Have you noticed that your internet has become slower and your data is running out suspiciously quickly? Perhaps someone else has connected to your Wi-Fi network. According to KasperskyOne in five routers in Russia has vulnerabilities that allow attackers to access the network without the owner's knowledge. Even if you set a password, neighbors or guests could see it, and hackers could brute-force it using specialized software.
In this article you will learn how check the list of connected devices to your Wi-Fi through router settings, mobile apps, and system commands. We'll cover methods for different router models (TP-Link, ASUS, Keenetic, MikroTik), operating systems (Windows, macOS, Android) and even without access to the admin panel. And finally, a checklist of actions to take if you discover an "unnecessary" device.
You don't need to be an IT specialist: all methods are thoroughly illustrated and adapted for beginners. Let's start with the simplest: checking through the router's web interface.
1. Checking via the router's web interface (universal method)
The most reliable method is to log into your router's control panel. It displays a complete list of devices connected to the network, including their MAC addresses, IP addresses and even models (if the router supports the function Device Identification).
This guide is suitable for most models, but the menu paths may vary slightly. If your router isn't listed below, look for a section with names like DHCP Clients, Connected Devices or Local area network.
- 🔌 TP-Link: Go to
Basic Setup → Local Network → DHCP → DHCP Client List. - 🖥️ ASUS: Open
Network Map → ClientsorLocal Network → DHCP Server. - ⚡ Keenetic: Go to
Devices → Device List. - 📡 MikroTik: IN
IP → DHCP Server → LeasesorWireless → Registration Table. - 🌐 D-Link: Paragraph
Status → Local Network → DHCP Client Table.
If you don't know the IP address of your router, look for it on the sticker on the case (usually 192.168.0.1 or 192.168.1.1) or run the command in Windows:
ipconfig | findstr "Default Gateway"
⚠️ Attention: Some routers (eg. Zyxel Keenetic) hide the MAC addresses of guest devices for privacy purposes. In this case, use the alternative methods in the following sections.
2. Using mobile applications (for Android and iOS)
If you're too lazy to access your router settings or don't have access to a computer, use specialized apps. They scan your network and display all connected devices, sometimes even listing the manufacturer (for example, Apple, Samsung, Xiaomi).
Best free utilities:
- 📱 Fing (Android/iOS) — identifies devices by MAC, shows open ports and vulnerabilities.
- 🔍 NetScan (Android) - Scans the network and saves connection history.
- 🛡️ WiFi Guard (Android) - Notifies you about new devices on the network.
- 🍎 Network Analyzer (iOS) - simple interface with traffic visualization.
Example of work in Fing:
- Install the application and open it.
- Click
Scan— the program will automatically detect your network. - In the list of devices, pay attention to the columns
MACAndProducer(manufacturer). Unknown brands or devices with names likeandroid-123456should be a warning sign.
⚠️ Attention: Apps may misidentify the device model if the manufacturer hasn't registered the MAC address in the database. Always verify the information in the router's web interface.
Compare the number of devices with the actual number of gadgets in the house
Pay attention to unknown MAC addresses
Check if devices are connected to the guest network
Save a screenshot of the list for further analysis-->
3. Commands for Windows, macOS, and Linux (Advanced Method)
If you prefer to work without third-party programs, you can use the operating system's built-in tools. This method is suitable for advanced users, as it requires knowledge of the command line.
For Windows perform in Command line (Win + R → cmd):
arp -a
You'll see a table with IP and MAC addresses. To filter only active devices on your network, first find out its range (e.g., 192.168.0.0/24) and use the command:
for /L %i in (1,1,254) do ping -n 1 192.168.0.%i | find "Answer"
On macOS or Linux enter in terminal:
nmap -sn 192.168.0.0/24
If nmap not installed, install it via brew install nmap (macOS) or sudo apt install nmap (Linux).
| OS | Team | What does it show? |
|---|---|---|
| Windows | arp -a |
ARP table with MAC and IP addresses |
| macOS/Linux | nmap -sn 192.168.0.0/24 |
List of hosts on the network with MAC and manufacturer |
| Linux | ip neigh |
Neighboring devices on the local network |
| Windows | net view |
Devices in the workgroup (not always a complete list) |
A critical detail: MAC addresses can be spoofed, so don't rely on them alone. Always combine this method with checking through the router.
4. Traffic analysis with Wireshark (for experts)
Wireshark — a powerful network traffic analyzer that allows you to see all data packages, passing through your network. This is a last resort if other methods have failed or you suspect a targeted attack.
How to use:
- Download Wireshark from the official website and install.
- Select the network interface (Wi-Fi adapter) and click
Start. - Enter in the filter
wlan.addr == [your_router_MAC]to filter out unnecessary traffic. - Look for suspicious MAC addresses in the column
SourceorDestination.
Advantage Wireshark - the opportunity to see, What data is the unknown device transmitting? (For example, whether it sends packets to external servers). The downside is the high learning curve: without knowledge of network protocols, it's difficult to understand the logs.
