TL;DR
BTLEmap is a comprehensive tool inspired by Nmap that enables device discovery, service enumeration, and security auditing for Bluetooth Low Energy environments, enhancing BLE security analysis capabilities.
Contribution
It introduces BTLEmap, a novel BLE auditing application with features like device fingerprinting, advertisement analysis, and a user-friendly interface, extending security auditing tools to BLE networks.
Findings
Supports device enumeration and GATT service discovery.
Provides a BLE advertisement dissector and data export features.
Offers a user-friendly UI with proximity visualization.
Abstract
The market for Bluetooth Low Energy devices is booming and, at the same time, has become an attractive target for adversaries. To improve BLE security at large, we present BTLEmap, an auditing application for BLE environments. BTLEmap is inspired by network discovery and security auditing tools such as Nmap for IP-based networks. It allows for device enumeration, GATT service discovery, and device fingerprinting. It goes even further by integrating a BLE advertisement dissector, data exporter, and a user-friendly UI, including a proximity view. BTLEmap currently runs on iOS and macOS using Apple's CoreBluetooth API but also accepts alternative data inputs such as a Raspberry Pi to overcome the restricted vendor API. The open-source project is under active development and will provide more advanced capabilities such as long-term device tracking (in spite of MAC address randomization) in…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
