I finally gave in and bought a BladeRF. After withdrawing money from my life insurance and the savings intended for a house, I decided to purchase the BladeRF micro A4. The BladeRF is a tool that enables Software-Defined Radio (SDR) on frequencies ranging from 47MHz to 6GHz, with two full-duplex RX TX channels. One of the main advantages of the BladeRF is its compatibility with the majority of open-source radio tools. It is a widely recognized tool in the field, providing extensive documentation and community support. Even though it’s quite common for this type of device, the data processing on an FPGA is remarkable. This feature alone makes it a little gem. Just a small note: I chose a kit with a plastic case, but it’s better to get a metal case to protect the device from interference.In case you’re wondering what to get me for Christmas ;). ...

One of the main goals of purchasing the BladeRF is to delve into GSM hacking, specifically targeting 2G networks (SMS and MMS). This article aims to explore this field, starting with passive reconnaissance as the initial step in our investigation. I am very excited to embark on this journey. However, it is important to note that this activity is legally borderline. I urge you to respect people’s privacy, be mindful of your actions, and avoid intruding into others’ lives. ...

Welcome to the “Road to OSCP” series! Today, we’re diving into the Lame machine from Hack The Box (HTB). This machine is part of the recommended HTB machines for OSCP preparation, curated by “TJNULL.” Let’s get started. Enumeration We’ll start with a simple enumeration using Nmap, which reveals several interesting ports and their associated software versions: The FTP server appears particularly interesting, as it might have a backdoor that allows us to gain a shell: . ...

Welcome to the latest installment of “Road to OSCP”, a blog series chronicling my pursuit of the OSCP certification. In today’s episode, we’ll explore the “perfection” machine on the Hack the Box platform. While this Linux-based machine isn’t typically recommended for OSCP preparation, it’s a recent addition to the platform. Diving into newer machines can provide fresh challenges and learning opportunities. Let’s delve into what makes the “Perfection” machine intriguing and potentially beneficial for our hacking skills. ...

Welcome back to “Road to OSCP”, a series where I share my journey toward obtaining the OSCP certification. In this second episode, we turn our attention to the “Blue” machine on the “Hack the Box” platform. I continue with an other machine in the “TJnull” VM list. This machine is based on Windows, providing another opportunity to hone our skills in a familiar yet challenging environment. Enumeration First, we’ll conduct an nmap scan to identify what services are running on the machine: ...

GNU Radio is a software development platform for software-defined radios (SDR), enabling the design, simulation, and implementation of radio communication systems without the need for specific hardware, using a collection of modular signal processing blocks. GNU Radio is part of the SDR ecosystem, supporting researchers, engineers, and enthusiasts in wireless communication and signal analysis. Installation GNU Radio is distributed on numerous Linux distributions through their repositories. Installing it is very simple (for example, on an Ubuntu system): ...

The objective of this article is to share our experiences with RF hacking. It provides useful insights and practical tips for advancing in the field of RF hacking. This account is based on the study of MISC magazine, particularly the special issue number 29, and my work on previous blog posts about hardware hacking. We will review the encountered problems, the bottlenecks, and the solutions that can help resolve this type of issue. We will review the encountered problems, the bottlenecks, and the solutions that can help resolve this type of issue. ...

Welcome back to “Road to OSCP”, a series where I share my journey toward obtaining the OSCP certification. In this second episode, we turn our attention to the “Blue” machine on the “Hack the Box” platform. Like the previous machine we tackled, “Blue” is based on Windows, providing another opportunity to hone our skills in a familiar yet challenging environment. Enumeration First, we’ll conduct an nmap scan to identify what services are running : ...

It’s the first episode of “Road to OSCP,” a series focused on preparing for the OSCP certification. To kick off this training, I have subscribed to a pentesting training platform called “Hack the Box.” This platform offers numerous machines to pwn, providing a practical, hands-on approach to learning security penetration techniques. I’m starting this series with the “Legacy” machine, which is based on Windows, because my background is stronger in Linux systems. This choice will help me broaden my expertise and challenge my skills in a less familiar environment. ...