Path: blob/master/documentation/modules/auxiliary/scanner/dect/station_scanner.md
31164 views
Description
This module scans for DECT (Digital Enhanced Cordless Telecommunications) base stations using a COM-ON-AIR (COA) compatible adapter. DECT is a wireless technology commonly used for cordless phones, baby monitors, and other wireless communication devices.
The scanner identifies base stations by their RFPI (Radio Fixed Part Identity), which is a unique identifier for each DECT base station.
Vulnerable Application
Hardware Requirements
This module requires a COM-ON-AIR (COA) compatible PCMCIA card to function. These cards were originally designed for DECT communications and have been repurposed for security research.
Compatible hardware includes:
Dosch & Amand COM-ON-AIR PCMCIA cards (Type II or Type III)
Other COA-compatible adapters
Software Requirements
Linux operating system with COA driver support
Proper kernel modules loaded for the COA card
Setup Instructions
Insert the COM-ON-AIR PCMCIA card into your system
Load the appropriate kernel driver for the COA card
Verify the interface is available (typically appears as a network interface)
Verification Steps
Start msfconsole
Do:
use auxiliary/scanner/dect/station_scannerDo:
set INTERFACE <your_dect_interface>Do:
runYou should see discovered DECT base stations with their RFPI and channel information
Options
INTERFACE
The DECT/COA interface to use for scanning. This should be set to the interface name of your COM-ON-AIR card.
BAND
The frequency band to scan. DECT operates on different frequency bands depending on the region:
EMEA: 1880-1900 MHz (Europe, Middle East, Africa)
US: 1920-1930 MHz (United States - DECT 6.0)
Other regional variants may apply
Scenarios
Scanning for DECT Base Stations
This scenario demonstrates discovering DECT base stations in range.