andrewfg
(Andrew Fiddian-Green)
December 12, 2024, 5:52pm
223
I used an nRF52840-Dongle .
The manufacturer provides a standard firmware that you can flash on it to make it function as a BLE network interface for Wireshark.
Then you can sniff the traffic while you pair the device with the PowerView app. And one of the first few transactions contains the 32 byte encryption key.
cloom
December 12, 2024, 6:19pm
224
So I will have to forget my device and re-pair them?
Is it the same key for all the device? Or 1 key per device?
I have ESPs (ESP32 and ESP8266) so I would prefer to use them if that’s feasible.
If you have special hardware, it seems I cannot use my integrated bluetooth (Lenovo X1 Gen9) to sniff traffic with Wireshark?
andrewfg
(Andrew Fiddian-Green)
December 12, 2024, 6:48pm
225
Yes.
It is the same key for each user account.
@patman did that I think.
Probably it is regular Bluetooth rather than BLE…
1 Like
patman
(Patrick)
December 14, 2024, 5:32pm
226
JFYI: I did not yet have enough time to succeed on using ESP32. I sniffed via recording the BT traffic on my mobile using the PowerView app.
cloom
December 15, 2024, 2:57pm
227
I guess you need to have root access on your device? I only have 2 corporate phones I cannot use for this.
I’ll see if I can get time to have something to sniff BLE during the holidays. Confidence: 15%