talk

22 Articles

34C3: Fitbit Sniffing And Firmware Hacking

December 29, 2017 by 19 Comments

If you walked into a gym and asked to sniff exercise equipment you would get some mighty strange looks. If you tell hackers you’ve sniffed a Fitbit, you might be asked to give a presentation. [Jiska] and [DanielAW] were not only able to sniff Bluetooth data from a run-of-the-mill Fitbit fitness tracker, they were also able to connect to the hardware with data lines using test points etched right on the board. Their Fitbit sniffing talk at 34C3 can be seen after the break. We appreciate their warning that opening a Fitbit will undoubtedly void your warranty since Fitbits don’t fare so well after the sealed case is cracked. It’s all in the name of science.

There’s some interesting background on how Fitbit generally work. For instance, the Fitbit pairs with your phone which needs to be validated with the cloud server. But once the cloud server sends back authentication credentials they will never change because they’re bound to to the device ID of the Fitbit. This process is vulnerable to replay attacks.

Data begin sent between the Fitbit and the phone can be encrypted, but there is a live mode that sends the data as plain text. The implementation seemed to be security by obscurity as a new Bluetooth handle is used for this mode. This technique prevents the need to send every encrypted packet to the server for decryption (which would be for every heartbeat packet). So far the fix for this has been the ability to disable live mode. If you have your own Fitbit to play with, sniffing live mode would be a fun place to start.

The hardware side of this hack begins by completely removing the PCB from the rubber case. The board is running an STM32 and the team wanted to get deep access by enabling GDB. Unfortunately, the debug pins were only enabled during reset and the stock firmware disables them at startup (as it should). The workaround was to rewrite the firmware so that the necessary GPIO remain active and there’s an interesting approach here. You may remember [Daniel Wegemer] from the Nexmon project that reverse engineered the Nexus 5 WiFi. He leveraged the binary patching he used on Nexmon to patch the Fitbit firmware to enable debugging support. Sneaky!

For more about 34C3 we have a cheatsheet of the first day and for more about Fitbit security, check out this WAV file.

Continue reading “34C3: Fitbit Sniffing And Firmware Hacking”

Anouk Wipprecht: Robotic Dresses And Human Interfaces

November 21, 2017 by 11 Comments

Anouk Wipprecht‘s hackerly interests are hard to summarize, so bear with us. She works primarily on technological dresses, making fashion with themes inspired by nature, but making it interactive. If that sounds a little bit vague, consider that she’s made over 40 pieces of clothing, from a spider dress that attacks when someone enters your personal space too quickly to a suit with plasma balls that lets her get hit by Arc Attack’s giant musical Tesla coils in style. She gave an inspiring talk at the 2017 Hackaday Superconference, embedded below, that you should really go watch.

Anouk has some neat insights about how the world of fashion and technology interact. Technology, and her series of spider dresses in particular, tends to evolve over related versions, while fashion tends to seek the brand-new and the now. Managing these two impulses can’t be easy.

For instance, her first spider was made with servos and laser-cut acrylic, in a construction that probably seems familiar to most Hackaday readers. But hard edges, brittle plastic, and screws that work themselves slowly loose are no match for human-borne designs. Her most recent version is stunningly beautiful, made of 3D printed nylon for flexibility, and really nails the “bones of a human-spider hybrid” aesthetic that she’s going for.

The multiple iterations of her drink-dispensing “cocktail dress” (get it?!) show the same progression. We appreciate the simple, press-button-get-drink version that she designed for a fancy restaurant in Ibiza, but we really love the idea of being a human ice-breaker at parties that another version brings to the mix: to get a drink, you have to play “truth or dare” with questions randomly chosen and displayed on a screen on the wearer’s arm.

Playfulness runs through nearly everything that Anouk creates. She starts out with a “what if?” and runs with it. But she’s not just playing around. She’s also a very dedicated documenter of her projects, because she believes in paying the inspiration forward to the next generation. And her latest project does something really brilliant: merging fashion, technology, and medical diagnostics.

It’s a stripped-down EEG that kids with ADHD can wear around in their daily lives that triggers a camera when their brains get stimulated in particular ways. Instead of a full EEG that requires a child to have 30 gel electrodes installed, and which can only be run in a medical lab, stripping down the system allows the child to go about their normal life. This approach may collect limited data in comparison to the full setup, but since it’s collected under less intimidating circumstances, the little data that it does collect may be more “real”. This project is currently in progress, so we’ll just have to wait and see what comes out. We’re excited.

