Executive brief on how PCI DSS 4.0 affects offensive security practices, penetration testing, and segmentation testing. Watch Now

Zigbee Hacking: Smarter Home Invasion with ZigDiggity

Existing Zigbee hacking solutions have fallen into disrepair, having barely been maintained, let alone improved upon. Left without a practical way to evaluate the security of Zigbee networks, we've created ZigDiggity, a new open-source pentest arsenal from Bishop Fox.

In this video, learn how to use ZigDiggity, a handy tool for pen testers.

Transcript

Welcome to smarter home-invasion with ZigDiggity, the new ZB penetration testing toolkit from Bishop Fox. First we scan for nearby ZigBee wireless networks once we see a device whose behavior resembles that of a lock. We perform a ZigBee insecure rejoin attack to join their network and extract the network key, so that we can attack the lock and the controller directly. Next, the pan ID conflict gets rid of the real controller. Finally, we send a signal to unlock the lock. We continue to perform a Zigbee ACK attack against the door sensors. This is why the alarm is not triggering even though the system is armed, and we clearly have the door open. Thank you.

Francis brown

About the author, Francis Brown

Co-Founder and Board Member

Francis Brown, CISA, CISSP, MCSE, is the Co-founder and Board Member of Bishop Fox. Before founding Bishop Fox, Francis served as an IT Security Specialist with the Global Risk Assessment team of Honeywell International where he performed network and application penetration testing, product security evaluations, incident response, and risk assessments of critical infrastructure. Prior to that, Francis was a consultant with the Ernst & Young Advanced Security Centers and conducted network, application, wireless, and remote access penetration tests for Fortune 500 clients.

Francis has presented his research at leading conferences such as Black Hat USA, DEF CON, RSA, InfoSec World, ToorCon, and HackCon and has been cited in numerous industry and academic publications. Francis holds a Bachelor of Science and Engineering from the University of Pennsylvania with a major in Computer Science and Engineering and a minor in Psychology. While at Penn, Francis taught operating system implementation, C programming, and participated in DARPA-funded research into advanced intrusion prevention system techniques.

More by Francis

Extend Your Knowledge

Check out these related resources.

bfx25_Red team solution brief ft
Solution Brief

Red Team & Adversarial Emulation Solution Brief

With a range of approaches that simulate breach scenarios at your organization, adversarial emulation is the most effective way to know if your team is prepared to detect, respond, and recover—before a real breach happens.

Learn More
Preview of the managed penetration testing services datasheet.
Datasheet

Managed Penetration Testing Service Datasheet

Learn how to minimize the complexity and maximize the effectiveness of large security testing initiatives with our comprehensive program management.

Learn More
Cover page of the datasheet for the Cosmos integration with Jira.
Datasheet

Cosmos Integration for Jira Datasheet

Learn how to effortlessly sync validated exposures from the Cosmos portal into your Jira environment to streamline vulnerability management and remediate dangerous exposures before attackers can exploit them.
Learn More

This site uses cookies to provide you with a great user experience. By continuing to use our website, you consent to the use of cookies. To find out more about the cookies we use, please see our Privacy Policy.