CableTap public disclosure documents.
Switch branches/tags
Nothing to show
Clone or download
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
doc Whitepaper, nmap scripts and vulnerability details. Jul 29, 2017
src Whitepaper, nmap scripts and vulnerability details. Jul 29, 2017
readme.md Whitepaper, nmap scripts and vulnerability details. Jul 29, 2017

readme.md

CableTap

Public advisories, white paper, and slide deck, for CableTap: Wirelessly Tapping Your Home Network, as presented at DEF CON 25.

Marc Newlin
marc@bastille.io
@marcnewlin

Logan Lamb
logan@bastille.io

Chris Grayson
chris@websight.io
@_lavalamp

Documents

DEFCON-25-Marc-Newlin-CableTap-Slides.pdf
DEFCON-25-Marc-Newlin-CableTap-White-Paper.pdf
Vulnerability Details

Tools

fastcgi_fingerprint.nse
Nmap NSE script for identifying FastCGI services

management_request
Binary file that can be used with ZGrab to identify FastCGI services. The command is invoked as follows:

zgrab --port 1026 --input-file targets --data management_request --output-file zgrab_1026.json --timeout 3

Resources

https://bastille.net/research/vulnerabilities/cabletap/