UPnP standards and specifications

• UPnP Forum
• UPnP Implementors Corporation
  

UPnP software

• Linux IGD - IGD stack
• miniupnpd - IGD stack
• GUPnP - UPnP framework for GNOME
• Miranda - UPnP administration tool

UPnP hacking

• GNUcitizen

These people made that infamous UPnP hack using Flash. Granted, it only works with some routers (forget Broadcom based devices, the URLs they use can change per reboot), but it is still a cool hack, that shows that LAN security can be perverted.

• sourcesec paper (PDF)

UPnP books

• UPnP Design by Example

This book from Intel Press is currently the only book I know of that describes UPnP in technical detail. The focus is quite on the implementation side instead of the protocol site. Although it is a bit old it is still a valuable research if you want to dig into UPnP.

• UPnP workings
• UPnP IGD hacking
  • IGD stacks
  • Vulnerable IGD devices
  • Possibly vulnerable IGD devices
  • IGD Annoyances
  • Getting access to DNS with UPnP
• UPnP A/V hacking
• UPnP RemoteUI hacking
• Unresearched UPnP hacks
• Downloads
• News
• Media
• Frequently Asked Questions
• Contact
• Links