Search results

As far as I understand the code (it's complex), they are querying some license from the network based on the information of your band and probably your phone too. So unless we can capture this communication, we'll not be able to figure out the encryption keys by only capturing Bluetooth packets...

You're right. The code is less obfuscated. Yet, they are abstracting away the NFC code via an abstract interface and they inject in runtime the methods for this interface depending on the current selected band/watch. So unless one with a working NFC band can capture the Bluetooth packets, I'm...

Not sure I'm getting what you are saying. I want to reverse engineer the Bluetooth protocol used to: 1. Enable the NFC feature on the Band 2. Tell it to learn a new tag (basically, run a EnlistTag command to get NFC tag's UID) 3. Tell the band to associate this UID with some name (so it can be...

Can someone with the working NFC capture the bluetooth packets (Bluetooth sniffing on Android) while enabling the NFC feature on the band and also when "learning" a NFC tag and when "saving" the tag to the band ? I've tried to decompile MiFit app, but it's a real mess with the NFC feature. I...