Stats
Actions
Tags
Assesses BLE device security by scanning nearby devices, enumerating GATT services/characteristics, and detecting vulnerabilities like unencrypted reads/writes or known weak UUIDs. Useful for IoT/wireless audits.
How this skill is triggered — by the user, by Claude, or both
Slash command
/cybersecurity-skills-zh:performing-bluetooth-security-assessmentThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
本技能使用 Python bleak 库执行蓝牙低功耗(BLE,Bluetooth Low Energy)安全评估。BLE 设备广泛应用于物联网(IoT)、医疗健康、健身和智能家居等场景,许多设备出厂时安全控制薄弱甚至完全缺失。本评估可识别未加密的 GATT 特征值、广播敏感数据的设备、已知漏洞设备指纹,以及配对配置不安全的问题。
本技能使用 Python bleak 库执行蓝牙低功耗(BLE,Bluetooth Low Energy)安全评估。BLE 设备广泛应用于物联网(IoT)、医疗健康、健身和智能家居等场景,许多设备出厂时安全控制薄弱甚至完全缺失。本评估可识别未加密的 GATT 特征值、广播敏感数据的设备、已知漏洞设备指纹,以及配对配置不安全的问题。
代理使用 bleak 的异步(asyncio)API 发现附近的 BLE 设备,连接到目标设备,枚举所有 GATT 服务和特征值,并分析每个特征值的安全属性。它会标记允许未认证读/写访问敏感数据的特征值,并识别符合已知漏洞特征的设备。
pip install bleak)扫描 BLE 设备:使用 BleakScanner 发现范围内所有广播的 BLE 设备。捕获设备名称、地址(MAC)、RSSI 信号强度和已广播的服务 UUID。
识别目标设备:按名称模式、地址或最低信号强度筛选发现的设备。标记广播了默认名称或已知漏洞名称的设备。
连接并枚举 GATT 服务:使用 BleakClient 连接目标设备并遍历所有 GATT 服务。对每个服务记录其 UUID、描述和包含的特征值。
分析特征值属性:对每个特征值检查其属性(读取、写入、无响应写入、通知、指示)。标记无需认证或加密即可读写的特征值。
检查已知漏洞 UUID:将发现的服务和特征值 UUID 与已知漏洞或敏感服务数据库(心率、血压、设备信息、电池电量)对比,这些服务应要求加密。
检测未加密数据暴露:尝试读取应受保护的特征值。未认证即可成功读取敏感数据表明缺少安全控制。
生成安全报告:将所有发现整合成带严重性分级和修复建议的结构化 JSON 报告。
{
"assessment_type": "ble_security_audit",
"target_device": {
"name": "SmartBand-XR",
"address": "AA:BB:CC:DD:EE:FF",
"rssi": -42
},
"services_found": 5,
"characteristics_found": 18,
"findings": [
{
"severity": "high",
"finding": "Heart Rate Measurement readable without encryption",
"uuid": "00002a37-0000-1000-8000-00805f9b34fb",
"properties": ["read", "notify"],
"remediation": "Enable encryption requirement on characteristic"
}
],
"risk_score": 7.5
}
npx claudepluginhub killvxk/cybersecurity-skills-zhScans BLE devices, enumerates GATT services and characteristics, and flags unencrypted or vulnerable configurations using the Python bleak library.
Scans BLE devices, enumerates GATT services and characteristics, and flags unencrypted or vulnerable configurations using the Python bleak library.
Assesses Bluetooth Low Energy device security using Python bleak: scans nearby devices, enumerates GATT services/characteristics, detects unencrypted access and known vulnerabilities.