ainfosec/FISSURE

# FISSURE - The RF Framework **Frequency Independent SDR-based Signal Understanding and Reverse Engineering** ## Overview Videos

FISSURE Operational Overview

FISSURE Overview (Slides)

## Introduction FISSURE is an **open-source RF framework** that supports both **operational deployments** and **research and education**. - For **operators**, it provides a rapidly deployable toolkit for signal detection, classification, protocol discovery, fuzzing, vulnerability analysis, and real-time integration with TAK. - For **educators and researchers**, it lowers the barrier to entry for SDR and reverse engineering, offering a shared environment for learning, experimentation, and publishing new methods. FISSURE streamlines complex SDR workflows by centralizing software, libraries, and reference material into one consistent framework that runs on desktops, laptops, single-board computers, and ruggedized systems, or scales to distributed tactical nodes networked in the field.

## Key Capabilities - Detect, classify, and analyze RF signals - Collect, replay, and manipulate IQ data - Discover protocols and craft custom packets - Execute fuzzing and vulnerability testing - Archive signals and build playlists for testing - Coordinate distributed sensor nodes - Geolocate RF emitters and targets - Integrate alerts, targets, and artifacts into TAK - Automate workflows with AI and ML integration

    

## FISSURE and Fracture Fracture is AIS's deployable tactical RF system built on the open-source FISSURE framework. FISSURE provides the underlying software environment for RF sensing, signal analysis, protocol experimentation, TAK integration, distributed node coordination, and plugin-based capability development. Fracture extends this foundation into deployable hardware configurations designed for operational use. For organizations requiring a supported and integrated tactical RF capability, Fracture provides a productization path that preserves the flexibility, transparency, and extensibility of the underlying FISSURE ecosystem.

### Fracture System Architecture

### TAK Integration Workflow

## Deployment Options - Desktop GUI for visualization and prototyping - Headless nodes for remote sensing and autonomous operations - Containerized services for scalable and repeatable installs - TAK integration for mission relevance and shared situational awareness

## Dual-Use Relevance - **Operators:** Detect, geolocate, and respond to RF activity in the field - **Researchers:** Test new algorithms, automation, and AI and ML approaches - **Educators:** Teach SDR, DSP, RF security, real-time processing, and reverse engineering in the classroom - **Students and Hobbyists:** Explore SDR workflows and learn about technology without steep setup overhead ## Roadmap and Development For the most up-to-date view, explore the interactive roadmap: - [View Interactive Roadmap](https://ainfosec.github.io/FISSURE/Roadmap/) ### Current Priorities ## Videos - [FISSURE Videos](https://www.youtube.com/playlist?list=PLs4a-ctXntfjpmc_hrvI0ngj4ZOe_5xm_) - [AIS YouTube](https://www.youtube.com/@assuredinformationsecurity/featured) ## White Papers FISSURE is supported by a series of white papers that explore both technical and operational applications across different domains. 1. [FISSURE Overview](/docs/White_Papers/FISSURE_Overview.pdf) 2. [FISSURE for Counter-UAS](/docs/White_Papers/FISSURE_CUAS.pdf) 3. [FISSURE for UAS Payloads & Aerial Operations](/docs/White_Papers/FISSURE_UAS_Payload_Aerial_Ops.pdf) 4. [FISSURE for Maritime](/docs/White_Papers/FISSURE_Maritime.pdf) 5. [FISSURE for Vehicle & Mobility Systems](/docs/White_Papers/FISSURE_Vehicle_Mobility_Systems.pdf) 6. [FISSURE for Perimeter & Infrastructure Defense](/docs/White_Papers/FISSURE_Perimeter_Infrastructure_Defense.pdf) 7. [FISSURE for TAK & Mobile](/docs/White_Papers/FISSURE_TAK_Mobile_Integration.pdf) 8. [FISSURE for Training & Education](/docs/White_Papers/FISSURE_Training_Education.pdf) 9. [FISSURE Technical Details & Architecture](/docs/White_Papers/FISSURE_Technical_Details_Architecture.pdf) ## Blog Posts AIS has published several articles highlighting FISSURE’s applications, updates, and use cases: - [Demonstrating FISSURE as a Drone Payload at Northern Strike 2025](https://www.ainfosec.com/fissure-demo-at-northern-strike) - [A Recap of My DEF CON 2024 Presentation on FISSURE Updates](https://www.ainfosec.com/a-recap-of-my-def-con-2024-presentation-on-fissure-updates) - [FISSURE: Navigating the Open-Source Realm](https://www.ainfosec.com/fissure-navigating-the-open-source-realm) - [FISSURE: The RF Framework for Everyone](https://www.ainfosec.com/fissure-the-rf-framework-for-everyone) [See all AIS blog posts](https://www.ainfosec.com/blog/) ## News  **Plugin & Action Architecture:** FISSURE is transitioning to a unified plugin and action framework that enables capabilities to be packaged, deployed, and executed across the Dashboard, sensor nodes, WinTAK, and ATAK.  **WinTAK Integration:** WinTAK now supports node management, alerts, targets, detections, artifacts, plugin selection, action execution, and distributed sensor node operations.  **ATAK Integration:** ATAK integration is actively under development, extending FISSURE and Fracture capabilities to mobile devices and tactical edge operators.   **Geolocation & Target Management:** Development efforts continue on RF geolocation, target management, multi-node coordination, and real-world operational testing.  **Apptainer Containerization:** FISSURE can be deployed within Apptainer containers to simplify installation, testing, portability, and deployment across supported platforms.  **Fracture Architecture & TAK Workflows:** New diagrams and documentation have been added to illustrate Fracture system architecture, TAK integration workflows, and distributed tactical operations. ## Upcoming/Recent Events  **Sat. August 10, 2024**: DEF CON 32 - RF Village - 1400-1500 PST. [Prerecorded Video](https://www.youtube.com/watch?v=5nYiVR-PsOc), [Live Recording](https://www.youtube.com/watch?app=desktop&v=mhbJHOGrCik)  **Thu. September 5, 2024**: Binghamton University STEM Job and Internship Fair - 1100-1530 EST  **Tue. September 17, 2024**: GNU Radio Conference 2024 - 1605-1635 EST [Description/Slides](https://events.gnuradio.org/event/24/contributions/649/), [Live Recording](https://youtu.be/5UYhUi8SiK4?t=27282)  **January 20, 2025 (Runs Indefinitely)**: FISSURE Challenge. [Link](https://fissure.ainfosec.com/) (Now Live)  **Thu. February 6, 2025**: Binghamton University Spring 2025 Job and Internship Fair - 1100-1500 EST  **May 5-8, 2025**: SOF Week - Assured Information Security, Inc. (AIS) booth ## Documentation

