OrangeCon Badge

BLESPlo.it Bluetooth

BLESPlo.it is a powerful framework tailored for Bluetooth Low Energy (BLE) mobile analysis, reverse engineering, and ecosystem security auditing. By flashing the companion firmware to your Orangecon badge via the Android app, you turn your M5StickS3 into an advanced mobile or remote bluetooth scanning, emulating and scripting device.

Getting started

The first step to get started with BLESplo.it is to download the app from the Google Play store, after which you can flash your badge (or other ESP32S3 device) directly from the app. This is under the remote tab using the “Flash firmware via USB”.

After flashing the device starts in WiFi mode after which you can connect to it using default creds (change these!) or connect as STA to your own network.

Operation

The app has thee main operating modes: local, remote and relay (coming soon…)

By default the application opens the local scan mode. Here you can see the the BDADDR (“mac”) address along with the name and fingerprint information (when available.) Each entry also has the signal strength (smaller value means stronger signal so device is closer.)

For connectable devices there are additional buttons on the right are to perform a quick action (lua script) or form a manual connection. Within the active connections tab you can view and manage the open GATT connections.

Tapping on the device will also expand more information on the packet structure. You can see the rax hex, along with the parsed information (according to the Bluetooth specification.) There is also the option to decode via a matching script (tap on the script name for more info.)

Badge

When connected to the badge, via WebSocket or USB cable under the remote window you can access these same same scannning functions as the local window are avaliable. Along with this there is a Sim tab which you can use to simulate any BLE device. This is done based on a Device Library entry definition.

Further reading

Prev
Flashing
Next
Hacking multi-tool