[TOOL] TBEAR - Transient Bluetooth Environment auditoR

• Previous message: SecuriTeam: "[NT] Novell GroupWise Plain Text Password Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: list@securiteam.com
Date: 23 Jun 2005 13:22:00 +0200

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

The SecuriTeam alerts list - Free, Accurate, Independent.

Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html

- - - - - - - - -

  TBEAR - Transient Bluetooth Environment auditoR
------------------------------------------------------------------------

SUMMARY

DETAILS

T-BEAR is a developing suite of applications designed to improve slash
"audit" the security of Bluetooth environments. By environment, we mean
anything from a home PAN, to your PDA or cell phone. The suite currently
consists of the following utilities, all of which are either included in
this package, or are under development (* indicates a currently included
tool):

 * TBEAR: A graphical BT device locater. 'tbear -h' for options.
If you find that you're missing devices during a scan, try adjusting the
SLEEPTIME and BT_TIMEOUT values in tbear.h. I suggest leaving the defines
at default unless you have obvious problems.

 * btsniff: A Bluetooth 'sniffer' for use with gnuradio.

 * btkbsniff: Designed to monitor data from a Bluetooth-enabled keyboard.
For encrypted traffic, decode options are available.

btvsniff: Designed to monitor voice data from BT headsets.
Decode options are available.

 * btcrackpin: Attempts to crack a PIN associated with encrypted BT data.

 * tbsearch: A BT hidden device locator. Kind of like Redfang.
Redfang 2.5 implements the features I've put into tbsearch, and then some.
Redfang 2.5 is without a doubt better quality than tbsearch. The direction
I'd like tbsearch to take is towards faster, more efficient device
location methods, since current implementations (including Redfang) by
their nature can take *forever* to find a device.

ADDITIONAL INFORMATION

The information has been provided by
<mailto:crossbox@stealth.kirenet.com> Joshua Davis.
To keep updated with the tool visit the project's homepage at:
<http://www.transient-iss.com/> http://www.transient-iss.com/

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

• Previous message: SecuriTeam: "[NT] Novell GroupWise Plain Text Password Vulnerability"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]