## Capabilities - [FISSURE Capabilities (Updated: 11Sep24)](https://docs.google.com/viewer?url=https://raw.githubusercontent.com/ainfosec/FISSURE/Python3/docs/Help/FISSURE_Capabilities.pdf)

Signal Detector	IQ Manipulation	Signal Lookup	Pattern Recognition
Attacks	Fuzzing	Signal Playlists	Image Gallery
Packet Crafting	Scapy Integration	CRC Calculator	Logging
Dataset Builder	Online Archive	Third-Party Tools	Dark and Custom Themes

## Hardware The following is a list of "supported" hardware with varying levels of integration: - USRP: X3xx, B2xx, B20xmini, USRP2, N2xx, X410 - HackRF - RTL2832U - 802.11 Adapters - LimeSDR - bladeRF, bladeRF 2.0 micro - Open Sniffer - PlutoSDR - SDRplay: RSPduo, RSPdx, RSPdx R2 ## Getting Started **Supported** The GitHub releases provided in this repository are periodic snapshots of the project's state, intended primarily for archival purposes. These releases may not include the latest updates, bug fixes, or features currently under development. To access the most up-to-date version of the software, we strongly recommend using the main Python3 branch, which reflects ongoing development and the current state of the project. FISSURE is most extensively tested on Ubuntu, making it the most validated platform. Operating System | FISSURE Branch | Default GNU Radio Version :-------------------------:|:-------------------------:|:-------------------------: | DragonOS Noble (24.04) | Python3 | maint-3.10 | | Kali | Python3 | maint-3.10 | | Raspberry Pi OS | Python3 | maint-3.10 | | Ubuntu 18.04 | Python2_maint-3.7 | maint-3.7 | | Ubuntu 20.04 | Python3 | maint-3.8 | | Ubuntu 22.04 | Python3 | maint-3.10 | | Ubuntu 22.04 | Python3 | maint-3.10 | | Ubuntu 24.04 / Ubuntu ARM (Orange Pi) / Ubuntu for Raspberry Pi | Python3 | maint-3.10 | | Windows 11 WSL2 | See Supported Linux Version | See Supported Linux Version | **In-Progress (beta)** These operating systems are still in beta status. They are under development and several features are known to be missing. Items in the installer might conflict with existing programs or fail to install until the status is removed. Operating System | FISSURE Branch | Default GNU Radio Version :-------------------------:|:-------------------------:|:-------------------------: | BackBox Linux | Python3 | maint-3.10 | | KDE neon | Python3 | maint-3.10 | | Parrot Security 6.1 | Python3 | maint-3.10 | Note: Certain software tools do not work for every OS. Refer to [Known Conflicts and Third-Party Software](https://fissure.readthedocs.io/en/latest/pages/installation.html#known-conflicts) **Apptainer Installs** Testing is underway with apptainer to containerize FISSURE installs. Combinations of host OS, container OS, and FISSURE install mode (full, base, Dashboard, HIPRFISR, SensorNode) are still in progress. The following are supported combinations. Host Operating System | Container Operating System | FISSURE Mode :-------------------------:|:-------------------------:|:-------------------------: | Ubuntu 24.04 | Ubuntu 24.04 | full | **Installation** ssh-keygen -t ed25519 cat ~/.ssh/id_ed25519.pub Paste text into "Settings" > "SSH and GPG keys" > "New SSH Key" git clone git@github.com:ainfosec/FISSURE.git For cloning with https: git clone https://github.com/ainfosec/FISSURE.git Preparing the installer: cd FISSURE git checkout Python3 # Optional, or Python2_maint-3.7 for select legacy third-party tools ./install Notes: - The installer will ask to install PyQt software dependencies required to launch the installation GUIs if they are not found. - Select the operating option in the GUI that best matches your operating system (should be detected automatically if your OS matches an option). - Periodically answer prompts regarding third-party software throughout the install. Use your best judgment, the answers will not likely impact FISSURE. - Ensure your system clock is set correctly to avoid errors with apt rejecting repository updates. - After installation, reboot your computer or log out and back in so that user group changes take effect.

