Write your own CSR Firmware!

Darkircop have released their tools for reverse engineering CSR Firmware. The tools include a disassembler dis.c for disassembling official firmware. An assembler as.cc for writing your own firmware is also included. With these tools you are now able to write your own firmware for your CSR based Bluetooth Dongle, which might even include raw access for Bluetooth sniffing. The source code for sniffing Bluetooth under Linux included, too.

It might even be possible to port the techniques for finding hidden Bluetooth devices described in this paper onto a CSR dongle. In the paper GNU Radio with USRP was used. The source code used for this attack can be downloaded, too.

8 thoughts on “Write your own CSR Firmware!”

  1. hi , i have a software custom made on windows xp on my labtop works on a linksys bluetooth dongle bt100 , the dongle i have was broken , no i use a new dongle but it wont work coz the softawre use only the old mac , can any one please advice , anyway to change the mac on the bt dongle ? ! , regards

  2. Pingback: jimsotonna
  3. Pingback: fb314ac4d21b
  4. Just downloaded this and it’s riddled with bugs and doesn’t compile (at least not for me on GCC 4.4.2).

  5. Hi,

    Thanks so much for this, I have not tested it yet but hopefully will, I’m not interested in sniffing etc but want to see how useful the modules are besides being standard bluetooth, I’m hoping to make an energy monitoring system for homes as a hobby project.

    Is there any more info on the CSR chip architecture, I could not find any online.

    Thanks

Comments are closed.