& SELF:matches &>
Possible Wireless Access Points (WAP) | These aren't guaranteed to be wireless access points, they just have MACs that fall into the right range. Also remember people can hide them under fake MAC addresses as well. |
---|---|
Nodes with multiple active IP addresses | List all the nodes that are using more than one IP, sorted by worst offender. This report is good for finding nodes that are randomly changing IP addresses or abusing DHCP leases. |
<%$c->[1]%> | % }
---|
\ % if ($col eq 'mac' and $last_match->{mac} ne $match->{mac}) { <%$match->{mac}%>\ % } elsif ($col eq 'oui' and ($last_match->{mac} ne $match->{mac})){ <%$match->{oui}|h%>\ % } elsif ($col eq 'match') { <%$MatchMAP{$type} || 'Bad Match'%>\ % } elsif ($col eq 'type') { <& SELF:type_map, type=>$type, match =>$match &>\ % } elsif ($col eq 'time_first') { <& SELF:format_date, date=>$match->{time_first} &>\ % } elsif ($col eq 'time_last') { <& SELF:format_date, date=>$match->{time_last} &>\ % } elsif ($col eq 'location') { % my $loc = $match->{dns} || $match->{switch}; % $loc =~ s/\Q$domain\E//; <% $loc %> (<% $match->{port}%>)\ % } elsif ($col eq 'cnt') { <% $match->{cnt} |h %> % } else { \ % } | % } % $last_match=$match;
OUI | Count | Company |
---|---|---|
<%$search%> | (<%$count%>) | <% $ouis->{$oui} || '' %> |