Skip to content

Legal Disclaimer

BlueSploit is provided for educational, defensive, and authorized security-testing purposes only.

Authorized use

You may use BlueSploit:

  • against devices you own outright,
  • against devices for which you have explicit, written authorization to perform security testing (pentest engagement, bug bounty, CTF, lab environment),
  • in disclosed research scenarios with a clear coordinated-disclosure plan.

Prohibited use

You must not use BlueSploit:

  • against devices, networks, or persons without explicit authorization,
  • to intercept, modify, or disrupt communications you are not authorized to access,
  • to violate any applicable law (CFAA, CMA, GDPR, etc.) in your jurisdiction,
  • to harm individuals (eavesdropping on personal devices, stalking via tracker-spoof modules, etc.).

Misuse may constitute a criminal offense in your country.

No warranty

BlueSploit is distributed under the MIT License. The software is provided "as is", without warranty of any kind. The authors and contributors accept no liability for direct or indirect damages arising from use or misuse.

Responsible disclosure

If you discover a new vulnerability while using BlueSploit, follow responsible-disclosure practice:

  1. Report to the affected vendor first.
  2. Give them reasonable time to patch (typically 90 days).
  3. Coordinate public disclosure.

Submitting a module for an undisclosed 0-day to the BlueSploit repository is not acceptable.

By using BlueSploit you acknowledge that you have read and understood this disclaimer and that you accept full responsibility for your actions.