• Home

  • Technology

  • Partial reverse-engineering the NDP 2016 LED Wristband
10
engineering of the NDP 2016 LED Wristband ckware v2.1 (31 Aug 2016) By: Yeo Kheng Meng (yeokm1@gm https://github.com/yeokm1/reverse-engineering-ndp2016 http://yeokhengmeng.com/2016/08/partial-reverse-engineering-the-ndp-2016-led- 1

Partial reverse-engineering the NDP 2016 LED Wristband

  • Upload
    yeokm1

  • View
    960

  • Download
    1

Embed Size (px)

Citation preview

Page 1: Partial reverse-engineering the NDP 2016 LED Wristband

1

Partial reverse-engineering of the

NDP 2016 LED Wristband

Hackware v2.1 (31 Aug 2016)By: Yeo Kheng Meng ([email protected])

https://github.com/yeokm1/reverse-engineering-ndp2016-wristbandhttp://yeokhengmeng.com/2016/08/partial-reverse-engineering-the-ndp-2016-led-wristband/

mailto:[email protected]
https://github.com/yeokm1/reverse-engineering-ndp2016-wristband
http://yeokhengmeng.com/2016/08/partial-reverse-engineering-the-ndp-2016-led-wristband/
Page 2: Partial reverse-engineering the NDP 2016 LED Wristband

2

Background• Singapore gained independence on 9 August 1965• 51st National Day Parade (NDP) on 9 August 2016• NDP 2016 held at National Stadium for $39.4 mil

http://www.straitstimes.com/singapore/ndp-goodie-bag-packs-futuristic-feelLED WristbandGoodie bag contents

http://www.straitstimes.com/singapore/ndp-goodie-bag-packs-futuristic-feel
Page 3: Partial reverse-engineering the NDP 2016 LED Wristband

3

Wristband in action• Preview 2 on 30 July 2016• Colour theme for each segment • Band blinks the colour required• Blinks red when shaken post-event

Wristband blinkinghttps://www.youtube.com/watch?v=EPwxPJhlR4M

Wristband colour changehttps://www.youtube.com/watch?v=XepiuPZ2TzA

https://www.youtube.com/watch?v=EPwxPJhlR4M
https://www.youtube.com/watch?v=XepiuPZ2TzA
Page 4: Partial reverse-engineering the NDP 2016 LED Wristband

4

Research • Band manufactured by Pixmob: http://pixmob.com/

1. Professional (1500 to 150000 attendees) runs on infrared2. Spark (Up to 1500 attendees) runs on Bluetooth Low Energy

http://pixmob.com/
http://pixmob.com/solutions/ignite/
http://pixmob.com/solutions/spark/
Page 5: Partial reverse-engineering the NDP 2016 LED Wristband

5

Teardown

FrontIR1: Infrared ReceiverLED1: RGB LEDIC1: Atmel AT24C02S 2KB, 2-Wire Serial EEPROM (SOT23-5 package)IC2: Abov 81F4204R 8-bit microcontroller (MCU) with 4KB ROM and 192B RAM (TSSOP16 package)

BackSingle-axis accelerometerCR2032 battery holder

Page 6: Partial reverse-engineering the NDP 2016 LED Wristband

6

Hardware Reverse Engineering• With my Fluke 87 V

Page 7: Partial reverse-engineering the NDP 2016 LED Wristband

7

Reverse-engineered schematic

• Programming Pads SDATA, SCK

• Purpose of R2 and R6?

• AT24C02S EEPROM uses I²C bus• MCU does not have hardware I²C• Pixmob engineers probably bit-bang GPIO

• AT24C02S’s WP pin shorted to GND• Write-protection disabledParts

Single-axis accelerometerCR2032 battery holderIR1: Infrared ReceiverLED1: RGB LEDIC1: Atmel AT24C02S 2KB, 2-Wire Serial EEPROM (SOT23-5 package)IC2: Abov 81F4204R 8-bit microcontroller (MCU) with 4KB ROM and 192B RAM (TSSOP16 package)

Page 8: Partial reverse-engineering the NDP 2016 LED Wristband

8

Reverse Engineering approaches1. Aim TV remotes at it2. Dump and analyse the assembly code to derive the IR combinations3. Brute force the IR code combination

Page 9: Partial reverse-engineering the NDP 2016 LED Wristband

9

(Failed attempt to) Brute force IR Protocol

• IR Brute Forcer• Microview • ATmega328p• OLED screen

• IR LED• Photocell

Page 10: Partial reverse-engineering the NDP 2016 LED Wristband

10

Potential Work• Dump the ROM• Get IR Protocol from Pixmob


Materi NDP · 2018. 4. 11. · 0 Materi NDP 1. Sejarah NDP HMI 1.1 Pengertian NDP HMI Nilai-nilai Dasar Perjuangan HMI yang kemudian lebih dikenal dengan NDP HMI adalah dokumen resmi

