MAC Hacking

[anjan14]

My network administrator has permitted router access to only a certain list of mac addresses. Earlier, he blocked my mac address so i changed it with TMAC, but now rather than blocking a list of macs, the router only allows a certain list of macs, so changing my MAC address isnt doing me any good. Any thoughts?

[Phage]

Find out which MAC addresses he allows? Alternatively, hack the shit out of the net admin and white list yourself. (there's a chance he might notice that, take care.)

[madf0x]

Yep, the best way is to borrow someone elses mac address.

Really the best way to do so is to fire up a sniffer, wireshark or whatev you prefer and see  whose able to actually use the network and build yourself a catalog of valid addresses. Then just use an address when one of them goes offline, that way you avoid any mac address collisions that may pop up, in the event that the network admin is particularly savvy the collisions from borrowing a mac address in use will be quite noticeable and press him to take further action.

[anjan14]

I've got a sniffer that is scanning all the devices that are connected to the wi-fi, as he disabled the filter as of now for some reason i dont know. I guess i can use any of their MAC addresses using TMAC cause when the filter is enable my PC can't even connect to the wifi so basically I wouldnt even be able to go to 192.168.1.1.
  The devices are pretty much online 24*7 so if i changed to one of them would there be an error?

[zenith]

The devs are online but are they actually being used for something, or is it just someone who leaves their computer on 24/7? If a disconnect wouldn't be noticeable, you could always deauth the shit out of a device not in use, and then use it's MAC.

Alternatively, if you can get access to the net admin, whitelist a MAC other than your own permanent MAC, make note of it, and then use that one to connect (so when it is discovered, it's not your actual MAC).

Or, you know, just ask your network admin if you can have access? Maybe bring him/her a coffee to put them in a good mood?

[anjan14]

Since i'm connected right now is there anyway i can hack the dns server @ 192.169.1.1? I'm sort of an amateur hacker. So, How would I deauth a device. Ive sniffed out the admins mac which is whitelisted but I'm not sure when hes using the internet and when hes not

[proxx]

I dunno what to say, usually we don't appreciate this kids.

[madf0x]

You're starting to get into homework territory. Id recommend actually learning what youre doing before pressing forward before you get into oopsies-this-net-admin-isn't-an-idiot-and-reaches-for-his-phone-to-dial-the-local-FBI-office-territory.

If it's a wifi network as seems implied, you'd deauth them by send deauth packets. Aircrack does this just fine and guides abound if you google enough. Will say sending deauth packets to mac address you intend to use has amusing results(amusing for me, not for you trying it) so I highly do not recommend it.

For the filter, couldve been a timed thing, temporary, or maybe you were just plain wrong about why you couldn't connect. As for hacking the dns server, depends on what the goal is by hack. As in different attacks net you different types of access with different degrees of success. If this is a wifi network I will say from experience that at least  half of the wifi routers ive come across has had a webserver with either http basic auth or a simple web portal(okay like all of them, but half vulnerable to what im describing next). The basic auth tend to give you some hint about the model of the wifi router and a web portal tends to outright state it, and its simple from there to look up a default username and password for the device. Most prevalent ive seen is good ole admin:admin, especially on linksys routers. This will let you in the admin page and reconfigure the wifi router. Most of the time at least. Other times you're mostly SOL unless you know the ISP that provisioned the device. I've yet to come across a leased wifi router that did not have a maintence backdoor for telnet/ssh, but finding the username and password tends to be slightly more involved than a simple google search(though once you got one, you know itll be good for like ever, pwned out of the box).

and proxx what can I say, I seem to have been in a generous mood lately.

[anjan14]

i'm actually quite sure that the reason i cant connect is due to mac filtering and its a web portal as the js pop up box says  Linksys E1200.
  I've got an Ubuntu rig as well and I've got backtrack, and i just downloaded aircrack for my primary windows rig as well so would it be possible to deuath a device without having to use my ubuntu pc? If yes, can you give ma tut link? Thanks

[madf0x]

Nope, not doing your homework like I said. Now Im sad for being nice cause it seems like you didn't read my reply carefully. also if that pop up box asked for a username and password, and redirected you to a forbidden page when you gave it wrong creds than that was a http basic auth.

[anjan14]

Oh thanks, im sorry I didnt read it properly so if deauth is a big no than is there a way i can hack the http basic auth and add my mac to the list of allowed ones?

[proxx]

Oh thanks, im sorry I didnt read it properly so if deauth is a big no than is there a way i can hack the http basic auth and add my mac to the list of allowed ones?

[madf0x]

Oh thanks, im sorry I didnt read it properly so if deauth is a big no than is there a way i can hack the http basic auth and add my mac to the list of allowed ones?

This is great, all answers should be memes.