Commit Graph

16970 Commits

Author SHA1 Message Date
Mathy Vanhoef
93441c3e45 fragattacks: avoid python dependency with vulnerability
The py dependency in requirements.txt causes a security warning on
GitHub and attracts automated bug hunters (without the hunters verifying
the relevancy of the finding). Avoid this.

Flaws in py: CVE-2020-29651
Vulnerable versions: < 1.10.0
Patched version: 1.10.0
Description: A denial of service via regular expression in the py.path.svnwc
component of py (aka python-py) through 1.9.0 could be used by attackers to
cause a compute-time denial of service attack by supplying malicious input
to the blame functionality.

This fixes #40
2021-09-06 13:59:31 +02:00
vanhoefm
44b46d4b04
README: alternative to airmon-ng 2021-08-28 16:57:44 +02:00
vanhoefm
19f372500e
README: advice to manually set 5GHz channel first 2021-08-16 22:43:24 +02:00
vanhoefm
1e9c1a0ef8
Merge pull request #32 from ethans/patch-1
Added link to Check Point's advisory
2021-08-06 23:40:38 +04:00
Ethan Schorer
930a19f621
Added link to Check Point's advisory
Added Check Point SK: https://supportcontent.checkpoint.com/solutions?id=sk173718
2021-08-05 12:37:03 +03:00
vanhoefm
5d8682dd2a
Merge pull request #30 from Ma5onic/patch-1
Small ReadMe Correction
2021-07-27 12:55:02 +04:00
Malcolm
0d99a37668
Small ReadMe Correction
updated table description.
2021-07-26 13:25:16 -04:00
vanhoefm
0fcebec0bd
Advisories: add Arlo 2021-07-14 06:37:24 +04:00
vanhoefm
67e72c1417
README: Further clarify A-MSDU tests 2021-06-26 03:01:22 +04:00
vanhoefm
d07958d7f9
Advisories: add texas instruments 2021-06-22 23:22:19 +04:00
Mathy Vanhoef
003b78972e fragattacks: README: clarify A-MSDU tests 2021-06-22 17:37:06 +04:00
Mathy Vanhoef
f27bf12e32 fragattacks: README: clarify ping-frag-sep tests 2021-06-21 23:57:45 +04:00
vanhoefm
e35da72fdf
Advisories: further highlight mistakes in some advisories 2021-06-20 16:03:06 +04:00
vanhoefm
72d4b27d62
Advisories: clarify mistake in NETGEAR advisory 2021-06-20 16:01:48 +04:00
vanhoefm
bea93c049f
fragattacks: create links in example pcaps overview 2021-06-13 17:47:57 +04:00
Mathy Vanhoef
6420cc1314 fragattacks: add pcap for cache attack with full reconnect 2021-06-13 17:46:33 +04:00
vanhoefm
7dcef13aff
Advisories: add OpenWRT 2021-06-07 12:55:29 +04:00
vanhoefm
b2a46b7fa9
Advisories: clarify Ruckus wrong advice 2021-06-07 12:50:34 +04:00
vanhoefm
5ec2121fe4
Advisories: add DD-WRT info 2021-06-07 12:49:20 +04:00
vanhoefm
f6ef185f5a
Advisories: patches for asuswrt-Merlin 2021-06-07 11:52:57 +04:00
vanhoefm
79909202aa
fragattacks: update README about ARP request support 2021-06-05 15:57:45 +04:00
vanhoefm
c430b1dc58
Advisories: update MikroTik 2021-06-04 12:50:57 +04:00
vanhoefm
7f85f28903
Merge pull request #10 from anikitine/patch-1
Advisories: add Keenetic
2021-05-28 06:56:58 +04:00
Alexey Nikitin
bfbecc1774
Advisories: add Keenetic 2021-05-27 22:59:11 +03:00
vanhoefm
2371405ce7
Advisories: fix Microsoft link 2021-05-22 13:46:01 +04:00
vanhoefm
9356f83f7a
Advisories: add Espressif 2021-05-22 12:33:38 +04:00
vanhoefm
561376c2cb
Advisories: update MikroTek 2021-05-20 22:00:11 +04:00
vanhoefm
cd130a809a
Advisories: unify Ruckus/COMMSCOPE 2021-05-20 05:25:10 +04:00
vanhoefm
76e89b4f79
Mitigations: link to MikroTik forum post about RouterOS 2021-05-17 19:24:08 +04:00
vanhoefm
bfb64d91f7
Advisories: add Cambium Networks 2021-05-17 19:12:13 +04:00
vanhoefm
c92e56825f
Advisories: note incorrect mitigation in COMMSOPE FAQ 2021-05-17 05:41:16 +04:00
Mathy Vanhoef
1bc7636768 fragattacks: option to never send QoS data frames
Fixes #5. This option is experimental and may break some tests that
rely on sending QoS Data frames with different priorities.
2021-05-16 22:09:28 +04:00
Mathy Vanhoef
6cb61da4a1 libwifi: add remove_dot11qos function 2021-05-16 22:09:28 +04:00
vanhoefm
e665e2d8ad
fragattacks: add Extreme Networks advisory link
Fixes #6
2021-05-16 18:12:48 +04:00
vanhoefm
4a63b26193
fragattacks: add Huawei and Dell to advisories 2021-05-15 03:46:23 +04:00
vanhoefm
4b77169dcf
fragattacks: link to advisories from the README 2021-05-12 23:38:31 +04:00
vanhoefm
4c277833a3
fragattacks: fix typo in advories 2021-05-12 23:36:03 +04:00
vanhoefm
f908e32746
fragattacks: add ADVISORIES.md overview 2021-05-12 23:27:40 +04:00
vanhoefm
b9dd1bc207
Merge pull request #2 from kees/patch-1
Trivial typo fix
2021-05-12 19:11:19 +04:00
Kees Cook
e31e21dcf6
Trivial typo fix
te -> to
2021-05-12 07:53:31 -07:00
Mathy Vanhoef
2575806958 fragattacks: clarify example pcaps 2021-05-11 18:59:52 +04:00
Mathy Vanhoef
316585952e fragattacks: example network captures 2021-05-11 04:20:35 +04:00
Mathy Vanhoef
c5e2bced40 fragattacks: fix old links in the changelog 2021-05-09 14:37:38 +04:00
Mathy Vanhoef
57ef4189a4 fragattacks: add sha256sum of the live image 2021-05-09 13:24:10 +04:00
Mathy Vanhoef
a021d1ce28 fragattacks: updated info on live image 2021-05-09 11:52:57 +04:00
Mathy Vanhoef
7f93c1cec7 fragattacks: directly track libwifi and not as submodule
This will make it easier for users to clone the repository and will
assure that they always use the correct version of libwifi.
2021-05-08 19:35:48 +04:00
Mathy Vanhoef
95affbcaa9 fragattacks: avoid wordwrap on github 2021-05-08 18:46:39 +04:00
Mathy Vanhoef
ccde9077f6 track latest libwifi 2021-05-08 02:23:32 +04:00
Mathy Vanhoef
5346a3a5d2 fragattacks: kernel 5.11 and 5.12 and device updates 2021-05-08 02:21:33 +04:00
Mathy Vanhoef
5991db531f fragattacks: minor tweak to client.conf 2021-05-07 13:33:01 +04:00