BtleJuice: The Bluetooth Smart Man-in-the-Middle Framework

Explore the world of Bluetooth Low Energy (BLE) security in this conference talk from Hack.lu 2016. Learn about BtleJuice, a groundbreaking framework for performing man-in-the-middle attacks on BLE-enabled devices. Discover how this tool addresses the challenges of intercepting communications between devices and applications, and spoofing device behavior to assess authentication. Gain insights into the framework's modular design, which allows for MAC spoofing and network-based data relay, enabling isolated testing environments. Witness real-world demonstrations of BtleJuice's capabilities, including data interception and on-the-fly modification, and understand its potential impact on security assessments for smart objects like fitness wristbands, locks, and healthcare devices. Presented by Damien Cauquil, a senior security researcher at Digital Security (CERT-UBIK), this talk offers valuable knowledge for security professionals and IoT enthusiasts alike.