*Update* Further investigation
See my previous post: http://tickett.wordpress.com/2011/05/25/hacking-sky-anytime/
I couldn’t help but start some investigating…
I installed WinPcap, Cain & EffeTech HTTP Sniffer in a virtual machine and got cracking
Firstly, I had to enable ARP poisoning in Cain
You can find your sky box’s ip address by pressing services -> 0 -> 6 from the sky remote
Add to the list then start APR
Now from EffeTech HTTP Sniffer configure then start sniffing
Cool- so it’s using plain ‘old HTTP…
I tried a few of the .jpg links and it worked aok: http://cdn.sky.com/60445/bsky_skymovies/BOX_COVER/bsky_skymovies-THUM0000000000071243-20110518154138.jpg (note here I tried from both a sky broadband connection and from a non-sky connection and both worked (does this suggest you may be able to use anytime+ without sky broadband? Hmm…)
Unfortunately when I tried the .nff or .oecm- In Google Chrome I get “Error 6, file not found” and in Internet Explorer/Firefox I get a prompt for credentials (which I can’t seem to decipher from the sniffer logs). I also tried spoofing the User-Agent but that didn’t seem to help either.
That’s about the limit of my investigative skills- so I’ll have to hope others will take it further.
L
Hi,
Great article, I’m interested in doing something similar with a sky box but was interested to discover the processes behind the red button. I.e. what information is sent/received when the red button is pressed. I’m a total beginner at this but i have already had a look at a few packet sniffing progs. I’m assuming that the process will be identical to yours but just pressing red button on a relevant channel and checking which packets are sent.
Any advice would be appreciated.
Thanks
Red button & interactive services don’t use the network connection to the best of my knowledge :(
I thought the live/alternate feeds/news etc provided through the red button would require a network connection? Or is that all through the satellite feed. Is there any way to find out which functions are triggered by any of the interactive buttons. I take it that this code would all be stored on the board though so pretty hard to get to. My ultimate goal (if your interested) would be to tie some external code to the red button press event. Might help if i even knew what language the software was written in eh!