image image
Sultan Qasim Khan

Sultan Qasim Khan

Talk Title:

Sniffle: A low cost sniffer for Bluetooth 5


Sniffle is the first open source packet sniffer for Bluetooth 5 LE. It is also backwards compatible with Bluetooth 4.x LE, and is built on the low-cost Texas Instruments CC26x2/CC13x2 platform. Sniffle supports the new PHY modes and channel hopping scheme in Bluetooth 5. It can perform real time packet display and PCAP recording, and also has a simple Python API for easy extensibility. It has a novel feature that allows capturing advertisements on all three primary advertising channels with a single sniffer, tripling the connection detection reliability compared to conventional sniffers. Sniffle provides a simple, reliable, and low-cost way to analyse, reverse engineer, or debug Bluetooth 5 LE communications.

Speaker Bio:

Sultan Qasim Khan is a Senior Security Consultant at NCC Group, and is based in Waterloo, Ontario, Canada. Sultan has been involved in security for the past 5 years, at both NCC Group and Motorola Mobility. He specializes in the review and development of secure embedded systems and wireless communications. Sultan is experienced working in the land between software and hardware. His expertise focuses on the analysis of firmware, bootloaders, kernel drivers, debug interfaces, PCB designs, and wireless protocols from the physical layer up.