<![CDATA[Nityanand's Blog]]>https://blog.lsnnt.devRSS for NodeFri, 08 May 2026 23:11:53 GMT60<![CDATA[How do i reverse engineered Chotadhobi app]]>https://blog.lsnnt.dev/how-do-i-reverse-engineered-chotadhobi-apphttps://blog.lsnnt.dev/how-do-i-reverse-engineered-chotadhobi-appFri, 01 May 2026 20:27:14 GMTTLDR :- The app i have used is PCAPDroid which was the easiest method to view the backend apis of the app.

Method 1

Setup a rooted AVD in Android studio via rootavd and install Pcapdroid on it after that install this Always trust user certificate module in magisk manager

open pcapdroid and setup it for decrypting TLS traffic you can refer this.

After you saved the file after doing the things required you will get a sslkeylog file and a pcapng file

in my case

pcap file - download here

ssl.log file - download here

Then open the pcap file in wireshark and go to preferences then protocols then TLS like this

and set the key log file to the downloaded file then you will be able to see the decrypted tls file you can follow any stream to see what it did

Method 2

You can use frida + ssl-pinning + android rooted AVD

This thing i have tried but the first method was easier

Further read the blog posts below for more information:-

https://www.trickster.dev/post/setting-up-rooted-android-emulator-with-frida-and-mitmproxy/

https://infosecwriteups.com/hail-frida-the-universal-ssl-pinning-bypass-for-android-e9e1d733d29

https://www.redfoxsec.com/blog/ssl-pinning-bypass-for-android-using-frida

Signing off,

Nityanand Thakur

Cover photo credits:

Image by freepik

]]><![CDATA[How i created my own custom ddns script]]>https://blog.lsnnt.dev/how-i-created-my-own-custom-ddns-script-df3d5402658fhttps://blog.lsnnt.dev/how-i-created-my-own-custom-ddns-script-df3d5402658fFri, 16 Jan 2026 18:45:04 GMTMy ISP (Internet Service Provider) gives me /64 ipv6 address on which i configured a postfix mailserver on port 25 which can directly mail to my laptop.

But the problem was that the ipv6 address changed every time i connected to my hotspot. So i created a program to handle it.

  1. I want to get the ipv6 address which i can get with

curl ip.se

2. I want to update the ip address on cloudflare as i got connected to my wifi network with specific ssid so i used cloudflare api here

More info

Cloudflare API | DNS › Records › Create DNS Record

Mainly in my case i want to get mail at nnt@jol.fustin.top which is pointed to mx1.fustin.top in my case.

So finally i have to update the AAAA record of mx1 using cloudflare api i have done it

you can get the api key from cloudflare here

https://dash.cloudflare.com/profile/api-tokens

Create API token · Cloudflare Fundamentals docs

So now i have to automate it every time i connect to my wifi network

So in mac we have shortcuts which can automate the tasks

So everything is set now i have the binary file in updateipv6addr directory

set -a = used to automatically export the variables to the system

source .env = to set the .env file

set +a = to reset the above thing

So i got the automated ipv6 update

The repo for this project:

https://github.com/lsnnt/ipv6updater

Thank you,

At last i want to say you that the mail server is receive only because outbound connection to port 25 is blocked by my isp

You can mail me at nnt@jol.fustin.top

]]><![CDATA[How i got the data of train]]>https://blog.lsnnt.dev/how-i-got-the-data-of-train-c2cf5237a7edhttps://blog.lsnnt.dev/how-i-got-the-data-of-train-c2cf5237a7edFri, 16 Jan 2026 18:37:19 GMTFirst after sometime in train i noticed that there was a Wifi Network in my train with SSID “Vandebharatinfotainment” which has some movies but also tells the speed and other details so i figured out how the data is fetched

it was fetched by continuous fetching the data from

http://192.168.191.1/assets/pis/routedata.txt?date=0.6662353108255421

then i started to continuously fetch the data as fast as possible with the command given below and the data was stored in routedata

while true; do curl 'http://192.168.191.1/assets/pis/routedata.txt?date=0.6662353108255421' -H 'Accept: application/json, text/plain, */*' -H 'Accept-Language: en-GB,en-US;q=0.9,en;q=0.8' -H 'Connection: keep-alive' -H 'Referer: http://192.168.191.1/traininfo' -H 'User-Agent: Mozilla/5.0 (Linux; Android 10; K) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/137.0.0.0 Mobile Safari/537.36' --compressed --insecure; done >> routedata

then it was coming in the format of

DATE
TIME
SPEED
TIME REMAINING FOR NEXT STATION
DELAY
DISTANCE OF NEXT STATION

one example of that is

04-01-26
16:27
130 kmph
00:45
00:00
96 km

so it last when i come at station and my wifi disconnected i stopped that script and the output was 370Kb file then i converted it to csv with this script but before running the script i checked if anything was off as maybe some html came in the place of data and i find one html tag which i removed before running the script.

import csv

df = []
with open("route.txt","r") as f:
alllines = f.readlines()
for i in range(0,len(alllines)//6):
stripped = [x.strip() for x in alllines[i*6:i*6+6]]
df.append(stripped)
fieldnames = ['Date','Time','Speed','Time Remaining for next station','Delay','Distance of next station']
# below lines were written with the help of ai
with open('routedata.csv', 'w', newline='') as csvfile:
writer = csv.DictWriter(csvfile, fieldnames=fieldnames)
writer.writeheader()
# convert each row (list of values) to a dict matching the fieldnames
dict_rows = [dict(zip(fieldnames, row)) for row in df]
writer.writerows(dict_rows)

then it created a csv file while i uploaded to hugging face

nghjtvh/train-from-sbc-to-Katpadi · Datasets at Hugging Face

Which you can analyze on huggingface

]]>