Since more than a few people were interested in current technology related to UpNp, <br><br>here&#39;s some of the features of this dangerous, yet mostly open protocol:<br><br>Miranda is one of the oldest tools used for upnp discovery.  <a href="http://www.securiteam.com/tools/6N0012KN5Q.html">http://www.securiteam.com/tools/6N0012KN5Q.html</a><br>
<br><a href="http://www.ethicalhacker.net/content/view/220/24/">http://www.ethicalhacker.net/content/view/220/24/</a><br><br>On a more interesting note, upnp can actually be used as an attack vector:<br><a href="http://www.gnucitizen.org/blog/hacking-with-upnp-universal-plug-and-play/">http://www.gnucitizen.org/blog/hacking-with-upnp-universal-plug-and-play/</a><br>
<br>Which has been exposed at both 2600 and DefCon as early as 2001.<br><a href="http://www.upnp-hacks.org/upnp.html">http://www.upnp-hacks.org/upnp.html</a><br><br>The most common current use of upnp as an attack vector involves Linksys &quot;routers&quot;:<br>
<a href="http://homecommunity.cisco.com/t5/Wireless-Routers/Hackers-Using-Linksys-Wireless-Router-to-Break-In-Through-The/m-p/330103">http://homecommunity.cisco.com/t5/Wireless-Routers/Hackers-Using-Linksys-Wireless-Router-to-Break-In-Through-The/m-p/330103</a><br>
<br>As you can see, any of you wanting to do research in this area, could easily come upon some real world cracks or at least a few bugtraq entries.  Perhaps enough to present next year at one of the security Cons?<br><br>
<br> <a href="http://www.obnosis.com/" target="_blank">http://www.obnosis.com</a><br>

<b><font size="1">Catch My MetaSploit &amp; IP CAM Surveillance<br>Presentations @ ABLEConf.com in April!</font></b><br>
<br><br><br><br><br><br><br><br><br><br><br><br><br><br>