Kismet Wireless

Kismet Forums


Posted by:nightbear
Subject:Determining MAC of wired computers via Wireless Sniffing
Date:05:58:59 25/07/2007

> > > Hi all,
> > >
> > > Suppose i have an AP attached to a LAN. The AP encrypts all wireless traffic with WEP.
> > >
> > > If i use kismet to sniff all wireless packets will i be able to see any MAC addresses of computers attached to the wired network or default gateway?
> > >
> > > Thanks,
> > > RaMatkal
> >
> > Nope. Only MAC adresses on the wireless segment that passes data through that particular AP. The wireless AP is comparable to a switch and a hub in wired talk.
> >
> > I.E. the AP acts as a switch on the wired side, listening for data destined for MAC addresses associated to the AP, then transmit that data through the radio side ("hub"). All data for NIC's associated to the AP can be sniffed, since its transmitted as radiowaves. Data from and too wired PC's on the LAN segment where the AP resides, aren't transmitted by the AP.
> >
> > Dutch
> So this means that there is no ARP traffic on the wireless network which is also sent on the wired network and vice versa... therefore the AP doesnt really act like a switch or hub at all...

according to my experience - no matter what kind of encryption is used - sooner or later ALL MAC addresses of ALL attached nodes show up in Kismet under the "Clients" list of the concerning network no matter if they are connected wireless to the AP or wired to some switch / router behind the AP. simply capture for a while and you see the MAC addresses of the AP, Gateway, servers, wired clients and so on...

Reply to this message