Grrrrr.
-
@Edent Which four colours do you get?
-
@billgoats all of them
Black, white, red, yellow. What more do you need?
-
MULTIPASS! For @summerbeth
-
Trying to work out how best to reverse engineer this eInk badge.
I have a Windows app which communicates with a USB dongle. Could I sniff the communications from VirtualBox to my Linux host?
I have an Android app. I can decompile it, but I'm not really sure what to look for. Can I wireshark the Bluetooth LE connection it makes?
Thoughts gang?
-
@Edent I’d start with BTLE packet sniffing if that’s something you can do. If it’s unencrypted, you’re off and running. If it is, then decompile the app and go look for the key. If you then get lucky and find commands in an easy to read format, great, but I avoid reading decompiled code at all costs.
-
@Edent Not tried either for a while, but wireshark on windows can log USB communication (usbpcap).
On Android, you can get some bluetooth communication data using the "Bluetooth HCI snoop log" option if you have developer mode enabled. That let me see commands sent to a BLE device, but I can't remember if it included replies. -
@benetherington which sniffer for Android do you recommend?
-
@Edent No clue, sorry!
-
@benetherington Have you ever done any BLE packet sniffing?
-
@Edent No. As far as I know, you need dedicated hardware for it. Maybe there’s a way to convince an NRF chip into sniffing mode? I have an iOS app published by Nordic that shows advertising packets, but once devices are paired, I’m out of my depth.
-
@benetherington I'm sorry, I'm struggling to understand why you bothered replying at all?
-
@Edent Yes, Wireshark can sniff USB both on your Linux host and (I believe) the Windows guest.
On Linux you could also use the "usbmon" kernel module directly (which is what Wireshark's using).
https://wiki.wireshark.org/CaptureSetup/USB
https://docs.kernel.org/usb/usbmon.html -
@henryk aha! Thanks. For some reason, my laptop won't let me use usbmon. Trying to add it just gives
modprobe: ERROR: could not insert 'usbmon': Invalid argumentWill bash my head against the keyboard until it works
-
@Edent Check dmesg, there should be a more verbose kernel error. (Most likely: Your distribution did not install the module by default.)
-
@henryk thanks! A reboot did the trick.
-
Well, I've sniffed the USB connection, and I'm pretty sure I've found the individual packets which send the image to the eInk screen via NFC.
No idea how to actually decode them. So I guess I'll stick with the shitty Android app.
If anyone fancies doing some decompiling, let me know
-
And, yes, I got it to run DOOM!
(Obviously not. I can stream Doom to it at 2 frames per *minute*.)
-
@Edent Bad Apple when?
-
@tswsl
The Android developer menu Bluetooth HCI snoop log will store all Bluetooth traffic (both directions, including BTLE) in a PCAP format file called btsnoop_hci.log in a model dependent location, cf. https://stackoverflow.com/a/43046823
@Edent