?
Solved

Wireshark - Capturing and sending IP commands to Sony TV

Posted on 2013-12-17
15
Medium Priority
?
2,519 Views
Last Modified: 2013-12-28
Hi Guys,

I am trying to use Wireshark (although I have been working in It for 15 years, I have shamefully never used it.)

I would like to capture the commands the Sony Sideview app on an IOS and Andoid device send to the TV.

Command would mute, volume up, etc the TV.

I want to initially capture and send these command from the PC using telnet or Hercules http://www.hw-group.com/products/hercules/index_en.html

Can anyone help me figure out what I need to put into these programs to send the command from PC?

The capture file is attached.  TV is IP address 192.168.112.12 and iPad with Sideview app is 192.168.112.15.

Please change extension to .pcapng to open in wireshark

I have figured out with the attached file that the command to mute is AAAAAQAAAAEAAAAUAw==, but how do I send this again from another program.

Thanks in advance.
Sony-Sideview-to-55-W805-TV--mut.txt
0
Comment
Question by:Happy_Computing
  • 8
  • 6
15 Comments
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39724948
An article related to rooting this TV can be found here:
http://hackaday.com/2012/06/20/getting-root-on-a-sony-tv/

This discusses how to "talk" to the embedded Linux OS on the TV.
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39724965
Also, check out this Sony Editor - I did run it through a zero-day AV process and it shows no malware present
http://www.chip.de/downloads/SonyEditor_56142031.html
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39724969
And if you get in to the TV and get prompted for a password, the password is gemstar
0
Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

 
LVL 3

Author Comment

by:Happy_Computing
ID: 39724999
Wow that for the amazingly quick response.

I am not actually looking to root the TV.

I am just looking to send command to the TV that it will already respond to without rooting.

There is program called Sony virtual remote at  http://falcosoft.hu/softwares.html that already do this similar to the Sony Editor.

What I want to do is replicate this control with simple commands through telnet or hercules (or similar)

Once I have done this I can program the command into apps for the ipad and android like iRule and control lots of devices together (lighting, under floor heating etc.)

iRule already does the basics like turning TV off an on and changing volume, but is missing the command for new 2013 model TV's.

Thanks, but I need more.
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39725037
Okay - if you grab the latest version of the Sony Virtual Remote, which as of this writing is 1.2, and review the ReadMe.txt, does your television have the Get Device Doc entry on the context menu?

Have you looked at this project - https://github.com/lmc/ruby-cers-tv

And a follow-up discussion regarding the use of VR as well as the ruby code mentioned above:
http://www.opensourceautomation.com/phpBB3/viewtopic.php?f=4&t=936

I found quite a number of resources with this search - https://www.google.com/search?num=100&safe=off&q=sony+ircc+commands
0
 
LVL 3

Author Comment

by:Happy_Computing
ID: 39725056
Hi walkabout,

Thanks again for the links. - I have seen most of these

Maybe I should simply my question as below.


From the captured wireshark dump that is attached, how do I replicate the command send from the iPad on IP address 192.168.112.15 to the TV 192.168.112.12.

The command is AAAAAQAAAAEAAAAUAw== (MUTE)

but there is a lot of HTTP, POST XML bit as well and I want to know what needs to be entered into telnet or hercules to send these commands.
0
 
LVL 3

Author Comment

by:Happy_Computing
ID: 39725064
I think I need an answer from someone who is experiences with wireshark and network analysis and can look at my network dump and break it down into the individual command that were sent.

Then tell me how to enter these in quick succession into a program on my PC, so I can replicate the iPad.

Once this works I can use with another iPad app like iRule.
0
 
LVL 3

Author Comment

by:Happy_Computing
ID: 39725071
Also in answer to Walkabout's question.

The TV does support the IRCC, command as this can be seen in the dump file I attached, but unfortunately does not support the function to read all command the TV does support. and most of the button in the virtual remote program to work.

Although it may have the read command function, the one implemented on the 2011 TV's does not work on the 2013 model.

But I need to replicate this program from the command line or a very basic program like hercules.
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39725073
I will load up the Wireshark dump when I get home in a couple of hours.
0
 
LVL 3

Author Comment

by:Happy_Computing
ID: 39725092
Do you mean download it Walkabout?

Sorry you confused me.  


Its annoying when most things just work easily and when you get stumped, its difficult, cos not that many people out there who can help.


I'll definitely shout you a couple of beers if you can help though.
0
 
LVL 15

Expert Comment

by:WalkaboutTigger
ID: 39725099
I will download your wireshark dump to my network analyzer laptop when I get home, then I can provide you a more-informed answer (hopefully) about what commands/ports/protocols you need to use to send the commands.

And I, too, despise when companies don't provide the necessary documentation to allow consumers to produce enhancements to their products which would, in turn, increase the popularity of said products.
0
 
LVL 3

Author Comment

by:Happy_Computing
ID: 39725133
Thanks.

Is there any way on Experts Exchange to send you my e-mail address without typing it in the post?

I suspect you live in UK as you are on the way home at the same time as I should be and I see an opportunity to make some money if I can get this working and will need people to go on site to program these automation systems.

But I initially need to keep my wife happy and make all this new AV equipment work easily without the 9 remotes we currently have for it all.
0
 
LVL 32

Expert Comment

by:_
ID: 39725490
>> Is there any way on Experts Exchange to send you my e-mail address without typing it in the post?

Just put it in your Profile, and set it to Show.

You may want to use <at> and <dot> instead of the actual characters. You never know when somebody will figure out how to get a bot somewhere it isn't suppose to be.    ; )
0
 
LVL 3

Accepted Solution

by:
Happy_Computing earned 0 total points
ID: 39737142
Hi guys,

I figured this out.

Another forum I posted on indicated in needed to look into protocol reverse engineering, so I learned Debian Linux as this had a open source program for reverse engineering available called netzob.

After learning this program and reading several books on Wire shark. I was able to figure out the handshake between the iPad and the TV and other devices.

I then out this in the custom iPad app and am able to control all the av equipment, lighting and heating from one app.

Going to figure out the alarm if I can next, and but this may not be possible as it is a proper grade 2 security system.
0
 
LVL 3

Author Closing Comment

by:Happy_Computing
ID: 39743328
I have posted what I learned in the last post, but this and a slightly hint in another forum lead me to solutions.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Large and small networks have one same need, Service monitoring. Service monitoring consists of watch services of the several servers in the network. To monitor means that the administrator will receive an alert when a service is down or it's state …
In this article, we’ll look at how to deploy ProxySQL.
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …
Suggested Courses
Course of the Month14 days, left to enroll

807 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question