This document provides an overview of research conducted on the Pebble Time and Microsoft Band 2 smartwatches. It describes the hardware and software used, data storage locations on Android devices, and examples of parsed health and notification data. The document emphasizes that smartwatch data can be valuable for investigations and recommends clearing notifications regularly to help protect privacy. Future research goals include analyzing network traffic and expanding the open source Perl script to parse additional watch data.
BriMor Labs Live Response Collection - OSDFCONBriMorLabs
Presentation by Brian Moran of BriMor Labs on the Live Response Collection given during the Basis Technology Open Source Digital Forensics Conference (OSDFCON) on October 28, 2015
T3: apple watch - creating value out of the gateJames Lanyon
T3, a technology-fueled creative agency, offers its insights as to how brands and developers can mine opportunities with Apple's new Apple Watch platform the day it is first released.
BriMor Labs Live Response Collection - OSDFCONBriMorLabs
Presentation by Brian Moran of BriMor Labs on the Live Response Collection given during the Basis Technology Open Source Digital Forensics Conference (OSDFCON) on October 28, 2015
T3: apple watch - creating value out of the gateJames Lanyon
T3, a technology-fueled creative agency, offers its insights as to how brands and developers can mine opportunities with Apple's new Apple Watch platform the day it is first released.
How Apple Watch Will Change Human Behavior in 2015IsobarUS
Apple Watch is Apple's first foray into the wearable technology marketplace. It launches April 24, 2015 and is the first real test for how consumers will adopt the Internet of Things. These are our recommendations for brands considering dipping into the IoT with Apple Watch.
With the increase of wearables and the upcoming release of the Apple Watch in 2015 , consumer and enterprise applications could benefit from extending their mobile offerings to include wearables as part of their ecosystem.
Scaling your application efficiently is is key to achieving a good rate of return and performance monitoring is an important tool to ensure you scale as expected.
Performance monitoring of single Node.js applications is relatively straight forward with a variety of technigues and tooling options available to a developer. In this presentation, we will follow the journey of how to apply these techniques when scaling up to a clustered Node.js deployment in the cloud. We will show how to use freely available monitoring tooling and open source solutions like appmetrics, Elasticsearch and Kibana to provide real-time monitoring and performance tracking for Enterprise solutions. Come and learn how to keep on top on how your application is performing and find out about problems before they occur.
In this attempt, we have reviewed & focused on the concern of security which is an important factor in today's scenario.We need to keep ourself updated by taking growth of technology into an account..
How Apple Watch Will Change Human Behavior in 2015IsobarUS
Apple Watch is Apple's first foray into the wearable technology marketplace. It launches April 24, 2015 and is the first real test for how consumers will adopt the Internet of Things. These are our recommendations for brands considering dipping into the IoT with Apple Watch.
With the increase of wearables and the upcoming release of the Apple Watch in 2015 , consumer and enterprise applications could benefit from extending their mobile offerings to include wearables as part of their ecosystem.
Scaling your application efficiently is is key to achieving a good rate of return and performance monitoring is an important tool to ensure you scale as expected.
Performance monitoring of single Node.js applications is relatively straight forward with a variety of technigues and tooling options available to a developer. In this presentation, we will follow the journey of how to apply these techniques when scaling up to a clustered Node.js deployment in the cloud. We will show how to use freely available monitoring tooling and open source solutions like appmetrics, Elasticsearch and Kibana to provide real-time monitoring and performance tracking for Enterprise solutions. Come and learn how to keep on top on how your application is performing and find out about problems before they occur.
In this attempt, we have reviewed & focused on the concern of security which is an important factor in today's scenario.We need to keep ourself updated by taking growth of technology into an account..
There's an App for That: Digital Forensic Realities for Mobile App Evidence, ...Cellebrite
Attorneys are often shocked at how much deeply probative evidence, both live and deleted, can be data mined from today’s smart phones and tablets. With the surging adoption of mobile apps for communications, commerce, navigation, and other capabilities, new issues with data security and privacy are developing. This session will explore new evidence modalities, relevance, admissibility, and topical issues with mobile apps that impact investigations and litigation.
Silicon Valley Code Camp 2014 - Advanced MongoDBDaniel Coupal
MongoDB presentation from Silicon Valley Code Camp 2014.
Walkthrough developing, deploying and operating a MongoDB application, avoiding the most common pitfalls.
