Universal Plug and Play (UPnP) works by discovery and advertisements so that the network is aware of what services and devices are available. SSDP enables clients to discover network services with little or no static configuration. Lisa Bock dives into SSDP, which can be used for passive discovery of network devices.
- View Offline
- [Voiceover] In today's Internet of Everything…all types of devices, routers, media players, phones,…cameras, and servers, are connected to the internet.…A self-configuring network enables devices to join,…leave, and learn about other devices.…Universal Plug and Play works by discovery…and advertisements so that the network…is aware of what devices are available.…Simple Service Discovery Protocol was drafted in late 1999.…
This enables clients to discover network services…with little or no static configuration.…We'll see that SSDP can be used for passive discovery…of network devices and it's not so simple.…I'm at this webpage here on CloudShark and it's going…to show us a nice capture that someone has shared.…There's a lot more information here,…but let's take a look at one of these.…Number four, which I am at packet number four,…and this is an SSDP protocol packet.…
Interestingly enough let's take a look at this.…First of all we see that this is…Hypertext Transfer Protocol, hmm.…We see that HTTP, which normally carries webpages…
This course investigates the scanning tools and techniques used to obtain information from a target system, including specially crafted packets, TCP flags, UDP scans, and ping sweeps. Lisa Bock discusses how hackers can identify live systems via protocols, blueprint a network, and perform a vulnerability scan to find weaknesses. She also introduces some of the tools and techniques that hackers use to counter detection via evasion, concealment, and spoofing. In addition, learn how to reduce the threat of tunneling, a method hackers use to circumvent network security.
Note: Our Ethical Hacking series maps to the 18 parts of the EC-Council Certified Ethical Hacker (CEH) exam (312_50). This course maps to the 03 Scanning Networks domain.
- Scanning overview
- Port scanning countermeasures
- Scanning and querying DNS
- Scanning with ICMP
- Mapping (or blueprinting) a network
- Scanning for vulnerabilities
- Using tools such as hping and NetScan
- Evading detection
- Concealing your network traffic
- Preventing tunneling