It is recommended to install FISSURE on a clean operating system to avoid conflicts with existing software. Further efforts towards virtualization and dependency management will be continued. Notes on the installer: - The items listed under the "Minimum Install" category are what is required to launch the FISSURE Dashboard without errors. - The radio hardware and out of tree modules are required to perform many actions in FISSURE. - The flow graphs need to be recompiled to avoid errors across GNU Radio minor versions. - Software programs outside the minimum install are optional and can be installed as needed. - Select all the recommended checkboxes (Default button) to avoid errors while operating the various tools within FISSURE. - Items unchecked by default may not install properly or could possibly conflict with existing programs (please suggest fixes!). - There will be multiple prompts throughout the installation, mostly asking for elevated permissions and user names. These prompts are primarily tied to third-party tools, refer to installation instructions provided by the maintainer for details. - If an item contains a "Verify" section at the end, the installer will run the command that follows and highlight the checkbox item green or red depending on if any errors are produced by the command. Checked items without a "Verify" section will remain black following the installation. - To avoid installation and permission errors, download FISSURE to a user owned directory such as Home. Run the install script and the fissure command without using sudo. Many of the third-party tools will be downloaded to and installed from the `~/Installed_by_FISSURE` directory.

The FISSURE installer is helpful for staging computers or installing select software programs of interest. The code can be quickly modified to allow for custom software installs. The size estimates for the programs are before and after readings from a full install. The sizes for each program are not exact as some dependencies are installed in previously checked items. The sizes may also change over time as programs get updated.

