Wireless Attacksbluetoothdiscoveryubertoothbletracking

BlueHydra

BlueHydra is a Bluetooth device discovery service built on top of the bluez library. It uses ubertooth where available to track both classic and low energy (LE) Bluetooth devices over time.

Description

BlueHydra provides Bluetooth device discovery capabilities, making it useful for identifying and tracking Bluetooth-enabled devices in range. It leverages the bluez library and optionally ubertooth hardware for enhanced detection of both classic Bluetooth and Bluetooth Low Energy (LE) devices. This tool is particularly valuable in wireless security assessments where understanding nearby Bluetooth activity is crucial.

The service runs continuously to monitor and log device presence, allowing for temporal analysis of device movements and behaviors. It supports daemon mode for background operation and offers various output options for integration with other tools or custom interfaces.

BlueHydra is installed via standard Kali package management and includes related utilities like rfkill-reset and test-discovery for Bluetooth adapter management and testing.

How It Works

BlueHydra operates on the bluez library for Bluetooth scanning and discovery. It attempts to utilize ubertooth hardware when available for more precise detection. The tool performs continuous scanning to track classic and LE Bluetooth devices, storing data in a SQLite database (unless --no-db is used). Features like RSSI polling and JSON output enable integration with external systems for real-time monitoring.

Installation

bash

sudo apt install blue-hydra

Flags

-d, --daemonizeSuppress output and run in daemon mode

-z, --demoHide mac addresses in CLI UI

-p, --pulseSend results to hermes

--pulse-debugStore results in a file for review

--no-dbKeep db in ram only

--rssi-apiOpen 127.0.0.1:1124 to allow other processes to poll for seen devices and rssi

--no-infoFor the purposes for fox hunting, don't info scan. Some info may be missing, but there will be less gaps during tracking

--mohawk-apiFor the purposes of making a hat to cover a mohawk, shit out the ui as json at /dev/shm/blue_hydra.json

Examples

Display help and usage information for BlueHydra

blue_hydra -h

Run BlueHydra in daemon mode suppressing output

blue_hydra -d

Run BlueHydra in demo mode hiding MAC addresses in CLI UI

blue_hydra -z

Run BlueHydra sending results to hermes

blue_hydra -p

Run BlueHydra opening RSSI API on 127.0.0.1:1124 for polling devices and RSSI

blue_hydra --rssi-api

Attempt to display help for rfkill-reset utility (note: shows error in content)

rfkill-reset --help

Display help for test-discovery utility

test-discovery -h

Test Bluetooth discovery with specified device ID and timeout

test-discovery -i DEV_ID -t TIMEOUT

Updated 2026-04-16kali.org ↗