# seemoo-lab/nexmon

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/seemoo-lab-nexmon).**

2,750 stars · 482 forks · C · gpl-3.0

## Links

- GitHub: https://github.com/seemoo-lab/nexmon
- awesome-repositories: https://awesome-repositories.com/repository/seemoo-lab-nexmon.md

## Topics

`broadcom` `firmware` `framework` `nexmon` `patching` `rpi` `smartphone`

## Description

Nexmon is a suite of operational tools designed for firmware patching, ROM extraction, frame injection, and enabling monitor mode on wireless hardware. It provides utilities to modify wireless chip firmware to unlock low-level hardware capabilities not supported by official drivers.

The project enables the activation of monitor mode for capturing raw network packets with radiotap headers and allows for the transmission of custom-crafted wireless frames. It includes tools for dumping the read-only memory of wireless chips to facilitate reverse engineering and analysis of hardware behavior.

The software covers hardware target identification and revision matching to ensure firmware patches are compatible with specific chips. It also provides utilities for binary patch generation and the compilation of tools used to process hardware firmware modifications.

## Tags

### Hardware & IoT

- [Hardware Capability Extensions](https://awesome-repositories.com/f/hardware-iot/hardware-capability-extensions.md) — Modifies wireless chip firmware to unlock hardware capabilities not supported by official drivers.
- [Firmware Reverse Engineering](https://awesome-repositories.com/f/hardware-iot/firmware-reverse-engineering.md) — Dumps read-only memory of wireless chips to a file for reverse engineering analysis. ([source](https://github.com/seemoo-lab/nexmon#readme))
- [ROM Extraction](https://awesome-repositories.com/f/hardware-iot/firmware-reverse-engineering/rom-extraction.md) — Dumps read-only memory from wireless chips to enable offline analysis and reverse engineering.
- [Wireless Firmware Patching Tools](https://awesome-repositories.com/f/hardware-iot/wireless-firmware-patching-tools.md) — Provides a suite of utilities for modifying wireless chip firmware to unlock hardware capabilities.
- [Hardware Device Identification](https://awesome-repositories.com/f/hardware-iot/hardware-device-identification.md) — Matches wireless chip revisions and device identifiers to ensure patch compatibility. ([source](https://github.com/seemoo-lab/nexmon/blob/master/REVINFO.md))
- [Hardware-Revision Routing](https://awesome-repositories.com/f/hardware-iot/hardware-revision-routing.md) — Validates device identifiers to ensure the correct firmware patch is applied to the specific hardware revision.

### Mobile Development

- [Custom Hardware Firmware](https://awesome-repositories.com/f/mobile-development/mobile-operating-systems/firmware-customization-tools/custom-firmware-integration-systems/custom-hardware-firmware.md) — Modifies wireless chip firmware to unlock advanced capabilities such as monitor mode. ([source](https://github.com/seemoo-lab/nexmon/blob/master/Makefile))

### Networking & Communication

- [Raw Wireless Frame Injection](https://awesome-repositories.com/f/networking-communication/raw-wireless-frame-injection.md) — Implements the capability to send arbitrary raw wireless frames for security testing. ([source](https://github.com/seemoo-lab/nexmon#readme))
- [Wireless Frame Injection Tools](https://awesome-repositories.com/f/networking-communication/wireless-frame-injection-tools.md) — Ships a utility for transmitting custom-crafted wireless frames to simulate network traffic.
- [Wireless Protocol Analysis Suites](https://awesome-repositories.com/f/networking-communication/network-infrastructure-routing/wireless-network-utilities/wireless-protocol-analysis-suites.md) — Captures raw network traffic in monitor mode to analyze wireless communication and protocols.

### Operating Systems & Systems Programming

- [Binary Instruction Patching](https://awesome-repositories.com/f/operating-systems-systems-programming/binary-instruction-patching.md) — Modifies binary chip instructions to unlock restricted hardware capabilities like monitor mode.
- [Firmware Patching](https://awesome-repositories.com/f/operating-systems-systems-programming/custom-firmware-tools/firmware-patching.md) — Provides the capability to write and apply custom patches for wireless chip firmware. ([source](https://github.com/seemoo-lab/nexmon#readme))
- [Chip ROM Analysis](https://awesome-repositories.com/f/operating-systems-systems-programming/binary-analysis-capabilities/reverse-engineering-tools/wireless/chip-rom-analysis.md) — Extracts and reverse engineers wireless chip ROMs to understand low-level hardware operations.

### Software Engineering & Architecture

- [Binary Patching Utilities](https://awesome-repositories.com/f/software-engineering-architecture/binary-patching-utilities.md) — Provides utilities for generating byte-level modifications to chip binaries based on hardware revisions.

### Testing & Quality Assurance

- [Wireless Monitor Mode](https://awesome-repositories.com/f/testing-quality-assurance/general-testing-utilities/test-utilities-assertions/network-api-mocking/network-traffic-monitors/wireless-monitor-mode.md) — Activates monitor mode on WiFi chips to capture raw network packets.

### Security & Cryptography

- [Penetration Testing Frameworks](https://awesome-repositories.com/f/security-cryptography/vulnerability-assessment-testing/penetration-testing-frameworks.md) — Enables the injection of custom wireless frames to test network security vulnerabilities.