**Remote Sensor Node Installation** Install FISSURE per usual on a general purpose computer. Install FISSURE on the remote computer in the same directory location as the local computer (until further notice) to avoid filepath errors with certain actions. To configure the sensor node for remote operation, edit the "default.yaml" file in the `./fissure/Sensor_Node/Sensor_Node_Config/` directory. Edit the following fields to change from local to remote operation: - nickname: (anything but "Local Sensor Node") - ip_address: (the HIPRFISR/hub IP address the sensor node connects to) Change the "autorun" field from from `false` to `true` to run the default autorun playlist file on startup and forgo remote operations. New autorun playlists can be generated and saved from the Dashboard Autorun tab. The remote sensor node acts as a server and must have a set of valid certificates (generated during install) that match with the client (local computer). The server needs the "server.key_secret" and "client.key" files while the client needs the "client.key_secret" and "server.key" files. If the certificates folder was generated on the server computer, the client files must be manually transferred to the other computer. **Local Dashboard Usage** Open a new terminal after installation and enter: fissure The intended method for launching the FISSURE Dashboard is through the terminal without sudo. The terminal provides important status and feedback for some operations. Refer to the FISSURE documentation for more details. A local sensor node can be launched through the top buttons in the FISSURE Dashboard and helps maintain all pre-existing FISSURE functionality on a standalone workstation. Only one local and four remote sensor nodes (or five remote) are supported at this time. If any of the programs freeze or hang on close, the following commands can be used to detect a problem or forcibly shut down: sudo ps -aux | grep fissure sudo pkill python3 sudo kill -9 sudo pkill python3 && sudo pkill -9 -f fissure **Headless Hub** The HIPRFISR can be launched without the Dashboard GUI to make TAK testing and operational deployments more efficient. Set the `auto_connect_hiprfisr` value to false in the FISSURE `config.yaml` file and open a new terminal after installation and enter: fissure-hiprfisr The hub will automatically connect up to the TAK server and remote nodes will be able to join without interaction. **Remote Sensor Node Usage** After configuring the sensor node config file (see above), the sensor node code can be run using this command in a terminal: fissure-sensor-node The sensor node code will stay active until ctrl+c is applied. Connecting to the remote sensor node is performed through the top buttons of the FISSURE Dashboard. Right-clicking the top buttons will select an active sensor node to perform operations. Future operations that utilize more than one node at a time will be handled on a case-by-case basis within the individual tabs. **Windows 11 WSL2 Instructions** FISSURE can run in Windows 11 using WSL2 for supported Linux operating systems. The following are instructions to help install WSL2, install a Linux operating system, set up USB passthrough, and install FISSURE in the Linux operating system. Install WSL2: 1. Open PowerShell as Administrator 2. `wsl --install` 3. Enable Virtualization in BIOS, check using: Task Manager>Performance>CPU>Virtualization 4. `wsl --set-default-version 2` 5. `wsl --list --online` 6. Install a specific version (plain Ubuntu should be the latest version listed): `wsl --install -d Ubuntu-22.04` 7. Open the Start Menu, search for Ubuntu and launch it 8. To uninstall a distribution: `wsl --unregister Ubuntu-22.04` Enable USB passthrough in a PowerShell as Administrator: 1. `winget install usbipd` 2. Add usbipd to System PATH: Start Menu>Environment Variables>Edit the system environment variables>System Properties>Environment Variables>System Variables>Path>Edit>New: `C:\Program Files\usbipd-win` 3. Close and reopen PowerShell as Administrator 4. `usbipd wsl list` 5. `usbipd wsl attach --busid ` or `usbipd wsl attach --busid --wsl ` (replace with the actual BUS ID of the device) 6. To detach: `usbipd wsl detach --busid ` Install FISSURE in Linux Terminal: 1. `sudo apt-get install git` 2. Clone FISSURE and install as detailed above **TAK Setup** To install and run a local TAK server: 1. Register and download the TAK server docker zip from the website: https://tak.gov/products/tak-server 2. Create the `~/Installed_by_FISSURE` directory if it does not exist 3. Place the downloaded .zip file in `~/Installed_by_FISSURE` 4. Run the TAK Server item in the FISSURE installer 5. For local WebTAK, load the `~/Installed_by_FISSURE/taskerver-docker-#.#-RELEASE-##/tak/certs/files/webadmin.p12` file into your browser (settings>certificates) 6. Set "tak_on_startup" field to True in `/FISSURE/YAML/User Configs/default.yaml` or select "Start Docker Containers" from the FISSURE Dashboard TAK menu 7. Open WebTAK from FISSURE TAK menu and verify map loads with internet connection 8. Set "connect_mode" (auto/manual/disabled) field in `/FISSURE/YAML/User Configs/default.yaml`. Connect to TAK server in FISSURE Dashboard TAK menu if set to manual. 9. Run a FISSURE effect that creates a TAK alert (examples coming soon) To connect to a remote TAK server: 1. Update the certificate filepaths in `/FISSURE/YAML/User Configs/default.yaml` 2. Set "connect_mode" (auto/manual/disabled) field in `/FISSURE/YAML/User Configs/default.yaml`. Connect to TAK server in FISSURE Dashboard TAK menu if set to manual. 3. Run a FISSURE effect that creates a TAK alert (examples coming soon) **Apptainer Setup** Apptainer is used to containerize most of the FISSURE installation, making deployment and testing simpler across different systems. While the majority of FISSURE runs inside the Apptainer environment, several components still require setup on the **host**: - **Docker containers** (such as the PostgreSQL database and TAK Server) run on the **host**, not inside Apptainer. - **udev rules, USB drivers, and hardware interfaces** must also be installed on the host for SDRs, Wi-Fi adapters, and other peripherals to function properly. Pre-built Apptainer containers and ISO images are planned for future releases to simplify setup. These instructions are intended for users who want to **build the Apptainer container from source** or customize their installation. 1. **Clone the FISSURE Repository** 2. **Configure the Installer** - Open `FISSURE/install_apptainer.sh` in a text editor. - Review and adjust the variables near the top of the script. Set each option (`true` / `false`) according to what you want to include (e.g., `UHD`, `HackRF`, `Wi-Fi`, etc.). - Choose the desired FISSURE install mode: - `full` - Includes all SDR software, network tools, and utilities - `base` - Core FISSURE + GUI dependencies only (for expediting future container building) - `Dashboard` - GUI-only container (no SDR tools) - `HIPRFISR` - Headless HIPRFISR server build - `SensorNode` - Sensor node build only 3. **Run the Installer** cd FISSURE/Installer ./install_apptainer.sh This builds a writable **Apptainer sandbox** in your home directory and installs all selected software inside the container and on the host (where applicable). 4. **Launch the Container** fissure-apptainer This command opens a terminal inside the FISSURE container with **USB ports, audio devices, and graphics** automatically bound for hardware and GUI access. 5. **Run FISSURE** Once inside the container, run FISSURE just as you would on a normal system: fissure fissure-sensor-node The environment behaves like a standard install, but more isolated from the host. If you encounter issues while using FISSURE inside Apptainer, please let us know which programs, hardware, or features are not working correctly. ## Lessons FISSURE comes with several helpful guides to become familiar with different technologies and techniques. Many include steps for using various tools that are integrated into FISSURE. We aim to improve the quality and add new content over time. - [Lesson1: OpenBTS](/docs/Lessons/Markdown/Lesson1_OpenBTS.md) - [Lesson2: Lua Dissectors](/docs/Lessons/Markdown/Lesson2_LuaDissectors.md) - [Lesson3: Sound eXchange](/docs/Lessons/Markdown/Lesson3_Sound_eXchange.md) - [Lesson4: ESP Boards](/docs/Lessons/Markdown/Lesson4_ESP_Boards.md) - [Lesson5: Radiosonde Tracking](/docs/Lessons/Markdown/Lesson5_Radiosonde_Tracking.md) - [Lesson6: RFID](/docs/Lessons/Markdown/Lesson6_RFID.md) - [Lesson7: Data Types](/docs/Lessons/Markdown/Lesson7_Data_Types.md) - [Lesson8: Custom GNU Radio Blocks](/docs/Lessons/Markdown/Lesson8_Custom_GNU_Radio_Blocks.md) - [Lesson9: TPMS](/docs/Lessons/Markdown/Lesson9_TPMS.md) - [Lesson10: Ham Radio Exams](/docs/Lessons/Markdown/Lesson10_Ham_Radio_Exams.md) - [Lesson11: Wi-Fi Tools](/docs/Lessons/Markdown/Lesson11_WiFi_Tools.md) - [Lesson12: Creating Bootable USBs](/docs/Lessons/Markdown/Lesson12_Creating_Bootable_USBs.md) - [Lesson13: Z-Wave](/docs/Lessons/Markdown/Lesson13_Z-Wave.md) - [Lesson14: Ceiling Fans](/docs/Lessons/Markdown/Lesson14_Ceiling_Fans.md) ## FISSURE Challenge - Continuous Capture the Flag

