Home

MACOBOX is back from San Francisco

AI agents, on-premise inference, IoT scanning and PDF reports: a roundup of the latest features

Posted on April 15, 2026

At the end of March we spent a week in Silicon Valley. We had the chance to sit down with some remarkable people: researchers, builders, founders. Every conversation left us with more questions than we arrived with, in the best possible way. It was one of those rare times when... [Read More]
Tags:
- macobox
- hardware
- hacking
- AI
- iot
- tools
Speaking the Language of BLE Wearables - Analysis with Frida and ESP32

A simple and low-cost way to approach Bluetooth Low Energy security

Posted on February 4, 2026

In this article I want to introduce a simple way to approach BLE hacking, covering a bit of theory and giving a practical, low-cost example so you can start having fun with this protocol right away. [Read More]
Tags:
- hacking
- hardware
- ble
- education
Project Reboot

A rescue themed hacking lab

Posted on November 29, 2025

Note: This article contains no spoilers. No flags, no passwords, no challenge logic. Just the philosophy, the design, and why Project Reboot exists. [Read More]
Tags:
- hacking
- hardware
- training
- education
- challenge
Denial of Pleasure

Attacking unusual targets with a Flipper Zero

Posted on November 13, 2023

You might have heard about the recent “Apple BLE pair spoofing attack” which, thanks to an application developed for Flipper Zero, allows anyone to send pairing signals to iOS devices, creating annoying notifications. This method utilizes advertisement packets from various iOS pairing-capable devices, which, when broadcasted, are received by all... [Read More]
Tags:
- hacking
- ble
- bluetooth
- flipperzero
Using silent SMS to localize LTE users

Proof of concept implementation

Posted on September 21, 2023

In this blog post, I’ll dive into an intriguing technique – using silent SMS messages to track LTE users’ locations. We’ll see how an attacker could send silent SMS messages with a defined pattern and analyze LTE traffic to verify the victim location. The following tools collectively form the arsenal... [Read More]
Tags:
- telco
- SDR
- USRP
- LTEsniffer
- silent
- SMS
Route to RCE - Dissecting a cheap WiFi repeater

Hardware and firmware analysis of a vulnerable device

Posted on April 13, 2023

A few years ago I got an old WiFi repeater from a friend. I did not have any use for it at the time and I ended up chucking it into a corner of my house. A few days ago when I decided to study it a bit and unsurprisingly... [Read More]
Tags:
- hacking
- RCE
- wifi
- repeater
- hardware
- firmware
- ghidra
MojoBox - yet another not so smartlock

Posted on March 15, 2023

Note: This blogpost was originally posted on whid.ninja by Luca and me. Reposting here to add it to my portfolio. [Read More]
Tags:
- hacking
- ble
- bluetooth
- physec
- appsec

MACOBOX is back from San Francisco

AI agents, on-premise inference, IoT scanning and PDF reports: a roundup of the latest features

Speaking the Language of BLE Wearables - Analysis with Frida and ESP32

A simple and low-cost way to approach Bluetooth Low Energy security

Project Reboot

A rescue themed hacking lab

Denial of Pleasure

Attacking unusual targets with a Flipper Zero

Using silent SMS to localize LTE users

Proof of concept implementation

Route to RCE - Dissecting a cheap WiFi repeater

Hardware and firmware analysis of a vulnerable device

MojoBox - yet another not so smartlock