MAC spoofing
As we have learned, spoofing is simply tricking the target into believing traffic or a request is originating from another device or a trusted source. Both IP and MAC addresses can be spoofed quite easily since the TCP/IP protocol suite was not designed for modern-day security threats.
Note
To prevent MAC address spoofing within a network, network security professionals can implement Dynamic ARP Inspection (DAI) on Cisco IOS Switches.
To generate and assign a random MAC address to an interface, we must do the following:
- Logically turn down the interface using the
ifconfig wlan0 down
command:
- Verify the current and permanent MAC addresses on the specified interface using the
macchanger –-show wlan0
command:
- Use the
macchanger --random wlan0
command to generate and assign the MAC to ourwlan0
interface:
- Re-enable the interface using the
ifconfig wlan0 up
command:
Note
Additionally, you can use the macchanger –-help
command to view all the options available.
You will obtain the following...