BLACKHAT_ARSENAL.md

CYT - BlackHat Arsenal 2025

Chasing Your Tail: Advanced Wi-Fi Surveillance Detection

🎯 BlackHat Arsenal Presentation Summary

Tool Category: Wireless Security / Surveillance Detection
Language: Python 3
Platform: Linux
License: MIT

🚀 Key Features for Arsenal Demo

1. Spectacular Google Earth Visualization

• Professional KML generation with advanced styling
• Color-coded persistence level markers (green/yellow/red)
• Device tracking paths showing movement correlation
• Rich interactive balloon content with device intelligence
• Activity heatmaps and surveillance intensity zones

2. Advanced Surveillance Detection

• Multi-location device tracking algorithms
• Persistence scoring (0.0-1.0) for threat assessment
• Temporal analysis with time-based pattern detection
• GPS correlation with automatic coordinate extraction
• Real-time Kismet database integration

3. Security-Hardened Architecture

• SQL injection prevention with parameterized queries
• Encrypted credential management for API keys
• Input validation and sanitization throughout
• Secure ignore list loading (eliminates exec() vulnerabilities)
• Comprehensive audit logging

4. Professional Output Formats

• Markdown reports with detailed analysis
• HTML reports with custom CSS styling (pandoc integration)
• KML files for Google Earth visualization
• JSON export for further analysis

🎪 Live Demo Flow

1. Security Verification - Show hardened architecture
2. GUI Demonstration - Enhanced Tkinter interface
3. Analysis Execution - Real surveillance detection
4. Google Earth Visualization - Spectacular KML display
5. Multi-location Tracking - Device following demonstration

📁 Arsenal Package Contents

Core Files

• surveillance_analyzer.py - Main analysis engine
• gps_tracker.py - GPS integration & KML generation
• surveillance_detector.py - Persistence detection algorithms
• cyt_gui.py - Enhanced GUI interface
• chasing_your_tail.py - Real-time monitoring engine

Security Components

• secure_database.py - SQL injection prevention
• secure_credentials.py - Encrypted credential management
• input_validation.py - Input sanitization
• migrate_credentials.py - Credential migration tool

Documentation

• README.md - Complete user documentation
• CLAUDE.md - Technical developer documentation
• SETUP.md - Quick start guide
• BLACKHAT_ARSENAL.md - This presentation summary

Demo Materials

• blackhat_demo.py - Automated demo script
• demo_following_detection.kml - Sample Google Earth visualization
• requirements.txt - Python dependencies

🛡️ Use Cases Demonstrated

1. Personal Safety - Detecting stalking/following behavior
2. Corporate Security - Identifying surveillance devices
3. Network Administration - Monitoring wireless environments
4. Security Research - Analyzing device behavior patterns

🌟 What Makes CYT Special

• First tool to provide spectacular Google Earth visualization for Wi-Fi surveillance
• Security-first approach with comprehensive hardening
• Real-world applicability with GPS integration and multi-location tracking
• Professional presentation suitable for corporate and research environments

🎯 Target Audience

• Security professionals and researchers
• Network administrators
• Personal safety advocates
• Wireless security enthusiasts
• Corporate security teams

📊 Technical Specifications

• Python 3.6+ required
• Kismet integration for packet capture
• Bluetooth GPS support for location tracking
• WiGLE API integration for SSID geolocation
• Cross-platform compatibility (Linux focus)

---

Ready for BlackHat Arsenal 2025! 🚀

GitHub: https://github.com/matt0177/cyt
Author: @matt0177
Contact: Available during BlackHat Arsenal session