Hey everyone yesterday I was at a grocery store and I noticed suspicious WiFi networks and Bluetooth networks. I am quite tech savvy so I decided to investigate thinking it was probably just some skid. But when I opened Wireshark I saw the mac addressees for Cisco Merkari (A relatively advanced DPI program) , along with multiple other enterprise grade tools such as Fortinet and VMware. I have collected pcaps for both my Bluetooth and WiFi interfaces with Wireshark(available upon request). Does anyone have any idea could this be a government contractor? Or could it just be spoofed cause its relatively easy to spooph Mac addresses.
Definitely a good point and I could be over thinking it. Personally I'm a Hobbyist who is not yet complete with the education to enter the industry, So you definitely know more than me . Do Cisco routers ever randomize there bssid, cause looking at the pcap files the Mac addresses of completely different vendors even competetitiors like ubiquity are all using spectrum network handles could this be a clusterfuck of different routers or just a Cisco cluster randomizing there bssid?