ChrisMcMStone / wifi-learner
A tool to infer the security handshake state machine of a given WiFi router. Useful for vulnerability analysis
☆15Updated last year
Related projects: ⓘ
- A framework for parsing binary data.☆16Updated 2 years ago
- A tool which allows an attacker to change the time on a GPS-enabled NTP server by using spoofed NEMA sentences☆24Updated 7 years ago
- Debugger with hardware breakpoints and memory watchpoints for BCM4339 Wi-Fi chips☆54Updated 6 years ago
- ☆29Updated 8 months ago
- Tools and scripts for firmware reverse engeneering☆48Updated 4 years ago
- 802.15.4 Fuzzer☆21Updated 5 years ago
- evil mass storage *AT90USBKEY2 (poc-malware-tool for offline system)☆29Updated last year
- Open tools for side-channel analysis and related techniques. Currently, this repository contains: 1) A near-field EM probe amplifier circ…☆34Updated 9 years ago
- Wireshark dissector for Broadcom specific H4 diagnostic commands☆23Updated last year
- PoC Exploit for AOSP UserDictionary Content Provider (CVE-2018-9375)☆21Updated 5 years ago
- ☆17Updated last year
- A USB armory based USB sandbox☆20Updated 7 years ago
- ☆12Updated 7 years ago
- LoRaWAN session cracker - A PoC for exploiting weak or shared Application Keys☆14Updated 2 years ago
- The Damn Vulnerable Router Firmware Project☆30Updated 6 years ago
- Miscellaneous one-off scripts, exploits, tools, sample code, ...☆10Updated 5 years ago
- Additional material for our paper "Breaking all the Things - A Systematic Survey of Firmware Extraction Techniques for IoT Devices" (CARD…☆16Updated 5 years ago
- Format string exploit generation☆9Updated 9 years ago
- Ghidra loader module for the Mobicore trustlet and driver binaries☆27Updated 4 years ago
- Main repository to pull all Cisco related projects.☆15Updated 7 years ago
- NSA Playset implant for bridging airgaps without radio☆16Updated 8 years ago
- Awesome list for baseband modem resources.☆12Updated 6 years ago
- Flash-BASH is a Raspberry Pi based tool that uses a multiplexer to "glitch" a target device into a privileged open state.☆22Updated 3 years ago
- Exploitation on different architectures (x86, x64, arm, mips, avr)☆34Updated 5 years ago
- nü-map: a somewhat-more-modern (expeirmental) derivative of umap2 for modern FaceDancer☆22Updated 8 months ago
- From IoT Pentesting to IoT Security☆22Updated 5 years ago
- Automated dynamic security analysis by emulation of IoT firmware images in CI-pipelines.☆11Updated 3 years ago
- Bluetooth PIN and LINK-KEY Cracker☆46Updated 10 years ago
- A medley of PoCs and exploits☆1Updated 5 years ago
- Firmware analysis website + API☆42Updated 3 years ago