tag:blogger.com,1999:blog-509652393303233687.post108957743761510834..comments2024-03-28T09:34:12.980-04:00Comments on Azimuth Security: Exploiting Samsung Galaxy S4 Secure BootAzimuth Securityhttp://www.blogger.com/profile/02145574139852043009noreply@blogger.comBlogger56125tag:blogger.com,1999:blog-509652393303233687.post-76870188635855523702015-06-07T11:22:43.488-04:002015-06-07T11:22:43.488-04:00Hello, Dan,
great exploit. Do you know can it be a...Hello, Dan,<br />great exploit. Do you know can it be applied to NEC Terrain? Or other way around: do you know that it cannot by the different nature of the boot lock? For the moment it was a problem that even root (temporary) cannot write to partitions. I found a snaky way and CAN write, so I can flash whatever on the internal memory. I can provide I hope everything upon your request.<br />Now I'm waiting for my other guys to disasm and decompile the aboot binary. Everything suggests that the story is VERY similar or identical to your findings in S4, LG, etc. I hope to find the address of the important function myself.<br />Will you, however, be able to help by supporting (or correcting) my findings about the function address. My problem is that I'm quite new for arm, android, etc. I'm pc c/c++/assembler guy.<br />What might you need? aboot image I guess and the boot image (or atleast it first portion as the image itself is big, 10M), correct?<br />Thanks in advance, Alex alex-kas at altaray dot comAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-54258622695211435962015-06-05T04:42:57.779-04:002015-06-05T04:42:57.779-04:00Do you have a tool to unloki? I am trying to edit ...Do you have a tool to unloki? I am trying to edit my boot, but it's got loki and I'm new to this. I compiled loki_tool but came to realize this is for patching when a mod is already ready. Corkynoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-80878841670390563542015-03-27T15:41:52.444-04:002015-03-27T15:41:52.444-04:00i have a s4 build i545vrufnk1 i have tried everyth...i have a s4 build i545vrufnk1 i have tried everything i could on line when in odin everything connects but when i try and start odin it fails any help would be great<br />Anonymoushttps://www.blogger.com/profile/09844356581143173317noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-47953614630378396242015-03-10T16:16:32.239-04:002015-03-10T16:16:32.239-04:00Hi Dan! How can I use this information to actually...Hi Dan! How can I use this information to actually unfuse a smartphone? I'm programmer and enrolled in a Automation Engineering course, I already done some custom ROMs but I don't know the firsts steps that I need to take in order to break the secure boot. I must enter in shell (via adb), debug some kernel object (with gdb) and call this function? Or must I change the kernel source, put this function call, recompile the ROM and upload? Or I need to change the machine code of the ROM binaries to hack this? Or I need to do this via a JTAG? Or I need to pull a partition and save to a file, edit this binary file in machine code to force that call and update the partition with this edited file? I know how to do things like this, but I don't know how path I have to take.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-81777444265844660462015-02-17T09:29:48.578-05:002015-02-17T09:29:48.578-05:00Unlocking your AT&T HTC Aria by remote unlock ... Unlocking your AT&T HTC Aria by remote unlock code is 100% safe. These phones were built to accept unlock codes. It is the same method service providers will use to unlock their devices. Cellphone unlocking is also 100% legal and will not void warranty on your device.<br />http://www.attphoneunlockingshop.us/Anonymoushttps://www.blogger.com/profile/01139639638362069420noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-53909601934525148742014-07-30T23:24:34.352-04:002014-07-30T23:24:34.352-04:00Dan is there a place I can download this unsigned ...Dan is there a place I can download this unsigned image from, that you used to make your s4 boot?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-82969056456347366062014-07-06T21:23:01.417-04:002014-07-06T21:23:01.417-04:00Please help us out with the AT&T and Verizon n...Please help us out with the AT&T and Verizon note 3Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-86435442037013487162014-06-30T07:42:57.021-04:002014-06-30T07:42:57.021-04:00Please do the same on Samsung Galaxy Note3 SM-N900...Please do the same on Samsung Galaxy Note3 SM-N9005Zibrihttps://www.blogger.com/profile/06742760452319979615noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-83505899519094193952014-06-22T08:03:41.248-04:002014-06-22T08:03:41.248-04:00Hey will it work for galaxy grand 2Hey will it work for galaxy grand 2Apavayanhttps://www.blogger.com/profile/08808726453186399315noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-10831205260852916382014-02-28T23:32:05.559-05:002014-02-28T23:32:05.559-05:00Can you please look into the Lg g flex Can you please look into the Lg g flex Anonymoushttps://www.blogger.com/profile/09688282808808136849noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-86595540017403581832014-02-28T09:07:56.454-05:002014-02-28T09:07:56.454-05:00Can you do this for LG G2 kitkat version?Can you do this for LG G2 kitkat version?spideriohttps://www.blogger.com/profile/06591543100747635477noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-8812003277975100872014-02-08T02:29:01.763-05:002014-02-08T02:29:01.763-05:00Galaxy S4 is the best model of all Notes and SX mo...Galaxy S4 is the best model of all Notes and SX modelsiPhone network checkhttp://www.dreamjb.com/2014/02/iphone-imei-carrier-information-and.htmlnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-45594000225167612922014-01-21T12:47:41.977-05:002014-01-21T12:47:41.977-05:00Thank for sharing your idea about secure boot Gala...Thank for sharing your idea about secure boot Galaxy S4InfoTech Reviewhttp://www.infotech-review.com/noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-66682521592614168302014-01-15T13:53:58.132-05:002014-01-15T13:53:58.132-05:00Samsung ... naturally stupid