Delivered at Pittsburgh Tech Fest - 6/10/2017
Knowledge is power, but is it if you're not using it? What if the application you delivered to your customers was extremely intelligent? It could retrieve, analyze and use the massive amounts of data that businesses are generating at an astronomical rate.
It could analyze business deals, predict potential issues, proactively recommend business decisions and estimate profit, loss and risks.
Those things provide direct benefits to your company. Churning through that data by hand doesn't. Enter Azure Machine Learning.
In this session you will learn how to integrate Azure Machine Learning into your existing applications and workflows with REST services. You will learn how to deliver a modular, maintainable solution to your customers that allows them to analyze their data.
You will learn to:
* Numerous ways to abstract business rules, workflows, AI (Machine Learning) and more into your applications
* How to Integrate Azure Machine Learning into your existing Applications and Processes
* Create Azure Machine Learning Experiments
* Retrieve the Score from an Azure Machine Learning Experiment and integrate it into your applications and processes
* Integrate numerous Machine Learning Experiments from the Azure Machine Learning Marketplace into your existing applications and processes
* Learn various concepts for abstracting and managing services and api's.
Use Machine Learning to Get the Most out of Your Big Data ClustersDatabricks
Enterprises across all sectors have invested heavily in big data infrastructure (Hadoop, Impala, Spark, Kafka, etc.) to turn data into insights into business value. Clusters are getting bigger, more complex and employing more and more data scientists and engineers. As a result, it is increasingly challenging for Data Ops teams to operate and maintain these clusters to meet business requirements and performance SLAs. For instance, a single SQL query may fail or take a long time to complete for various reasons, such as SQL-level inefficiencies, data skew, missing and stale statistics, pool-level resource configurations, such that a resource-hogging query could impact the entire application stack on that cluster. A critical capability to scale application performance is to do cluster-wide tuning. Examples include: tune the default application configurations so that all applications would benefit from that change, tune the pool-level resource allocations, identify wide-impact issues like slow nodes and too many small files, and many others. Cluster-level tuning requires considering more factors, and has a risk of significantly worsening cluster performance; however, it is often done via trial and error with educated guesswork, if attempted at all. We employ machine learning and AI techniques to make cluster-level tuning easier, more data-driven, and more accurate. This talk will describe our methodology to learn from various sources of data such as the workload, the cluster and pool resources, metastore, etc., and provide recommendations for cluster defaults for application and pool resource configurations. We will also present a case study where a customer applied unravel tuning recommendations and achieved 114% increase in the number of applications running per day while using 47% fewer vCore-Hours and 15% fewer containers.
Speaker: Eric Chu
Mobile Penetration Testing: Episode 1 - The Forensic MenaceNowSecure
This is Episode 1 of a trilogy on mobile penetration testing - forensic analysis of data at rest on the device.
Episode 2 - Return of the Network/Back-end
http://www.slideshare.net/nowsecure/mobile-penetration-testing-episode-ii-attack-of-the-code
Episode 3 - Attack of the Code
http://www.slideshare.net/nowsecure/mobile-penetration-testing-episode-iii-attack-of-the-code
Wearable computers have been ideas or experiments for the last couple of decades, but with the advent of products like Google Glass and the Samsung Galaxy Gear, they are finally becoming available to the mainstream consumer market. This presentation covers the wearable computing ecosystem from consumer fitness devices to ones used for specialized vertical applications, both launched and under development. It also discusses current and new technologies that are becoming much more relevant with this movement, along with different development models, APIs and SDKs.
Note: This was also a QCon Shanghai Short Keynote Talk
http://www.perpetualny.com
Speech up at www.infoq.com/cn/presentations/cross-speech-wearable-computing-ecosystem
Owasp Mobile Risk Series : M4 : Unintended Data LeakageAnant Shrivastava
This presentation is part of a series focused on OWASP Mobile Top 10 : We discussed about what is data leakage, places where data could be leaked. sample /examples of data leakage and how it differes from M2: Insecure data storage.
BigDesign 2014 - What's Before Mobile First?Ken Tabor
This session is dedicated to helping you test, debug, and confirm your web site on mobile devices before releasing it into the wild. We assume you already have permission, stakeholder approval, and even started building a website supporting phones and tablets. Now what? Ill share with you nuts-and-bolts approaches that have helped me navigate one of the most difficult things we tackle assuring our customers can best use our websites in a world of device sizes.
