Bonjour/Zeroconf is used to automatically configure and connect to networked devices like printers on a LAN and is widely deployed in offices and homes. This talk gives an introduction to the Zeroconf standard and shows how it’s vulnerable to a man-in-the-middle attack.
The talk will show how Zeroconf can be exploited to allow a man-in-the-middle attack on any Zeroconf enabled device. This allows you to intercept anything from print jobs to admin panel passwords.
Bio:
I'm an open source hacker. I enjoy mad science hacks and working with network protocols. My current programming language of choice is Node.js and I teach programming by organising or mentoring local NodeSchool events around the world.