Siri hacked to Control Thermostat – Responds and Sets your Room Temperature

By On · Add Comment

Developer plamoni has managed to devise a Siri hack controlling his WiFi thermostat controller using Siri Assistant without having to jailbreak his iPhone 4S. Pete, found a way to intercept the data by forging security certificates, allowing examination of the data format and setting-up a proxy server for Apple’s Siri assistant that can recognize the custom handlers for different actions. He then wrote a plug-in to control his thermostat with Siri.

Siri Hacks

The video shows plamoni controlling his thermostat by activating voice-controlled personal assistant with the home button and giving commands. It responds to commands such as, “What’s the status of the thermostat?”, or “Set the thermostat to 68 degrees”, or even “What’s the inside temperature?”

The instructions at the GitHub site are quite hard to follow unless you have a solid knowledge of certificates and OpenSSL, how to set-up DNS server, or installation of Ruby gems.

For the sake of discussion, I am still adding the set-up instructions as provided by Pete.

  1. Create a root CA using open SSL and have it issue a signed certificate for guzzoni.apple.com. Save the guzzoni private key (no passphrase) and certificate as “server.passless.key” and “server.passless.crt” in the SiriProxy directory.
  2. Load the root CA’s public certificate on your phone (you can just email it to yourself and click it to do that).
  3. Set up a DNS server on your network to forward requests for guzzoni.apple.com to the computer running the proxy (make sure that computer is not using your DNS server!). I recommend dnsmasq for this purpose. It’s easy to get running and can easily handle this sort of behavior.
  4. Install the requisite Ruby gems:
    • httparty
    • open-uri
    • json
    • CFPropertyList
    • pp
    • uuidtools
  5. Execute start.rb (as root — since it must listen on TCP/443)
  6. Activate Siri on your phone (connected to the network and using the DNS server with the fake entry), and say, “Test Siri proxy.” It should respond, “Siri Proxy is up and running!”

plamoni has claimed to have written the Siri Proxy hack from the scratch and haven’t used the raw code posted by Applidium devs on GitHub, who managed to crack Siri protocol last week.

Hacker has warned iPhone users that if lots of traffic is sent to the Guzzoni servers Apple might ban the UIUD, making your iPhone unable to use Siri.

Related posts:

  1. iPod touch 4G and iPhone 4 now runs hacked Siri Voice Assistant
  2. Siri Cracked – Run Siri Voice Assistant on Android, Mac OS, iPhone 4, iPad 2
  3. Adding Custom Siri Commands to Siri Voice Assistant is Possible
  4. iTeleport adds Siri Voice Command to Remotely Launch Mac Apps [VIDEO]
  5. Apple internally testing Siri on iPhone 4 – Seeds Special iOS 5 Build for employees [REPORT]
Tagged with →  

Like This Story? Please Share!

Like Our Site? Follow Us!

CydiaBlog on Google+