We Have A Deal: we provide the lego bricks, you build cool wireless attacks — Damien Cauquil, Romain Cayre
Date : 04 juin 2025 à 14:45 — 30 min.
Attacks on wireless protocols are as numerous as the tools used to perform them, each being tied to a protocol and implementing one or more attacks. This fragmentation hinders interoperability and code reuse, impacting security research and leading to more fragmentation as researchers need to reinvent the wheel or adapt existing code to other hardware.
In this paper, we standardize attacks on wireless protocols as a combination of eleven attack primitives. We detail how these attack primitives helped us shape a corresponding toolset and how we leverage them to perform complex attacks on real-world wireless networks. We present the design of these tools and the mechanism used to combine them as well as the pros and cons of the chosen mechanisms compared to the theoretical approach.
Finally, we demonstrate how these attack primitives simplify the security analysis of wireless protocols, like Meshtastic, and allow to implement complex attack workflows, illustrated on RF4CE and Logitech Unifying, enabling researchers to develop simple tools that can be combined with our toolset.