Unbricking and Reflashing the Ubertooth One Clones

Purchased a Ubertooth One Clone from Amazon or Aliexpress that doesn't seem to be working in 2025? Bricked your Ubertooth One? This step-by-step guide shows how to recover it using UART flashing, fix common issues, and verify full Bluetooth sniffer functionality.

PaxCounter (WiFi & Bluetooth Device Counter) For the M5Stack Core2

So I recently added Date & Time functionality to the EvilCore2 project (HERE). I also own a Lillygo LoRa32 (HERE) w/ PaxCounter firmware (HERE) but I don't care about the Lora functionality and I want to integrate it into the Evil-M5Project. First step in that was getting the functionality working which is what this post … Continue reading PaxCounter (WiFi & Bluetooth Device Counter) For the M5Stack Core2 →

Reverse engineering the MISIRUN Instant Print Kids Camera

My tubs of hardware to hack continues to grow and the rediscovery of Woot! (miss the OG Woot!). Although it's in the future, I decided to pick up a few of these cameras as they were on a steep sale. I figured that they weren't going to be groundbreaking but fun to hack, especially as … Continue reading Reverse engineering the MISIRUN Instant Print Kids Camera →

Dumping Firmware from ESP8684

Clear instructions on how to dump firmware from an ESP8684 chipset that I couldn't find an example of anywhere outside of the docs.

Setting up and configuring LibreSDR B210/B220 AD9361 on Windows and Linux

So for a large project I've spent a month or two on I've been delving deeper into embedded device hacking/penetration testing. I've done some hardware engagements and have messed a bit for fun before, but nowhere to this extent. As apart of these escapades I plan to make a bunch of posts of tips & … Continue reading Setting up and configuring LibreSDR B210/B220 AD9361 on Windows and Linux →

ConfiguringWindows Subsystem Linux (WSL) to access USB devices.

Been a minute! Here's a quick walkthrough to setting up USB device sharing for your WSL distro. I know it's nothing fancy but I'm happy to be back to making some posts. Should be many more to come. TBH, I'm not a huge fan of WSL for daily use I prefer full VMs but a … Continue reading ConfiguringWindows Subsystem Linux (WSL) to access USB devices. →

Sniffing Zigbee Traffic Easily with the M5NanoC6 2024

So I've recently been dabbling into more niche hardware/wireless/RF protocols (thanks flipper zero) which is definitely a subject I'm less knowledgeable in. Of course the first time I used aircrack-ng was well over a decade ago now and I messed with NRF when keysniff and mousejacking was first published as well as reading/researching about Bluetooth, … Continue reading Sniffing Zigbee Traffic Easily with the M5NanoC6 2024 →

CVE-2024-32210, CVE-2024-32211, CVE-2024-32212, CVE-2024-32213 LoMag (Integrator/CE) WareHouse Management

The post discusses the discovery of multiple CVEs in LoMag WareHouse Management, including hard-coded credentials, weak hash usage, and SQL injection vulnerabilities. The author provides insights into their discovery process and highlights the insecure coding practices in the application.

CVE-2022-37857, CVE-2022-37163, CVE-2022-37164 Hardcoded Credentials/Weak Password Policies

A location sharing open source server and android client was found to hardcode credentials and allow weak passwords by default (including blank passwords!)

CVE-2022-35142, CVE-2022-35143, CVE-2022-35144 – DoS, XSS and Weak Password Policy in Renato a Markdown powered knowledge base

Multiple new CVEs discovered and disclosed! XSS, DoS and a weak password policy!