Device Discovery via TDDP #9

mweinelt · 2016-11-22T01:37:42Z

It says the TP-Link Device Debug Protocol has the ability to discover devices inside the same broadcast domain. A reference implementation of the general protocol is available at https://github.com/softScheck/tplink-smartplug/tree/master/tddp-client.

GadgetReactor · 2016-11-22T13:30:47Z

Ah thanks so much for this!

mweinelt · 2016-11-23T16:52:11Z

rytilahti · 2016-12-11T19:29:43Z

Device discovery doesn't need TDDP implementation, just a broadcast UDP packet to 255.255.255.255:9999. The devices will reply with usual payloads.

Request payload:
{"system": {"get_sysinfo": None}, "emeter": {"get_realtime": None}}

rytilahti · 2017-03-17T13:31:09Z

This has been implemented (not with TDDP though, but I'd say extra work on this is not worth the effort), so closing for now.

babanaweed · 2018-02-19T10:55:45Z

Please help me with this exploit how to use it.
https://www.exploit-db.com/exploits/40814/

rytilahti mentioned this issue Jan 5, 2017

Add device discovery #25

Merged

rytilahti closed this as completed Mar 17, 2017

Provide feedback