-
Notifications
You must be signed in to change notification settings - Fork 0
About
It was created as my bachelor thesis and because vulnerability like the Touchlink one should not even exist!
There are two notable related projects.
Killerbee exists but it does not provide tools for ZigBee Touchlink. We use their cryptographic functions.
Z3sec existed and was able to attack Touchlink. But it is Python 2, GNU Radio 3.7 and has dead dependencies so it is unusable on modern distributions (Ubuntu 20.04 LTS...22.04 LTS coming). We also provide other features like creating ZigBee networks and filtering attacks based on destination IEEE address.
For this to work, it was needed to revive scapy-radio and gr-zigbee for latest versions of GNU Radio (3.8...3.9 and 3.10 coming). ZigBee Light Link (and this means Touchlink) packet support in Scapy is based on and extends the implementation featured in this fork of scapy-radio.
Have a wonderful day (ᵔᵕᵔ)