How to detect hacker activity in Wireshark?
Suspicious signs:
- ARP spoofing: duplicate ARP requests with the same MAC but different IPs.
- DNS tunneling: unusually high traffic on port 53 (DNS).
- Connections to unknown IPs: especially to countries you don't interact with (for example, China if you're in Russia).
- Brute-force attacks: multiple connection attempts to port 22 (SSH) or 3389 (RDP).
5. Checking via the guest network (if enabled)
Many routers support guest network — a separate access point with limited rights. If you set it up but forgot the password or left it open, strangers could connect to it.
How to check:
- 🔗 Go to your router settings (see Section 1).
- 📡 Find the section
Guest networkorGuest Network. - 👥 Check the list of connected devices—it may be separate from the main network.
For example, in ASUS The guest network is managed in Guest Network → Client List, and in TP-Link - V Additional settings → Guest network.
⚠️ Attention: Some routers (eg. Keenetic) by default allow guests access to local resources (printers, network drives). Disable this option in the settings if you don't need it.
6. Monitoring via router cloud services
Premium router manufacturers (ASUS AiProtection, Netgear Armor, TP-Link HomeCare) offer cloud-based network monitoring services. They not only display connected devices but also block suspicious activity.
Examples of functions:
- 🛡️ ASUS AiProtection: scans for vulnerabilities, blocks attacks and displays a network map indicating device types (smartphone, laptop, IoT).
- 🔒 TP-Link HomeCare: Sends notifications about new devices and unusual traffic.
- 📊 Netgear Armor: integrated with Bitdefender to protect against viruses and botnets.
To activate cloud monitoring:
- Register on the manufacturer's website (for example,
router.asus.com). - Link the router to your account.
- Enable the security feature in the web interface (usually in the section
SecurityorParental Control).
The downside of cloud services is that they can collect data about your activity. If privacy is more important than security, consider using them in favor of local methods.
7. What to do if you find an unknown device?
Found a gadget online that shouldn't be there? Follow these steps:
- Check yours: Make sure it's not a guest's phone, smart speaker, or new IoT device (e.g. Xiaomi Mi Band or Amazon Echo).
- Change your Wi-Fi password: Use a complex combination of 12+ characters with numbers, letters, and special characters. Example:
k7#pL9!mQ2$vR5. - Enable MAC filtering: In the router settings (
Wireless Mode → MAC Filter) add only your devices to the whitelist. - Update your router firmware: Outdated software versions contain vulnerabilities. Download the latest firmware from the manufacturer's website.
- Disable WPS: Technology
Wi-Fi Protected Setupvulnerable to brute-force attacks. Disable it inWireless Network Settings → WPS. - Set up a guest network: If you need to share the Internet with guests, create a separate access point with limited access.
If a suspicious device continues to appear after changing the password, your router may have been hacked. In this case:
- 🔄 Reset your router to factory settings (button
Reseton the back panel). - 🔐 Set it up again with a different network name (
SSID) and password. - 🛡️ Install alternative firmware (DD-WRT, OpenWRT), if your model is supported.
FAQ: Frequently asked questions about connected devices
Is it possible to find out who exactly is connected to my Wi-Fi (name, address)?
No, you can only determine the device model and manufacturer using the MAC or IP address (for example, Apple iPhone or Samsung SmartTVTo identify a person, data from the internet provider is required, which is provided only upon request by law enforcement agencies.
Why are "unknown" gadgets with names like "android-xxxx" showing up in the device list?
These are the standard names assigned by the system. Android when connecting to the network. If you don't recognize the device, check:
- Has a friend/neighbor's phone connected to your network?
- Are there any smart devices in the house (lamps, sockets, cameras) that could connect automatically?
If the device is suspicious, change your Wi-Fi password and see if it appears again.
Can my neighbor connect to my Wi-Fi if I hide the network name (SSID)?
Hiding SSID Doesn't protect against connection! An attacker can:
- See your network in the list of available ones (many devices show hidden networks).
- Use programs like Wireshark to scan the air.
- Select the network name if you know the model of your router (many use standard ones)
SSIDlikeTP-Link_1234).
Hiding SSID It only makes it more difficult for legitimate users to connect, but it doesn't stop hackers.
How to block a device by MAC address?
Instructions for most routers:
- Log into your router's web interface.
- Find the section
Wireless Mode → MAC Filter(orWireless MAC Filtering). - Add the device's MAC address to the blacklist.
- Save the settings and reboot the router.
IN Keenetic this is done in Devices → Device List → Block.
Is it true that smart bulbs and plugs can be dangerous for Wi-Fi?
Yes, devices IoT (Internet of Things) often have weak security:
- 🔌 Many people use standard passwords (
admin/admin). - 🕳️ They don't update the firmware automatically.
- 🕵️ May be part of a botnet (for example, Mirai), if they were hacked.
Recommendations:
- Place IoT devices in guest network.
- Update their firmware regularly via the manufacturer's app.
- Disable access to them from the Internet (close the ports in the router settings).