The number of IMSI-catchers (rogue cell towers) has been steadily increasing in use by hackers and governments around the world. Rogue cell towers, which can be as small as your home router, pose a large security risk to anyone with a phone. If in range, your phone will automatically connect to the rogue tower with no indication to you that anything has happened. At that point, your information passes through the rogue tower and can leak sensitive information about you and your device. Currently, there are no easy ways to protect your phone from connecting to a rogue tower (aside from some Android apps which are phone specific and require root access).
This project demonstrates how you can create a rogue cell tower detector using a Raspberry Pi and a SIM 900 module. The detector can identify rogue towers and triangulate their location. The demonstration uses a SIM 900 GSM module to fingerprint each cell tower and determine the signal strength of each tower relative to the detector.
SuperSDR allows a realtime view of the spectrum waterfall and audio playback of any KiwiSDR around the world along with a local or remotely controlled CAT transceiver.
Requires pygame, pyaudio, matplotlib, numpy, and scipy.
References the KiwiSDR specifically. Maybe it'll work with others?
The HTTP response headers that this site analyses provide huge levels of protection and it's important that sites deploy them. Hopefully, by providing an easy mechanism to assess them, and further information on how to deploy missing headers, we can drive up the usage of security based headers across the web.
Reproducibly verify assumptions about your network: DNS, available hosts, open ports, TLS configuration; nmap, testssl, and dig/kdig in an Ansible-shaped trench coat.
Rysiek calls it a poor being's personal SHODAN.
A CLI utility which scans websites for broken links. Sitemap aware.
RadioWitness is a P25 public safety radio archive with a web application and support for cryptographically authenticated mirrors through Dat Protocol. Running this software requires two or more RTLSDR radios and one or more local P25 "Phase 1" public safety radio networks.
It looks like reading through the documentation alone will help in building a trunk tracker.
rtl_433 is a generic data receiver, mainly for the 433.92 MHz, 868 MHz (SRD), 315 MHz, 345 MHz, and 915 MHz ISM bands. rtl_433 is written in portable C (C99 standard) and known to compile on Linux (also embedded), MacOS, and Windows systems. Older compilers and toolchains are supported as a key-goal. Low resource consumption and very few dependencies allow rtl_433 to run on embedded hardware like (repurposed) routers. Systems with 32-bit i686 and 64-bit x86-64 as well as (embedded) ARM, like the Raspberry Pi and PlutoSDR are well supported.
LinkFinder is a python script written to discover endpoints and their parameters in JavaScript files. This way penetration testers and bug hunters are able to gather new, hidden endpoints on the websites they are testing. Resulting in new testing ground, possibility containing new vulnerabilities. It does so by using jsbeautifier for python in combination with a fairly large regular expression. The regular expressions consists of four small regular expressions.
Seems like it'd be useful for finding REST APIs to reverse engineer.
RTLSDR-Airband receives analog radio voice channels and produces audio streams which can be routed to various outputs, such as online streaming services like LiveATC.net. Originally the only SDR type supported by the program was Realtek DVB-T dongle (hence the project's name). However, thanks to SoapySDR vendor-neutral SDR library, other radios are now supported as well. Runs on the RasPi just as well as more powerful systems.
A cross platform Python frequency scanning GUI for the OsmoSDR rtl-sdr library.
Seems rather along the lines of gqrx, but in Python.
This project is a software defined radio receiver for these messages. We make use of an inexpensive rtl-sdr dongle to allow users to non-invasively record and analyze the commodity consumption of their household. Designed with ERT-compatible smart meters i mind.
An open source 3d scanner built around multiple RasPi single board computers and an equal number of digital cameras (between 3 and 5, inclusive). This is a fairly complex build, definitely not for beginners.
Software-defined radio receiver application built on GNU Radio with a web-based UI and plugins. In development, usable but incomplete. Compatible with RTL-SDR.
Installation docs: https://shinysdr.switchb.org/manual/installation
Requires more horsepower than a RasPi 0 W can provide.
Written using Python v2.7. Don't think it's been updated to Python3 yet.
A web-based SDR package for multiple users. Tune an SDR with your web browser, listen to what it picks up. Includes demodulators. 2d and 3d waterfall displays. Supports multiple SDRs, including the RTL-SDR. You can also join the sdr.hu radio network if your server is publically available.
In the AUR.
Implemented with Python v2.7 and HTML5.
SHODAN has a service where you can use them to monitor your your stuff if you have an account with API access. Schedule and run scans, get alerts if something new or unexpected appears. Has its own API and CLI tool, too.
Osmedeus allow you automated run the collection of awesome tools to reconnaissance and vulnerability scanning against the target. Webapp, uses Flask. Has a REST API.
An application designed to assist in exploiting SQL injection attacks against applications based upon Microsoft SQL Server. Written in Perl. Fingerprints server, can bruteforce the password on the "sa" account, escalate privileges, create custom stored procedures to wreak havoc.
A utility capable of fingerprinting back-end SQL databases, pulling authentication credentials and schemas, enumerating databases, and generating SQL injection attacks against web applications. Can handle MySQL, Oracle, Postgres, SQL Server, DB2, and other systems.
An open source web server and web application scanner that tests for misconfigurations, bugs, and missing patches. Not designed to be subtle, it's a pen tester's auditing tool through and through.
Ever wanted to listen in on air traffic controller comm traffic?