Clear instructions on how to dump firmware from an ESP8684 chipset that I couldn't find an example of anywhere outside of the docs.
Dumping Firmware from ESP8684
CVE-2025-25727,CVE-2025-25728,CVE-2025-25729 Multiple Vulnerabilities found in BossComm OBD2 Tablet
Continuing my growth in the realm of hardware hacking, IoT and embedded penetration testing, I have purchased too many devices to perform some (mostly light) reverse engineering. Before going further, here are the required details for CVE references: CVE-2025-25727 Affected Product and Version: IF740 - Firmware Versions: 11001.7078 & 11001.0000 (Confirmed) & System Versions: 6.25 … Continue reading CVE-2025-25727,CVE-2025-25728,CVE-2025-25729 Multiple Vulnerabilities found in BossComm OBD2 Tablet
CVE-2025-25730 Developer Options and USB Debugging Authorization Bypass in Motorola Droid Razr HD (XT926)
Read about why and how I found CVE-2025-25730 - Developer Options and USB Debugging Authorization Bypass in Motorola Droid Razr HD (XT926)
Sniffing V2X/DSRC with LibreSDR B210/B220 AD9361 on Linux
Continuing with the last post, here's how to conifgure the LibreSDR B210/B220 to sniff V2X/DSRC traffic. First lets install some dependencies: sudo apt install gnuradio gnuradio-dev cmake libsndfile1 libsndfile1-dev Next lets follow this awesome GitHub Repo's instructions Now within GNURadio Companion open the following: /opt/gr-iee802-11/examples/wifi_phy_hier.gcr Now run it then exit GNURadio and reopen it. Now … Continue reading Sniffing V2X/DSRC with LibreSDR B210/B220 AD9361 on Linux
Setting up and configuring LibreSDR B210/B220 AD9361 on Windows and Linux
So for a large project I've spent a month or two on I've been delving deeper into embedded device hacking/penetration testing. I've done some hardware engagements and have messed a bit for fun before, but nowhere to this extent. As apart of these escapades I plan to make a bunch of posts of tips & … Continue reading Setting up and configuring LibreSDR B210/B220 AD9361 on Windows and Linux
ConfiguringWindows Subsystem Linux (WSL) to access USB devices.
Been a minute! Here's a quick walkthrough to setting up USB device sharing for your WSL distro. I know it's nothing fancy but I'm happy to be back to making some posts. Should be many more to come. TBH, I'm not a huge fan of WSL for daily use I prefer full VMs but a … Continue reading ConfiguringWindows Subsystem Linux (WSL) to access USB devices.
Sniffing Zigbee Traffic Easily with the M5NanoC6 2024
So I've recently been dabbling into more niche hardware/wireless/RF protocols (thanks flipper zero) which is definitely a subject I'm less knowledgeable in. Of course the first time I used aircrack-ng was well over a decade ago now and I messed with NRF when keysniff and mousejacking was first published as well as reading/researching about Bluetooth, … Continue reading Sniffing Zigbee Traffic Easily with the M5NanoC6 2024
CVE-2024-32210, CVE-2024-32211, CVE-2024-32212, CVE-2024-32213 LoMag (Integrator/CE) WareHouse Management
The post discusses the discovery of multiple CVEs in LoMag WareHouse Management, including hard-coded credentials, weak hash usage, and SQL injection vulnerabilities. The author provides insights into their discovery process and highlights the insecure coding practices in the application.
Wireless Attack Vectors Against Automobiles
Something that piqued my interest earlier in my cybersecurity studies was wireless attacks on vehicles. A friend reached out claiming her car had been broken into, sans keys. And... she had video of it. I had heard the reports and I had read a few articles. But I had never had a chance to see … Continue reading Wireless Attack Vectors Against Automobiles
Introducing Sherlock GPT Holmes
Started my journey into LLMs and AI. While I do some real work with Jan AI, I created a custom GPT. Might add some custom functionality but if not, it's still useful for offensive cyber security! I made sure it tries to do what you ask first and always offer to generate code for you … Continue reading Introducing Sherlock GPT Holmes