search

pentestfunctions / BlueDucky

🚨 CVE-2023-45866 - BlueDucky Implementation (Using DuckyScript) 🔓 Unauthenticated Peering Leading to Code Execution (Using HID Keyboard)
1.27k stars 218 forks source link

No {blue}Bluetooth adapters{reset} have been detected #69

Closed BG7UHS closed 5 months ago

BG7UHS commented 5 months ago

The previous version is still usable

Screenshot_20240602-224204

Neowizard commented 5 months ago

It happens when bluetoothctl devices returns an empty list. It's a strange test, since you can attack a BT device that isn't broadcasting.

For playing around and POC, just remove the check on lines 661-665

    # List devices to see if any are connected
    result = subprocess.run(['bluetoothctl', 'devices'], capture_output=True, text=True)
    #if "Device" not in result.stdout:
        #print("{reset}[{red}!{reset}] {red}CRITICAL{reset}: No Compatible {blue}Bluetooth devices{reset} are connected.")
        #return False
BG7UHS commented 5 months ago

extremely grateful

Screenshot_20240606-214852