https://www.Exploitee.rs/api.php?action=feedcontributions&user=Zenofex&feedformat=atomExploitee.rs - User contributions [en]2024-03-28T14:04:42ZUser contributionsMediaWiki 1.37.2https://www.Exploitee.rs/index.php?title=Useful_Reverse_Engineering_Tools&diff=3129Useful Reverse Engineering Tools2023-08-28T05:21:51Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= Dissassembly & Decompilation Software =<br />
<br />
== IDA PRO ==<br />
IDA Pro is a sophisticated commercial software application used for reverse engineering binary executables and analyzing software. Developed by Hex-Rays, IDA Pro is widely recognized as one of the most advanced and powerful tools in the field of reverse engineering. <br />
<br />
Key features of IDA Pro include:<br />
<br />
# '''Disassembly and Decompilation:''' IDA Pro provides comprehensive disassembly capabilities, allowing users to view and analyze assembly code instructions. Additionally, it offers a decompiler that generates higher-level pseudocode representations of the code, aiding in understanding complex binaries.<br />
# '''Graphical User Interface (GUI):''' IDA Pro features a rich graphical interface that enables users to navigate, visualize, and interact with disassembled code, control flow graphs, data structures, and more.<br />
# '''Advanced Analysis Tools:''' The tool includes a range of analysis features such as function recognition, code cross-references, call graphs, and data flow analysis.<br />
# '''Extensibility and Scripting:''' IDA Pro supports scripting in various languages, allowing users to automate tasks, customize functionality, and create plugins to extend its capabilities.<br />
# '''Binary Analysis and Security Research:''' IDA Pro is used extensively in the field of security research, helping analysts identify vulnerabilities, study malware, and analyze the security of software systems.<br />
# '''Collaboration:''' IDA Pro's database format enables collaboration between analysts, allowing them to share their analysis and research on a specific binary.<br />
# '''Multiple Platforms and Architectures:''' IDA Pro supports a wide range of platforms and architectures, making it suitable for analyzing binaries across different environments.<br />
# '''Cost:''' IDA Pro is a commercial product and is available in several editions with varying feature sets. The cost of IDA Pro can range from several hundred to several thousand dollars per "seat" or user license. As of my last update in September 2021, the price for IDA Pro with all the decompilers (including Hex-Rays Decompiler) is roughly estimated to be around $2500 per seat.<br />
<br />
== Ghidra ==<br />
Ghidra is a powerful open-source JAVA based software reverse engineering framework that was released by the United States National Security Agency (NSA) in March 2019.<br />
<br />
Key features of Ghidra include:<br />
<br />
# '''Disassembly and Decompilation:''' Ghidra can disassemble executable code into human-readable assembly language instructions and can also generate decompiled C code from binary executables. This helps analysts understand how the software functions at a higher level.<br />
# '''Graphical User Interface (GUI):''' Ghidra features a user-friendly GUI that assists users in navigating and visualizing the disassembled code, control flow graphs, data structures, and more.<br />
# '''Collaboration and Scripting:''' Ghidra allows users to write custom scripts and plugins in languages like Python to automate analysis tasks and customize the tool's functionality.<br />
# '''Symbolic Analysis:''' Ghidra supports symbolic analysis, which aids in understanding program behavior by tracking values and relationships symbolically.<br />
# '''Binary Analysis and Vulnerability Research:''' Security researchers can use Ghidra to identify vulnerabilities, analyze malware, and discover potential security weaknesses in software.<br />
# '''Cross-Platform Compatibility:''' Ghidra is cross-platform, supporting Windows, macOS, and Linux, making it accessible to a wide range of users.<br />
# '''Open Source and Community-Driven:''' One of Ghidra's standout features is that it is open-source software. This means that anyone can access, use, and contribute to its development. The open nature of the project encourages collaboration and innovation within the reverse engineering community.<br />
# '''Cost:''' Ghidra is freely available for download and use, making it an accessible tool for individuals and organizations alike. The fact that it is open source contributes to its widespread adoption and popularity in the cybersecurity and reverse engineering fields.<br />
<br />
== Binary Ninja ==<br />
Binary Ninja is a modern and user-friendly binary analysis platform used for reverse engineering and analyzing compiled code. Developed by Vector 35, Binary Ninja is often the preferred tool for CTF players and reverse engineers looking for a developer friendly python based API.<br />
<br />
Key features of Binary Ninja include:<br />
<br />
# '''Interactive Graphical Interface:''' Binary Ninja offers an interactive and visually appealing interface that simplifies the process of navigating and analyzing disassembled code. The platform uses a modern design to provide a clear representation of control flow graphs, functions, and data structures.<br />
# '''Multi-Architecture and Multi-Platform Support:''' Binary Ninja supports various processor architectures and platforms, allowing users to analyze binaries from different environments and systems.<br />
# '''Disassembly and Decompilation:''' The platform provides disassembly capabilities to view assembly code, and it also offers a decompiler to generate high-level pseudocode representations of the binary.<br />
# '''Advanced Analysis Tools:''' Binary Ninja includes features such as function recognition, data cross-references, call graphs, data flow analysis, and more.<br />
# '''Plugin Ecosystem:''' Binary Ninja supports a plugin architecture that allows users to extend its functionality through custom plugins written in Python.<br />
# '''Collaboration and Sharing:''' The platform allows users to share analysis data and collaborate on projects by exporting and importing databases.<br />
# '''Scripting and Automation:''' Users can write scripts in Python to automate repetitive tasks and customize analysis processes.<br />
# '''Cost:''' Binary Ninja offers different editions with varying feature sets. As of my last update in September 2021, the cost of Binary Ninja's commercial licenses ranged from around $150 to $300 for the Personal edition, while the Business edition was priced at approximately $600. More advanced editions, such as the Enterprise edition, offer additional features and flexibility at a higher cost.<br />
<br />
== Our Recommendation ==<br />
The cost of IDA Pro can be unobtainable for researchers on a budget therefore we recommend either using Ghidra as your sole disassembly tool or a combination of Ghidra and Binary Ninja for a low cost solution that will allow for a more expansive ability to audit binaries for vulnerabilities. <br />
<br />
= Reversing Hardware =<br />
<br />
= Hardware Tools =<br />
<br />
== Tigard ==<br />
<br />
== Saleae Logic Analyzer ==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Useful_Reverse_Engineering_Tools&diff=3128Useful Reverse Engineering Tools2023-08-28T03:27:06Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = Dissassembly & Decompilation Software = == IDA PRO == IDA Pro is a sophisticated commercial software application used for reverse engineering binary executables and analyzing software. Developed by Hex-Rays, IDA Pro is widely recognized as one of the most advanced and powerful tools in the field of reverse engineering. == Ghidra == Ghidra is a powerful open-source JAVA based software reverse engineering framework that was released by the..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= Dissassembly & Decompilation Software =<br />
