Skip to content

A IEEE 802.15.4 Wireless Intrusion Detection System, Using the KillerBee Framework

License

Notifications You must be signed in to change notification settings

riverloopsec/beekeeperwids

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Introduction

beekeeperwids is a Wireless Intrusion Detection System (WIDS) for IEEE 802.15.4 (and can be extended for upper layers such as ZigBee, 6loWPAN, etc).

It was developed by River Loop Security, LLC and released at Troopers14. River Loop Security (riverloopsecurity.com) specailizes in security asssesments including low-level embeeded systems, custom hardware, and specailized radio protocols.

Contributions and suggestions are welcome!

This is currently a beta release, developed to show the feasibility of intrusion detection techniques to 802.15.4. We aim to continue to add detection modules to this, and we ask for the contributions of other researchers in contributing additions both to the detection modules, and to the core architecture as desired.

Install

Run sudo python setup.py install (or make install).

Note that this currently assumes a Linix system where it can place the config files into /opt/kbwids/. If this is not the case, you may need to edit setup.py to install them elsewhere (or move them yourself). If they are not installed to the default location, set KBWIDS_CONFIG_PATH to point to the folder they are instlled in.

Configuration

Install the software on your drone. Then execute 'zbdrone -run'.

Install the software on your WIDS backend (if different than the drone computer). Then execute 'zbwids -run'.

Logs will be written to the logging directory, which is defined by the KBWIDS_LOG_PATH enviroment variable, if set, and otherwise defaults to the temp directory of your system. The logs are named for the system component which is producing them.

Organization

This software uses the KillerBee framework and the 802.15.4 (dot15d4) layer of Scapy (available in the scapy-com repository).

License

Copyright 2014 River Loop Security, LLC. It is released under GPLv2 per LICENSE.txt.

About

A IEEE 802.15.4 Wireless Intrusion Detection System, Using the KillerBee Framework

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published