Transformed garbage into upcycled bicycles
In a fascinating case study, Belgian researcher Remy van Elst successfully reverse-engineered and updated the software of a Navman Bike 1000 GPS device, a rebadged Mio Cyclo 200 from 2015. This feat was achieved using open-source tools like Wireshark and mitmproxy, tools that are less commonly used compared to Wireshark.
The journey began when van Elst purchased a Navman Bike 1000 from a thrift store for just €10. Upon examination, he discovered that the device ran on the Windows CE operating system, which opened up possibilities for custom software and even running legacy applications.
To delve deeper into the device's communication, van Elst used Wireshark, a network protocol analyzer, to capture traffic data. Simultaneously, he employed mitmproxy, a man-in-the-middle HTTPS proxy, to intercept and manipulate communication for a better understanding of the device's interactions with its home server. This combination allowed him to extract the update executable from the intercepted traffic.
By replacing the onboard executable after mounting the device as a drive, van Elst was able to update the device's software, a task that the official software did not support. He even managed to update the maps on the device using OpenStreetMaps, showcasing the potential of open-source alternatives.
This case serves as a reminder that it isn't always as challenging as it may seem to find an entry point into certain devices. The ease of finding such entry points can vary significantly, but in this case, it was surprisingly straightforward. However, the utility of tools like Wireshark and mitmproxy is contingent on the device's communication protocols not being heavily obfuscated or secured with advanced anti-reverse-engineering protections, which are less common in older consumer electronics.
This approach proves invaluable in such scenarios because these tools:
- Reveal communication protocols and allow capturing firmware/software updates that are otherwise inaccessible.
- Help understand and bypass proprietary software barriers like authentication or download restrictions.
- Facilitate software injection or replacement by monitoring and manipulating device-server interactions.
- Support extending device life by enabling use of modern or open-source software components.
In essence, Wireshark and mitmproxy are powerful, practical tools that can significantly aid reverse engineering and updating of decade-old GPS devices by exposing communication details and facilitating firmware/software replacement or updates. This example demonstrates how ingenuity and open-source tools can prolong the life of consumer electronics.
In this example, the open-source tools Wireshark and mitmproxy, which are less commonly used compared to Wireshark, were instrumental in reverse-engineering and updating the software of a decade-old GPS device. By revealing communication protocols and facilitating firmware/software replacement or updates, these tools supported extending the life of the consumer electronics gadget. In the realm of data-and-cloud-computing and technology, open-source alternatives like OpenStreetMaps can even replace proprietary maps, showcasing the potential benefits of such tools.
