LinuxCommandLibrary

crackle

crack Bluetooth Low Energy encryption

TLDR

Crack BLE encryption from pcap file

$ crackle -i [capture.pcap]
copy
Crack with specific LTK
$ crackle -i [capture.pcap] -l [ltk_hex]
copy
Output decrypted traffic
$ crackle -i [capture.pcap] -o [decrypted.pcap]
copy

SYNOPSIS

crackle [options] -i input.pcap

DESCRIPTION

crackle cracks Bluetooth Low Energy (BLE) encryption. It exploits weaknesses in the BLE pairing process to recover encryption keys and decrypt captured traffic.
Requires captured BLE packets including the pairing exchange. Works with BLE Legacy Pairing.

PARAMETERS

-i file

Input pcap file with BLE traffic.
-o file
Output file for decrypted traffic.
-l ltk
Long Term Key in hexadecimal.

CAVEATS

Only effective against BLE Legacy Pairing (Bluetooth 4.0/4.1). LE Secure Connections (4.2+) are not vulnerable. Use only for authorized security testing.

SEE ALSO

wireshark(1), btlejack(1)

> TERMINAL_GEAR

Curated for the Linux community

Copied to clipboard

> TERMINAL_GEAR

Curated for the Linux community