"With auto-configuration protocols now being added to operating systems and implemented by default in your network devices, hosts are now actively advertising their available attack surfaces to anyone listening on the network. In this session, I will debut my new tool pMap. pMap listens silently and without sending any packets is able to extract information from these advertisements to discover hosts, to perform a port scan, and to fingerprint operating systems and services on these hosts. A multi-purpose tool this can be used to mitigate the risks advertising hosts bring to your environment or to attack the local segment within the enterprise as well as the public arena when these enterprise hosts leave the safety of the network. Well first cover what makes all this possible, then examine typical network traffic to see what is made available to us, and then demonstrations will be given highlighting the use of the tools features in a variety of scenarios from the defensive to the offensive including as part of a remote attack using Metasploit where the tool is deployed as a Metasploit module on a compromised host to allow a silent, undetectable profiling of the remote network. Don't miss it!"