Software and Tools

View all on GitHub

Nexmon

The C-based Firmware Patching Framework for Broadcom/Cypress Wi-Fi Chips that enables Monitor Mode, Frame Injection and much more.

Source Code

OpenDrop

OpenDrop is an open Apple AirDrop implementation written in Python.

Source Code Python Package Project Website

OWL

Open Wireless Link (OWL) is an open implementation of the Apple Wireless Direct Link (AWDL) ad hoc protocol for Linux and macOS written in C.

Source Code Project Website

OpenHaystack

OpenHaystack is a framework for tracking personal Bluetooth devices via Apple's massive Find My network.

Source Code Release

InternalBlue

Bluetooth experimentation framework for Broadcom and Cypress chips.

Source Code

Frankenstein

Broadcom and Cypress firmware emulation for fuzzing and further full-stack debugging.

Source Code

ToothPicker

iOS Bluetooth in-process fuzzing.

ToothPicker

ARIstoteles

Wireshark dissector for the iPhone Intel baseband protocol called Apple Remote Invocation (ARI).

Soruce Code

ChirpOTLE

A LoRaWAN Security Evaluation Framework for COTS Hardware

Source Code

CVEs

Vulnerabilities in Linux Wi-Fi

We found five CVEs in the Linux Wi-Fi stack, with some of them dating back to kernel version 5.1 (2019). Our PoCs confirm that they lead to DoS, and might also lead to RCE in rare cases.

CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722

Read more... seclists.org post Risikozone podcast (German)

Datasets

Talon AD7200 Sector Patterns

Antenna Sector Patterns as obtained by Measurements in our CoNEXT '17 paper.

Sep 18, 2017

Myo Keylogging Dataset

EMG and IMU sensor data while typing on a keyboard from our IMWUT '21 paper.

Nov 24, 2021

FIDO2 Smartphone Lab Study Dataset

Pseudonymous dataset containing 22 variables for each of our 87 participants from our between-groups lab study comparing FIDO2 roaming and platform authentication on smartphones, as described in our CHI '23 paper.

Jan 25, 2023