SkillAgentSearch skills...

WALB

WALB is raspberry Pi and HackRF based Wireless Attack LaunchBox.

GenerateConvertImprove

Install / Use

/learn @crescentvenus/WALB
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

WALB ( Wireless Attack Launch Box )

What is WALB ?

  • WALB is a Raspberry Pi2/Pi3 and HackRF based lunch box sized portable RF signal generator.
  • The intended purpose of the WALB development is to test or demonstrate the security issue of wireless devices and location based applications.
  • By preparing a I/Q binary data, it is possible to generate any signal in the frequency range available to HackRF.
  • For GPS and ADS-B, real time signal generator module is included in WALB.
  • It uses HackRF as a SDR unit with enhanced GPS-SDR-SIM for GPS signal generation.
  • It has a 8x2 LCD and a rotary encoder with two color LED and a push switch for the operation of WALB.
  • Since WALB works with battery powered, you can use it any where you like.
  • Adding new simulation scenario or signal generation, it can be achieved by SSH login and simply edit the menu items using your favorite text editor.
  • By preparing the binary I / Q signal file of 8 bit signed, you can generate arbitrary RF signals.
  • To do so, you simply need to edit and add TEXT menu items specifying the filename of I/Q file, frequency, and sample rate.
  • If you prepare an external program to generate the I / Q signal in real time,you can also add the program and/or script in the menu.
  • You can set or chose GPS spoofing scenario by predefined location and/or date & time.

PICT

Prerequisites.

You need to install GPS-SDR-SIM,HackRF host tools, and WireringPi on RaspberryPi.<br> Rapsberry Pi3 is highly recomended for better performance of the real time signal generation.<br> It requires apache2 and php5 if you wish to use web based UI.<br>

The installation instruction links are as follows.<br> RaspberryPi: https://www.raspberrypi.org/<br> GPS-SDR-SIM: https://github.com/osqzss/gps-sdr-sim<br> HackRF: https://github.com/mossmann/hackrf<br> WireringPi: http://wiringpi.com/download-and-install/ <br><br> Additional info to control hackrf via HTTP server.<br>

  • You have to set udev rules.<br>
(1)Add  /etc/udev/rules.d/52-hackrf.rules as follows.
	ATTR{idVendor}=="1d50", ATTR{idProduct}=="604b", SYMLINK+="hackrf-jawbreaker-%k", MODE="660", GROUP="plugdev"
	ATTR{idVendor}=="1d50", ATTR{idProduct}=="6089", SYMLINK+="hackrf-one-%k", MODE="660", GROUP="plugdev"
	ATTR{idVendor}=="1fc9", ATTR{idProduct}=="000c", SYMLINK+="hackrf-dfu-%k", MODE="660", GROUP="plugdev"
(2) Refrect udev rules.
	$sudo udevadm control --reload-rules
(3) Add www-data user into plugdev.
	$sudo usermod -aG plugdev www-data
(4) Restart Apache2
	$sudo systemctl restart apache2

directory structure of WALB software:<br>

/home/pi/
        /IQ-files    ... binary I/Q files to pass hackRF or text files used for genaration of I/Q file by 
                         dedicated real time signal generation program such as enhanced GPS-SDR-SIM, or ADS-B_gen
        /bin/gps-sdr-sim ... enhanced GPS-SDR-SIM binary file and  ephemeris file(s).
        replay2      ... Main startup program of the WALB
        menu2.txt    ... Main menu items displayed on LCD
        level2.txt   ... Sub menu-1: transmit power setteing
        date2.txt    ... Sub menu-2: date&time setting for GPS time spoofing
        scripts/
                sim_start.sh ... Script to start I/Q signal generation and kick HackRF to transmit
                ic2-disp.sh  ... Script to control LCD
                stat.sh      ... Script to check if hackrf_transfer is active
                kill_proc.sh ... Script to kill gps-sdr-sim and/or hackrf_transfer
                eth.sh       ... Script to display eth0 IP address on LCD
                wlan.sh      ... Script to display wlan0 IP address on LCD
	/python/		   ... Python port file from replay2.c

/var/www/html/webui/    ... Sctipt files to set GPS-SDR-SIM location via Web UI. 
	LatLon.php	... Web UI
	LatLon.ini.php	...  
	LatLon.tmpl.php	... Template file.
	LatLon.js	... 
	start2.php	... Start/Stop GPS signal generation
	kill_proc.php	... Kill process of hackrf_transfer, gps-sdr-sim and smooth.php for terminate signal generation.
	smooth2.php	... Script for location interpolation between previos position and latest clicked position.

Installation

compile

gcc replay2.c -I/usr/local/include -L/usr/local/lib -lwiringPi -o replay2<br> (You may need to adjust -I/Lxxxxx for the location of wireringPi)<br>

Usage demo links.<br>

  • Wireless Attack Launch Box operation demo. (Length: 3 minutes)<br> https://www.youtube.com/watch?v=SIPCqLmJFig<br> <br>
  • Real time GPS signal generation by WALB. (Length: 2 minutes)<br> https://www.youtube.com/watch?v=-V4KLIqEzQg<br> <br>
  • GPS time spoofing demo intended to test GPS week number rollover issue. (Length: 140 seconds)<br> https://www.youtube.com/watch?v=mEU5RjRJ2lI<br> <br>
  • ADS-B replay attack demo.( Length: 2 minites)<br> https://www.youtube.com/watch?v=APc1hreOkYU<br>

crescentvenus

View profile

View on GitHub
GitHub Stars129
CategoryDevelopment
Updated28d ago
Forks30
crescentvenus/WALB

Languages

Python

Security Score

80/100

Audited on Feb 27, 2026

No findings