ScanNow UPnP: Check for vulnerable Networks for Devices

[fredlaso]

A recent research revealed security flaws in the UPnP Protocol, used by the devices like Routers, Printers, etc. Of course the flaws put the user data at a risk of getting stolen or spying. ScanNow is a free tool that lets you check whether your devices are exploitable or not, and help you reduce the risk caused due to these vulnerabilities.
Check for vulnerable Networks for Devices

ScanNow is a free portable tool that lets you scan Universal Plug and Play (UPnP) protocol and checks whether your network enabled devices are ready to face the vulnerabilities or not. It is a very simple tool but performs a very complex task.

Before starting the scan you need to register the software, which seemed very unusual to me as all the fields were compulsory including your phone number, your annual income, etc.

In the very first screen, you need to enter the range of network IP’s that you will like to scan for UPnP devices. If you d o not understand the step, you can simply click Start scan, and it will automatically loads up the IP range in the first step.
Once the scan has started, give it some time to complete, it will not take more than 2-3 minutes. If you want, you can stop the scan in-between too. Once the scan has completed, a report will popup showing you the scan results.

ScanNow Scanning 400x345 ScanNow UPnP: Check for vulnerable Networks for Devices
he report will mention the vulnerabilities, and it will be marked as Exploitable. After mentioning all the possible vulnerabilities, the report comes to an end where it displays the Overview of Results, showing you the exploitable and identified devices within the scanned IP Range.

You can save or copy this report to view it later on. You can use the suggestions to maintain your computer’s security and stay protected from the risks of getting exploited. Remember, the tool cannot fix the issues, as they are related with hardware. It can only suggest preventive measures to avoid risks. To fix the issues you must read your product’s documentation or possibly contact the manufacturer and make the changes yourself, manually.

Overall, the tool is a useful one. One must scan the network to find exploitable devices and take certain actions to avoid the risks of getting hacked. The ScanNow tool is very easy to use, though you need to register it before using.

Click http://www.rapid7.com/resources/free-security-software-downloads/universal-plug-and-play-jan-2013.jsp to download ScanNow for UPnP Protocol.

[Ballistic Gelatin]

Before starting the scan you need to register the software, which seemed very unusual to me as all the fields were compulsory including your phone number, your annual income, etc.

Thanks, but I will gladly pass on this. Even if I populated those fields with false information, I question the true intent of the software's publishers.

[ricktendo64]

Rapid7 nor GRC scan found that I had a vulnerable version of UPnP, but Netalyzr did. I reported it and got a firmware upgrade for my and many other Linksys Smart WiFi routers

http://netalyzr.icsi.berkeley.edu/

You will need Java Runtime Environment or you can use the free Android app