[New Tutorial For BT3 ONLY]One bluetooth post to rule them all!

[JF1980]

Quote:

Originally Posted by DeL3e7

what kind of hacking can be done without pairing?

From what I can see not much at all unless the phone is 10+ years old!

[Dr_GrEeN]

Thanks -=xploits=-

And yes sunnyd24 sorry a typo error I'm sorry and I'l correct it now.

[sunnyd24]

No problem, Glad I could be of help!
Dr Green, the tutorials must be quite difficult to produce. Thanks anyway!

[Dr_GrEeN]

Sorry ju1ce didn't see you there heres the link to the card ju1ce added.

http://www.a7eng.com/products/embedd.../eb502-HCI.htm

sunnyd24 na these tutorials are easy I am planning on a advanced bluetooth hacking guide explaining abit more on the workings of bluetooth in general, how the old hacks work, bluetooth sniffing in practice yadayada

And reading more it looks like bluez is now in the process of adding a csr sniffer google csrsniffer.c

EDIT

Going to be adding some more info on the CSR dongle modification in the next couple of hours. If you are intrested in doing this hack, I would suggest going back and reading the moddifications to the post

[sardinemaster]

hi!
Can I just say this looks very interesting, BUT one thing in this thread is missing... What is the actual point of this? What can you do by putting all these commands in?Bluesnarfing? What is it? What does it do?
You guys probably want to beat me up for my stupidity, but I am quite curious to know what it is, as it looks fairly interesting.

Cheers.

[spudgunman]

I am cuerious as well as to what the RAW mode will do... I show the following and dont know why I want to hack it - my usb bluetooth also seems to look like a hacked version but its not in RAW mode

Code:

bt ~ # bccmd psget -s 0x0000 0x02be
USB vendor identifier: 0x0a12 (2578)
bt ~ # bccmd psget -s 0x0000 0x02bf
USB product identifier: 0x0002 (2)
bt ~ # hciconfig hci0
hci0:   Type: USB
        BD Address: 00:0C:41:E1:FF:81 ACL MTU: 192:8 SCO MTU: 64:8
        UP RUNNING
        RX bytes:197 acl:0 sco:0 events:15 errors:0
        TX bytes:124 acl:0 sco:0 commands:14 errors:0

bt ~ # hciconfig hci0 -a
hci0:   Type: USB
        BD Address: 00:0C:41:E1:FF:81 ACL MTU: 192:8 SCO MTU: 64:8
        UP RUNNING
        RX bytes:197 acl:0 sco:0 events:15 errors:0
        TX bytes:124 acl:0 sco:0 commands:14 errors:0
        Features: 0xff 0xff 0x0f 0x00 0x00 0x00 0x00 0x00
        Packet type: DM1 DM3 DM5 DH1 DH3 DH5 HV1 HV2 HV3
        Link policy:
        Link mode: SLAVE ACCEPT
        Name: 'fukme'
        Class: 0x000000
        Service Classes: Unspecified
        Device Class: Miscellaneous,
        HCI Ver: 1.1 (0x1) HCI Rev: 0x20d LMP Ver: 1.1 (0x1) LMP Subver: 0x20d
        Manufacturer: Cambridge Silicon Radio (10)

bt ~ #

[Dr_GrEeN]

@ sardinemaster What a stupid question !!! I'm not going to waste my time answering those sort of questions !

@ spudgunman It looks like you may have some problems. Can you post the output of

Code:

bccmd psget -s 0x0001 0x02bf

[spankdidly]

Quote:

Originally Posted by Dr_GrEeN

@ sardinemaster What a stupid question !!! I'm not going to waste my time answering those sort of questions !

[/code]

LOL, you just did!

You know how Par1s h1lton's phone got h4cked and all of her phone numbers got posted on the net? Well that was some sort of bluesnarf attack. You can do stuff like that. Why anyone would? I'm not sure. But if you were targeting someone then it would be something worth having in your arsenal. Then you can make one of these bad boys and do it from a few cities away.

http://www.boingboing.net/2005/03/13...-a-blueto.html

[juststormy]

Hi,

thanks a lot for these huge introduction into bluetooth.
i'm suddenly at the point where to use bluesnarfer or bluebugger.
i cannot find your video where you wanna explain how theese works? I think i'm blind ;-)
Normally i'm only interested in WLAN and not bluetooth, this should only be a short excursion into bluetooth, so i hope you can show it to me :-)

Thank's a lot men!

[Dr_GrEeN]

@ spankdidly yea good point and then sniper rifles are cool until you get piped of by a police sniper thinking you are a terrorist

Did you know that paris hilton was not the victim of any "hack". The guy used his social engineering skills to get the info he needed. Well thats what I was told Not sure who he rang or conned for pictures like that lol

Sorry I did upload it but it was terrible quality and never bothered to do it again hang on il upload it now