not sound like your own network... Actually, this entire thread sounds like you need help to access a wireless network that does not belong to you. You haven't been able to answer even the simplest questions about the network..

  10. #20
    Member
    Join Date
    May 2011
    Location
    Israel
    Posts
    74

    Default Re: bypassing mac filters?

    That does not sound like your own network... Actually, this entire thread sounds like you need help to access a wireless network that does not belong to you. You haven't been able to answer even the simplest questions about the network.
    Let him practise.
    Scientia ac Labore

Page 2 of 3 FirstFirst 123 LastLast

Similar Threads

  1. Help bypassing DEP windows XP SP3
    By wasto in forum Experts Forum
    Replies: 4
    Last Post: 01-02-2011, 11:52 AM
  2. Bypassing ASP validaterequest?
    By Liuser in forum Experts Forum
    Replies: 2
    Last Post: 08-18-2010, 05:28 PM
  3. Bypassing Firewalls in Ettercap + Wireshark
    By zals07 in forum Beginners Forum
    Replies: 1
    Last Post: 05-27-2010, 09:11 AM
  4. Bypassing Mac filter
    By Isohump in forum OLD Wireless
    Replies: 3
    Last Post: 01-18-2010, 07:33 PM
  5. Replies: 4
    Last Post: 06-17-2009, 01:04 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •