I am a network engineer and sharky is a great tool for me.
So i think about, how to easily check security in an 802.1x landscape, where often MAC auth is used with legacy or cheap devices like printers.
The idea is, plug in, check, and report.
At the moment i try to do the following:
- first connect to a client device -> i use a printer or VoIP phone
- read the connected MAC adress
- set the looted macadress for the sharkjack
- connect the sharky to the wallsocket and the entire network
- scan with nmap for other devices in the same subnet as i
