// CVE-2025-15474 — MITRE Assigned

Jabari "Bari" Lucien

Wireless Security Researcher

View Projects Research Contact

$ whoami

jabari_lucien — cybersecurity researcher & developer

$ cat credentials.txt

CVE-2025-15474 — BLE Smart Lock DoS (MITRE assigned)

257 GitHub followers | 70★ top project | 24 public repos

$ ls tools/

flock-back/ Vader/ Maul/ Yoda/ Bluehound/ Dooku/ NetCracker/

// 01

About

Most devices don't know they're being watched. I built my research practice around that idea — starting with passive wireless monitoring to map what's broadcasting in any given environment without ever connecting to a network. From wardriving rigs running headless on a Raspberry Pi to WiFi monitors that detect deauth attacks and RF jamming in real time, the work is about making the invisible visible.

That same curiosity scales up. Vader lets me scan entire countries' IP space using BloomFilters to stay memory-efficient across hundreds of millions of addresses, and Maul takes those results and maps them fully — reverse DNS, SSL cert extraction, open ports across all 65,535, subdomain brute-force. The question is always the same: what's actually exposed out there?

IoT is where it gets concrete. Consumer devices people physically trust — smart locks, IP cameras, smart plugs — often have no real security model underneath. I buy them, audit them, and find out what happens when an attacker does the same. That work produced CVE-2025-15474: a BLE smart lock that accepts unlimited unauthenticated connections and can be locked out by anyone within range, indefinitely.

1CVE Assigned

24Public Repos

257GitHub Followers

// 02

Skills

Wireless Security

WiFi & BLE MonitoringReal-time passive monitoring of WiFi and BLE environments — tracking device associations, detecting deauth attacks, rogue APs, and BLE anomalies. Jamming detection built on asymmetric EWMA to separate real interference from normal fluctuation

WardrivingHeadless Raspberry Pi rigs with multiple ALFA adapters running Kismet and custom scanners in parallel, passively fingerprinting devices across 2.4GHz and 5GHz by probe requests and advertising data without ever connecting

Infrastructure Recon

Mass IP ScanningScan entire countries and ASNs with 250 threads while using BloomFilters to deduplicate hundreds of millions of addresses without running out of RAM

Infrastructure EnumerationTake a list of IPs and fully map them — PTR records, SSL cert extraction, open ports across all 65,535, subdomain and directory brute-force

IoT Vulnerability Research

WiFi Device ExploitationFuzz wireless drivers with malformed 802.11 management frames targeting driver-level parsing bugs, intercept and analyze router admin interfaces, test for auth bypass and session vulnerabilities

BLE Device ExploitationEnumerate GATT services, test for unauthenticated connections, identify static MACs, attempt connection flooding and auth bypass on consumer smart devices

CVE Research & DisclosureDocument findings, write proof-of-concept exploits, report through MITRE and VulnCheck

Tool Development

Security Tooling in PythonAll tools are self-built in Python — wireless attack tools, 802.11 frame fuzzers, BLE scanners, mass IP scanners, infrastructure mappers, and IDS systems

Embedded / HardwareC++ on ESP32/ESP8266 for custom RF sensors and low-level hardware tools where Python isn't an option

// 03

Projects

flock-back★ 70

Wardriving tool for passively detecting AI-powered license plate reader cameras — Flock Safety, Raven, Penguin, PigVision — via BLE and WiFi probe requests. Dual-mode scanner with channel hopping across 2.4GHz and 5GHz. Kismet integration included. Built amid Florida's legislative push to ban Flock cameras.

PythonBLEWiFiSurveillance

GitHub →

NetCracker★ 50

WiFi hacking suite.

PythonWiFi

GitHub →

Vader★ 20

Memory-efficient mass IP scanner using BloomFilters to map entire countries and ASNs. 250 threads, preset port modes for cameras, IoT, routers, databases, and remote access. Pairs with Maul for full infrastructure enumeration.

PythonBloomFilterReconASN

GitHub →

// other projects

Bluehound★ 18

BLE recon and anomaly detection in C++. Sniffer + Monitor modes with weighted RSSI scoring.

C++BLE

GitHub →

Yoda★ 15

Passive RF home monitor — deauth detection, jamming detection via asymmetric EWMA, and tiered push alerts. Textual TUI.

PythonWiFiBLEIDS

GitHub → Demo →

Dooku★ 17

Portable wardriving rig — Pi 5, 4x ALFA adapters, live web dashboard, auto-start on boot.

PythonRaspberry Pi

GitHub → Demo →

flock-down★ 1

Android app mapping 101,085 ALPR cameras. Full-screen alert when passing a Flock camera. 100% offline.

KotlinAndroid

GitHub →

Maul★ 5

Infrastructure mapping — PTR records, SSL certs, subdomain + directory brute-force. Pairs with Vader.

PythonOSINT

GitHub →

framework★ 8

IoT attack toolkit — BLE GATT fuzzing, Evil Twin, deauth, beacon flooding, and UART exploitation.

PythonBLEWiFiIoT

GitHub →

// 04

CVE / Research

CVE-2025-15474

AuntyFey BLE Smart Padlock — Denial of Service

Discovered and disclosed an unauthenticated DoS vulnerability. The device uses a static MAC and accepts unlimited unauthenticated BLE connections — an attacker can flood the queue and lock out legitimate users every 10–15 seconds with zero credentials.

MITRE Assigned BLEDoSSmart Lock

View PoC →

TP-Link Archer AX1450 — Router Research

802.11 IE mutation fuzzing targeting driver-level parsing bugs via malformed association, probe, auth, TWT, and block ack frames across 4 ALFA adapters. Paired with Dropbear SSH brute-force on port 20001 using default IoT credentials.

GitHub →

BLE Smart Lock Bypass

Auth bypass and DoS on consumer BLE smart locks via unauthenticated connection exploitation.

GitHub →

BLE Smart Plug Access Control

Improper access control — unauthorized device control without pairing or authentication.

GitHub →

IP Camera Exposed Telnet

Adorcam Indoor Camera exposes BusyBox Telnet on TCP/23 with cleartext auth. Firmware 1.00.11.

GitHub →

// 05

Platform

I create cybersecurity content — tool demos, original research, and security explainers — across YouTube, Instagram, and LinkedIn.

YouTube

@NSM_Barii

Full tool demos, research walkthroughs, and deep-dives on wireless security

→

Instagram

@nsm_barii

Short-form reels — live tool demos, wardriving footage, and research findings

→

jabari-lucien

Professional writeups on vulnerability research and security tooling

→

Discord

Community Server

Wireless security and hacking community — tools, research, and discussion

→

// 06

Contact

Let's Talk

Open to security research collaborations, responsible disclosure partnerships, and content opportunities.

[email protected]