Software and Tools

View all on GitHub


The C-based Firmware Patching Framework for Broadcom/Cypress Wi-Fi Chips that enables Monitor Mode, Frame Injection and much more.

Source Code


OpenDrop is an open Apple AirDrop implementation written in Python.

Source Code Python Package Project Website


Open Wireless Link (OWL) is an open implementation of the Apple Wireless Direct Link (AWDL) ad hoc protocol for Linux and macOS written in C.

Source Code Project Website


OpenHaystack is a framework for tracking personal Bluetooth devices via Apple's massive Find My network.

Source Code Release


Bluetooth experimentation framework for Broadcom and Cypress chips.

Source Code


Broadcom and Cypress firmware emulation for fuzzing and further full-stack debugging.

Source Code


iOS Bluetooth in-process fuzzing.



Wireshark dissector for the iPhone Intel baseband protocol called Apple Remote Invocation (ARI).

Soruce Code


A LoRaWAN Security Evaluation Framework for COTS Hardware

Source Code


Vulnerabilities in Linux Wi-Fi

We found five CVEs in the Linux Wi-Fi stack, with some of them dating back to kernel version 5.1 (2019). Our PoCs confirm that they lead to DoS, and might also lead to RCE in rare cases.

CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722

Read more... post Risikozone podcast (German)


Talon AD7200 Sector Patterns

Antenna Sector Patterns as obtained by Measurements in our CoNEXT '17 paper.

Sep 18, 2017

Myo Keylogging Dataset

EMG and IMU sensor data while typing on a keyboard from our IMWUT '21 paper.

Nov 24, 2021

FIDO2 Smartphone Lab Study Dataset

Pseudonymous dataset containing 22 variables for each of our 87 participants from our between-groups lab study comparing FIDO2 roaming and platform authentication on smartphones, as described in our CHI '23 paper.

Jan 25, 2023