Re: Segway-Ninebot App not updating firmware
Posted: Tue Feb 12, 2019 11:40 am
@RSB0
How can I join that community? Link? Invite only?
How can I join that community? Link? Invite only?
An electric scooter community on a mission to stamp out transportation mediocrity.
https://scootertalk.org/forum/
The guy that does the ninebot onewheel has an agreement with the guy doing the scooter software to not touch the scooter firmware.RSB0 wrote: ↑Tue Feb 12, 2019 10:56 amI saw somewhere that is possible to do somekind of MITM atack to the firmware update servers and put stock or modded firmware and force update but unfortunately there is not much info online about it... In theory it could remove the rental firmware.
People on the ninebot Onewheel community are more advanced on this kind of hacks and maybe we from the kickscooter community can use some of that info since the APP is the same.
Does anyone have any idea how to preform MITM (wireshark?) analysis to the ninebot app so we can get the download links for the original firmware ?TIER wrote: ↑Tue Feb 12, 2019 11:49 amThe guy that does the ninebot onewheel has an agreement with the guy doing the scooter software to not touch the scooter firmware.RSB0 wrote: ↑Tue Feb 12, 2019 10:56 amI saw somewhere that is possible to do somekind of MITM atack to the firmware update servers and put stock or modded firmware and force update but unfortunately there is not much info online about it... In theory it could remove the rental firmware.
People on the ninebot Onewheel community are more advanced on this kind of hacks and maybe we from the kickscooter community can use some of that info since the APP is the same.
Scooter software will not be free. Rumors say it will be around 50 USD to use it. That's why he does not want others to offer free software.
If it will be able to overwrite rental software or flash clone board at all nobody knows. But it will be possible to install cutom firmware like on the M365.
Are you trying to flash cfw on a shared controller?NomadMech wrote: ↑Sun Apr 21, 2019 10:29 amAre we sure that it is ninebot app being malicious and plastering v0.5.0.5 on everything? I have too many options on my phone and have deleted ninebot app all together because I don't know for sure what all they're up to but there is DEFINITELY a reason they are so adamant about specific server access, mandatory updates/block on APK old version and if nothing else being a play store app tells me they are at least data logging. Anyone try direct uart access using nrf uart app? Obviously bird is able to get firmware updated and have had it infiltrate EVERYTHING! That's why I say malicious. Had 2 other share brandith 2 very different setups , from 2 different companies and even though they had their own proprietary firmware, never pulled the ninebot app for either and wasn't even installed on the phone and wiped cache for second which appeared to be a hardware-based security set up and read as version 1.3.9 drv, I'll be damned if both didn't end up 5.0.5! Makes me angry and I'm trying to figure out who the guilty party is. I even used custom firmware immediately then checked to make sure the version was still the same after acquiring the 1.3.9 because I was tired of messing around and everything appeared to be copacetic. I know others had the app on their phone however never connected to my unit and I have been very careful. Started bugging out so I checked version on down g and sure enough it said that I needed an encoded file and it was on 5.0.5! I actually paid money for that controller being that I wanted to figure this out and was very aware that something was going on yet it still got me. Obviously I can't afford a new b l e for every unit and actually doing the hard link and updating d l e virgin is the main priority ATM wanted to have the rest of the unit in unison and supportive. Took the time to put clean firmware on the same version for the external battery, internal battery, drv & ble although rollback gave me an error. I was persistent and it finally allowed me to check version without error and always correct other than the controller being 5.0.5 or so I thought. Verified with another couple of apps and I'm at a loss. Wtf?! Where is it coming from? If it is that quick and simple for them to install you would think it would be that quick and simple to override. Just have to fight fire with fire but I am afraid to open up any of my NRF apps because I'm not positive it didn't come from there and that would be my only logical link to bird stuffs. the local electronics store has a floor model and I am going to swing by there today and try to connect but I'm pretty sure I know what the end result will be and while I would like to say I feel bad for the schmuck who buys a $700 Segway that has scooter share firmware on it, I really don't and hope that maybe it helps to expose them. My own custom firmware using the website generator and down g seems to upload without a hitch however even if it temporarily represents the version I based my CFW off of it always ends up back at 5.0.5. Got me good you f*ckers! Okay now tell me how to get it back. Lol