Hardware Reverse Engineering
Reverse engineering of circuitry hardware and firmware...
63 topics in this forum
-
Uefi Bios backdoor
by H1TC43R- 1 follower
- 24 replies
- 14.8k views
Has anyone been able to find any master passwords or backdoors for the newer UEFI bios? Let me give you an overview of what I'm doing below I have a windows 10 x64 based machine which works fine, but i want to get into the bios to change settings (Boot order etc) now the older machines used to give you a code on the 3 wrong password attempts which then lets you get a master code for it, but these newer machines have a locked password, which again you get 3 attempts then locks up until reboot no more codes, the bios is the American Megatrends v5.65 i don't want to open it up and remove the cmos at the moment for a few reasons plus I'm not sure that ol…
-
Analysis of PS4's Security...
by Teddy Rogers- 17 replies
- 12.2k views
Makes for a bit of an interesting read... http://cturt.github.io/ps4.html Ted.
-
- 15 replies
- 8.5k views
Does anyone know how to detect and eliminate hypervisor style BIOS hacks which seems to be illegally being done by some shady criminals tied to private corporations and government agencies as well as microchips which are implantable and has been documented the NSA has done previously. Certainly there should be some flaw in this, and disabling hypervisor settings in the BCD or BIOS settings or even removing power and resetting the part of BIOS memory by doing an action along the lines of holding the power button for 15 seconds can have an effect. It would be nice to see some real solid information about this topic beyond hoping for more leaks about it in the media.
-
Reversing Industrial Firmware...
by Teddy Rogers- 8 replies
- 18.3k views
Reversing Industrial Firmware />http://reversemode.com/index.php?option=com_content&task=view&id=80&Itemid=1 Ted.
-
Crack electromagnetic cards????
by r0mel- 1 follower
- 8 replies
- 11.8k views
helllo how are you/.? I am looking for a method for cracking electromagnetic cards. Do friends have any experience in this field? Electromagnetic cards like bank cards or subway cards...
-
Firmware Reversing
by Frostbane- 8 replies
- 13.7k views
Found a nice site, good read for electronics enthusiasts and rc engs as well.. do check it out ☆~(ゝ。∂) http://www.devttys0.com/blog/
-
PLC : S-7 1200 & FATEK
by perfum2020- 6 replies
- 11.1k views
hi guy how can crack a plc or hmi password? how can crack AVR or ARM IC? is there any real solution?
-
Help recovering telnet password from firmware
by david.lynch- 6 replies
- 10.5k views
I'm not sure if it is right to ask it here, if not please delete and forgive me. I would like to know the password for telnet access of an IP camera that we own. Firmware image is uImage_userland. Any information would be greatly appreciated!
-
Hardware Reverse Engineering Learning Platform...
by Teddy Rogers- 5 replies
- 8.4k views
Hardware Reverse Engineering Learning Platform http://hackaday.io/project/1543-Hardware-Reverse-Engineering-Learning-Platform Ted.
-
- 2 followers
- 5 replies
- 1.2k views
I have this code from a tricore processor and I am trying to reverse engineer it in order to rebuild it using c. It is a seed -> key algorithm, that get's a 4byte seed passed (d4 register) does some algorithm to it and returns a 4byte key (d2). In the calculation the d1 register gets used as well. First the extracted assembly: movh d0,#0x7777 d0 now 0x7777'0000 sha d15,a4,#-0x1f d15 = a4 >> 0x1f addi d0,d0,#0x123 +0x123 d0 now 0x77770123 mul e0,a4,d0 e0 = a4 * d0 sha d0,d1,#-0xd …
-
Patching firmwares
by RADIOX- 1 follower
- 5 replies
- 691 views
I have seen many people patching firmware and selling it on the internet, like this website: Chipless firmware for printers Epson I tried to download some original firmware and some patched ones with the same firmware version to compare them, but I couldn’t find any pattern. I created this topic because I think there are smart people here who can help me learn how to do this, at least in the beginning. Thank you.
-
Sega Saturn CD - Cracked After 20 Years
by Teddy Rogers- 4 replies
- 7.2k views
Ted.
-
- 4 replies
- 11.7k views
hi all anyone know about current high-end memories(HDD/SSD/RAM)? how they are designed, how they work and materials used to enhance speed or denseness or resistance. it does not have to be on market. prototypes and even hypotheses can help.
