You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A quick comparison against the most recent Wirehsark OUI lookup file reveals the potential to add > 1000 additional entries to the mac_vendor.txt lookup file.
While the origin of the mac_vendor.txt is not known to me, I assume it is based on a similar source (e.g. Wirehsark manuf file, IEEE OUI file or another derivative).
Using the Wirehsark manuf file is suggested as the basis as it incorporates data from multiple source and provides the short / long vendor names, as expected by the existing implementation.
The following features could be useful:
Manual refresh on demand
Optionally, automatic refresh as part of the WiFi plugin init
Optionally x2, the ability to retrospectively lookup vendors for devices previously marked as "Unknown"
This should minimise the potential shortcomings around being able to recognise vendors for recently manufactured devices.
The text was updated successfully, but these errors were encountered:
Brilliant, thanks for doing this. Over the weekend at avery busy location I had a few thousand "unknown" devices - so it's about time I update that file. I created the mac_vendor.txt from the Wireshark list, but almost a year ago.
Also, great idea on the auto-repopulation. Added to ToDo.txt.
No worries, thanks for merging. Also, the number of unknown devices may in part be related to the absence of FCS check in scapy, as some mangled MACs and SSIDs come through every now and then.
If the auto-repopulation is a go, I might get another request in to add this as a cmd argument.
A quick comparison against the most recent Wirehsark OUI lookup file reveals the potential to add > 1000 additional entries to the mac_vendor.txt lookup file.
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=blob_plain;f=manuf;hb=HEAD
While the origin of the mac_vendor.txt is not known to me, I assume it is based on a similar source (e.g. Wirehsark manuf file, IEEE OUI file or another derivative).
Using the Wirehsark manuf file is suggested as the basis as it incorporates data from multiple source and provides the short / long vendor names, as expected by the existing implementation.
The following features could be useful:
This should minimise the potential shortcomings around being able to recognise vendors for recently manufactured devices.
The text was updated successfully, but these errors were encountered: