detecting-bluetooth-low-energy-attacks

Featured

Detects and analyzes Bluetooth Low Energy (BLE) security attacks including sniffing, replay attacks, GATT enumeration abuse, and Man-in-the-Middle interception. Uses Ubertooth One and nRF52840 sniffers for packet capture, the bleak Python library for GATT service enumeration, and crackle for BLE encryption cracking. Use when assessing IoT device BLE security, monitoring for BLE-based attacks on wireless infrastructure, or performing authorized BLE penetration testing. Activates for requests involving BLE security assessment, Ubertooth sniffing, GATT enumeration, or BLE replay detection.

AI & Automation 12,642 stars 1468 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Detecting Bluetooth Low Energy Attacks ## Disclaimer This skill is intended for authorized security testing, penetration testing engagements, CTF competitions, and educational purposes only. Sniffing, intercepting, or manipulating Bluetooth communications without authorization may violate federal wiretapping laws and local regulations. Always obtain explicit written permission before conducting any wireless security assessment. ## When to Use Use this skill when: - Performing authorized BLE security assessments of IoT devices, medical devices, or smart locks - Monitoring a wireless environment for BLE-based replay attacks, spoofing, or unauthorized enumeration - Analyzing BLE packet captures to detect Man-in-the-Middle attacks or pairing exploitation - Enumerating GATT services and characteristics to identify insecure read/write permissions on BLE peripherals - Assessing BLE encryption strength and testing for crackable pairing exchanges - Building BLE intrusion detection capabilities for wireless security monitoring **Do not use** for intercepting BLE communications without explicit authorization. Do not deploy BLE scanning tools in environments where wireless monitoring is prohibited. ## Prerequisites - Ubertooth One hardware for passive BLE sniffing, or Nordic nRF52840 USB Dongle with nRF Sniffer firmware - Python 3.10+ with pip - bleak library: `pip install bleak` (cross-platform BLE GATT client) - Wireshark with BLE dissector plugins for packet analysis - crackl...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
today
Language
Python
License
Apache-2.0

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Featured

performing-bluetooth-security-assessment

Assess Bluetooth Low Energy device security by scanning, enumerating GATT services, and detecting vulnerabilities

12,642 Updated today
mukul975
AI & Automation Featured

detecting-mobile-malware-behavior

Detects and analyzes malicious behavior in mobile applications through behavioral analysis, permission abuse detection, network traffic monitoring, and dynamic instrumentation. Use when analyzing suspicious mobile applications for data exfiltration, command-and-control communication, credential stealing, SMS interception, or other malware indicators. Activates for requests involving mobile malware analysis, app behavior monitoring, trojan detection, or suspicious app investigation.

12,642 Updated today
mukul975
AI & Automation Featured

performing-ios-app-security-assessment

Performs comprehensive iOS application security assessments using Frida for dynamic instrumentation, Objection for runtime exploration, SSL pinning bypass for traffic interception, keychain extraction for credential analysis, and IPA static analysis for binary-level review. Use when conducting authorized iOS penetration tests, evaluating mobile app security posture against OWASP MASTG, or assessing iOS app data protection and transport security controls. Activates for requests involving iOS app pentesting, Frida-based iOS instrumentation, mobile app SSL pinning bypass, or IPA reverse engineering.

12,642 Updated today
mukul975
Data & Documents Listed

apple-ble-core-bluetooth

Apple CoreBluetooth state restoration / typed CBATTError / peripheral nil guard / 12 BLE observation points. Opt-in skill carved out of source/rules/common/build-and-debug-ios.md under ADR-0037 (rule scope policy). Invoked via ADR-0036 `--suggest-skills` when CoreBluetooth import is detected.

0 Updated today
ttamakijp
AI & Automation Featured

intercepting-mobile-traffic-with-burpsuite

Intercepts and analyzes HTTP/HTTPS traffic from mobile applications using Burp Suite proxy to identify insecure API communications, authentication flaws, data leakage, and server-side vulnerabilities. Use when performing mobile application penetration testing, assessing API security, or evaluating client-server communication patterns. Activates for requests involving mobile traffic interception, Burp Suite mobile proxy, API security testing, or mobile HTTPS analysis.

12,642 Updated today
mukul975