[nsp-sec] SSDP Amp Scanner

[Schiel, John]

I found a scapy script to do some SSDP Amp Scanning. I don't have the 'how to do this' yet but I just got access to a Kali box that I can put this on.

The script is located here:

http://packetstormsecurity.com/files/127994/SSDP-Amplification-Scanner.html

I'm going through an instance of a SSDP UDP amp attack against our home page but I don't have all of the data put together yet. I have an idea of the request that is being made and also an idea of what the response is but I want to run through one test to verify my hypothesis.

If anyone else has done the ground work and can share your thoughts, I'd appreciate it.  Otherwise, I hope to have my results this week and I should be able to share.

Regards,

John A Schiel
Security Architect
Ofc. 720-387-3382
tw telecom inc.
10475 Park Meadows Drive
Littleton, Colorado 80124




-------------



The content contained in this electronic message is not intended to constitute formation of a contract binding tw telecom. tw telecom will be contractually bound only upon execution, by an authorized officer, of a contract including agreed terms and conditions or by express application of its tariffs. This message is intended only for the use of the individual or entity to which it is addressed. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this message is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the sender of this E-Mail or by telephone.