PrincessPi/h00th00t
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5 Commits 1 Branch 0 Tags
deba94878e3e0d89326764da50b3317161a7e44d
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
PrincessPi deba94878e doot
2025-08-07 10:07:01 -06:00
h00th00t.py
initial commit via gitinitshit
2025-08-07 09:34:47 -06:00
README.md
doot
2025-08-07 10:07:01 -06:00
stolas-headdesk.gif
doot
2025-08-07 10:07:01 -06:00

README.md

h00th00t

Sub-Byte Binary Underflow in WiFi Devices

Warning: Test With Extreme Care

Summary

Sending WiFi beacons where the SSID is set to some non-byte number of bits and a poorly matching SSID length breaks many random WiFi devices in range.

Some devices freeze, some reboot, some break, some brick.
Results are superfically non-deterministic and further study is required.

In theory, it could be leveraged into other forms of binary exploitation.

List of devices vulnerable is unknown and likely very large.

Mechanism of Action

At best judgement, the failure of alignment of the bits in the SSID field causes alignment down to deeper levels of the system, possibly down to the processor, causing difficult to predict consequences.

Impact

Testing is very challenging as it requires being out of range of all other WiFi devices during testing, but anecdotal evidence suggests some non-trivial percentage of all WiFi devices can be impacted in varied ways.

Hooting (usage)

DO NOT TEST IN RANGE OF ANY DEVICE YOU ARE UNWILLING TO DAMAGE

  1. Install Scapy
  2. Uncomment line 19 of h00thoot.py
  3. python h00th00t.py

Stolas uwu~

Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme 3.7 MiB
Languages
Python 67.7%
Shell 32.3%