Custom Firmware For Cheap Fitness Trackers

The concept of wearable hardware is an enticing one, but it can be difficult to tackle for the first-time maker. While many of us are experienced at designing PCBs and soldering up arcane gadgets, interfacing with the soft and fleshy human form can present unforeseen difficulties. There’s a way around that, of course – leveraging an existing platform where someone else has already done the work. That’s precisely what [Aaron Christophel] has done, by reverse engineering and developing custom firmware for cheap fitness trackers (Google Translate).

The first part of [Aaron]’s work consisted of research and disassembly. After purchasing a wide variety of fitness trackers online, he eventually came across his favored unit, the Tracker I6HRC by IWOWNFIT. This features an NRF52832 microcontroller, as well as an IPS display, some Flash storage, and a vibration motor. Connectivity is handled over Bluetooth Low Energy. [Aaron] particularly rates it for the well-made case that can be disassembled without damage, and the spare USB 2.0 pads on the board which can be used to program the device over the SWD interface.

[Aaron] has developed an Arduino-compatible firmware which is discussed further in a forum post.  Most of the peripherals on board have been explored, and reducing power consumption is a current area of active development.

Firmware hacks are always fun – have you considered giving your TV a custom boot screen? Have a FitBit original instead of the clone? There’s a hack for that too.

[Thanks to Jim for the tip!]

Toilet Seat Could Save Your Ass

Our morning routine could be appended to something like “breakfast, stretching, sit on a medical examiner, shower, then commute.” If we are speaking seriously, we don’t always get to our morning stretches, but a quick medical exam could be on the morning agenda. We would wager that a portion of our readers are poised for that exam as they read this article. The examiner could come in the form of a toilet seat. This IoT throne is the next device you didn’t know you needed because it can take measurements to detect signs of heart failure every time you take a load off.

Tracking heart failure is not just one test, it is a buttload of tests. Continuous monitoring is difficult although tools exist for each test. It is unreasonable to expect all the at-risk people to sit at a blood pressure machine, inside a ballistocardiograph, with an oximeter on their fingers three times per day. Getting people to browse Hackaday on their phones after lunch is less of a struggle. When the robots overthrow us, this will definitely be held against us.

We are not sure if this particular hardware will be open-source, probably not, but there is a lesson here about putting sensors where people will use them. Despite the low rank on the glamorous scale, from a UX point of view, it is ingenious. How can we flush out our own projects to make them usable? After all, if you build a badass morning alarm, but it tries to kill you, it will need some work and if you make a gorgeous clock with the numbers all messed up…okay, we dig that particular one for different reasons.

Via IEEE Spectrum.

34C3: Fitbit Sniffing And Firmware Hacking

If you walked into a gym and asked to sniff exercise equipment you would get some mighty strange looks. If you tell hackers you’ve sniffed a Fitbit, you might be asked to give a presentation. [Jiska] and [DanielAW] were not only able to sniff Bluetooth data from a run-of-the-mill Fitbit fitness tracker, they were also able to connect to the hardware with data lines using test points etched right on the board. Their Fitbit sniffing talk at 34C3 can be seen after the break. We appreciate their warning that opening a Fitbit will undoubtedly void your warranty since Fitbits don’t fare so well after the sealed case is cracked. It’s all in the name of science.

There’s some interesting background on how Fitbit generally work. For instance, the Fitbit pairs with your phone which needs to be validated with the cloud server. But once the cloud server sends back authentication credentials they will never change because they’re bound to to the device ID of the Fitbit. This process is vulnerable to replay attacks.

Data begin sent between the Fitbit and the phone can be encrypted, but there is a live mode that sends the data as plain text. The implementation seemed to be security by obscurity as a new Bluetooth handle is used for this mode. This technique prevents the need to send every encrypted packet to the server for decryption (which would be for every heartbeat packet). So far the fix for this has been the ability to disable live mode. If you have your own Fitbit to play with, sniffing live mode would be a fun place to start.

The hardware side of this hack begins by completely removing the PCB from the rubber case. The board is running an STM32 and the team wanted to get deep access by enabling GDB. Unfortunately, the debug pins were only enabled during reset and the stock firmware disables them at startup (as it should). The workaround was to rewrite the firmware so that the necessary GPIO remain active and there’s an interesting approach here. You may remember [Daniel Wegemer] from the Nexmon project that reverse engineered the Nexus 5 WiFi. He leveraged the binary patching he used on Nexmon to patch the Fitbit firmware to enable debugging support. Sneaky!

