Bluetooth-Unlock
internalblue
Bluetooth-Unlock | internalblue | |
---|---|---|
1 | 2 | |
54 | 656 | |
- | 1.1% | |
0.0 | 3.7 | |
10 months ago | 3 months ago | |
Python | Python | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Bluetooth-Unlock
-
Dynamic Lock with Bluetooth
Look at bluetooth-unlock , and see if it fits.
internalblue
-
Bluetooth relay attacks allow Tesla Model 3 / Y to be unlocked and driven away
I wonder how they deal with the channel hopping? I remember BT "Classic" derives the hoping sequence from the encryption key. Not sure if that changed significantly for BLE? So either they establish normal connections between relays and victims (meaning two keys, one between each relay and each victim), and then forward data coming out of the Link Layer between the attacker devices - or they need to sniff the whole spectrum in case there is just one key between car and fob.
Last time I checked, sniffing the full spectrum of BT required three SDRs, meaning six in total; making this attack rather expensive to pull off (no problem for professional thieves though, I guess). OTOH if they can use any BT stack (or manipulate it with e.g. InternalBlue[1]), potential carjackers just need two Android Phones and good WiFi :(
[1] InternalBlue: https://github.com/seemoo-lab/internalblue
What are some alternatives?
medsec - Network, recon and offensive-security tool for Linux systems. [Moved to: https://github.com/medpaf/hawk]
swiftGuard - Anti-forensic macOS tray application designed to safeguard your system by monitoring USB ports.
secimport - eBPF Python runtime sandbox with seccomp (Blocks RCE).
pytile - 📡 A simple Python API for Tile® Bluetooth trackers
BLEHeartRateLogger - Bluetooth Low-Energy Heart Rate Monitor data logging in Python
flipperzero-firmware - Flipper Zero firmware source code
bluing - An intelligence gathering tool for hacking Bluetooth