MAC Spoofing WiFi Device and Surfing The Net - Beware!!!

[mmusket33]

If you want to spoof your wifi device and then surf the net with kali-linux do not use the following commands!!!!

!!!DO NOT USE!!!

ifconfig wlan0 down
macchanger -m 00:11:22:33:44:55 wlan0
ifconfig wlan0 up



When you type ifconfig after the above commands, the spoofed mac in this example 00:11:22:33:44:55, will be shown !!!BUT!!! when you use Net Work Manager and associate to an AP the spoofed mac dissappears and the original hardware mac returns. Uh oh


We confirmed this with Cain as we ran many man-in-the-middle attacks against ourselves and the HARDWARE MAC was always shown NOT the spoofed mac.


However to correct the problem we used

ifconfig wlan0 down
ifconfig wlan0 hw ether 00:11:22:33:44:55
ifconfig wlan0 up


Now the spoofed mac stays expressed after Network Manger associated to the AP

This was also confirmed with Cain during MITM attacks to test the correction.

These tests were done with an RTL8187 AWUSO36H Alpha Wifi Device

If you want to boost to 30 dBm and spoof the mac of your actual device then:

ifconfig wlan0 down
ifconfig wlan0 hw ether 00:11:22:33:44:55
iw reg set BO
ifconfig wlan0 up
iwconfig wlan0 channel 13
iwconfig wlan0 txpower 30
iwconfig wlan0 rate 1M

The mac code 00:11:22:33:44:55 and the wlan0 are used as examples and can be changed to fit actual conditions by the user.

[mmusket33]

There is a firmware update for realtek ie makers of the RTL8187 AWUSO36H Alpha Wifi Device.

apt-get install firmware-realtek

We are unsure how this will affect mac spoofing with kali linux. Will advise.

Musket Team A

[mmusket33]

Since the firmware update we have been unable to maintain the spoof using the commands listed above as Network Manager overrides the setting. The only way we have found is to use the entry box in the Network manager/edit connections/wireless/ select name then edit name then enter a mac in the Cloned MAC address block in the drop-down menu.

MTB

[mattt]

I have the AWUS036H and cannot get anymore than 20dBm using driver rt18187 how is this possible?

Error for wireless request "Set Tx Power" (8B26) :
SET failed on device wlan1 ; Invalid argument.

[Resistor]

I have the AWUS036H and cannot get anymore than 20dBm using driver rt18187 how is this possible?

Error for wireless request "Set Tx Power" (8B26) :
SET failed on device wlan1 ; Invalid argument.

You're being restricted by your country code settings, which you need to change. Input these commands.

Code:

iw reg set BO

Code:

iwconfig wlan0 txpower 30

[mmusket33]

The info here was gleaned from other bloggs found in the aircrack-ng site and the kali-linux site.

We use these commands in this order and you shouldnot get the error message

ifconfig wlan0 down
iw reg set B0 # ie BO for Bolivia
ifconfig wlan0 up
iwconfig wlan0 channel 13
iwconfig wlan0 txpower 30
iwconfig wlan0 rate 1M

if you want to spoof your mac code

ifconfig wlan0 down
macchanger -r wlan0
iw reg set B0 # ie BO for Bolivia
ifconfig wlan0 up
iwconfig wlan0 channel 13
iwconfig wlan0 txpower 30
iwconfig wlan0 rate 1M


Warning Do not try and spoof your mac code with these commands when using reaver


MTA

[mattt]

You're being restricted by your country code settings, which you need to change. Input these commands.

Code:

iw reg set BO

Code:

iwconfig wlan0 txpower 30

Awesome thanks!

[Resistor]

musket,

hi there, I have two questions. I was wondering if you could post a video demo of this?

If you want to spoof your wifi device and then surf the net with kali-linux do not use the following commands!!!!

!!!DO NOT USE!!!

ifconfig wlan0 down
macchanger -m 00:11:22:33:44:55 wlan0
ifconfig wlan0 up



When you type ifconfig after the above commands, the spoofed mac in this example 00:11:22:33:44:55, will be shown !!!BUT!!! when you use Net Work Manager and associate to an AP the spoofed mac dissappears and the original hardware mac returns. Uh oh


We confirmed this with Cain as we ran many man-in-the-middle attacks against ourselves and the HARDWARE MAC was always shown NOT the spoofed mac.

also, if the router's connet clients section correctly shows the mac address you set, would the problem still be present?



Thanks, cheers.

[mmusket33]

We have noticed a number of firmware updates/upgrades for wireless adapters for kali linux (see /etc/apt/sources.list.) Normal mac spoofing techniques seem to be working again however to insure the spoof(cloned mac address) is holding we suggest.

1. Spoof your mac address then run ifconfig and see if the spoof is present.
2. Connect to the internet using Network Manager
3. Run ifconfig again and see if the spoofed mac still remains.

[MafiaMike]

I'm having the same issue. Lastest version(1.0.6) of Kali running on VirtualBox 4.3.6(I believe)/Extension Pack with an Alfa USB card. It seems like if I stop Network Manager in the terminal, change the MAC address via the "ifconfig wlan0 hw ether" method, and then start Network Manager again, it will keep the spoofed MAC when I connect to the access point...My AP's logs confirmed it.

Definitely something you should test for yourself on your own AP before doing anything where you want/need a spoofed mac.