GitHub

A tool to fuzz the upnp protocol of ASUS routers. And most of the code comes from miranda.

Data Generating

Generating data aimed to the action's arguments. As far as I see the UPnP protocol, this is the most fuzzable point. And as if there is no proper point to fuzz. So how to generate fuzzing data? This is the most important thing in fuzzing process.

Fuzzing

OK, nothing to say~ Just normal job

Monitor

Adding a simple monitor is necessary, which can make sure whether the server is down or not.

Exploit

Auto-exploit? No, that's bullshit! We must analyse the data that makes the server down manually.

Let's take a look at the upnp's services of the routers.

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
.idea		.idea
crash		crash
.gitignore		.gitignore
ENUM_HOSTS		ENUM_HOSTS
README.md		README.md
actions.py		actions.py
defs.py		defs.py
fuzz.py		fuzz.py
fuzz_http_xml.py		fuzz_http_xml.py
fuzz_msearch.py		fuzz_msearch.py
monitor.py		monitor.py
structures.py		structures.py
testcases.py		testcases.py
upnp.py		upnp.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Data Generating

Fuzzing

Monitor

Exploit

About

Releases

Packages

Languages

w0lfzhang/upnp_fuzzing

Folders and files

Latest commit

History

Repository files navigation

Data Generating

Fuzzing

Monitor

Exploit

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages