/home

In May 2006 I presented a paper called "Universal Plug and Play: Dead simple or simply deadly" at the SANE 2006 conference in Delft, The Netherlands (awarded with the best paper award), where I discussed a lot of security problems with the Universal Plug and Play protocol and quite a few UPnP implementations.

Now, in 2008 very little has changed. A lot of routers are still shipped with grave security bugs, including involuntary onion routing, remote root exploits and complete remote control over firewalls. New exploits are popping up, where bugs in Universal Plug and Play are exploited using a buggy Flash plugin in a web browser, turning a mostly local attack into something a lot more dangerous. And that is just the beginning.

In the coming few weeks this site will be revamped to include a lot of information on how to hack using Universal Plug and Play. Please check the news section for updates.

Disclaimer

This site is not a cracking site, but meant as a platform to tell about my research of security risks that exist in UPnP implementations that are running on millions of devices, that many people have as a central hub in their network and completely trust and to increase awareness about these risks, so the devices will get fixed and we will have a slightly safer Internet.

• UPnP workings
• UPnP IGD hacking
  • IGD stacks
  • Vulnerable IGD devices
  • Possibly vulnerable IGD devices
  • IGD Annoyances
  • Getting access to DNS with UPnP
• UPnP A/V hacking
• UPnP RemoteUI hacking
• Unresearched UPnP hacks
• Downloads
• News
• Media
• Contact
• Links