Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Questions about the bluetooth protocol
New Posts  All Forums:Forum Nav:

Questions about the bluetooth protocol

post #1 of 3
Thread Starter 
I'm still waiting for my PS4 to arrive, as it seems to have gone "missing" during shipping. While it's still in limbo, I was wondering if anybody could point my to any good resources regarding the bluetooth protocol. Yes, I've Googled, no, I have no idea what so ever about bluetooth except that it operates on roughly the same frequency as wifi. What are the handshakes like? What encryption is commonly used? Have there been successful cracks of this encryption?
So that bring me down to the basic question, are there packet sniffers/capture software/devices for bluetooth. Free would be preferable, linux/windows doesn't matter, wide compatibility with adapters would also be nice, doesn't need to have a GUI. If there is any program like this, please post it here.
As the new dualshock controller uses bluetooth, I was wondering if I could capture the packets and see if I could convert mouse and keyboard signals via the pc and route it to the PS4. Any information would be appreciated.
post #2 of 3
Theres teh UbiTooth which is like $100 dollars for sniffing smile.gif (is it hak5 that sells them?)

The rfc for it should have a welth of information too smile.gif

All bluetooth is AES encypted though i think so you wont be able to do that (boo) (well without some hacky hacky)
Escobar
(9 items)
 
Supercomputer ^_^
(13 items)
 
 
CPUMotherboardGraphicsRAM
1055T M4A88T-D EVO USB3 ATI 6850 4 GB 
Optical DriveOSMonitorKeyboard
DVD RW Windows 8 Pro lp1900 + 2 X 15 inch dell Microsoft Comfort Curve 
PowerCase
600watt thermaltake antec 200 
  hide details  
Reply
Escobar
(9 items)
 
Supercomputer ^_^
(13 items)
 
 
CPUMotherboardGraphicsRAM
1055T M4A88T-D EVO USB3 ATI 6850 4 GB 
Optical DriveOSMonitorKeyboard
DVD RW Windows 8 Pro lp1900 + 2 X 15 inch dell Microsoft Comfort Curve 
PowerCase
600watt thermaltake antec 200 
  hide details  
Reply
post #3 of 3
Quote:
Originally Posted by Ulquiorra View Post

Theres teh UbiTooth which is like $100 dollars for sniffing smile.gif (is it hak5 that sells them?)

The rfc for it should have a welth of information too smile.gif

All bluetooth is AES encypted though i think so you wont be able to do that (boo) (well without some hacky hacky)

Unless Sony have done some weird stuff to the PS4 controller to prevent it handshaking against normal machines, you should be able to pair the thing with a normal laptop bluetooth controller (or USB dongle)

Then your basic Linux tools can do the rest as you can attach the bluetooth device to a TTY and control the bluetooth device in much the same way as you would a serial connection or telnet (this is how I played around with my Wiimotes, which also work over bluetooth)

This way, you don't need to attempt a MITM attack over the air; you're directly connected to the bluetooth device and can see which signals each button on the gaming pad sends. The drawback to this is it's anything but user friendly (ie you're rooting around in the Linux command line); however it's still going to be easier than trying to crack AES then reverse engineering the data packets based on RFC documentation.
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Questions about the bluetooth protocol