<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Spi on Colin O'Flynn</title><link>https://colinoflynn.com/tag/spi/</link><description>Recent content in Spi on Colin O'Flynn</description><generator>Hugo</generator><language>en-ca</language><lastBuildDate>Mon, 10 May 2021 12:25:05 +0000</lastBuildDate><atom:link href="https://colinoflynn.com/tag/spi/index.xml" rel="self" type="application/rss+xml"/><item><title>Apple AirTag Teardown &amp; Test Point Mapping</title><link>https://colinoflynn.com/2021/05/apple-airtag-teardown-test-point-mapping/</link><pubDate>Sat, 08 May 2021 18:24:32 +0000</pubDate><guid>https://colinoflynn.com/2021/05/apple-airtag-teardown-test-point-mapping/</guid><description>&lt;p&gt;&lt;a href="https://colinoflynn.com/wp-content/uploads/2021/05/IMG_3064.jpeg"&gt;&lt;img src="https://colinoflynn.com/wp-content/uploads/2021/05/IMG_3064.jpeg" alt=""&gt;&lt;/a&gt;&lt;/p&gt;
&lt;p&gt;What&amp;rsquo;s inside of Apple&amp;rsquo;s new AirTag? There was already an &lt;a href="https://www.ifixit.com/News/50145/airtag-teardown-part-one-yeah-this-tracks"&gt;iFixIt teardown&lt;/a&gt; (which I swear was missing a few items that are there now), but of course was curious to see what sort of protection was enabled. Notably the nRF chip used is likely vulnerable to a &lt;a href="https://limitedresults.com/2020/06/nrf52-debug-resurrection-approtect-bypass/"&gt;known bypass of security&lt;/a&gt; as well. With that in mind, I set out to see how we could dump some data from this thing - the good news is you can access a lot of interesting stuff (including the SPI flash) right from the backside, which requires you to simply pop the first plastic cover off. This is super-easy to do without damaging anything. Going further than that is tricky to keep it all intact.&lt;/p&gt;</description></item></channel></rss>