Bruce is a versatile ESP32 firmware designed for offensive security operations and Red Team engagements, offering a wide array of features for various hardware platforms, particularly M5Stack devices. It aims to provide advanced capabilities comparable to dedicated hardware security tools but at a lower cost and with greater modularity.

How It Works

Bruce leverages the ESP32's processing power and connectivity to implement a broad spectrum of cyber-offensive functionalities. Its modular design allows for extensive customization and adaptation to different hardware configurations, including support for various radio frequencies (WiFi, BLE, Sub-GHz, FM, NRF24), RFID emulation/cloning, and infrared control. The firmware integrates features like network scanning, deauthentication attacks, evil portals, and custom script execution via a JavaScript interpreter.

Quick Start & Requirements

• Installation: Use the official Web Flasher at https://bruce.computer/flasher, download binaries from releases, or flash locally using esptool.py.
• Prerequisites: ESP32 microcontroller, compatible hardware (M5Stack devices recommended), esptool.py for local flashing.
• Setup: Flashing via web flasher or esptool.py is generally quick, typically under 10 minutes.

Highlighted Details

• Extensive support for WiFi attacks including Beacon Spam, Target Deauth, Evil Portals, and RAW Sniffing.
• Capabilities extend to BLE attacks, Sub-GHz RF replay, RFID emulation/cloning, and IR control.
• Includes features like Wardriving, Pwnagotchi integration, and a WebUI for management.
• Device-specific feature availability is detailed in a compatibility matrix.

Maintenance & Community

• Active development with contributions from multiple individuals.
• Community support is available via a Discord Server.
• A Wiki provides detailed information on functions and FAQs.

Licensing & Compatibility

• Licensed under the Affero General Public License (AGPL).
• The AGPL is a strong copyleft license, requiring derivative works to also be open-sourced under the same terms. This may impose restrictions on integration into closed-source commercial products.

Limitations & Caveats

• Some advanced features are not available for M5Launcher compatibility.
• The AGPL license may present challenges for commercial or closed-source integration.
• Specific features are device-dependent, requiring careful review of the compatibility matrix.