-
TMX 1795: the first, forgotten microprocessor...
by Teddy Rogers- 4 replies
- 7.4k views
TMX 1795: the first, forgotten microprocessor http://www.righto.com/2015/05/the-texas-instruments-tmx-1795-first.html Ted.
-
Getting Docsis Cable Modem Firmware
by Downloading...- 3 replies
- 14.6k views
Hello guys, I'm trying to get to know my cable modem with integrated router better but I can't seem to find any firmware online (it's a CBN 6643E) I read one guy was able to root it a few years ago and since then it has been updated, but I can't seem to find how he did it. I think he somehow managed to extract the firmware since he asked a binwalk question on devttys0's website. Now before I open up my modem (which is illegal I suppose since it is provided by my ISP) how would I be able to extract the firmware to analyse it? Would it be possible to somehow sniff the traffic from the coax cable to eventually grab an update file or something? There …
-
Hardware Reverse Engineering
by Loizos- 3 replies
- 8k views
I did a lot of research , found some useful information before creating this thread, but I am wondering if someone more experienced can provide me with further information on hardware reverse engineering and where to begin.Please keep in mind that I have no experience on hw reversing whatsoever. Best regards, Loizos
-
Sentinel hl Pro
by Zed- 2 replies
- 7.8k views
Hello all good friends of this great community need help on how to make copy of my dongle if anyone can help me I would appreciate very much my program is called RODSTAR already and registration but not what else to do ... RODSTAR.txt
-
Unpack .bin firmware
by MCUDC- 1 follower
- 2 replies
- 2.4k views
This is the firmware of my home satellite receiver, I am trying to unpack it to hide or remove some installed apps but I couldn't access the targeted files. I have tried different scenarios with Binwalk, radare2 & Ghidra but I didn't make any success because I am still a newbie so I thought to consult the professionals. https://drive.google.com/file/d/1G3J72xMT-Btjl_0-5RCZ00jOSkYujKIM/view?usp=sharing
-
Dumping the Sega Dreamcast VMU ROM (20 Years Later)
by Teddy Rogers- 2 replies
- 9.6k views
Dumping the Sega Dreamcast VMU ROM (20 Years Later) http://dmitry.gr/index.php?r=05.Projects&proj=25. VMU Hacking Ted.
-
100 bugs in 100 days: An analysis of ICS (SCADA)...
by Teddy Rogers- 2 replies
- 6.4k views
100 bugs in 100 days: An analysis of ICS (SCADA) I am surprised they only found that many bugs. Scada is a security mess... >http://www.youtube.com/watch?v=29S_Beg71dA&feature=player_embedded Ted.
-
Analyzing Keyboard Firmware
by mrexodia- 2 replies
- 6.7k views
Hey guys, After a long time I started writing on my blog again. https://mrexodia.github.io/reversing/2019/09/28/Analyzing-keyboard-firmware-part-1 Best regards
-
Syncrosoft HID Dongle
by Dragon Team- 2 replies
- 7.6k views
How to dump and emulate Sincrosoft HID Dongle
-
SCADA Trojans: Attacking the Grid...
by Teddy Rogers- 2 replies
- 8.2k views
/>http://www.reversemode.com/downloads/exploit_advantech.zip/>http://www.reversemode.com/downloads/Scada_Trojans_Ruben_Rootedcon.pdf Ted.
-
few question about Embedded device
by kb432- 2 replies
- 7.5k views
#1 Is it possible to Extract Hardware firmware Remotely Via Software ? #2 How to extract hardware framework from a device such router and so on. Thanks
-
Question about rebuilding a windows xp Media class driver for windows 11.
by 12264447666.william.ashley- 2 replies
- 274 views
So I have an old hardware device that was built for windows 2000 / xp - it still is almost as new. Akai MPD16 however the device doesn't work via USB only through its midi 5 din cables. I've looked at the .inf and .sys, and the .inf seems easy enough to modify from win32 xp to windows 11 as not much has changed for driver install locations as far as I am aware. I've taken a look at the .sys in CFF explorer and Hex Editor Neo, and chatted with chatgpt and provided data on it. My understanding is that the .sys file is split into different sections and involves sending midi instructions part of the mpd16 midi sysex instructions that seem more or less standard ak…