Rizenyte AI Lab
Rizenyte AI Lab
HOME ABOUT PROJECTS BLOG COLLAB CONTACT

REKON V1

Dual-ESP32 multi-pentesting device

Prototype Multi-Pentesting Device

Rekon V1 is my ongoing lab project — a multi-pentesting device built around dual ESP32-S3 boards. One ESP handles the interface, storage, NFC, IR… the other one is a dedicated engine for WiFi, Bluetooth, and Sub-GHz work. Both chips talk to each other over UART, so the whole system runs in parallel like a tiny multi-processor setup.

It's still in the prototype phase, so the hardware is raw, experimental, and always evolving.

Project Gallery

Current prototype build and development progress

REKON V1 Prototype
REKON V1 Internal View
REKON V1 Board Layout
REKON V1 Components
REKON V1 Testing

Use arrows to navigate or click the expand button for full view

REKON V1 – Capability Overview

HARDWARE CORE

Rekon V1 is built using:

Two ESP32-S3 boards working together
PN532 module for NFC
Two CC1101 modules (433 MHz & 868 MHz)
IR transmitter + IR receiver
SD card module
Native USB HID support
UART link between the chips

ESP #1 – MAIN CONTROLLER

This ESP is the part you interact with:

  • • Runs the UI and menus
  • • Manages NFC through the PN532
  • • Handles IR learning & replay
  • • Reads and writes files on the SD card
  • • Handles the USB HID / BadUSB behavior
  • • Connects to the PC through USB-C
  • • Stores payloads, logs, dumps, and scripts

ESP #2 – RADIO / NETWORK ENGINE

This ESP handles all radio-heavy tasks:

  • • WiFi scanning and test operations
  • • Bluetooth/BLE activity
  • • Controls both CC1101 radios
  • • Raw Sub-GHz scanning
  • • Handles packet capture
  • • Parallel multi-band radio work
  • • Communicates with ESP #1 via UART

NFC / PN532 FEATURES

  • • Read NFC tag UIDs
  • • Scan different NFC tag types
  • • Read/write NTAG
  • • Read/write Mifare Classic 1K/4K
  • • Dump Mifare sectors to SD
  • • Card emulation
  • • NDEF read/write
  • • Import/export NFC files
  • • Anti-collision scanning

SUB-GHz / CC1101 FEATURES

  • • Two separate radio modules
  • • ASK/OOK modulation
  • • Raw signal capture
  • • Basic replay for non-rolling codes
  • • Simple IoT remote replay
  • • Detecting rolling code presence
  • • Logging radio activity to SD
  • • Dual-band operations

WIFI FEATURES

  • • 2.4 GHz scanning
  • • Broadcast-heavy modes
  • • Capturing handshake-type data
  • • Creating test access points
  • • Packet-level interactions
  • • Device identity spoofing
  • • Logging to SD

BLUETOOTH / BLE FEATURES

  • • Scan for BLE devices
  • • Spoof BLE advertisements
  • • Change BLE MAC identity
  • • Limited packet interactions
  • • Basic device info dumping
  • • Logging to SD

IR FEATURES

  • • Learn IR signals
  • • Replay them
  • • Save IR codes to SD
  • • Support for multiple IR formats
  • • Can act like a universal remote

USB HID / BADUSB FEATURES

  • • Keyboard emulation
  • • Auto-type behavior
  • • Support for script-style payloads
  • • Serial shell mode
  • • Firmware updates through USB

Work in Progress

This project is still being built, updated, tested, and improved. The hardware and firmware are constantly evolving as I experiment with new features and optimizations.