17 марта 2016 года в московском офисе Яндекса состоялась очередная встреча OWASP Russia Meetup — встреча сообщества специалистов по информационной безопасности. Основной темой этой встречи стала безопасность мобильных приложений. На встрече выступили эксперты, которые рассказали о различных аспектах этой темы и поделились примерами из реальной жизни и личного опыта.
В мероприятии участвовал Юрий Чемёркин, эксперт-исследователь «Перспективного мониторинга» с докладом «Безопасность мобильных приложений и утёкшие данные». Он рассказал, насколько не защищены многие популярные мобильные приложения и что нужно сделать, чтобы повысить их уровень защищённости.
Windows 10 delivers several key advancements in identity and authentication with Windows Hello, Azure Active Directory Join, Web Account Manager, Windows Hello Companion Device Framework, and Dynamic Lock. With the adoption of FIDO (Fast Identity Online alliance) standards across the industry, now is the time to update your websites and applications to support secure user authentication. Come join us to learn how you can build websites and applications that provide a single sign-on experience with strong password-less authentication. We promise some exciting demos!
Simplify Troubleshooting With Context in Your LogsSolarWinds
Learn how SolarWinds® AppOptics™ integrates with SolarWinds Loggly® and Papertrail™ to make troubleshooting applications easier with auto-instrumentation, end-to-end tracing, request-level details, and searchable trace IDs.
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Generative AI Deep Dive: Advancing from Proof of Concept to ProductionAggregage
Join Maher Hanafi, VP of Engineering at Betterworks, in this new session where he'll share a practical framework to transform Gen AI prototypes into impactful products! He'll delve into the complexities of data collection and management, model selection and optimization, and ensuring security, scalability, and responsible use.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Goodbye Windows 11: Make Way for Nitrux Linux 3.5.0!SOFTTECHHUB
As the digital landscape continually evolves, operating systems play a critical role in shaping user experiences and productivity. The launch of Nitrux Linux 3.5.0 marks a significant milestone, offering a robust alternative to traditional systems such as Windows 11. This article delves into the essence of Nitrux Linux 3.5.0, exploring its unique features, advantages, and how it stands as a compelling choice for both casual users and tech enthusiasts.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
A tale of scale & speed: How the US Navy is enabling software delivery from l...sonjaschweigert1
Rapid and secure feature delivery is a goal across every application team and every branch of the DoD. The Navy’s DevSecOps platform, Party Barge, has achieved:
- Reduction in onboarding time from 5 weeks to 1 day
- Improved developer experience and productivity through actionable findings and reduction of false positives
- Maintenance of superior security standards and inherent policy enforcement with Authorization to Operate (ATO)
Development teams can ship efficiently and ensure applications are cyber ready for Navy Authorizing Officials (AOs). In this webinar, Sigma Defense and Anchore will give attendees a look behind the scenes and demo secure pipeline automation and security artifacts that speed up application ATO and time to production.
We will cover:
- How to remove silos in DevSecOps
- How to build efficient development pipeline roles and component templates
- How to deliver security artifacts that matter for ATO’s (SBOMs, vulnerability reports, and policy evidence)
- How to streamline operations with automated policy checks on container images
GraphSummit Singapore | The Art of the Possible with Graph - Q2 2024Neo4j
Neha Bajwa, Vice President of Product Marketing, Neo4j
Join us as we explore breakthrough innovations enabled by interconnected data and AI. Discover firsthand how organizations use relationships in data to uncover contextual insights and solve our most pressing challenges – from optimizing supply chains, detecting fraud, and improving customer experiences to accelerating drug discoveries.
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Climate Impact of Software Testing at Nordic Testing DaysKari Kakkonen
My slides at Nordic Testing Days 6.6.2024
Climate impact / sustainability of software testing discussed on the talk. ICT and testing must carry their part of global responsibility to help with the climat warming. We can minimize the carbon footprint but we can also have a carbon handprint, a positive impact on the climate. Quality characteristics can be added with sustainability, and then measured continuously. Test environments can be used less, and in smaller scale and on demand. Test techniques can be used in optimizing or minimizing number of tests. Test automation can be used to speed up testing.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
2. A Brief List of Topics
• Why use these confounded devices?
• Pebble Time
– Data on phone
• Microsoft Band 2
– Data on phone
• Ways to protect your data
• Future research goals
• Questions/Comments (if time permits)
BriMor Labs - 2016
3. The Introductory Introduction
• Hello, my name is Brian Moran
– Hi Brian!
