iGuRu.gr New Technology in Real Time. Views & Tweaks

New Technology in Real Time. Views & Tweaks

home / tools / bluescan: A powerful Bluetooth scanner

bluescan: A powerful Bluetooth scanner

in tools

Bluescan is an open source project from DBAPP Security HatLab's Sourcell Xu. Anyone can distribute bluescan by following the terms of the GPL-3.0 license.
bluescan 2 example le scan - bluescan: A powerful Bluetooth scanner
When violating new Bluetooth targets, the scanner can help us collect information, such as:
  • BR devices
  • LE devices
  • LMP features
  • GATT services
  • SDP services
  • Vulnerabilities (demo)

Conditions

sudo apt install libglib2.0-dev libbluetooth-dev

Installation

sudo pip3 install bluescan

Use

$ bluescan -h
bluescan v0.2.1

A powerful Bluetooth scanner.

Author: Sourcell Xu from DBAPP Security HatLab.

License: GPL-3.0

Usage:
bluescan (-h | --help)
bluescan (-v | --version)
bluescan [-i <hcix>] -m br [--inquiry-len=<n>]
bluescan [-i <hcix>] -m lmp BD_ADDR
bluescan [-i <hcix>] -m sdp BD_ADDR
bluescan [-i <hcix>] -m le [--timeout=<sec>] [--le-scan-type=<type>] [--sort=<key>]
bluescan [-i <hcix>] -m gatt [--include-descriptor] --addr-type=<type> BD_ADDR
bluescan [-i <hcix>] -m vuln --addr-type=br BD_ADDR

Arguments:
BD_ADDR Target Bluetooth device address

Options:
-h, --help Display this help.
-v, --version Show the version.
-i <hcix> HCI device for scan. [default: hci0]
-m <mode> Scan mode, support BR, LE, LMP, SDP, GATT and vuln.
--inquiry-len=<n> Inquiry_Length parameter of HCI_Inquiry command. [default: 8]
--timeout=<sec> Duration of LE scan. [default: 10]
--le-scan-type=<type> Active or passive scan for LE scan. [default: active]
--sort=<key> Sort the discovered devices by key, only support RSSI now. [default: rssi]
--include-descriptor Fetch descriptor information.
--addr-type=<type> Public, random or BR.

Scan BR devices -m br

example br scan 1 - bluescan: A powerful Bluetooth scanner

Scan LE devices -m le

example le scan - bluescan: A powerful Bluetooth scanner

Scan SDP services

example sdp scan 1 - bluescan: A powerful Bluetooth scanner

Scan LMP features

example lmp scan 1 - bluescan: A powerful Bluetooth scanner

Scan GATT services

example gatt scan - bluescan: A powerful Bluetooth scanner

Vulnerabilities scanning (demo)

$ sudo bluescan -m vuln --addr-type=br ??:??:??:??:??:??
... ...
CVE-2017-0785

Spread the news

Read them Technology News from all over the world, with the validity of iGuRu.gr

Follow us on Google News

Reader Interactions

Comment Policy:

IGuRu.gr does not post comments directly. Malicious comments, comments that include ads, or comments with insults are deleted without any notice. We do not adopt the views expressed by our readers.
Your comments will be displayed after approval by the administrators

Leave your comment

Your email address is not published. Τα υποχρεωτικά πεδία σημειώνονται με *