Sometimes you have to get IP-address from the network and when there is DHCP server it’s pretty easy but sometimes when all devices have static IP-address and there is no DHCP server you might have a little problem to find out which IP-range they are using on this network.
There is one really nice and usefully software to find out which IP-range there is in the use.
http://nixgeneration.com/~jaime/netdiscover/ (This tool is included on Linux distribution which is made for penetration testing called BackTrack Linux)
I’m not sure why they say “Netdiscover is an active/passive address reconnaissance tool, mainly developed for those wireless networks without dhcp server, when you are wardriving.” on their website… IMHO you don’t need that when you are WarDriving. You might need that if you are trying to attact to somebody’s network which is ofcourse illegal you should never do that. I find use for this tool on support peoples and pentesters too.
Start netdiscover on passive mode so it’s not going to send anything it’s just listening:
netdiscover -i wlan1 -p
More coming soon…