<br />
== IDA PRO ==<br />
IDA Pro is a sophisticated commercial software application used for reverse engineering binary executables and analyzing software. Developed by Hex-Rays, IDA Pro is widely recognized as one of the most advanced and powerful tools in the field of reverse engineering. <br />
<br />
== Ghidra ==<br />
Ghidra is a powerful open-source JAVA based software reverse engineering framework that was released by the United States National Security Agency (NSA) in March 2019.<br />
<br />
== Binary Ninja ==<br />
Binary Ninja is a modern and user-friendly binary analysis platform used for reverse engineering and analyzing compiled code. Developed by Vector 35, Binary Ninja is often the preferred tool for CTF players and reverse engineers looking for a developer friendly python based API. <br />
<br />
== Our Recommendation ==<br />
The cost of IDA Pro can be unobtainable for researchers on a budget therefore we recommend either using Ghidra as your sole disassembly tool or a combination of Ghidra and Binary Ninja for a low cost solution that will allow for a more expansive ability to audit binaries for vulnerabilities. <br />
<br />
= Reversing Hardware =<br />
<br />
= Hardware Tools =<br />
<br />
== Tigard ==<br />
<br />
== Saleae Logic Analyzer ==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=SWD&diff=3127SWD2023-08-23T11:53:52Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= SWD =<br />
SWD stands for Serial Wire Debug, and it is a widely used debug and programming interface for microcontrollers and other embedded systems. SWD is designed to provide a streamlined and more efficient way of debugging and programming compared to the traditional JTAG (Joint Test Action Group) interface.<br />
<br />
SWD uses a reduced number of pins compared to JTAG, which makes it particularly useful for devices with limited pin counts or space constraints. <br />
<br />
The SWD interface requires only two pins:<br />
# '''SWDIO (Serial Wire Debug I/O):''' This bidirectional pin is used for both data communication and control signals during debugging and programming operations.<br />
# '''SWCLK (Serial Wire Clock):''' This pin provides the clock signal necessary to synchronize data transfers between the debugger and the target device.<br />
<br />
In addition to these two main pins, some systems might also include an optional reset pin, similar to the JTAG interface.<br />
<br />
== SWD Protocol ==<br />
SWD operates by using a simplified protocol that allows the debugger to communicate with the target device's debug logic. <br />
<br />
The communication protocol typically involves the following signals and states:<br />
* '''Idle State:''' Both SWDIO and SWCLK are in a high-impedance state, and the target device is not actively communicating.<br />
* '''Turnaround State:''' The debugger sets SWDIO to an output high impedance (tristate) while the target device responds with data on the same pin.<br />
* '''Read and Write Operations:''' The debugger and the target device communicate by shifting data bits serially on the SWDIO line while using the SWCLK signal to clock the data.<br />
* '''Acknowledge Response:''' After each data transfer, the target device sends an acknowledge (ACK) or not-acknowledge (NAK) response to confirm the success of the operation.<br />
<br />
== SWD vs JTAG ==<br />
SWD offers advantages over JTAG:<br />
<br />
# '''Reduced Pin Count:''' SWD requires fewer pins, making it suitable for devices with limited pin availability.<br />
# '''Faster Data Transfer:''' SWD typically operates at higher clock speeds than JTAG, resulting in faster debugging and programming operations.<br />
# '''Simplicity:''' The SWD protocol is simpler than JTAG, making it easier to implement and use.<br />
# '''Lower Power Consumption:''' The reduced pin count and simplified protocol contribute to lower power consumption compared to JTAG.<br />
<br />
== Identifying SWD == <br />
<br />
Identifying SWD (Serial Wire Debug) pins using a multimeter, logic analyzer, or oscilloscope can be a bit challenging due to the high-frequency and complex nature of SWD signals. However, with careful observation and understanding of the SWD signal characteristics, you can attempt to identify the SWD pins. Here's a basic approach for each tool:<br />
<br />
=== Using a Multimeter ===<br />
<br />
* '''Identify Power and Ground Pins:''' Begin by identifying the power and ground pins of the device. These are often labeled on the device's package or in the datasheet. Use the continuity mode of the multimeter to verify these pins.<br />
* '''Check for Clock Signal (SWCLK):'''<br />
** Set your multimeter to voltage mode and connect the negative lead to a ground pin.<br />
** Probe various pins with the positive lead while observing the multimeter reading.<br />
** Look for pins that show pulsating voltage changes. The SWCLK pin should have a clock-like signal.<br />
* '''Check for Data Signal (SWDIO):'''<br />
** Similar to the clock signal, probe different pins while observing the multimeter reading.<br />
** The SWDIO pin should show some voltage transitions as data is shifted in and out during communication.<br />
<br />
Please note that using a multimeter to identify SWD pins might not provide detailed information about the signal characteristics, but it can help you identify pins that are likely candidates for SWD.<br />
<br />
=== Using a Logic Analyzer or Oscilloscope ===<br />
<br />
# Identify Power and Ground Pins: As before, start by identifying power and ground pins using the datasheet or any labeling on the device.<br />
# Capture Signal Patterns<br />
#* Set up your logic analyzer or oscilloscope to capture signals from potential SWD pins.<br />
#* Focus on the pins that are likely candidates for SWD, particularly those near the power and ground pins.<br />
#* Configure the capture settings to match the expected SWD clock frequency (typically in the MHz range).<br />
# Analyze Signal Patterns:<br />
#* Examine the captured signals for repetitive patterns that resemble clock signals and data transitions.<br />
#* The SWCLK signal should exhibit a regular clock pattern, and the SWDIO signal should show data transitions in sync with the clock.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=SPI&diff=3126SPI2023-08-23T11:32:47Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= SPI Flash Memory =<br />
<br />
'''SPI flash memory''' is a type of non-volatile memory that uses the Serial Peripheral Interface (SPI) protocol for communication. It is commonly used for storing firmware, configuration data, boot code, and other critical information in embedded systems, microcontrollers, and other devices.<br />
<br />
== Key Characteristics ==<br />
<br />
* '''Interface''': SPI flash memory communicates using the SPI protocol, a synchronous serial communication protocol that involves four lines: Serial Clock (SCK), Master Out Slave In (MOSI), Master In Slave Out (MISO), and Chip Select (CS).<br />
* '''Organization''': SPI flash memory is organized into memory cells that can be individually addressed and read from or written to.<br />
* '''Read Speeds''': SPI flash memory generally offers moderate read speeds suitable for many applications, making it well-suited for code execution and data storage.<br />
* '''Ease of Integration''': The SPI protocol is widely supported and relatively simple to implement, making SPI flash memory easy to integrate into a wide range of devices.<br />
* '''Boot Code Storage''': SPI flash memory is commonly used for storing boot code, firmware, and configuration data, allowing devices to start up and operate efficiently.<br />