There’s so much more going on in Anouk’s presentation, but don’t take our word for it. Go watch Anouk’s talk right now and you’ll find she inspires you to adds a little bit more of the human element into your projects. Be playful, awkward, or experimental. But above all, be awesome!

Continue reading “Anouk Wipprecht: Robotic Dresses And Human Interfaces”

23 Superconference Talks You Shouldn’t Miss

December 24, 2015 by 7 Comments

November marked our inaugural Hackaday Superconference, something we’ve been wanting to do for a very long time. Hackaday already has a massive and vibrant online community, but until now, we haven’t asked people to come together for a hardware conference that spans a full weekend. The Supercon is Hackaday incarnate, and hundreds of very cool people showed up for a few dozen talks, amazing workshops, and a lot more.

Over the past month, we’ve been putting together a compilation of everything that happened at the first Hackaday Superconference. This includes videos of all the talks, relevant asides, and posts for everything that happened over a two-day conference. Even if you couldn’t make it out to our first con, this great material that should be shared by all.

Below is a YouTube playlist of all the talks. If you’re looking for eight hours to kill over the holiday weekend, well, there you have it. After the break is the complete conference indexed by day and speaker, with links to the talk and accompanying Hackaday post.

We’d like to thank everyone who came out to the first Hackaday Supercon, with a huge shout-out to the speakers, workshop organizers, and volunteers. It couldn’t have happened without the full support of the Hackaday community. That’s good, because we’re going to be doing this again next year.

Continue reading “23 Superconference Talks You Shouldn’t Miss”

Hackaday’s Editorial Vision

December 23, 2015 by 16 Comments

I had the honor of speaking at the 2015 Hackaday SuperConference in November on the topic of Hackaday’s Editorial Vision. We are bringing to a close an amazing year in which our writing team has grown in every respect. We have more editors, writers, and community members than ever before (Hackaday.io passed 100,000 members). With this we have been able to produce a huge amount of high-quality original content that matters to anyone interested in engineering — the best of which is embodied in the expansive Omnibus Volume 2 print edition. 2015 also marked an unparalleled ground-game for us; we took the Hackaday Prize all over the world and were warmly greeted by you at every turn. And of course, the Hackaday SuperConference (where I presented the talk) is a major milestone: Hackaday’s first ever full-blown conference.

So this begs the question, what next? What is guiding Hackaday and where do we plan to go in the future? Enjoy this video which is a really a ‘State of the Union’ for Hackaday, then join me after the break for a few more details on why we do what we do.

Continue reading “Hackaday’s Editorial Vision”

Neil Movva: Adding (wearable) Haptic Feedback To Your Project

December 22, 2015 by 4 Comments

[Neil Movva] is not your average college student. Rather than studying for exams or preparing to defend a dissertation, he’s working on a project that will directly help the disabled. The project is Pathfinder, a wearable haptic navigation system for the blind. Pathfinder is an ambitious project, making it all the way to the semifinals of the 2015 Hackaday Prize. Haptics, the technology of providing feedback to a user through touch, lies at the core of Pathfinder. [Neil] was kind enough to present this talk about it at the Hackaday SuperConference.

Continue reading “Neil Movva: Adding (wearable) Haptic Feedback To Your Project”

A Pragmatic Guide To Motors With Jonathan Beri

December 17, 2015 by 8 Comments

[Jonathan Beri] is a Maker of all sorts, with an affinity for robots, APIs, and Open Source. By day he works on making Android & iOS SDKs easier to use and by night he can found begging a PID controller to “just work already.” Recently he contributed to, “Make: JavaScript Robotics,” printed by Maker Media (2015).

[Jonathan] covers a lot of ground during his motors talk at the 2015 Hackaday SuperConference. He discusses brushed DC, stepper, servo, and brushless motors. Although just scraping the surface of each type of motor [Jonathan] touches the important details you can use to determine which type of motor is best for your project. The slide show he has put together has quite a bit of information and tips for beginners that might go overlooked when choosing a motor. For instance a list of 30 attributes that should be considered when selecting a motor. Included in that list are the 7 attributes [Jonathan] places priority on when he chooses a motor for one of his projects. We’ll delve deeper into that after the break.

Continue reading “A Pragmatic Guide To Motors With Jonathan Beri”

How Y Combinator Brings Hardware Startups To Life

December 12, 2015 by 3 Comments

The world is more used to software startups than hardware startups. Luke Iseman is here to help. He is the Director of Hardware at Y Combinator and discusses some details that need to be kept in mind when starting up your own hardware company. Take a look at the talk he presented at the 2015 Hackaday SuperConference and then join us after the break to cover a few key points of his discussion.

Continue reading “How Y Combinator Brings Hardware Startups To Life”