Thursday

Recreating nRF24 greater than 32 byte payload issue with nRF52840

 Recreating nRF24 greater than 32-byte payload issue with nRF52840

A D.O.S. attack against nRF24L01P that do not validate Dynamic Payload Sizes

 I made a video demonstrating how to send 33 byte payloads to the nRF24L01P and either cause the device to flush its RX buffer, or create a denial of service attack for any devices that do not validate Dynamic Payload sizes.

 

I find it interesting that the nRF24L01P devices accept these payloads at all, as well as sending an ACK to the transmitting device.

 

at
Labels: , , , , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Using the lwIP stack with RF24Ethernet and RF24 radios - Another experiment in progress

 Using the lwIP stack with RF24Ethernet and RF24 radios Another experiment in networking   So I finally got some time to play around with th...

  • (no title)
     Arduino: Using the full potential of NRF24L01 radio modules A New, Optimized Fork of the RF24 Radio Library: High speed data transfers an...
  • Automation/IoT with NRF24L01+ and MQTT
    Automation/IoT with Arduino, RPi, NRF24L01+ and MQTT Control and monitor Arduino remotely with mobile devices Overview: Please se...
  • (no title)
    HB-100 / GH1420 10.25GHz Microwave/Doppler Radar Motion Sensor w/Arduino I picked up some of these modules out of curiosity, as these ...