How do I figure out the communication between an android app and a drone to reproduce it with python and a wifi adapter?

HKSSY / Drone-Hacking-Tool

Drone Hacking Tool is a GUI tool that works with a USB Wifi adapter and HackRF One for hacking drones.

MIT License

496 stars 83 forks source link

How do I figure out the communication between an android app and a drone to reproduce it with python and a wifi adapter? #4

Closed ErfolgreichCharismatisch closed 1 year ago

ErfolgreichCharismatisch commented 2 years ago

My goal is to figure out the communication protocol between my drone and my android phone so I can control it with another device using unprotected wifi.

Unfortunately, apps for android that work between the drone and the app to capture wifi data prevent me from being able to control the drone. In other words, I cannot capture the movement data with it.

How do I figure out the communication to reproduce it with python and a wifi adapter?

HKSSY commented 2 years ago

If your android phone supports multi-window mode, you may try opening both the capture and controller application.

To find out which communication protocol is applied to your drone, you may try to find the datasheet from your drone's manufacturer.

ErfolgreichCharismatisch commented 2 years ago

It is a 4D-V8 by 4DRC. I neither found a data sheet nor communication protocol and the company is not responsive. Therefore, this comes down to interecepting and understanding traffic to deduce the protocol, fortunately it's unencrypted wifi. I was able to disassemble the apk, do you have an idea how I could derive the signals from an unlabeled source code?