Рет қаралды 5,576
In this video I have explained a critical Bluetooth vulnerability CVE-2023-45866 that allows unauthenticated users to inject keystrokes to vulnerable devices including widely used android devices too. I have demonstrated this vulnerability using a python script: BlueDucky running on Raspberry Pi 5 with it's internal Bluetooth adapter. Impact, affected device, Mitigation and lot more I have explained using few slides and annotation. If You are interested to watch a particular section of this video, below mentioned timestamps can be used to navigate.
00:00 - Start
01:27 - Warning ! This video is for educational purposes only
02:10 - CVE-2023-45866 vulnerability Details
03:49 - Impact(s) of the vulnerability: CVE-2023-45866
05:27 - Known affected devices
06:55 - The actual flaw as per CVE-2023-45866
07:35 - Initial Setup for BlueDucky
08:21 - Setup: Using Raspberry Pi 5
09:01 - Setup: Installing Dependencies and cloning GitHub Repo.
10:07 - Setup: Installing older version of BlueDucky on Raspberry Pi 5
12:35 - Running Blueducky on Raspberry Pi 5
16:06 - Mitigation
18:40 - Important Information
Slides and the commands can be downloaded from this Link: bit.ly/3xG0Yvi
Disclaimer: This video is for informational and educational purposes only. Information security, cybersecurity and ethical hacking is for everyone who is using digital information, smartphones and computers. To protect your information from hackers, you need know how hacking is done. That is why I am sharing my knowledge of such tools on this channel.
Related Videos on HID attack:
All about HID and WHID attacks and devices: • All about HID and WHID...
Learn HID attack on Kali NetHunter | show a fake Windows : • Learn HID attack on Ka...
Bypass Android lock screen, in case you have forgotten the PIN or pattern : • Bypass Android lock sc...
testing windows defender security with digispark: • Video
Follow us on:
Facebook: / clicksnbits
Instagram: / clicksnbits