<br />
== Applications ==<br />
<br />
SPI flash memory finds applications in various devices and scenarios:<br />
* '''Embedded Systems''': SPI flash memory is often used to store firmware, boot code, and configuration data in embedded systems, microcontrollers, and development boards.<br />
* '''Bootable Devices''': Devices with SPI flash memory can boot quickly and initialize essential components from the stored boot code.<br />
* '''Data Storage''': While SPI flash memory doesn't offer the same density as NAND flash memory, it is used for storing smaller amounts of data that require fast access.<br />
* '''Configuration Storage''': SPI flash memory stores configuration settings and parameters for devices and applications.<br />
<br />
== Advantages and Challenges ==<br />
<br />
Advantages of SPI flash memory include its ease of integration, moderate read speeds, and suitability for boot code storage. However, it also comes with challenges:<br />
<br />
* '''Limited Density''': SPI flash memory generally has lower storage density compared to NAND flash memory.<br />
* '''Slower Write Speeds''': Writing to SPI flash memory is generally slower compared to NAND flash memory.<br />
* '''Erase Constraints''': Like other flash memory, SPI flash memory often requires entire blocks to be erased before new data can be written.<br />
* '''Endurance Limitations''': SPI flash memory cells have a limited number of program/erase cycles, which affects their lifespan.<br />
<br />
== Identifying and Dumping ==<br />
Identifying and dumping SPI flash involves the process of identifying the SPI flash chip on a circuit board and then reading its contents for further analysis. This is commonly done for tasks like firmware extraction, reverse engineering, or data recovery. Here's a general outline of how to identify and dump SPI flash:<br />
<br />
# '''Gather Necessary Equipment:'''<br />
#* You'll need a few tools for this process, including a soldering iron, jumper wires, an SPI flash programmer (hardware device that connects to the SPI flash chip), a computer, and relevant software for reading and analyzing the dumped data.<br />
# '''Identify the SPI Flash Chip:'''<br />
#* Locate the SPI flash chip on the circuit board you're working with. The chip might have markings that indicate its manufacturer, model, and capacity. A datasheet or online resources can help you identify the chip.<br />
# '''Prepare for Soldering:'''<br />
#* Make sure you have a good understanding of soldering and desoldering techniques, as well as access to the necessary tools.<br />
#* Some SPI flash chips might be soldered directly onto the circuit board, while others might be in sockets. In either case, you'll need to access the chip's pins.<br />
# '''Connect the SPI Flash Programmer:'''<br />
#* Use jumper wires to connect the SPI flash programmer to the chip's pins. The programmer will typically have connections for the SPI lines (SCK, MOSI, MISO), Chip Select (CS), Ground (GND), and possibly a power source if the chip requires it.<br />
# '''Read the SPI Flash:'''<br />
#* Use appropriate software (often provided by the manufacturer of the programmer) to read the contents of the SPI flash chip. This software might offer options to read, verify, and save the data.<br />
# '''Dump the Data:'''<br />
#* Once you've read the contents of the SPI flash, you'll have a binary file that represents the data stored in the chip.<br />
#* This binary file can be considered a "dump" of the SPI flash's contents. It might contain firmware, configuration data, or other information depending on the application.<br />
# '''Analyze the Dumped Data:'''<br />
#* Depending on your goals, you can use various tools to analyze the dumped data. This could involve searching for specific patterns, extracting firmware, identifying configuration settings, or reverse engineering the code.<br />
# '''Backup and Safety:'''<br />
#* Always create a backup of the dumped data before making any modifications. This ensures you have a pristine copy in case anything goes wrong during analysis.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=SPI&diff=3125SPI2023-08-23T11:32:04Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = SPI Flash Memory = '''SPI flash memory''' is a type of non-volatile memory that uses the Serial Peripheral Interface (SPI) protocol for communication. It is commonly used for storing firmware, configuration data, boot code, and other critical information in embedded systems, microcontrollers, and other devices. == Key Characteristics == * '''Interface''': SPI flash memory communicates using the SPI protocol, a synchronous serial communic..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= SPI Flash Memory =<br />
<br />
'''SPI flash memory''' is a type of non-volatile memory that uses the Serial Peripheral Interface (SPI) protocol for communication. It is commonly used for storing firmware, configuration data, boot code, and other critical information in embedded systems, microcontrollers, and other devices.<br />
<br />
== Key Characteristics ==<br />
<br />
* '''Interface''': SPI flash memory communicates using the SPI protocol, a synchronous serial communication protocol that involves four lines: Serial Clock (SCK), Master Out Slave In (MOSI), Master In Slave Out (MISO), and Chip Select (CS).<br />
* '''Organization''': SPI flash memory is organized into memory cells that can be individually addressed and read from or written to.<br />
* '''Read Speeds''': SPI flash memory generally offers moderate read speeds suitable for many applications, making it well-suited for code execution and data storage.<br />
* '''Ease of Integration''': The SPI protocol is widely supported and relatively simple to implement, making SPI flash memory easy to integrate into a wide range of devices.<br />
* '''Boot Code Storage''': SPI flash memory is commonly used for storing boot code, firmware, and configuration data, allowing devices to start up and operate efficiently.<br />
<br />
== Applications ==<br />
<br />
SPI flash memory finds applications in various devices and scenarios:<br />
* '''Embedded Systems''': SPI flash memory is often used to store firmware, boot code, and configuration data in embedded systems, microcontrollers, and development boards.<br />
* '''Bootable Devices''': Devices with SPI flash memory can boot quickly and initialize essential components from the stored boot code.<br />
* '''Data Storage''': While SPI flash memory doesn't offer the same density as NAND flash memory, it is used for storing smaller amounts of data that require fast access.<br />
* '''Configuration Storage''': SPI flash memory stores configuration settings and parameters for devices and applications.<br />
<br />
== Advantages and Challenges ==<br />
<br />
Advantages of SPI flash memory include its ease of integration, moderate read speeds, and suitability for boot code storage. However, it also comes with challenges:<br />
<br />
* '''Limited Density''': SPI flash memory generally has lower storage density compared to NAND flash memory.<br />
* '''Slower Write Speeds''': Writing to SPI flash memory is generally slower compared to NAND flash memory.<br />
* '''Erase Constraints''': Like other flash memory, SPI flash memory often requires entire blocks to be erased before new data can be written.<br />
* '''Endurance Limitations''': SPI flash memory cells have a limited number of program/erase cycles, which affects their lifespan.<br />
<br />
<br />
== Identifying and Dumping ==<br />
Identifying and dumping SPI flash involves the process of identifying the SPI flash chip on a circuit board and then reading its contents for further analysis. This is commonly done for tasks like firmware extraction, reverse engineering, or data recovery. Here's a general outline of how to identify and dump SPI flash:<br />
