Monday, December 21, 2020

Bluetooth Pentesting guide 101 - Cheat Sheet

General Cheat Sheet

dmesg | egrep -i 'blue|firm'

Hcitool tool:

hciconfig - sudo apt-get install bluez

For Non LE Devices:

hcitool scan - to scan the basic bluetooth devices
hcitool info <baddr> - 

For LE Devices :

hcitool lescan - for scanning the LE devices 
hcitool leinfo <baddr> - for getting the info of the LE Devices

Install bleak 

sudo pip3 install bleak
sudo pip install service_identity

Usage : sudo bleak-lescan


sudo sdptool browse --tree --raw <baddr> : Browse all available services on the device specified by a Bluetooth address as a parameter



Post a Comment