A repo for TPM sniffing greatness

5G NR Attacks against Qualcomm and Mediatek smartphones. Fuzzer included⚡

Bluetooth Forward and Future Secrecy Attacks and Defenses (BLUFFS) [CVE 2023-24023]

A tool that bypasses PN553 signature protection

circuitcellar-EmbeddedSystemEssentials

Voltage glitching exploit tool against the CC2540 family of chips to bypass readout protection EMFI Voltage Glitching Fault Injection

Documenting the USB packet format of the WCH CH347

HTML/JS process simulation interacting with a modbus device

Experiments with the Top 20 Secure PLC Coding Practices

Implementations of the GEA-1 and GEA-2 (GPRS Encryption Algorithm) stream ciphers in C, Python and Rust.

Files used for reproducing Fuzzware's experiments

Clone a voice in 5 seconds to generate arbitrary speech in real-time

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

Colin O'Flynn's Hacakday talk at Remoticon 2021 support repo.

libsigrok stacked Protocol Decoder for TPM 2.0 & TPM 1.2 transactions from an SPI bus. BitLocker Volume Master Key (VMK) are automatically extracted.

SiLabs C8051F34x code protection bypass

SiLabs C8051F34x code protection bypass

A compilation of fault injection software countermeasures tests, a whitepaper detailing their implementation and benefit, and slides to a presentation on them.

Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes

CatSniffer is an original multiprotocol and multiband board for sniffing, communicating, and attacking IoT (Internet of Things) devices using the latest radio IoT protocols. It is a highly portable…

One-stop TLS traffic inspection and manipulation using dynamic instrumentation

This repository contains a set of InternalBlue patches for the BCM4375B1 Bluetooth controller, allowing to sniff and inject Zigbee, Mosart and Enhanced ShockBurst packets from a Samsung Galaxy S20 …