I have a rogue device on my network with an electric imp mac address. It provides no hostname via DHCP.
I’ve tried creating an account and logging in and searching in the portal by mac address, but the portal says no devices found with that mac.
An aggressive nmap shows no open ports / running services on the host.
Packet captures show DNS queries to two domains (the host has been blocked from internet access now)
Traffic was seen going to 52.36.44.57:993 (TLS)
The mac address of the device 0c:2a:69:0d:66:7b
If someone has any idea how to figure out what device this mac belongs to, or better yet, what vendor purchased a chip/board with this mac, that’d be amazing.
Edit: I should mention that’s a WiFi device, not hardwired.