In today’s era of cybersecurity awareness, ethical hackers and red teamers are always seeking powerful, stealthy tools. What if you could turn a tiny ESP32 board into a Bluetooth-based Rubber Ducky, capable of injecting keystrokes wirelessly? Welcome to Bluetooth Ducky, a creative hacking tool built on ESP32 that emulates a Bluetooth HID keyboard and executes commands silently — once paired.
⚙️ What is Bluetooth Ducky?
Bluetooth Ducky is a portable payload injector built using the ESP32 dev board. Similar to the famous USB Rubber Ducky, this version connects wirelessly over Bluetooth and acts as a keyboard. Once paired with a device, it sends keystrokes like opening CMD, sending URLs, typing scripts, or even stealing saved Wi-Fi passwords — all without needing a USB port.
It’s perfect for:
- Penetration testing
- Physical red team exercises
- Social engineering
- Wi-Fi sniffing bait setups
🧰 What You’ll Need
- ESP32 Dev Board (like WROOM-32)
- Arduino IDE
- Micro USB Cable
- Basic knowledge of Arduino sketch uploading
📥 Step 1: Setup Arduino IDE
First, install Arduino IDE from arduino.cc.
Add ESP32 to Arduino:
-
Open Arduino IDE.
-
Go to
File > Preferences
. -
In the “Additional Board Manager URLs”, paste:
- Now go to
Tools > Board > Boards Manager
, search foresp32
, and install V.2.0.7 it.
This tool uses the ESP32-BLE-Keyboard library by T-vK.
To install:
- Download the ZIP from GitHub:
ESP32-BLE-Keyboard ZIP - In Arduino IDE, go to
Sketch > Include Library > Add .ZIP Library...
and select the downloaded file.
Ducky.ino
file (provided in my GitHub repo) in Arduino IDE.✅ My version supports commands like:
notepad
,cmd
,shutdown
google <search>
,youtube <search>
whatsapp <no> <msg>
WiFi
to dump saved Wi-Fi passwordsFake
update screens orSpam
pop-upsAnd many more via Serial Monitor
- Go to
Tools > Board
and selectESP32 Dev Module
. - Connect your ESP32 via USB.
- Select the correct port under
Tools > Port
. - Click ✅ Verify and then ⬆️ Upload.
When powered, your ESP32 will act like a Bluetooth keyboard.
- Ask the target device (phone/laptop) to pair with your ESP32.
- After first manual pairing, all future connections are silent & automatic.
- Once connected, your payload will automatically type into the device — just like a physical keyboard.
You can also send real-time commands to your ESP32 via Serial using my Bluetooth Ducky Monitor App.
Download it from the Releases Section of the GitHub repo.
It allows you to:
- Send commands like
google hacking tricks
Trigger payloads on demand
Monitor logs and debug output
- Drop the device near a shared workspace — when paired, it executes payloads silently.
- Send
Fake
OS updates orSpam
pop-ups to prank coworkers. - Demonstrate Wi-Fi password theft using
WiFi
command (only for awareness training). - Use
url <payload>
to open backdoor downloaders in lab simulations.
⚠️ Warning: This tool is powerful. Use it only on systems you own or have permission to test. Unauthorized use is illegal.
👥 About the Creator
Project by:
Linuxndroid & Krishna Rajput UP61
Follow us for more tools, ideas, and hacking experiments.
🧠 Final Thoughts
Bluetooth Ducky is not just a fun project — it's a practical tool for teaching wireless HID attacks, understanding security flaws in Bluetooth pairing, and building real-world red team payloads.
I’ll keep updating it with features like;
- Cross-platform GUI support
- Scriptable payload loader
- Encrypted payload over Serial
Fork it, try it, and contribute your payload ideas!
Check the repo here: Bluetooth-Ducky GitHub
#BluetoothDucky #ESP32Hack #RedTeamTool #EthicalHacking #HIDAttack #WirelessPayload #ArduinoHacking #BluetoothKeyboardHack #RubberDuckyESP32 #HackToolESP32 #CyberSecurityTool #PenetrationTesting #BluetoothExploit #BLEHacking #ESP32Project #Linuxndroid
👥 Watch YouTube Video
0 Comments
Please do not enter any spam link in the comment box.