Hi ,
Recently I was testing kali linux tools on wifi networks , and i have succeeded in getting the keys for some of these networks , after getting in i usually try first IP in range so i can get to the router page and locate the gateway easily , for others i needed additional tools to analyze the network and scan it to find the router .
But for one of these networks , i saw a different scenario and it goes like this :
- When i try to monitor the network using airmon-ng or Kismet or any other tools , i find that the mac for the AP is XX:XX:XX:XX:90:12 which belongs to TP-LINK.
- After getting the hand shake and cracking the password , and joining the network and trying to located the router "XX:XX:XX:XX:90:12" i can't find it on the network at all !!!
- Instead i find another gateway with different mac address "XX:XX:XX:XX:5B:CC" which belongs to RouterBOARD !
tried a lot of tools to monitor or scan the network or to create a broadcast to fill the arp table , i can find the devices along with mac and ip addresses ,but not for the AP with the mac "XX:XX:XX:XX:90:12" !! , also tried to get to the router page by domain names such "tplinkwifi.net" or "tplinklogin.net" ,but still no luck at all .
so my problem is the main router doesn't appear on the network for some reason is there anything that i can do in such situation to get the ip of the this device so i can find the router login page ?!
Regards