Advanced BLE Scanner with RPA / IRK Tracking

A Bluetooth Low Energy BLE scanner for Flipper Zero that supports Resolvable Private Address RPA resolution. It discovers nearby BLE devices, tracks each device by MAC address, logs signal strength RSSI history, device name, first/last seen timestamps, and packet count. The scanner features a...

EUVD-2018-17610

Malware in sbrugna...

EUVD-2018-3881

Malware in sbrugna...

EUVD-2023-49911

Malicious code in bioql PyPI...

CVE-2023-45619

There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI Aruba's access point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...

Siemens Scalance W1750D Improper Input Validation (CVE-2023-45619)

There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI Aruba's access point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...

Arbitrary file deletion

There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI Aruba's access point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...

CVE-2023-45619

There is an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI Aruba's access point management protocol. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to...

CVE-2023-45619

CVE-2023-45619 affects Aruba networks: the RSSI service (PAPI) on Aruba access points contains an arbitrary file deletion vulnerability. Successful exploitation allows deletion of arbitrary files on the underlying OS, which could interrupt normal operation and impact the device’s integrity. Conne...

PT-2023-29599 · Aruba · Aruba Access Point

Name of the Vulnerable Software and Affected Versions: Aruba access point affected versions not specified Description: The issue is related to an arbitrary file deletion vulnerability in the RSSI service accessed by PAPI, which is Aruba's access point management protocol. Successful exploitation ...

Sniffle - A Sniffer For Bluetooth 5 And 4.X LE

Sniffle is a sniffer for Bluetooth 5 and 4.x LE using TI CC1352/CC26x2 hardware. Sniffle has a number of useful features, including: Support for BT5/4.2 extended length advertisement and data packets Support for BT5 Channel Selection Algorithms 1 and 2 Support for all BT5 PHY modes regular 1M, 2M...

Short beacon analysis on the NHS iOS Tracking application

We recently helped the BBC with a piece on the new NHS COVID-19 tracking application. Concerns were raised by some about the ability for the app to track interactions while it was running in the background. There had been some discussion that suggested two iOS devices running the app whilst...

Security update for hostapd (moderate)

openSUSE Security Update: Security update for hostapd Announcement ID: openSUSE-SU-2020:0222-1 Rating: moderate References: 1056061 Cross-References: CVE-2017-13082 CVE-2019-9494 CVE-2019-9495 CVE-2019-9496 CVE-2019-9497 CVE-2019-9498 CVE-2019-9499 Affected Products: openSUSE Leap 15.1 openSUSE...

CVE-2018-9581

In WiFi, the RSSI value and SSID information is broadcast as part of android.net.wifi.RSSICHANGE and android.net.wifi.STATECHANGE intents. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

Information disclosure

In WiFi, the RSSI value and SSID information is broadcast as part of android.net.wifi.RSSICHANGE and android.net.wifi.STATECHANGE intents. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

CVE-2018-9581

In WiFi, the RSSI value and SSID information is broadcast as part of android.net.wifi.RSSICHANGE and android.net.wifi.STATECHANGE intents. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...

Android RSSI Broadcast Information Disclosure

Blog post here: https://wwws.nightwatchcybersecurity.com/2018/11/11/cve-2018-9581/ NOTE: This bug is part of a series of three related Android bugs with the same root cause: CVE-2018-9489, CVE-2018-9581 and CVE-2018-15835. A presentation covering all three bugs was given at BSides DE in the fall ...

Counting People Through a Wall with WiFi

Interesting research: In the team's experiments, one WiFi transmitter and one WiFi receiver are behind walls, outside a room in which a number of people are present. The room can get very crowded with as many as 20 people zigzagging each other. The transmitter sends a wireless signal whose receiv...

Google Android Qualcomm WLAN Over-the-Border Access Vulnerability

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA, with Qualcomm WLAN being one of the components used. Qualcomm WLAN is a wireless LAN component developed by Qualco...

Software Defined Radio Attack Tool: RFCrack

RFCrack is my personal RF test bench, it was developed for testing RF communications between any physical device that communicates over sub Ghz frequencies. IoT devices, Cars, Alarm Systems etc… Testing was done with the Yardstick One on OSX, but RFCrack should work fine in linux. Current support...