Quote Originally Posted by jon View Post
you're thinking of

-S <IP_Address>: Spoof source address
--spoof-mac <mac address/prefix/vendor name>: Spoof your MAC address

but i'm not sure why since this tells nmap to write the layer 2 frame itself

which goes to the next physical hop, no matter what it is, where it is changed for a subsequent hop
I spent like 10 minutes trying to get the MAC address of rubycalaber.com and it turns out you're right. I'm not sure where I got the impression you can do this (maybe I was scanning a public IP via the loopback from within the same network?) but I concede defeat and admit that I should have known better.

I still believe that the MAC address is no big deal though and think barry is dumb to be worried about it, we both agree that MAC addresses are easy enough to spoof or change and it's not like anyone is keeping a database of who owns what device.