<br />
# '''Gather Necessary Equipment:'''<br />
#* You'll need a few tools for this process, including a soldering iron, jumper wires, an SPI flash programmer (hardware device that connects to the SPI flash chip), a computer, and relevant software for reading and analyzing the dumped data.<br />
# '''Identify the SPI Flash Chip:'''<br />
#* Locate the SPI flash chip on the circuit board you're working with. The chip might have markings that indicate its manufacturer, model, and capacity. A datasheet or online resources can help you identify the chip.<br />
# '''Prepare for Soldering:'''<br />
#* Make sure you have a good understanding of soldering and desoldering techniques, as well as access to the necessary tools.<br />
#* Some SPI flash chips might be soldered directly onto the circuit board, while others might be in sockets. In either case, you'll need to access the chip's pins.<br />
# '''Connect the SPI Flash Programmer:'''<br />
#* Use jumper wires to connect the SPI flash programmer to the chip's pins. The programmer will typically have connections for the SPI lines (SCK, MOSI, MISO), Chip Select (CS), Ground (GND), and possibly a power source if the chip requires it.<br />
# '''Read the SPI Flash:'''<br />
#* Use appropriate software (often provided by the manufacturer of the programmer) to read the contents of the SPI flash chip. This software might offer options to read, verify, and save the data.<br />
# '''Dump the Data:'''<br />
#* Once you've read the contents of the SPI flash, you'll have a binary file that represents the data stored in the chip.<br />
#* This binary file can be considered a "dump" of the SPI flash's contents. It might contain firmware, configuration data, or other information depending on the application.<br />
# '''Analyze the Dumped Data:'''<br />
#* Depending on your goals, you can use various tools to analyze the dumped data. This could involve searching for specific patterns, extracting firmware, identifying configuration settings, or reverse engineering the code.<br />
# '''Backup and Safety:'''<br />
#* Always create a backup of the dumped data before making any modifications. This ensures you have a pristine copy in case anything goes wrong during analysis.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=NOR&diff=3124NOR2023-08-23T11:25:27Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= NOR Flash Memory =<br />
'''NOR flash memory''' is a type of non-volatile memory commonly used in a variety of applications, including embedded systems, microcontrollers, and firmware storage. It is known for its fast read speeds, random access capabilities, and suitability for code execution.<br />
<br />
=== Key Characteristics ===<br />
* '''Organization''': NOR flash memory is organized into individually addressable cells. Each cell typically stores one or more bits of data.<br />
* '''Random Access''': NOR flash memory supports random access to individual memory locations, making it suitable for executing code directly from the memory.<br />
* '''Read Speeds''': NOR flash memory offers fast read speeds compared to other types of non-volatile memory, which is advantageous for applications that require quick access to code and data.<br />
* '''Endurance''': NOR flash memory has relatively high endurance, meaning it can handle a large number of program/erase cycles without significant degradation.<br />
* '''Code Execution''': Due to its random access and fast read speeds, NOR flash memory is often used for storing firmware and boot code that needs to be executed directly from the memory.<br />
<br />
=== Applications ===<br />
NOR flash memory is used in a variety of applications:<br />
<br />
* '''Firmware Storage''': NOR flash memory is commonly used for storing firmware, boot code, and other critical software in embedded systems and microcontrollers.<br />
* '''Bootable Devices''': NOR flash memory can hold boot code, allowing devices to start up and initialize.<br />
* '''Execution of Code''': NOR flash memory's random access capability makes it suitable for applications that require executing code directly from the memory, such as embedded systems and some networking devices.<br />
* '''Read-Intensive Applications''': Its fast read speeds make NOR flash memory suitable for applications that frequently access data.<br />
<br />
=== Challenges ===<br />
Communication with NOR flash memory also presents challenges, although they differ from those encountered with NAND flash memory due to the distinct characteristics of NOR memory. These challenges relate to the number of wires used in communication, the handling of Out-of-Band (OOB) data, and the implementation of Error Correction Codes (ECC) to ensure data integrity. <br />
<br />
Here's an explanation of these problems:<br />
# '''Number of Wires:'''<br />
#* NOR flash memory typically uses a parallel interface, where each data line requires its own physical wire. This can lead to a significant number of wires for devices with high storage capacities. The large number of wires complicates routing, requires precise synchronization, and increases the potential for signal interference, especially in densely populated circuits.<br />
# '''Out-of-Band (OOB) Data and ECC:'''<br />
#* While NOR flash memory does not use OOB data in the same way as NAND flash memory, it can still require additional data for features like ECC or block management. Managing ECC data in parallel interfaces can be complex due to the need for error correction on multiple data lines simultaneously. This complexity increases as memory density and ECC requirements grow.<br />
# '''Error Correction Codes (ECC):'''<br />
#* Implementing ECC is essential to correct errors that can occur during data storage and retrieval. However, due to the parallel nature of NOR flash memory, ECC implementation can become intricate. Errors may affect multiple data lines, requiring complex error correction strategies that involve cross-line interactions.<br />
# '''Write and Erase Times:'''<br />
#* NOR flash memory has relatively slow write and erase times compared to other types of memory. This can impact the efficiency of write and erase operations, especially in applications that require frequent updates.<br />
# '''Block Erase Constraint:'''<br />
#* NOR flash memory typically requires entire blocks to be erased before new data can be written. This constraint can lead to inefficiencies, especially if small amounts of data need to be updated within a large block.<br />
# '''Voltage Levels and Timing:'''<br />
#* NOR flash memory operations depend on accurate voltage levels and timing. Ensuring consistent voltage levels and precise timing is crucial to successful communication, and any deviations can lead to read or write errors.<br />
# '''Endurance Limitations:'''<br />
#* NOR flash memory cells have finite program/erase cycles, affecting their overall lifespan. This limitation must be managed through techniques like wear leveling and careful use of write and erase operations.<br />
# '''Read Disturb Effects:'''<br />
#* Frequent reading of NOR flash memory cells can inadvertently disturb adjacent cells, potentially leading to data corruption. This effect requires careful consideration when designing read-heavy applications.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=NAND&diff=3123NAND2023-08-23T11:24:57Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= NAND Flash Memory =<br />
<br />
'''NAND flash memory''' is a type of non-volatile memory that is widely used for data storage in various electronic devices. It is characterized by its high density, fast read and write speeds, and relatively low cost per bit compared to other types of non-volatile memory.<br />
<br />
