how to sniff zigbee ?

[Vebryn]

Hi,

A lot of info about sniffing using old stick. Too few info using new cc2652 stick.

Here is what I did,

• Download Uniflash and packet sniffer 2
• Start Uniflash
• Get your dongle model and revision

• Erase Entire Flash

• Perform blank check

• Select cc2652rlp fw ⚠️ ti fw disable bootloader, you will not able to flash again using bootloader ⚠️

• Flashing log

Stick blue led is blinking, hopelessly device is not found when I start Packet Sniffer 2

Here is my com port configuration :

Does someone succeed in sniffing using cc2652rb stick ? What should I get into packet sniffer 2 port ? Mine is empty How to get some debug information ?

Best regards.

References

• https://www.zigbee2mqtt.io/information/flashing_via_uniflash.html

[wintersteiger]

I have the same problem; I may have bricked my Sonoff dongle by flashing the wrong firmware (...\SmartRF Packet Sniffer 2\sniffer_fw\bin\cc2652rblp\sniffer_fw.hex). The CRC check failed after flashing because it is completely unresponsive. I'll see whether I can connect to it via JTAG instead of the USB/serial converter, but I don't have much hope for that to work.

[Vebryn]

Hi @wintersteiger,

Even if you leave bootloader enabled, fw will disable flashing using bootloader. In this case, JTAG flashing will working. You need CC-DEVPACK-DEBUG.

[wintersteiger]

Yeah, I was able to fix it yesterday, just a bit of a procedure with getting all the wires in the right places. The TI software is a bit of a pain to use and frequently failed to make connection, but after many retries it started working.

[Vebryn]

Did you manage to sniff your zigbee network ?

[wintersteiger]

No, not with the CC2652P, only with a CC2531. In the meanwhile I also received a CC2652RB, which I believe should work with the sniffer firmware that comes with Smart RF Sniffer 2, but I haven't tried it yet.