The **FISSURE Challenge** is a continuous capture-the-flag contest built around the FISSURE framework. It is designed as an open learning tool where anyone can practice RF reverse engineering, explore new features, and tackle protocol-focused challenges. - New challenges are added over time as FISSURE evolves. - Solutions and walkthroughs are posted periodically on YouTube. [Solutions 1](https://www.youtube.com/watch?v=jYtqWwG_-kI) - Community members are encouraged to **submit their own challenges** for others to solve. Access the challenges at: [FISSURE Challenge](https://fissure.ainfosec.com/) ## License GPL-3.0 For license details, see LICENSE file. ## Contact Join the Discord Server: [https://discord.gg/JZDs5sgxcG](https://discord.gg/JZDs5sgxcG) Connect on LinkedIn: [FISSURE - The RF Framework](https://www.linkedin.com/company/fissure-the-rf-framework) Chris Poore - Assured Information Security, Inc. - poorec@ainfosec.com Business Development - Assured Information Security, Inc. - bd@ainfosec.com ## Testimonials ## Acknowledgments Special thanks to Dr. Samuel Mantravadi and Joseph Reith for their contributions to this project. ## Assured Information Security View our other open source projects at: https://ainfosec.dev/ If you have an interest in hacking, check out our [Can You Hack It?®](https://www.canyouhackit.com) challenge and test your skills! Submit your score to show us what you’ve got. AIS has a national footprint with offices and remote employees across the U.S. We offer competitive pay and outstanding benefits. Join a team that is not only committed to the future of cyberspace, but to our employee’s success as well.