diff --git a/content/blog/wifi_analysis.md b/content/blog/wifi_analysis.md
new file mode 100644
index 0000000..7c306ac
--- /dev/null
+++ b/content/blog/wifi_analysis.md
@@ -0,0 +1,23 @@
+---
+title: Wifi traffic analysis on a gugelfrei fon
+date: 2022-04-20
+---
+
+Is the gugelfrei fon really successfully degoogled? Is any data sent to the known data sinks? Maybe the IMSI number to the SUPL host? For that I conducted wifi network dump of the android startup procedure. Here you can see in sequence network connectivity check, time sync and download of assistance data for gps (A-GPS).
+
+For the test setup I opened up a wifi hotspot on my desktop with [hostapd](https://wiki.archlinux.org/title/Software_access_point).
+```
+ create_ap <wifi_device> <lan_device> <SSID> <PASSWORD>
+```
+
+Then I just sniffed on `<wifi_device>` with [wireshark](https://www.wireshark.org/).
+
+Tested device is a LG G3 d855 with [recent gugelfrei OS](https://cld.freedomhost.de/index.php/s/afgcJqXoDZQ8RCp).
+
+Results for captivity portal and timeserver:
+![wifi](/images/analysis/wifi_1.png)
+
+SUPL Server are not used. A-GPS data is fetched via XTRA Server:
+![wifi](/images/analysis/wifi_2.png)
+
+No traces of privacy violations here. See [full bootup wifi dump](/images/analysis/bootup.pcapng) for wireshark.
diff --git a/layouts/partials/custom_head.html b/layouts/partials/custom_head.html
index 409448e..a0e06db 100644
--- a/layouts/partials/custom_head.html
+++ b/layouts/partials/custom_head.html
@@ -2,3 +2,4 @@
 <script src="/contact-form/jquery-3.6.0.min.js"></script>
 <script src="/contact-form/form.js"></script>
 {{ end }}
+<script src="https://cdnjs.cloudflare.com/ajax/libs/medium-zoom/1.0.6/medium-zoom.min.js" integrity="sha512-N9IJRoc3LaP3NDoiGkcPa4gG94kapGpaA5Zq9/Dr04uf5TbLFU5q0o8AbRhLKUUlp8QFS2u7S+Yti0U7QtuZvQ==" crossorigin="anonymous" referrerpolicy="no-referrer"></script>
diff --git a/layouts/partials/footer.html b/layouts/partials/footer.html
index d34eb29..b74ae12 100644
--- a/layouts/partials/footer.html
+++ b/layouts/partials/footer.html
@@ -4,3 +4,14 @@
 © 2022, Johannes Winter<br>
 Find credits in the <a href="https://git.gugelfrei.de/websites/wntr/src/branch/main/README.md" target="_blank">gittea</a>
 {{ end }}
+<script>
+const images = Array.from(document.querySelectorAll("img"));
+images.forEach(img => {
+  mediumZoom(img, {
+    margin: 0, /* The space outside the zoomed image */
+    scrollOffset: 40, /* The number of pixels to scroll to close the zoom */
+    container: null, /* The viewport to render the zoom in */
+    template: null /* The template element to display on zoom */
+  });
+});
+</script>
diff --git a/static/images/analysis/bootup.pcapng b/static/images/analysis/bootup.pcapng
new file mode 100644
index 0000000..cf8416d
Binary files /dev/null and b/static/images/analysis/bootup.pcapng differ
diff --git a/static/images/analysis/wifi_1.png b/static/images/analysis/wifi_1.png
new file mode 100644
index 0000000..3762cad
Binary files /dev/null and b/static/images/analysis/wifi_1.png differ
diff --git a/static/images/analysis/wifi_2.png b/static/images/analysis/wifi_2.png
new file mode 100644
index 0000000..30ccfdd
Binary files /dev/null and b/static/images/analysis/wifi_2.png differ