Re: Ping a mac address

From: kuisma (kuisma@ping.se)
Date: Sun Dec 04 2005 - 13:24:58 EST

• Next message: Thor (Hammer of God): "Re: Ping a mac address"
• Previous message: rob.dijkshoorn@planet.nl: "Re: Ping a mac address"
• In reply to: Roni Bachar: "Ping a mac address"
• Next in thread: Dario Ciccarone (dciccaro): "RE: Ping a mac address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Tricky;

a) The MAC address may no have an IP address at all
b) The MAC address may send IP frames for many IP addresses (a router
for example)

You can do a few tricks;

1) Broadcast Reverse ARP for that MAC address, but it's likely not to
give any response at all.

2) Send that MAC address a packet with YOUR OWN IP as target, and see if
you get it back in return. You then know that the MAC address exists, it
can speak IP and have IP forwarding capabilities.

3) Send that MAC address an ICMP Echo on IP broadcast address(es). You
MAY get a reply, and the reply may give away the primary (or closest) IP
address, or it may return the broadcast address as source. But remember,
an ICMP Echo Request destined to an IP broadcast or IP multicast address
MAY be silently discarded according to rfc792.

Good luck,
-- Mikael Kuisma, Ping Research

Roni Bachar wrote:

>Hi again
>
>I guess I didn't explain my self good.
>What I want is tool that i can do:
>Ping 00:0F:EA:8C:FC:5A
>
>
>And in return get the ip of this mac
>
>
>
>
>
>
>
>
>
>------------------------------------------------------------------------------
>Audit your website security with Acunetix Web Vulnerability Scanner:
>
>Hackers are concentrating their efforts on attacking applications on your
>website. Up to 75% of cyber attacks are launched on shopping carts, forms,
>login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
>futile against web application hacking. Check your website for vulnerabilities
>to SQL injection, Cross site scripting and other web attacks before hackers do!
>Download Trial at:
>
>http://www.securityfocus.com/sponsor/pen-test_050831
>-------------------------------------------------------------------------------
>
>
>
>
>

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• text/x-vcard attachment: kuisma.vcf

• Next message: Thor (Hammer of God): "Re: Ping a mac address"
• Previous message: rob.dijkshoorn@planet.nl: "Re: Ping a mac address"
• In reply to: Roni Bachar: "Ping a mac address"
• Next in thread: Dario Ciccarone (dciccaro): "RE: Ping a mac address"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:14 EDT