Possibly a great tech tool and a snoopy hacker device :\ diyBluetooth sniffer for $10
rwgast_logicdesign
Posts: 1,464
So if you read what I write you know ive been looking into making a BT programmer for the prop that replaces the prop plug totally, using cheapo ebay bt modules! Well Im pretty sure this dream is going to come true realtively soon so any of you looking to program a prop via android home spuns been recompiled Im going to port gcc and prop loader to ARM soon. Im just waiting on the dongles from china to build the thing with a reset circuit, thanks to jazzed 
!!
Anyways I was wondering if i could somehow use my BT kb with the modules over BT ssp profile and not hid. So I started looking into a bt sniffer, well apparently these CSR4 chips are the only chip to support sniffing as long as they have external eeprom which these do..... Im about 90% sure it is all the right hardware to pull this off..
http://www.seguridadmobile.com/bluetooth/bluetooth-security/building-your-own-Bluetooth-sniffer.html#BuildSniffer
Basically someone wrote some software to reflash the external rom chips on these things with a professional BT analyzers firmware and then some other guy figured out how to crack into the same piconet group without the handshake packets... Now this is totally awesome as it lets us have a cheapo bt protocall analyzer but with a little more hacking the firmware it has been turned into a man in the middle attack for collecting bt packets and audio transmissions (i think audio).
Im pretty sure you have to flash the thing via USB wich the ebay mods dont have broken out but thanks to the data sheets jazzed found and sent to me (search mdfly ttl bluetooth) and AT commands you can break out the usb pins spi pins and rts/cts pins ive always known were there since i have a csr4 usb stick sitting next to me. So basically im thinking you can flash the rom of this thing then connect to a prop and it could log all the data or use another bt stick to connect to your cell and reroute the ease dropping over 3g
. now this is a totally evil plan and im going to do someresearch tmmrow since i just got linux up again (so i can port gcc to arm with the android ndk) and make sure my csr BT module is compatible with this, i had an ebay module which didnt have the breakoutboard and I cburned the tx pad off of cuz i suck at smt and its the same thing i did to my totally confirmed compatible csr usb dongle. Basically im sayin if my usb dongle supposrt this im sure the ebay modules will!
Anyways im not encouraging you to walk into starbucks logging people BT packets but hey maybe itd be fun to play with although probably useless in the end, but for 5 bucks plus a prop we now have a BT analyzer!
!!Anyways I was wondering if i could somehow use my BT kb with the modules over BT ssp profile and not hid. So I started looking into a bt sniffer, well apparently these CSR4 chips are the only chip to support sniffing as long as they have external eeprom which these do..... Im about 90% sure it is all the right hardware to pull this off..
http://www.seguridadmobile.com/bluetooth/bluetooth-security/building-your-own-Bluetooth-sniffer.html#BuildSniffer
Basically someone wrote some software to reflash the external rom chips on these things with a professional BT analyzers firmware and then some other guy figured out how to crack into the same piconet group without the handshake packets... Now this is totally awesome as it lets us have a cheapo bt protocall analyzer but with a little more hacking the firmware it has been turned into a man in the middle attack for collecting bt packets and audio transmissions (i think audio).
Im pretty sure you have to flash the thing via USB wich the ebay mods dont have broken out but thanks to the data sheets jazzed found and sent to me (search mdfly ttl bluetooth) and AT commands you can break out the usb pins spi pins and rts/cts pins ive always known were there since i have a csr4 usb stick sitting next to me. So basically im thinking you can flash the rom of this thing then connect to a prop and it could log all the data or use another bt stick to connect to your cell and reroute the ease dropping over 3g
. now this is a totally evil plan and im going to do someresearch tmmrow since i just got linux up again (so i can port gcc to arm with the android ndk) and make sure my csr BT module is compatible with this, i had an ebay module which didnt have the breakoutboard and I cburned the tx pad off of cuz i suck at smt and its the same thing i did to my totally confirmed compatible csr usb dongle. Basically im sayin if my usb dongle supposrt this im sure the ebay modules will!Anyways im not encouraging you to walk into starbucks logging people BT packets but hey maybe itd be fun to play with although probably useless in the end, but for 5 bucks plus a prop we now have a BT analyzer!
Comments
But please, don't go over to the dark side.
http://networksecuritytoolkit.org/nst/index.html
http://www.makeuseof.com/tag/download-50-cool-live-cds/
http://hackers001.blogspot.tw/2011/09/wifi-slax-wireless-hacking-live-cd-31.html
There are traffic sensing devices that detect traffic speed by snooping on bluetooth transmissions from vehicles, detecting the transmissions from the same vehicles further on down the highway, then measuring the elapsed time to get the vehicle speed.
So there are valid uses for those snoopers!
Snooping and hacking are necessary parts of learning all about modern electronics. Without exploring things on your own, you can't build confidence in your newly acquired knowledge.
In many cases, others will appreciate that you can help them make their systems MORE secure.
so are the true sniffers your acually pulling the raw bt data out of the air or just kind of tracking them based on there bt signal
See attachment.
http://hakshop.myshopify.com/products/ubertooth-one
-dan
This was originally a Unix/Linux tool, but it has also been ported over to Windows.
I have a current situation where my ADSL service is complete, but the landlady installed a fiberoptic service to each unit and I cannot get certain items on it.
There seem to be some blocked ports, so I can use Netcat to locate them and have here firewall adjusted so everyone in the building gets full service. As it is, I cannot use Yahoo Mail or to online banking. And neither Yahoo or my bank will tell me which ports are required.
http://www.ol-service.com/sikurezza/doc/netcat_eng.pdf