Bluetooth Pentesting?

From: steven@xxxxxxxxxxx
Date: Mon, 21 Aug 2006 13:06:28 -0700 (PDT)

Greetings,

Does anyone on this list do bluetooth pentesting? I have read tons of old
posts and found plenty of tools to do a few different things. However, I
do not find any of it to be overly useful. Most of the tools out there
seem to be aimed at certain cell phones or are very specific. I am trying
to find out what the risks are of all kinds of devices. I have found
btscanner to be pretty good at detecting devices but it doesn't do too
much other than detect it. I can scan and pickup 150+ devices and the
Vulnerable to: section is always the same.. blank. Are all the bluetooth
devices I find so super secure? I pick up cars, phones, PDAs, computers,
keyboards, etc. Are there really no risks with these devices?

Is there a better/good tool out there that can really find various
bluetooth devices and tell me what -real- risks might be associated with
them -- on top of that.. is there a good tool for trying to pull data or
use these devices? Example: a dell or mac laptop has bluetooth on, or a
Treo with it on.. what are the possible risks? What tools can actually
test if authentication is required for connecting with these devices.. or
whether I can bruteforce it or connect at all?

Any suggestions would be greatly appreciate and I am really trying to do
something more than just "detect" bluetooth devices. I need to know if
there are risks here.

Thanks

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php
------------------------------------------------------------------------

Follow-Ups:
- Re: Bluetooth Pentesting?
  - From: Times Enemy
- RE: Bluetooth Pentesting?
  - From: Robert D. Holtz

References:
- Penetration Testing - Human Factor
  - From: Marios A. Spinthiras

Prev by Date: Re: MAC address spoofing - conflict?
Next by Date: R: MAC address spoofing - conflict?
Previous by thread: Penetration Testing - Human Factor
Next by thread: RE: Bluetooth Pentesting?
Index(es):
- Date
- Thread

Relevant Pages

Re: Bluetooth Pentesting?
... radio directly into someone's car stereo with a directional antenna. ... Subject: Bluetooth Pentesting? ... to find out what the risks are of all kinds of devices. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)
Re: Bluetooth Pentesting?
... Subject: Bluetooth Pentesting? ... to find out what the risks are of all kinds of devices. ... Need to secure your web apps? ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)
RE: Bluetooth Pentesting?
... radio directly into someone's car stereo with a directional antenna. ... Subject: Bluetooth Pentesting? ... to find out what the risks are of all kinds of devices. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)
Re: Bluetooth Pentesting?
... Of course there are risks with Bluetooth. ... Bluetooth security is generally so pathetic, in regards to factory set defaults in use, that all you need is some sort of method of attempting a passkey, such as a BT enabled laptop, or even a phone or PDA, and about three generic attempts. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)
SV: Bluetooth Pentesting?
... I have not been monitoring bluetooth security for the last year, ... BLUETOOTH SECURITY TOOLS ... be aimed at certain cell phones or are very specific. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)