Indigo Domotics

Ran across this tool today from Princeton... well, not originally developed by them but packaged and refined. Anyway, seems like an easy way to spy on the devices that may be spying on you -- obviously there are more sophisticated approaches, but seems a good start.

https://iot-inspector.princeton.edu/

Going to try it out when I have a few minutes...

Nice find. I’ll have to check that out.

+1 that it’s Mac only (Windows waitlist)!


Sent from my iPhone using Tapatalk

Thanks, awesome site and tool.

Just one little question... WT is my NAS doing accessing domains in Brazil, Russia, Hungary and many many others, 614 in total in under an hour!.

My first reaction was malware, but its tiny data volumes, and I dont have remote access turned on, no uPnP and only port open to world on ubiquiti router is for VPN.

Whilst some look "strange" many are carrier sites, comcast etc, and others are genuine news sites, although most of the sites have ? after them, so maybe not so atrange? Apparently plex uses linode.com for something, in case anyone else sees that site and wonders..

I've run QNAP malware tool and nothing comes up.

https://inspector.cs.princeton.edu/shar ... f8780ca1c5.

I looked at the site and actually downloaded the software. But I chickened out on completing the install for fear that this is potential malware. I was concerned about the need to provide an admin password and the possibility that this could be used to do other things in the background while installing. While this claims to come from Princeton, I can't tell if the software actually does come from there, which would be comforting. I'll wait for more reports from others before proceeding with it on my system.

Many tech sites and security blogs linking to it.

https://www.schneier.com/blog/archives/ ... tor_t.html. As example


Sent from my iPhone using Tapatalk

Following- this is (potentially) great. Can you give me a basic 1-line of whether this has functionality that Wireshark doesn’t have?

It does it all for you.
Click on the static link I shared to see my results. Sets up all devices in one go and monitors over time (whilst running)
Tracks sites and data transferred


Sent from my iPhone using Tapatalk

siclark wrote:

It does it all for you.
Click on the static link I shared to see my results. Sets up all devices in one go and monitors over time (whilst running)
Tracks sites and data transferred


Sent from my iPhone using Tapatalk

Awesome and thank you, will check out!


MunDMC
Fitter. Happier. More productive.

I'm keen to see someone else with a qnap Nas run it. I expect smart TVs to be chatting to random ad servers etc but but not my NAS drive.


Sent from my iPhone using Tapatalk

RogueProeliator wrote:

Ran across this tool today from Princeton... ....

Nicely done. Though, not really anything you couldn't do with tcpdump and a little help from Python or Perl -- and a lot of free time. Though, every time I need to use tcpdump, the learning curve always seems to start from zero.

Reply from QNAP.

Thank you for contacting QNAP.

The NAS will try to connect to some sites to verify internet connection.
And firmware live update and download files including apps are hosted on Amazon Web Service CDN CloudFront, which consists of a lot of servers located in different countries in order to provide the best download speed.

The IP addresses seems to be legit per checking.





Sent from my iPhone using Tapatalk