SSDP Phishing

Pose as network devices to phish Windows users!



DevKitty can be flashed to act as a SSDP (Simple Service Discovery Protocol) device, connecting to a Wi-Fi network appearing to nearby Windows users as a network-attached drive.

This attack can be used to redirect users to phishing pages when they click on the drive. We created a demo you can find here

You can check out the guide below to try the attack yourself:

← Data Visualization
πŸ—ΊοΈ | Wigle →