• 13 years Air Force Active Duty
– 10 years mobile exploitation/DFIR experience
• Co-winner: Unofficial Forensic 4Cast Awards 2012
-- Best Photoshop of Lee Whitfield
• Worked here….
BriMor Labs - 2016
6. Hardware Used
• Samsung Galaxy Note II (SCH-i605) – rooted
– Running Android 4.4.2
• Pebble Time
– Running 3.10
• Microsoft Band 2
– Running 2.0.4215.0 26R
BriMor Labs - 2016
7. Software Used
• ES File Explorer app – Android
– Version 4.0.4.5
• Microsoft Health app – Android
– Version 1.3.20213.1
• Pebble Time app – Android
– Version 3.10.0-976-0c219e8
• SQLite Spy
– Version 1.9.6
• Hex Workshop
– Version 6.8.0.5419
• Perl/Python
BriMor Labs - 2016
8. iOS data shout out
• Special thanks to likely 2017 Forensic 4Cast
Awards “Digital Forensic Book of the Year”
nominee Heather Mahalik for providing me
Pebble related iOS data*
– Let’s make this happen!
*Only cost me a couple pairs of LuLaRoe leggings
BriMor Labs - 2016
10. What Was NOT Used
• Cellebrite
– Don’t want to rely on ~$10k worth of equipment
• During the course of this research, no lying
dormant cyber pathogens were harmed
BriMor Labs - 2016
11. Why not Apple/Samsung/LG/etc?
• Wanted to choose smartwatches that can be
used regardless of brand of phone or phone
operating system
• Microsoft Band 2 – Android, iOS, Windows
Phone
• Pebble – Android, iOS, “unofficial official”
Windows Phone
BriMor Labs - 2016
12. Why use smart watches?
• Helpful notifications (especially when driving)
BriMor Labs - 2016
27. • “datadatacom.getpebble.android.basaltdatabase
spebble” is primary file of interest
– SQLite database (as are most files on mobile devices
these days)
– Easy to view in any SQLite viewer or parse via scripting
languages
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
29. • Table “android_apps” contains a listing of every
application and application version installed on the
device
• Information is obviously needed for notifications
sent to Pebble
• Useful location if looking for an application/version
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
31. • Table “notifications” contains a listing of every
notification that happened on the mobile device
• Data is stored by Pebble app regardless of it is sent
to the device or not
• Can obviously contain INCREDIBLY useful
information
– NOTE: Database does get cleaned when user chooses to
clear all notifications
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
33. • Table “timeline_items” contains a listing
notifications actually sent to device
• This data is stored as json inside of a SQLite
database
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
35. • Table “weather_locations” contains a list of
“locations” that the device receives weather
updates
• Can be useful to determine if an individual was in a
certain place at a certain time
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
37. • SMS message notifications are stored under
“notifications” table.
– The “package_name” is bank, the “SOURCE” is “SMS”
• Remember, this can potentially contain messages
that were deleted from the phone but stored within
this database!
BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
38. BriMor Labs - 2016
Pebble Time storage
(Android mobile device)
39. • Obligatory Pebble data on iOS devices slides
• Main database of interest is named
“PBMyPebbleAppDataCoreDataManager.sqlite”
BriMor Labs - 2016
Pebble Time storage
(iOS mobile device)
44. Microsoft Band 2 storage
(Android mobile device)
• Primary folder of interest is “responseCache”
– Found under “com.microsoft.kapp/files”
• Folder contains files in json format with GUID type
names
– Names correlate to entries in SQLite database
“cache.sqlite” found under the path
“com.microsoft.kapp/databases”
– IMPORTANT NOTE: Not all names have an entry,
depending on Band usage
BriMor Labs - 2016
45. Microsoft Band 2 storage
(Android mobile device)
• Data in SQLite database notes a file related to
“Golf” is stored as
“/data/data/com.microsoft.kapp/files/responseCac
he/9524a205-d3d6-4d7c-ad31-cbfba2e25840”
BriMor Labs - 2016
46. Microsoft Band 2 storage
(Android mobile device)
BriMor Labs - 2016
47. Microsoft Band 2 storage
(Android mobile device)
BriMor Labs - 2016
48. Microsoft Band 2 storage
(Android mobile device)
• Highlights
– Distance is stored in “cm”
– Par was 71
– Total score was 85
– Scored par or better on 10 holes
(Had a good front nine (+2), but ran into trouble on
the back. Not too bad all in all considering I have an
exploded hip)
BriMor Labs - 2016
51. Microsoft Health - website
• Remember the text data from golfing earlier?
