Question 1

How to sniff ZigBee network keys with KillerBee?

Accepted Answer

Use the zbdsniff tool, which captures traffic and extracts over-the-air key provisioning. The README mentions a sample capture file to demonstrate this functionality, making it straightforward for testing.

Question 2

KillerBee vs. other ZigBee security tools like Ubertooth?

Accepted Answer

KillerBee is more comprehensive with a wider toolset and hardware support for packet injection and analysis, whereas Ubertooth focuses on Bluetooth. KillerBee is ideal for deep ZigBee protocol testing but requires more setup.

Question 3

What's the best hardware to use with KillerBee for beginners?

Accepted Answer

The CC2531 USB dongle is often recommended due to its affordability and community support, but check the firmware/README.md for detailed compatibility and programming instructions, as setup can vary.

Question 4

How to install KillerBee on Mac OS?

Accepted Answer

While possible, it's not officially supported. Install dependencies via Homebrew and pip as noted in REQUIREMENTS, but expect potential compatibility issues and lack of maintenance for Mac-specific problems.

Question 5

Can KillerBee be used for replay attacks on ZigBee devices?

Accepted Answer

Yes, the zbreplay tool reads from capture files and retransmits frames, implementing replay attacks. It excludes ACK frames to avoid interference, as described in the TOOLS section.

Question 6

How to write custom tools with KillerBee?

Accepted Answer

Leverage its Python library API, documented in epydoc, to build scripts for packet capture and injection. The framework is designed for extensibility, with examples in the tools directory to guide development.

Killerbee

What is Killerbee?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions