btlejack
BlueVanClef
btlejack | BlueVanClef | |
---|---|---|
3 | 1 | |
1,837 | 6 | |
- | - | |
2.7 | 2.5 | |
7 months ago | 3 months ago | |
Python | Swift | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
btlejack
- Make a low-cost Bluetooth LE packet sniffer with Wireshark
- Dewalt makes nice cases for your hacking dongles
-
Is it possible to catch Bluetooth packets which are sent by some nearby device to another (not mine) device?
Yes, it is 100% possible, because I did it as part of my Masters dissertation into smart security devices. There are lots of tutorials online; personally I would avoid the Ubertooth as I found it really flaky. If you can get hold of 3 of the BBC micro:bit v1 (v2 doesn’t work) then btlejack is nice - https://github.com/virtualabs/btlejack. Had the best results with the nRF sniffer - https://www.nordicsemi.com/Products/Development-tools/nRF-Sniffer-for-Bluetooth-LE. If you have access to a couple of Raspberry Pi’s then Gattacker is a really cool tool for capturing traffic by spoofing a target device, so that the companion smartphone app connects to that. The traffic is then relayed to the other Pi, which then transmits it to the real Bluetooth device, so essentially operates as a MITM proxy. Had some great results with this, and it will really teach you the basics of Bluetooth LE - https://github.com/securing/gattacker. Prepared to be horrified at how many devices use no encryption, or when they do, use default paring codes. IoT security is poor full stop, but BLE is the worst of the worst.
BlueVanClef
-
Make a low-cost Bluetooth LE packet sniffer with Wireshark
I’ve used the Hollong sniffer[0]. Works well.
But BLE is a fairly secure protocol. There’s only a limited set of data that can be determined, without connecting to devices.
I wrote a few apps that act as sniffers[1] for Apple devices (including the Watch). Source available [2]. I haven’t really done much with the apps in a couple of years.
[0] https://www.aliexpress.us/item/3256804238048102.html?gateway...
[1] https://github.com/RiftValleySoftware/BlueVanClef
[2] https://itunes.apple.com/us/developer/rift-valley-software-i...
What are some alternatives?
gattacker - A Node.js package for BLE (Bluetooth Low Energy) security assessment using Man-in-the-Middle and other attacks
Bluetooth_LE_MITM - Man-in-the-Middle Relay program between a Bluetooth Low-Energy (BTLE) Peripheral and Central
btlejuice - BtleJuice Bluetooth Smart (LE) Man-in-the-Middle framework
esp8266_deauther - Affordable WiFi hacking platform for testing and learning