I routinely analyze large 802.11 and 802.1X pcaps for hosts and authentication information. Usually this involves large Wireshark filters, which work, but still require huge amounts of tedious analysis of the filtered packets.
Does anyone know of a NetworkMiner type tool for 802.11/802.1X?
I’d like to quickly enumerate hosts, authentication schemes, and sensitive data in LARGE captures (100K+ packets).
I’ve been searching, but can’t find anything useful.