== Key Characteristics ==<br />
<br />
* '''Organization''': NAND flash memory is organized into blocks, pages, and cells. A block typically consists of multiple pages, and each page contains multiple cells.<br />
* '''Cell Types''': NAND flash memory cells can be single-level cell (SLC), multi-level cell (MLC), or triple-level cell (TLC), indicating the number of bits stored per cell.<br />
* '''Read and Write Speeds''': NAND flash memory offers fast read and write speeds compared to other types of flash memory, making it suitable for applications that require high-speed data access.<br />
* '''Density''': NAND flash memory offers high storage density, making it suitable for applications requiring large amounts of data storage.<br />
* '''Endurance''': SLC NAND has higher endurance compared to MLC and TLC NAND due to its simpler cell structure, making it suitable for applications that require frequent writes.<br />
<br />
== Applications ==<br />
<br />
NAND flash memory is used in a wide range of devices and applications, including:<br />
<br />
* '''Solid State Drives (SSDs)''': NAND flash memory is a key component in SSDs, offering high-speed data storage and improved performance over traditional hard drives.<br />
* '''USB Drives''': USB flash drives utilize NAND flash memory for portable data storage.<br />
* '''Memory Cards''': NAND flash is used in SD cards, microSD cards, and other memory cards for digital cameras, smartphones, and other devices.<br />
* '''Embedded Systems''': NAND flash is used in embedded systems for firmware storage, boot-up code, and application storage.<br />
* '''Smartphones and Tablets''': NAND flash memory is a fundamental component in smartphones and tablets for storing operating systems, applications, and user data.<br />
<br />
== Challenges ==<br />
Communication with NAND flash memory presents several challenges due to its architecture and characteristics. These challenges stem from factors such as the number of wires, the need to manage Out-of-Band (OOB) data, and the requirement for Error Correction Codes (ECC) to ensure data integrity. Here's an explanation of these problems:<br />
<br />
# '''Number of Wires:'''<br />
#* NAND flash memory uses a multiplexed I/O interface, which means that multiple signals are transmitted over a reduced number of physical wires. These signals include command, address, data, and control signals. This multiplexing complicates communication, as it requires careful timing and synchronization to ensure that the memory understands the intended operation.<br />
# '''Out-of-Band (OOB) Data:'''<br />
#* NAND flash memory uses a portion of each page for metadata, which is referred to as Out-of-Band (OOB) data. This OOB area is used for various purposes, including storing error correction information, block management data, and wear-leveling information. Managing OOB data adds complexity to the communication process, as both data and OOB areas need to be accessed and updated correctly during read and write operations.<br />
# '''Error Correction Codes (ECC):'''<br />
#* NAND flash memory cells are susceptible to errors, especially as the memory cells become smaller and more densely packed. Error Correction Codes (ECC) are used to detect and correct errors that may occur during data storage and retrieval. However, implementing ECC requires additional processing and computational overhead, as well as knowledge of the specific ECC scheme used by the NAND flash.<br />
# '''Page and Block Management:'''<br />
#* NAND flash memory requires careful management of pages and blocks. Data is written and erased in larger blocks, and these blocks have limited erase cycles before they become unusable. This necessitates techniques such as wear leveling, where data is distributed evenly across the memory to prevent excessive wear on specific blocks. Managing page and block operations while maintaining data integrity adds complexity to communication.<br />
# '''Read and Write Latencies:'''<br />
#* NAND flash memory has inherent read and write latencies due to the physical nature of memory cells. These latencies can impact the performance of communication, especially in applications that require quick access to data. Dealing with these latencies requires effective command sequencing and management.<br />
# '''Bad Blocks and Defect Management:'''<br />
#* NAND flash memory devices can have bad blocks or defects, which need to be managed to ensure reliable communication and data storage. Dealing with these issues requires error handling and mechanisms to map out defective areas.<br />
# '''Voltage Thresholds and Timing:'''<br />
#* NAND flash memory cells operate based on voltage thresholds. Accurate timing and voltage levels are crucial for successful communication, as errors can occur if signals are not properly synchronized or if voltage levels are outside the specified ranges.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=NOR&diff=3122NOR2023-08-23T11:24:02Z<p>Zenofex: Created page with "= NOR Flash Memory = '''NOR flash memory''' is a type of non-volatile memory commonly used in a variety of applications, including embedded systems, microcontrollers, and firmware storage. It is known for its fast read speeds, random access capabilities, and suitability for code execution. === Key Characteristics === * '''Organization''': NOR flash memory is organized into individually addressable cells. Each cell typically stores one or more bits of data. * '''Random A..."</p>
<hr />
<div>= NOR Flash Memory =<br />
'''NOR flash memory''' is a type of non-volatile memory commonly used in a variety of applications, including embedded systems, microcontrollers, and firmware storage. It is known for its fast read speeds, random access capabilities, and suitability for code execution.<br />
<br />
=== Key Characteristics ===<br />
* '''Organization''': NOR flash memory is organized into individually addressable cells. Each cell typically stores one or more bits of data.<br />
* '''Random Access''': NOR flash memory supports random access to individual memory locations, making it suitable for executing code directly from the memory.<br />
* '''Read Speeds''': NOR flash memory offers fast read speeds compared to other types of non-volatile memory, which is advantageous for applications that require quick access to code and data.<br />
* '''Endurance''': NOR flash memory has relatively high endurance, meaning it can handle a large number of program/erase cycles without significant degradation.<br />
* '''Code Execution''': Due to its random access and fast read speeds, NOR flash memory is often used for storing firmware and boot code that needs to be executed directly from the memory.<br />
<br />
=== Applications ===<br />
NOR flash memory is used in a variety of applications:<br />
<br />
* '''Firmware Storage''': NOR flash memory is commonly used for storing firmware, boot code, and other critical software in embedded systems and microcontrollers.<br />
* '''Bootable Devices''': NOR flash memory can hold boot code, allowing devices to start up and initialize.<br />
* '''Execution of Code''': NOR flash memory's random access capability makes it suitable for applications that require executing code directly from the memory, such as embedded systems and some networking devices.<br />
* '''Read-Intensive Applications''': Its fast read speeds make NOR flash memory suitable for applications that frequently access data.<br />
<br />
=== Challenges ===<br />
Communication with NOR flash memory also presents challenges, although they differ from those encountered with NAND flash memory due to the distinct characteristics of NOR memory. These challenges relate to the number of wires used in communication, the handling of Out-of-Band (OOB) data, and the implementation of Error Correction Codes (ECC) to ensure data integrity. <br />
