Hacking a NutriBullet blender via BLE: reverse-engineering the protocol and adding extra speed π¨π»βπ»β―β―π₯€ππ₯
Security researcher Ryan Mast shares his journey of reverse-engineering a Bluetooth-controlled NutriBullet Balance smart blender after its official app stopped working on newer phones.
In short steps, Author:
1οΈβ£ inspected the blenderβs services and characteristics,
2οΈβ£ sniffed and logged Bluetooth traffic,
3οΈβ£ decoded the binary commands that control blending speed and timing,
4οΈβ£ analyzed the Android app to confirm the findings,
5οΈβ£ built a custom web-based Bluetooth app that can fully control the blender,
6οΈβ£ and added some extra speed :)
By the way, the blender doesnβt authenticate Bluetooth connections at all - any nearby device can send it commands as long as itβs in range.
A creative and very interesting example of BLE security research for SOHO devices. It may be useful as a learning example as well.
More details:
The Perfect BLEnd: Reverse engineering a bluetooth controlled blender for better smoothies [Youtube]: https://lnkd.in/eHx7phJN