For more about 34C3 we have a cheatsheet of the first day and for more about Fitbit security, check out this WAV file.

Continue reading “34C3: Fitbit Sniffing And Firmware Hacking”

Gamify Your Workout With This Wearable Console Controller

‘Tis soon to be the season when resolutions falter and exercise equipment purchased with the best of intentions is cast aside in frustration. But with a little motivation, like making your exercise machine a game console controller, you can maximize your exercise gear investment and get in some guilt-free gaming to boot.

Honestly, there is no better motivation for keeping up with exercise than taking classes, but not many people have the discipline — or the pocketbook — to keep going to the gym for the long haul. With this in mind, [Jason] looked for a way to control PS4  games like Mario Karts or TrackMania with his recumbent bike. In an attempt to avoid modifying the bike, [Jason] decided on a wearable motion sensor for his ankle. Consisting of an Uno, an MPU9250 accelerometer, and a transmitter for the 433-MHz ISM band, the wearable sends signals to a receiver whenever the feet are moving. This simulates pressing the up arrow controller key to set the game into action. Steering and other game actions are handled by a regular controller; we’d love to see this expanded to include strain gauges on the recumbent bike’s handles to allow left-right control by shifting weight in the seat. Talk about immersive gameplay!

While we like the simplicity of [Jason]’s build and the positive reinforcement it provides, it’s far from the first exercise machine hack we’ve seen. From making Google Street View bike-controlled to automatically logging workouts, exercise machines are ripe for the hacking.

Continue reading “Gamify Your Workout With This Wearable Console Controller”

Fitness Tracker Teardown Is A Lesson In Design For Manufacture

If the trends are anything to go on, after the success of Fitbit we are nearing a sort of fitness tracker singularity. Soon there will be more fitness trackers on wrists and ankles then there will be stars in the sky. We will have entire generations who will grow up not knowing what life is like without the ever-present hug of a heart monitor strapped across their chest. Until then though, we can learn a bit of design for manufacture from this excellent teardown of a watch shaped fitness tracker.

This tracker has a nice round e-paper screen, which could be a welcome part in a project if they start washing up on the shores of eBay. The rest of the watch is a basic Bluetooth low energy module and the accessory electronics wrapped in a squishy plastic casing.

There’s a lot of nice engineering inside the watch. As far as the electronics go, it’s very low power. On top of that is plenty of clever cost optimization; from a swath of test points to reduce quality issues in the hands of consumers to the clever stamped and formed battery tabs which touch the CR2032 that powers it.

The teardown covers more details: the switch, what may be hiding behind the epoxy globs, the plastics, and more. One thing that may be of interest to those that have been following Jenny’s excellent series is the BOM cost of the device. All in all a very educational read.

All-terrain Hoverboard Junk Pile Build

If you’re anything like us, chances are pretty good you’ve got at least one underused piece of fitness gear cluttering up your place. Rather than admit defeat on that New Year’s Resolution purchase, why not harvest the guts and build an all-terrain hoverboard for a little outdoor fun?

The fitness machine in question for [MakeItExtreme]’s build was a discarded Crazy Fit vibration platform. We’re not sure we see the fitness benefits of the original machine, but there’s no doubt it yielded plenty of goodies. The motor and drive belt look stout, and the control board eventually made it into the hoverboard too. The custom steel frame was fabricated using some of [MakeItExtreme]’s DIY tools, which is what we’re used to seeing them build — check out their sand blaster and spot welder for examples. A couple of knobby tires in the center of the board let the rider balance (there’s no gyro in this version) and power is provided by a couple of 12 volt AGM batteries. Sadly, the motor was a line voltage unit, so an inverter was needed. But it was the only part that had to be purchased, making this a pretty complete junk pile build.

See the video after the break for build details and a few test rides. Looks like it can do 20 mph or so – pretty impressive.

Continue reading “All-terrain Hoverboard Junk Pile Build”

Smart Sweatbands

If you’ve ever known anyone who has to monitor their blood glucose level, you know it is annoying to have to prick your finger with a lancet to draw blood for each measurement. A new sweatband that incorporates flexible electronics can measure glucose–as well as sodium, potassium, and lactate–from your sweat, without a painful pin prick.

Continue reading “Smart Sweatbands”