<br />
Here's an explanation of these problems:<br />
# '''Number of Wires:'''<br />
#* NOR flash memory typically uses a parallel interface, where each data line requires its own physical wire. This can lead to a significant number of wires for devices with high storage capacities. The large number of wires complicates routing, requires precise synchronization, and increases the potential for signal interference, especially in densely populated circuits.<br />
# '''Out-of-Band (OOB) Data and ECC:'''<br />
#* While NOR flash memory does not use OOB data in the same way as NAND flash memory, it can still require additional data for features like ECC or block management. Managing ECC data in parallel interfaces can be complex due to the need for error correction on multiple data lines simultaneously. This complexity increases as memory density and ECC requirements grow.<br />
# '''Error Correction Codes (ECC):'''<br />
#* Implementing ECC is essential to correct errors that can occur during data storage and retrieval. However, due to the parallel nature of NOR flash memory, ECC implementation can become intricate. Errors may affect multiple data lines, requiring complex error correction strategies that involve cross-line interactions.<br />
# '''Write and Erase Times:'''<br />
#* NOR flash memory has relatively slow write and erase times compared to other types of memory. This can impact the efficiency of write and erase operations, especially in applications that require frequent updates.<br />
# '''Block Erase Constraint:'''<br />
#* NOR flash memory typically requires entire blocks to be erased before new data can be written. This constraint can lead to inefficiencies, especially if small amounts of data need to be updated within a large block.<br />
# '''Voltage Levels and Timing:'''<br />
#* NOR flash memory operations depend on accurate voltage levels and timing. Ensuring consistent voltage levels and precise timing is crucial to successful communication, and any deviations can lead to read or write errors.<br />
# '''Endurance Limitations:'''<br />
#* NOR flash memory cells have finite program/erase cycles, affecting their overall lifespan. This limitation must be managed through techniques like wear leveling and careful use of write and erase operations.<br />
# '''Read Disturb Effects:'''<br />
#* Frequent reading of NOR flash memory cells can inadvertently disturb adjacent cells, potentially leading to data corruption. This effect requires careful consideration when designing read-heavy applications.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=NAND&diff=3121NAND2023-08-23T11:14:20Z<p>Zenofex: Created page with "Sure, here's the description of NAND flash memory in MediaWiki markup format: = NAND Flash Memory = '''NAND flash memory''' is a type of non-volatile memory that is widely used for data storage in various electronic devices. It is characterized by its high density, fast read and write speeds, and relatively low cost per bit compared to other types of non-volatile memory. == Key Characteristics == * '''Organization''': NAND flash memory is organized into blocks, pages..."</p>
<hr />
<div>Sure, here's the description of NAND flash memory in MediaWiki markup format:<br />
<br />
= NAND Flash Memory =<br />
<br />
'''NAND flash memory''' is a type of non-volatile memory that is widely used for data storage in various electronic devices. It is characterized by its high density, fast read and write speeds, and relatively low cost per bit compared to other types of non-volatile memory.<br />
<br />
== Key Characteristics ==<br />
<br />
* '''Organization''': NAND flash memory is organized into blocks, pages, and cells. A block typically consists of multiple pages, and each page contains multiple cells.<br />
* '''Cell Types''': NAND flash memory cells can be single-level cell (SLC), multi-level cell (MLC), or triple-level cell (TLC), indicating the number of bits stored per cell.<br />
* '''Read and Write Speeds''': NAND flash memory offers fast read and write speeds compared to other types of flash memory, making it suitable for applications that require high-speed data access.<br />
* '''Density''': NAND flash memory offers high storage density, making it suitable for applications requiring large amounts of data storage.<br />
* '''Endurance''': SLC NAND has higher endurance compared to MLC and TLC NAND due to its simpler cell structure, making it suitable for applications that require frequent writes.<br />
<br />
== Applications ==<br />
<br />
NAND flash memory is used in a wide range of devices and applications, including:<br />
<br />
* '''Solid State Drives (SSDs)''': NAND flash memory is a key component in SSDs, offering high-speed data storage and improved performance over traditional hard drives.<br />
* '''USB Drives''': USB flash drives utilize NAND flash memory for portable data storage.<br />
* '''Memory Cards''': NAND flash is used in SD cards, microSD cards, and other memory cards for digital cameras, smartphones, and other devices.<br />
* '''Embedded Systems''': NAND flash is used in embedded systems for firmware storage, boot-up code, and application storage.<br />
* '''Smartphones and Tablets''': NAND flash memory is a fundamental component in smartphones and tablets for storing operating systems, applications, and user data.<br />
<br />
== Challenges ==<br />
Communication with NAND flash memory presents several challenges due to its architecture and characteristics. These challenges stem from factors such as the number of wires, the need to manage Out-of-Band (OOB) data, and the requirement for Error Correction Codes (ECC) to ensure data integrity. Here's an explanation of these problems:<br />
<br />
# '''Number of Wires:'''<br />
#* NAND flash memory uses a multiplexed I/O interface, which means that multiple signals are transmitted over a reduced number of physical wires. These signals include command, address, data, and control signals. This multiplexing complicates communication, as it requires careful timing and synchronization to ensure that the memory understands the intended operation.<br />
# '''Out-of-Band (OOB) Data:'''<br />
#* NAND flash memory uses a portion of each page for metadata, which is referred to as Out-of-Band (OOB) data. This OOB area is used for various purposes, including storing error correction information, block management data, and wear-leveling information. Managing OOB data adds complexity to the communication process, as both data and OOB areas need to be accessed and updated correctly during read and write operations.<br />
# '''Error Correction Codes (ECC):'''<br />
#* NAND flash memory cells are susceptible to errors, especially as the memory cells become smaller and more densely packed. Error Correction Codes (ECC) are used to detect and correct errors that may occur during data storage and retrieval. However, implementing ECC requires additional processing and computational overhead, as well as knowledge of the specific ECC scheme used by the NAND flash.<br />
# '''Page and Block Management:'''<br />
#* NAND flash memory requires careful management of pages and blocks. Data is written and erased in larger blocks, and these blocks have limited erase cycles before they become unusable. This necessitates techniques such as wear leveling, where data is distributed evenly across the memory to prevent excessive wear on specific blocks. Managing page and block operations while maintaining data integrity adds complexity to communication.<br />
# '''Read and Write Latencies:'''<br />
#* NAND flash memory has inherent read and write latencies due to the physical nature of memory cells. These latencies can impact the performance of communication, especially in applications that require quick access to data. Dealing with these latencies requires effective command sequencing and management.<br />
