Which brings me to part two, MeshMarauder.
An open source tool demonstrating proof-of-concept exploits against the DEFCON 33 Meshtastic firmware.
MeshMarauder will demostrate:
- Tracking user activity on any mesh regardless of encryption usage
- Hijack all meshtastic user profile metadata
- Change any users public key
- Send messages as any user in channel chats that appear authentic
- MITM direct messages
https://meshmarauder.net
#defcon #meshtastic #meshmarauder #cybersecurity
Is it legal to encrypt communications in the spectrum meshtastic is using?
I had thought it was not and therefore could not be built into the protocol and so securing communications (potentially illegally) is left as an exercise for the reader.
in the US at least its about broadcast power level. HAMs can broadcast louder but cant enable encryption. default firmware shipped to the US limits your power level so you remain legal.
*i should add that is MY understanding of the situation and i’m no lawyer.
You have it correct. If you’re using ham mode, you’re allowed to use more power, but hams cannot have encrypted data. Therefore, ham mode is disabled by default.
Also with Ham Mode, if you do enable it, you can only talk to other nodes also using Ham Mode, unencrypted. Therefore, you lose access to the majority of the mesh, which makes it kind of pointless, except for experiments.
Is it legal to encrypt communications in the spectrum meshtastic is using?
I had thought it was not and therefore could not be built into the protocol and so securing communications (potentially illegally) is left as an exercise for the reader.
Is that not so?
It’s apparently legal if you don’t enable ham mode. Not a lawyer etc.
in the US at least its about broadcast power level. HAMs can broadcast louder but cant enable encryption. default firmware shipped to the US limits your power level so you remain legal.
*i should add that is MY understanding of the situation and i’m no lawyer.
You have it correct. If you’re using ham mode, you’re allowed to use more power, but hams cannot have encrypted data. Therefore, ham mode is disabled by default.
Also with Ham Mode, if you do enable it, you can only talk to other nodes also using Ham Mode, unencrypted. Therefore, you lose access to the majority of the mesh, which makes it kind of pointless, except for experiments.