blob: cbf3ad11288116317e3de6841a56ccdd5b87096c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
|
#!/usr/bin/env python3
import usb.core
import usb.util
import sys
import array
from apdu_split import Apdu_splitter, apdu_states
from constants import PHONE_RD, ERR_TIMEOUT, ERR_NO_SUCH_DEV
def find_dev():
dev = usb.core.find(idVendor=0x03eb, idProduct=0x6004)
if dev is None:
raise ValueError("Device not found")
else:
print("Found device")
return dev
def find_eps(dev):
dev.set_configuration()
cfg = dev.get_active_configuration()
print("Active config: ")
print(cfg)
intf = cfg[(0,0)]
ep_in = usb.util.find_descriptor(
intf,
custom_match = \
lambda e: \
usb.util.endpoint_direction(e.bEndpointAddress) == \
usb.util.ENDPOINT_IN)
assert ep_in is not None
ep_out = usb.util.find_descriptor(
intf,
custom_match = \
lambda e: \
usb.util.endpoint_direction(e.bEndpointAddress) == \
usb.util.ENDPOINT_OUT)
assert ep_out is not None
print("****")
print(ep_in)
print(ep_out)
return (ep_in, ep_out)
# main code
def sniff():
dev = find_dev()
ans = array.array('B', [])
apdus = []
apdu = Apdu_splitter()
while True:
#ep_out.write("Hello")
try:
ans += dev.read(PHONE_RD, 64, 1000)
except KeyboardInterrupt:
print("Bye")
sys.exit()
except Exception as e:
if e.errno != ERR_TIMEOUT and e.errno != ERR_NO_SUCH_DEV:
raise
print e
if len(ans) >= 1:
# print("".join("%02x " % b for b in ans))
for c in ans:
apdu.split(c)
if apdu.state == apdu_states.APDU_S_FIN:
apdus.append(apdu)
apdu = Apdu_splitter()
ans = array.array('B', [])
|
