Hm, I agree here, however am wondering about what tools they would use to penetrate through the VM and see the real MAC address of the NIC. Basically, if I’m spoofing my MAC and browsing on a VM, how does one look beyond that.
If by some trick outside software can invoke BIOS calls, it can read the data straight off the hardware. The MAC address can exist as a value burned in on each MAC's firmware or ROM; the value exists at a memory address one could query, or might be accessible through a chip in the HW implementing the Ethernet Phy layer, I believe. I'd have to go read old developer datasheets I haven't reference for 15 years to remember what the method is.
Hm, I agree here, however am wondering about what tools they would use to penetrate through the VM and see the real MAC address of the NIC. Basically, if I’m spoofing my MAC and browsing on a VM, how does one look beyond that.
If by some trick outside software can invoke BIOS calls, it can read the data straight off the hardware. The MAC address can exist as a value burned in on each MAC's firmware or ROM; the value exists at a memory address one could query, or might be accessible through a chip in the HW implementing the Ethernet Phy layer, I believe. I'd have to go read old developer datasheets I haven't reference for 15 years to remember what the method is.