BadKB: Prompt for connections in BLE Spam style

Flipper-XFW / Xtreme-Firmware

The Dom amongst the Flipper Zero Firmware. Give your Flipper the power and freedom it is really craving. Let it show you its true form. Dont delay, switch to the one and only true Master today!

https://flipper-xtre.me

GNU General Public License v3.0

9.16k stars 650 forks source link

BadKB: Prompt for connections in BLE Spam style #461

Open analyserdmz opened 7 months ago

analyserdmz commented 7 months ago

I was wondering if it would be entirely impossible to execute a bad keyboard attack if a target device were to actually tap or click on the 'pair' button that appears when spoofing with BLE.

Just think about it. What if...?

Mr-Proxy-source commented 7 months ago

I don't think that is possible.

pryh4ck commented 7 months ago

I'm assuming I'm reading wrong and you're asking to execute a BLE HID attack WITHOUT pairing them first? No, however Bluetooth attacks get more and more sophisticated, so with kali or especially blackarch or if you spent some time researching anything is technically possible. Consider other ways to do HID attacks like mousejacking I'm not sure I haven't done looked in a while. Why Don't you get termux on your phone or if iPhone a kali vm (/UTM has iOS micro containers)

Willy-JL commented 7 months ago

really depends on the implementation. might be possible, needs some tinkering. its on my radar, just not a priority.