Fixed Minidwep-GTK Ignores MAC Spoofing

Discussion in 'Xiaopan Support' started by Perrine Soutou, 22 Jul 2012.

  1. Perrine Soutou

    Perrine Soutou New Member

    Joined:
    13 Jul 2012
    Messages:
    6
    Likes Received:
    0
    where an argument to the air<>-ng suite need the hardware MAC of the wireless adapter and this has been spoofed with

    Code:
    Select All
    sudo ifconfig wlan0 down sudo ifconfig wlan0 hw ether 00:11:22:33:44:55 sudo ifconfig wlan0 up
    the minidwep-gtk program ignore the spoofed MAC and send the real MAC.

    Reproduce by starting minidwep from terminal and observe tty output from /usr/local/bin/minileafdwep/minidwep-gtk.sh when e.g. calling

    Code:
    Select All
    aireplay-ng -F -2 -p 0841 -c ff:ff:ff:ff:ff:ff:ff -b $ap_mac -h $client_mac ...
    The -h argument is the TRUE ethernet MAC :eek:

    Caused by method used to retrieve adapter MAC ?

    function monitor_start() in minidwep-gtk.sh

    Code:
    Select All
    cat /sys/class/net/$interface/address>$path/card_mac card_mac=`tail -1 $path/card_mac|cut -c1-17|tr "a-z" "A-Z"` echo $card_mac>$path/card_mac card_mac=`head -1 $path/card_mac`

    Tested on zd1211rw driver. Seen in versions 30419 and 30513 ( same code).
     
  2. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,096
    Likes Received:
    1,195
    :eeks someone has been reading the Bug Report Etiquette thread :) good stuff. TCB13 would be pleased.

    I know that once I change my MAC Address it gives off some error, but that error (can't remember the exact error given) is a false positive. My MAC address was changed. It works with FeedingBottle, haven't tried with Minidwep-GTK but I will in a few days to see if I can replicate / fix the problem.

    FeedingBottle MAC Change.png

    These are the commands I use to change my MAC address
    Code:
    Select All
    # Change Mac Address sudo airmon-ng stop wlan0 sudo iwconfig wlan0 sudo ifconfig wlan0 down sudo macchanger --mac 00:11:22:33:44:55 wlan0 sudo ifconfig wlan0
     
    • Like Like x 1
  3. Perrine Soutou

    Perrine Soutou New Member

    Joined:
    13 Jul 2012
    Messages:
    6
    Likes Received:
    0
    I may try macchanger- thank you.

    Using minidwep-gtk, I see it try to create first mon0, then mon1 - so it look like it is dirty about unwinding monitor interface for some button presses on the GUI. That may explain why it pick up the real MAC from /sys/class/net/mon0/address not /sys/class/net/wlan0/address. Using

    Code:
    Select All
    sudo ifconfig wlan0 hw ether 00:11:22:33:44:55
    change /sys/class/net/wlan0/address but /sys/class/net/mon<x>/address always contain the REAL MAC.

    These are not real files - you get an IO error if you try

    Code:
    Select All
    cd /sys/class/net/mon0 sudo chmod 644 address sudo echo "00:11:22:33:44:55" > address
    spoofed MAC manually.
     
  4. Crackerz Wave

    Crackerz Wave The Dictator
    Staff Member Moderator VIP

    Joined:
    20 May 2012
    Messages:
    650
    Likes Received:
    128
    is that new feedingbottle?
     
  5. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,096
    Likes Received:
    1,195
    3.2.3 on DishingTech BackTrack 5 R2 Edition.
     
  6. faizuldin

    faizuldin Well-Known Member

    Joined:
    14 Jul 2012
    Messages:
    33
    Likes Received:
    1
    why beini 1.2.5 dont include this minidwep?
     
  7. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,096
    Likes Received:
    1,195
  8. faizuldin

    faizuldin Well-Known Member

    Joined:
    14 Jul 2012
    Messages:
    33
    Likes Received:
    1
    dont you know a command to run a minidwep?
     
  9. Crackerz Wave

    Crackerz Wave The Dictator
    Staff Member Moderator VIP

    Joined:
    20 May 2012
    Messages:
    650
    Likes Received:
    128
    just click the mi idwep on the dock
     
  10. Mr. Penguin

    Mr. Penguin Administrator
    Staff Member Admin Moderator VIP

    Joined:
    18 May 2012
    Messages:
    3,096
    Likes Received:
    1,195
    The link I gave you has the command.
    Version 1.2.5 there is no dock icon, you must launch from rootshell.
     
  11. Crackerz Wave

    Crackerz Wave The Dictator
    Staff Member Moderator VIP

    Joined:
    20 May 2012
    Messages:
    650
    Likes Received:
    128
    ok, sorry...i misunderstand, just type this in root shell
    Code:
    Select All
    minidwep-gtk
     
  12. faizuldin

    faizuldin Well-Known Member

    Joined:
    14 Jul 2012
    Messages:
    33
    Likes Received:
    1
    ok,i got it
     
Loading...
  • About Us

    We are a community mixed with professionals and beginners with an interest in wireless security, auditing and pentesting. Feel free to check out and upload resources.


    You can also find us on: Twitter and Facebook

  • Donate to Us

    Did you find our forums useful? Feel free to donate Bitcoin to us using the form below. Those who donate the equivlent of $10 USD or more will be upgraded to VIP membership. Don't have Bitcoin? Use your credit card to GO VIP here. Don't want to fork out some coin? There are other ways to GO VIP. Bitcoin: 1LMTGSoTyJWXuy2mQkHfgMzD7ez74x1Z8K