Materi NDP · 2018. 4. 11. · 0 Materi NDP 1. Sejarah NDP HMI 1.1 Pengertian NDP HMI Nilai-nilai Dasar Perjuangan HMI yang kemudian lebih dikenal dengan NDP HMI adalah dokumen resmi

Documents
Ultrafine quality silicon studs wristband

Ultrafine quality silicon studs wristband

Documents
NDP Poštnina pla NDP VABIMO VAS NA STROKOVNO …

NDP Poštnina pla NDP VABIMO VAS NA STROKOVNO …

Documents
Interpretación NDP

Interpretación NDP

Documents
Id tech - Manufacture silicon studs wristband

Id tech - Manufacture silicon studs wristband

Documents
Complementi ndp

Complementi ndp

Design
CHECKLIST ZPC WRISTBAND BONUS PERKS

CHECKLIST ZPC WRISTBAND BONUS PERKS

Documents
Wristband Silicone FIT.pdf · Wristband SILICONE FIT Description The wristband SILICONE FIT impresses with its new design and a wide range of personalization options. The silicone

Wristband Silicone FIT.pdf · Wristband SILICONE FIT Description The wristband SILICONE FIT impresses with its new design and a wide range of personalization options. The silicone

Documents
Wristband presentation

Wristband presentation

Technology
MICGRAND MG-R8 Rwatch Smart wristband

MICGRAND MG-R8 Rwatch Smart wristband

Technology
Complaint Power Balance Microsoft Kinect Wristband

Complaint Power Balance Microsoft Kinect Wristband

Documents
NDP Planforthenorth2011

NDP Planforthenorth2011

Documents
NDP accessories

NDP accessories

Documents
Presentación NdP

Presentación NdP

Education
Smart Wristband: Wearable Technology Of Future

Smart Wristband: Wearable Technology Of Future

Technology
Wristband Study

Wristband Study

Documents
Ndp government

Ndp government

Economy & Finance
NDP rianto

NDP rianto

Documents
Data Sheet Silicon Wristband Silicone Wristband Tag€¦ · Silicon Wristband FEATURES APPLICATIONS The silicone wristband passive RFiD Tag with high capacity multi read/write capability

Data Sheet Silicon Wristband Silicone Wristband Tag€¦ · Silicon Wristband FEATURES APPLICATIONS The silicone wristband passive RFiD Tag with high capacity multi read/write capability

Documents
NDP Brochure

NDP Brochure

Documents
ndp-40 web data sheet NDP-40 data sheet - Yamada … pump capability: 18-feet ... NDP-40 Pump Valve Type: B = Ball Body Material: ... ndp-40_web_data_sheet_NDP-40_data_sheet

ndp-40 web data sheet NDP-40 data sheet - Yamada … pump capability: 18-feet ... NDP-40 Pump Valve Type: B = Ball Body Material: ... ndp-40_web_data_sheet_NDP-40_data_sheet

Documents
Global Wristband Project SURF COLLECTION

Global Wristband Project SURF COLLECTION

Documents
Color-coded Wristband Standardization in Oklahoma

Color-coded Wristband Standardization in Oklahoma

Documents
Technaxx Fitness Wristband Aqua TX–42...the wristband before first use, then synchronize it with your mobile device. While charging, the screen of the wristband will indicate a charging

Technaxx Fitness Wristband Aqua TX–42...the wristband before first use, then synchronize it with your mobile device. While charging, the screen of the wristband will indicate a charging

Documents
OPERATION MANUAL 175U-17.pdf · OPERATION MANUAL YAMADA AIR-OPERATED DIAPHRAGM PUMPS NDP-20 series NDP-25 series NDP-32 series NDP-40 series NDP-50 series NDP-80 series . 1 ·Introduction

OPERATION MANUAL 175U-17.pdf · OPERATION MANUAL YAMADA AIR-OPERATED DIAPHRAGM PUMPS NDP-20 series NDP-25 series NDP-32 series NDP-40 series NDP-50 series NDP-80 series . 1 ·Introduction

Documents
NC@ < &@ NDP

NC@ < &@ NDP

Documents
OPERATION MANUAL - Yamada Corp 175U-17.pdf · Doc. No. NDP175U-17 OPERATION MANUAL YAMADA AIR-OPERATED DIAPHRAGM PUMPS NDP-20 series NDP-25 series NDP-32 series NDP-40 series NDP-50

OPERATION MANUAL - Yamada Corp 175U-17.pdf · Doc. No. NDP175U-17 OPERATION MANUAL YAMADA AIR-OPERATED DIAPHRAGM PUMPS NDP-20 series NDP-25 series NDP-32 series NDP-40 series NDP-50

Documents
NHS Wristband The Journey

NHS Wristband The Journey

Documents
Bioflow Sport Wristband Advert

Bioflow Sport Wristband Advert

Documents
2014 Wristband catalog - IdentiSys

2014 Wristband catalog - IdentiSys

Documents