BruceButBetter - open-source DIY Flipper Zero on ESP32-S3 (Bruce fork, +Si5351, build guide + 45 prebuilt boards)
BruceButBetter is an open-source DIY hardware project that replicates Flipper Zero functionality on an ESP32-S3 platform. It includes multiple radio and signal capabilities such as Sub-GHz, NFC/RFID, 2.4 GHz wireless protocols, IR, WiFi, BLE attacks, and a signal generator. The project is intended as a red-team multitool for authorized testing and education. It is publicly available on GitHub with build guides and prebuilt firmware images.
AI Analysis
Technical Summary
BruceButBetter is a DIY open-source hardware and firmware project that builds a multifunctional red-team device on the ESP32-S3 microcontroller. It is a fork of the Bruce project with added features like a Si5351 signal generator and custom pinout. The device supports multiple wireless protocols and attack vectors including Sub-GHz capture/replay, NFC cloning, 2.4 GHz sniffing and jamming, IR replay, WiFi and BLE attacks, and Bad USB functionality. The project is shared on GitHub for educational and authorized security testing purposes.
Potential Impact
The device enables a broad range of wireless and USB-based attack techniques useful for penetration testing and red-team operations. While it can be used to identify and exploit vulnerabilities in wireless protocols and USB interfaces, it is intended for authorized testing and education. There are no direct reports of malicious exploitation or vulnerabilities in the project itself.
Mitigation Recommendations
This is an open-source tool for authorized security testing. No patches or vendor advisories apply. Organizations should ensure that use of such tools is controlled and authorized within their environments to prevent misuse. No specific remediation is required for this project itself.
BruceButBetter - open-source DIY Flipper Zero on ESP32-S3 (Bruce fork, +Si5351, build guide + 45 prebuilt boards)
Description
BruceButBetter is an open-source DIY hardware project that replicates Flipper Zero functionality on an ESP32-S3 platform. It includes multiple radio and signal capabilities such as Sub-GHz, NFC/RFID, 2.4 GHz wireless protocols, IR, WiFi, BLE attacks, and a signal generator. The project is intended as a red-team multitool for authorized testing and education. It is publicly available on GitHub with build guides and prebuilt firmware images.
Reddit Discussion
Open-source red-team multitool I built on an ESP32-S3 N16R8 — a hand-soldered, Flipper-Zero-class device for ~$40. It's a downstream fork of Bruce (pr3y/Bruce) with a Si5351 signal-generator module added and a custom shared-bus pinout.
Capabilities (one firmware, modules probed at runtime):
- Sub-GHz via CC1101 (300–928 MHz) — capture / replay / brute
- NFC / RFID via PN532 (read / clone / write)
- 2.4 GHz via 2× NRF24L01 — MouseJack, ESB sniffing, jammer
- IR transmit/receive (TV-B-Gone, replay)
- WiFi + BLE attacks (native S3): evil portal, deauth, beacon spam, BLE spam/scan
- Si5351 signal generator (8 kHz–160 MHz)
- Bad USB / HID over the second USB-C
What's in the repo: a full DIY build guide (BOM with links, wiring diagram, assembly), prebuilt .bin for 45 boards, and a one-click web flasher.
https://github.com/Yoursel71/BruceButBetter
AGPL, for authorized testing and education only. Feedback / PRs welcome.
Links cited in this discussion
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
BruceButBetter is a DIY open-source hardware and firmware project that builds a multifunctional red-team device on the ESP32-S3 microcontroller. It is a fork of the Bruce project with added features like a Si5351 signal generator and custom pinout. The device supports multiple wireless protocols and attack vectors including Sub-GHz capture/replay, NFC cloning, 2.4 GHz sniffing and jamming, IR replay, WiFi and BLE attacks, and Bad USB functionality. The project is shared on GitHub for educational and authorized security testing purposes.
Potential Impact
The device enables a broad range of wireless and USB-based attack techniques useful for penetration testing and red-team operations. While it can be used to identify and exploit vulnerabilities in wireless protocols and USB interfaces, it is intended for authorized testing and education. There are no direct reports of malicious exploitation or vulnerabilities in the project itself.
Mitigation Recommendations
This is an open-source tool for authorized security testing. No patches or vendor advisories apply. Organizations should ensure that use of such tools is controlled and authorized within their environments to prevent misuse. No specific remediation is required for this project itself.
Technical Details
- Source Type
- Subreddit
- ExploitDev+pwned+hacking
- Reddit Score
- 0
- Discussion Level
- minimal
- Content Source
- reddit_link_post
- Post Type
- link
- Domain
- null
- Newsworthiness Assessment
- {"score":33,"reasons":["external_link","newsworthy_keywords:rce","non_newsworthy_keywords:guide","established_author","recent_news"],"isNewsworthy":true,"foundNewsworthy":["rce"],"foundNonNewsworthy":["guide"]}
- Has External Source
- true
- Trusted Domain
- false
Threat ID: 6a364ee2daaa79a87dde81e2
Added to database: 6/20/2026, 8:27:14 AM
Last enriched: 6/20/2026, 8:27:20 AM
Last updated: 6/20/2026, 8:27:45 AM
Views: 1
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.