# '''Bad Blocks and Defect Management:'''<br />
#* NAND flash memory devices can have bad blocks or defects, which need to be managed to ensure reliable communication and data storage. Dealing with these issues requires error handling and mechanisms to map out defective areas.<br />
# '''Voltage Thresholds and Timing:'''<br />
#* NAND flash memory cells operate based on voltage thresholds. Accurate timing and voltage levels are crucial for successful communication, as errors can occur if signals are not properly synchronized or if voltage levels are outside the specified ranges.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=JTAG&diff=3120JTAG2023-08-23T11:03:25Z<p>Zenofex: /* Identification */</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= JTAG =<br />
JTAG, which stands for Joint Test Action Group, is a standardized interface and protocol primarily used for testing, debugging, and programming integrated circuits, particularly those found on printed circuit boards (PCBs). JTAG was originally developed for improving the efficiency of manufacturing test processes for complex electronic systems, but it has also found extensive use in development, debugging, and programming stages.<br />
<br />
== JTAG PINS ==<br />
JTAG uses a serial communication interface to access and control various functions of a target device, such as microcontrollers, digital signal processors (DSPs), FPGAs, and other digital integrated circuits. The interface typically consists of four or more pins:<br />
<br />
* '''TCK (Test Clock):''' This pin provides the clock signal that synchronizes the data exchange between the tester (debugging or programming equipment) and the target device.<br />
* '''TMS (Test Mode Select):''' This pin controls the state transitions of the target device's internal test logic, allowing it to enter various test modes.<br />
* '''TDI (Test Data In):''' This pin is used to input test or programming data into the target device.<br />
* '''TDO (Test Data Out):''' This pin is used to output test results or readback data from the target device.<br />
<br />
In addition to these core pins, JTAG interfaces often include optional pins like:<br />
<br />
* '''TRST (Test Reset):''' This pin provides a way to reset the target device's JTAG state machine and bring it back to a known state.<br />
* '''RTCK (Return Test Clock):''' This optional pin helps to adjust the timing of the test clock signal for devices that operate at different clock speeds.<br />
<br />
== JTAG States ==<br />
JTAG operates through a state machine that guides the target device through various states and operations. The primary states are:<br />
<br />
* '''Test-Logic-Reset (TLR):''' This is the initial state when the JTAG interface is reset. The target device's internal logic is reset, and the JTAG state machine is prepared for further operations.<br />
* '''Run-Test/Idle (RTI):''' In this state, the target device is in an idle mode, waiting for further instructions.<br />
* '''Select-DR-Scan (SDR):''' This state is used to select the Data Register (DR) scan chain for data input and output.<br />
* '''Capture-DR (CDR):''' This state captures data from the selected DR scan chain.<br />
* '''Shift-DR (SDR):''' In this state, data is shifted into or out of the selected DR scan chain.<br />
* '''Exit1-DR (EDR1):''' This state prepares for transitioning out of the Shift-DR state.<br />
* '''Update-DR (UDR):''' The captured data is loaded into the target device's registers.<br />
<br />
JTAG also includes similar states for accessing the Instruction Register (IR) scan chain, which allows selecting and executing different operations within the target device, such as debugging or programming operations.<br />
<br />
== Identification ==<br />
<br />
Identifying JTAG pins using an oscilloscope or multimeter can be a bit challenging because JTAG operates at relatively high frequencies and involves complex signal patterns. However, with careful observation and understanding of the JTAG signal characteristics, you can attempt to identify the JTAG pins. Here's a basic approach you can follow:<br />
<br />
* '''Consult the Datasheet:''' If you have access to the datasheet or technical documentation of the device you're working with, it might provide information about the JTAG pinout and signal names.<br />
* '''Identify Power and Ground Pins:''' Begin by identifying the power and ground pins of the device. These pins are often marked on the device's package. Check for voltage levels and continuity using a multimeter to places like the metal shielding for an ethernet or USB header.<br />
* '''Search for JTAG Test Access Port (TAP) Pins:''' JTAG typically has four main pins: TCK, TMS, TDI, and TDO. These pins are part of the Test Access Port (TAP) controller. Look for pins that have fast switching patterns or clock-like signals when the device is powered on. These are likely to be TCK (clock) and TMS (mode select) pins.<br />
* '''Identify TDI and TDO Pins:''' The TDI pin (Test Data In) usually experiences data transitions when you interact with the JTAG interface. You can try sending test patterns or using a JTAG programmer to see if you can observe any signal changes on certain pins. Similarly, TDO (Test Data Out) might show some signal activity when you perform JTAG operations.<br />
* '''Look for Patterns and Relationships:''' Use an oscilloscope to monitor the signal patterns on potential TCK, TMS, TDI, and TDO pins. You might notice synchronous or sequential patterns that resemble JTAG operations, such as shifting in data. Also, TDO might show data that matches the TDI data you input.<br />
* '''Check for JTAG Header or Test Points: Some devices have dedicated JTAG headers or labeled test points for JTAG pins. These make identification much easier. Look for any labels or markings on the PCB that indicate JTAG-related pins.<br />
* '''Observe Signal Timing and Frequencies:''' JTAG operates at specific clock frequencies. If you're using an oscilloscope, try to identify pins that have signal patterns with the expected JTAG clock frequency.<br />
* '''Use Specialized Tools:''' There are specialized tools and probes designed for JTAG pin identification, such as JTAG debugging probes. These tools can help you locate JTAG pins more accurately.<br />
** '''JTAG Enum/JTAGulator:''' JTAG Enum is a sketch that can be used with an arduino and JTAGulator is a board created by joe grand which can be used to identify proper JTAG pins from a set of test points.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=EMMC&diff=3119EMMC2023-08-23T10:56:41Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= eMMC (Embedded MultiMediaCard) =<br />
<br />
'''eMMC''' (Embedded MultiMediaCard) is a type of non-volatile memory storage commonly used in mobile devices, such as smartphones, tablets, and embedded systems. It integrates both flash memory and a flash memory controller into a single package, making it a compact and cost-effective solution for storage needs.<br />
<br />
== Key Features ==<br />
<br />
eMMC is designed for soldered-down, space-constrained applications.<br />
It uses the same interface and protocol as SD cards, making integration easier.<br />
eMMC offers higher performance and better durability than SD cards.<br />
It supports features like wear leveling and bad block management.<br />
== Relationship with SD Cards ==<br />
<br />
eMMC and SD cards share a similar interface and protocol, known as the SPI (Serial Peripheral Interface) bus. However, there are notable differences between the two:<br />
<br />
* '''Physical Form Factor''': eMMC is soldered onto the device's circuit board, while SD cards are removable.<br />