should be used in t...Samsung ... naturally stupid <br /><br />should be used in their next commercials ....<br /><br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-11150250130666370002013-12-28T15:04:14.348-05:002013-12-28T15:04:14.348-05:00Dan, would you care to take a look a little at thi...Dan, would you care to take a look a little at this thread on XDA and give us some feedback if the (accidental) presence of SECUREBOOT:NONE would be of any help in fully unlocking the N9005? Thank you very much!<br /><br />http://forum.xda-developers.com/showthread.php?p=48579747<br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-91895275409054689272013-12-12T12:12:09.192-05:002013-12-12T12:12:09.192-05:00Thanks so much Dan, but i have a problem
Well, i t...Thanks so much Dan, but i have a problem<br />Well, i try to make my patch, but i have the response:<br /><br />[+] loki_patch v2.1<br />[-] Failed to find function to patch.<br /><br />Using SCH-i545 4.3 <br /><br />Some news about this?Augusto Ferronatohttps://www.blogger.com/profile/00221784928740700843noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-25959573009982374422013-12-12T00:47:48.379-05:002013-12-12T00:47:48.379-05:00Great work Dan. I hate to be a noob (and I really ...Great work Dan. I hate to be a noob (and I really should know the answer to this question..), but how did you figure out the aboot.mbn entry points? How big are the RAM/ROM sections, header, signature, and program? Are these features of ARM in general that I'm somehow missing, or is this specific to the partition? I've explored lk and still not finding a way to successfully disassemble the image. On another point, how would I know if the image is encrypted? I'm guessing I wouldn't see legible output when I run the binary through 'strings', correct?<br /><br />Cheers,<br />Mikeseesemichaeljhttps://www.blogger.com/profile/18169138499000426952noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-31314721107294463902013-11-01T18:28:00.158-04:002013-11-01T18:28:00.158-04:00Nice read Dan! I am a developer interesting in res...Nice read Dan! I am a developer interesting in researching an MF3 bootloader exploit. Any tips?jake alstadhttps://www.blogger.com/profile/15377733281169752599noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-192725032398030492013-10-28T10:34:17.419-04:002013-10-28T10:34:17.419-04:00I‘am using S4(SC-04E,DCM) now, my nuild is SC04EOM...I‘am using S4(SC-04E,DCM) now, my nuild is SC04EOMUAMF2, I am trying to modify the "aboot.mbn", can you help to locate the entry point by IDA, or give me some tips about mbn file?<br /><br />I have already locate the strings in mbn by IDA, but I can find cross-references.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-37792699271055329202013-10-27T15:25:41.766-04:002013-10-27T15:25:41.766-04:00I am having a "Samsung Galaxy S4-i337 AT&...I am having a "Samsung Galaxy S4-i337 AT&T" which i got as a gift from US.<br />Model no: SAMSUNG-SGH-I337<br />ANDROID VERSION: 4.2.2<br />BASEBAND VERSION: I337UCUAMDL<br />KERNAL VERSION: 3.4.0-453947<br />SE.INFRA@SEI-46#1<br />SAT APR 27 17:06:05 KST 2013<br />BUILD NO: JDQ39.I337UCUAMDL<br />IMEI : XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX (I AM HESITANT TO POST IT)<br />NETWORK UNLOCK CODE : 5XXXXXXX<br /><br />Currently i am staying in India, When i put a new 3g BSNL sim card in it , phone asked for network unlock code, unfortunately i didn't know the importance of it and i entered some random numbers(more than 5 times) and now my network unlocking is permanently blocked by AT&T. I have contacted them they saying my phone is permanently locked and can use only with AT&T network sim card. I have tried to unlock with the method mentioned in XDA forums but unfortunately negative result. I have contacted Samsung , AT&T and BSNL service centers nobody could give a solution to my problem.<br />What can i do with my phone now to use it with BSNL sim card in India...<br />Thanks in advance.....all genius people out there help me please........<br />this post is last hope...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-42045939754935846202013-10-26T21:42:52.864-04:002013-10-26T21:42:52.864-04:00very very clever nice to have a little insight int...very very clever nice to have a little insight into how it works,thanks for the infoAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-68694243695909740292013-10-09T11:29:04.010-04:002013-10-09T11:29:04.010-04:00Can you please share your ida pro aboot.mbn loader...Can you please share your ida pro aboot.mbn loader plugin?Byron Tsigaras, EEhttps://www.blogger.com/profile/17389759066323107540noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-73002298645293906352013-10-06T09:03:17.964-04:002013-10-06T09:03:17.964-04:00Thank you for the light in tunnel. Now we can over...Thank you for the light in tunnel. Now we can override this Knox Crap. Anonymoushttps://www.blogger.com/profile/17978905814872826380noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-33407329173128619742013-10-06T08:24:06.630-04:002013-10-06T08:24:06.630-04:00I'd love to see this masterpiece working ;)
Pl...I'd love to see this masterpiece working ;)<br />Please share your work at http://forum.xda-developers.com/<br />Great Work!justmehttp://forum.xda-developers.com/noreply@blogger.comtag:blogger.com,1999:blog-509652393303233687.post-554436285870159892013-10-06T06:22:30.763-04:002013-10-06T06:22:30.763-04:00It is possoble you turn a i9505 to i9505g?It is possoble you turn a i9505 to i9505g?joaohttps://www.blogger.com/profile/10783440986081903176noreply@blogger.com