Grrrrr.
-
MULTIPASS! For @summerbeth
-
Trying to work out how best to reverse engineer this eInk badge.
I have a Windows app which communicates with a USB dongle. Could I sniff the communications from VirtualBox to my Linux host?
I have an Android app. I can decompile it, but I'm not really sure what to look for. Can I wireshark the Bluetooth LE connection it makes?
Thoughts gang?
-
@Edent I’d start with BTLE packet sniffing if that’s something you can do. If it’s unencrypted, you’re off and running. If it is, then decompile the app and go look for the key. If you then get lucky and find commands in an easy to read format, great, but I avoid reading decompiled code at all costs.
-
@benetherington which sniffer for Android do you recommend?
-
@Edent No clue, sorry!
-
@benetherington Have you ever done any BLE packet sniffing?
-
@Edent No. As far as I know, you need dedicated hardware for it. Maybe there’s a way to convince an NRF chip into sniffing mode? I have an iOS app published by Nordic that shows advertising packets, but once devices are paired, I’m out of my depth.
-
@benetherington I'm sorry, I'm struggling to understand why you bothered replying at all?
-
@Edent Yes, Wireshark can sniff USB both on your Linux host and (I believe) the Windows guest.
On Linux you could also use the "usbmon" kernel module directly (which is what Wireshark's using).
https://wiki.wireshark.org/CaptureSetup/USB
https://docs.kernel.org/usb/usbmon.html -
@henryk aha! Thanks. For some reason, my laptop won't let me use usbmon. Trying to add it just gives
modprobe: ERROR: could not insert 'usbmon': Invalid argumentWill bash my head against the keyboard until it works
-
@Edent Check dmesg, there should be a more verbose kernel error. (Most likely: Your distribution did not install the module by default.)
-
@henryk thanks! A reboot did the trick.
-
Well, I've sniffed the USB connection, and I'm pretty sure I've found the individual packets which send the image to the eInk screen via NFC.
No idea how to actually decode them. So I guess I'll stick with the shitty Android app.
If anyone fancies doing some decompiling, let me know
