L0laapk3
commented
6 years ago suggestion: Try first detecting the target in another way, then saving the mac address in eeprom somewhere, then set the esp's mac address to the target's mac address on boot. That way you will be able to receive all their frames in full.
Any interest in further hacking the sdk? Maybe you know someone interested? I want to hack libespnow.a/espnow.o. esp-now provides a call back for action frames, but its vendor specific to espressif. There is some filter, that blocks action frames not from espressif. I want to capture action frames from an iphone. Specifically I want to capture the frame thats transmitted by: https://developer.apple.com/documentation/multipeerconnectivity/mcnearbyserviceadvertiser/1406967-discoveryinfo
I am able to capture this frame with other tools and i can see its an action frame.
Thanks