• The data viewed in the application or on the web is
much easier to understand
BriMor Labs - 2016
53. BriMor Labs - 2016
Golf data viewed on Microsoft Health app
Microsoft Health
app
54. Microsoft Health
• Same methodology can be applied for all “tracking”
aspects
– Running
– Workouts
– Sleep
– Calories
– Etc.
BriMor Labs - 2016
55. Microsoft Band 2 storage
(Android mobile device)
BriMor Labs - 2016
Look at database for file associated with “Sleeping”
b0d94bd7-4b17-46f9-9733-090aebcbf0ae
56. Microsoft Band 2 storage
(Android mobile device)
BriMor Labs - 2016
Browse to
“com.microsoft.kapp/files/responseCache/b0d94bd7-4b17-
46f9-9733-090aebcbf0ae”
57. Microsoft Band 2 storage
(Android mobile device)
BriMor Labs - 2016
Raw sleep data on mobile device
58. Microsoft Health - website
BriMor Labs - 2016
Sleep data viewed on Microsoft Health website
NOTE: Asleep at 12:04AM
60. Important Take Away
• Smart watches are essentially content notification
devices
– Require another device (smart phone) to “fully” work
• Most of the interesting data will be stored on the
mobile device itself
• Connected apps/websites can have even MORE
data!
BriMor Labs - 2016
61. Important Take Away
• Time(s) are dependent on exact time on
device/platform being analyzed
– Fell asleep at 12:04AM according to website
– Fell asleep at 12:05AM according to app
• Trust the raw data, but be prepared for slight
time skew
• No current method to “secure” most smart
watches
– It pains me to say this, but it is one thing that Apple
got right
BriMor Labs - 2016
62. Important Take Away
• If you are going to do something bad, don’t
wear a smartwatch/fitness tracker
• Additionally, if you are going to lie about
something bad happening to you, don’t wear
a smartwatch/fitness tracker
BriMor Labs - 2016
63.
64.
65. Protecting your data
• Only turn on notifications you want to record
– NOTE: iOS will not allow the user to modify some
notification settings
• Open Pebble app on mobile device
– Navigate to “Notifications”
– Select “View All Apps”
– Change slider from blue (on) to gray (off)
accordingly
BriMor Labs - 2016
67. Protecting your data
• Clear notifications on a regular basis
• On Pebble device,
– Navigate to “Notifications”
– Select “Clear All”
• NOTE: You must have at least one notification
on the Pebble device to clear the SQLite table
on the mobile device
BriMor Labs - 2016
69. Protecting your data
• Don’t sync health care data/records with any
applications
– If you do, and you lose control of your own
PII/PHI, you could theoretically be held liable for
losing your own data
BriMor Labs - 2016
70. Protecting your data
• Use strong password(s) for your accounts
• Don’t reuse passwords
– Especially for 2nd/3rd party apps
BriMor Labs - 2016
Examples of BAD
passwords
71. Future development
(DEPENDENT ON FREE TIME)
• allyourpebblearebelongtous.pl
– ETA late June 2016
– Wait. That’s now!!
• allyourband2arebelongtous.pl
– ETA TBD, In progress
• Why Perl?
– Easier for me
– Want Cellebrite to at least do a little work to make
money off of open source research
BriMor Labs - 2016
72. allyourpebblearebelongtous.pl
• Give the script a pebble database & output
folder and let it run
• Tries to figure out if it is iOS or android &
parses data accordingly
BriMor Labs - 2016
NOW FEATURING IOS
PARSING CAPABILITIES!!
77. Future development
(DEPENDENT ON FREE TIME)
• Collect more data and do more
experimentation
– Capturing traffic to/from smart watches is my next
goal
– Doing this after hip surgery will help considerably
• Expand to other smart watches (maybe?)
BriMor Labs - 2016
78. Future development
(DEPENDENT ON FREE TIME)
• Check out a post by b0nb0n on jailbreaking
the Microsoft fitness band
– http://www.b0n0n.com/2016/04/20/ms-
jailbreak/
• NOTE: This was done with the original Microsoft
Band, my limited testing has been unsuccessful thus
far on the Band 2
BriMor Labs - 2016