* '''Performance''': eMMC generally provides faster read and write speeds compared to most SD cards.<br />
* '''Durability''': eMMC tends to be more durable than SD cards due to its integration and soldered connection.<br />
* '''Endurance''': eMMC typically has higher endurance (read/write cycles) compared to consumer-grade SD cards.<br />
<br />
== eMMC vs. NAND/NOR Flash Memory ==<br />
<br />
'''NAND''' and '''NOR''' are two primary types of flash memory used in various devices, including SSDs, USB drives, and embedded systems.<br />
<br />
'''NAND Flash Memory''':<br />
* Used in SSDs, USB drives, memory cards, etc.<br />
* Higher storage density, lower cost per gigabyte.<br />
* Faster write speeds compared to NOR.<br />
* Commonly used for mass storage.<br />
<br />
'''NOR Flash Memory''':<br />
* Used in BIOS chips, firmware storage, bootable devices, etc.<br />
* Slower write speeds compared to NAND.<br />
* Typically lower storage density than NAND.<br />
* Suitable for applications requiring random access and execution.<br />
<br />
In contrast, '''eMMC''' is an embedded storage solution that combines flash memory and a controller. It's optimized for space-constrained applications and offers good performance and durability without requiring external controllers. While NAND and NOR are more versatile and can be used in a wider range of applications, eMMC is specifically tailored for embedded systems and mobile devices where space, performance, and integration are critical.<br />
<br />
== Identifying eMMC ==<br />
Identifying eMMC (Embedded MultiMediaCard) pins using a logic analyzer involves capturing and analyzing the signals on the pins to identify patterns that correspond to the eMMC communication protocol. eMMC uses a standard communication protocol like SDIO, SPI or a modified version of it, so you'll need to look for specific signal patterns that indicate data transfer and communication operations. Here's a step-by-step guide on how to identify eMMC pins using a logic analyzer:<br />
<br />
# '''Gather Equipment:'''<br />
#* Obtain a logic analyzer that is capable of capturing signals at the frequencies used by the eMMC protocol. The logic analyzer should have enough channels to monitor all the relevant pins.<br />
# '''Identify Power and Ground Pins:'''<br />
#* Refer to the eMMC datasheet or device documentation to identify the power and ground pins. Typically, these pins are labeled and grouped together.<br />
# '''Identify Clock Signal (CLK):'''<br />
#* The eMMC protocol uses a clock signal to synchronize data transfers. Look for a pin that exhibits regular high-frequency oscillations. This is likely the CLK (clock) pin.<br />
# '''Identify Data Lines (DAT0 - DAT7):'''<br />
#* eMMC data lines (DAT0 to DAT7) are used to transmit and receive data. You can identify these lines by their proximity to the CLK pin and their signal behavior during data transfer.<br />
#* Data lines might show transitions in response to clock changes, indicating data being shifted in or out.<br />
# '''Capture Signals:'''<br />
#* Connect the logic analyzer probes to the CLK and DAT0-DAT7 pins of the eMMC.<br />
#* Configure the logic analyzer to capture signals at a suitable sample rate. Set trigger conditions to start capturing when a specific signal pattern is detected.<br />
# '''Start Capturing:'''<br />
#* Begin capturing signals while performing actions that involve eMMC communication, such as reading or writing data.<br />
# '''Analyze Captured Data:'''<br />
#* Analyze the captured signals to identify patterns that match the eMMC communication protocol.<br />
#* Look for synchronous data transfers that correspond to the clock signal (CLK) and data lines (DAT0-DAT7).<br />
# '''Decoding:'''<br />
#* If your logic analyzer supports protocol decoding, apply the appropriate eMMC protocol decoder to the captured signals. This can help you visualize data packets, command sequences, and responses.<br />
# '''Compare with Datasheet:'''<br />
#* Refer to the eMMC datasheet or technical documentation to confirm that the signal patterns you've identified match the expected behavior.<br />
# '''Trial and Error:'''<br />
#* If you're unsure about the signals' meaning, you might need to experiment with different actions and observe how the signals change.<br />
<br />
== BlackHat "Hacking hardware with a $10 SD Card Reader" ==<br />
We did a presentation on identifying the pins needed to communicate with eMMC as well as using a cheap SDCard reader/writer for dumping. Check out the whitepaper and video below <br />
<br />
=== BlackHat Whitepaper & Video ===<br />
* [https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf Hacking Hardware with a $10 SDCard Reader]<br />
{{#ev:youtube|piILxlabFws}}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=EMMC&diff=3118EMMC2023-08-23T10:55:18Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= eMMC (Embedded MultiMediaCard) =<br />
<br />
'''eMMC''' (Embedded MultiMediaCard) is a type of non-volatile memory storage commonly used in mobile devices, such as smartphones, tablets, and embedded systems. It integrates both flash memory and a flash memory controller into a single package, making it a compact and cost-effective solution for storage needs.<br />
<br />
== Key Features ==<br />
<br />
eMMC is designed for soldered-down, space-constrained applications.<br />
It uses the same interface and protocol as SD cards, making integration easier.<br />
eMMC offers higher performance and better durability than SD cards.<br />
It supports features like wear leveling and bad block management.<br />
== Relationship with SD Cards ==<br />
<br />
eMMC and SD cards share a similar interface and protocol, known as the SPI (Serial Peripheral Interface) bus. However, there are notable differences between the two:<br />
<br />
* '''Physical Form Factor''': eMMC is soldered onto the device's circuit board, while SD cards are removable.<br />
* '''Performance''': eMMC generally provides faster read and write speeds compared to most SD cards.<br />
* '''Durability''': eMMC tends to be more durable than SD cards due to its integration and soldered connection.<br />
* '''Endurance''': eMMC typically has higher endurance (read/write cycles) compared to consumer-grade SD cards.<br />
<br />
== eMMC vs. NAND/NOR Flash Memory ==<br />
<br />
'''NAND''' and '''NOR''' are two primary types of flash memory used in various devices, including SSDs, USB drives, and embedded systems.<br />
<br />
'''NAND Flash Memory''':<br />
* Used in SSDs, USB drives, memory cards, etc.<br />
* Higher storage density, lower cost per gigabyte.<br />
* Faster write speeds compared to NOR.<br />
* Commonly used for mass storage.<br />
<br />
'''NOR Flash Memory''':<br />
* Used in BIOS chips, firmware storage, bootable devices, etc.<br />
* Slower write speeds compared to NAND.<br />
* Typically lower storage density than NAND.<br />
* Suitable for applications requiring random access and execution.<br />
<br />
In contrast, '''eMMC''' is an embedded storage solution that combines flash memory and a controller. It's optimized for space-constrained applications and offers good performance and durability without requiring external controllers. While NAND and NOR are more versatile and can be used in a wider range of applications, eMMC is specifically tailored for embedded systems and mobile devices where space, performance, and integration are critical.<br />
<br />
== Identifying eMMC ==<br />
Identifying eMMC (Embedded MultiMediaCard) pins using a logic analyzer involves capturing and analyzing the signals on the pins to identify patterns that correspond to the eMMC communication protocol. eMMC uses a standard communication protocol like SDIO, SPI or a modified version of it, so you'll need to look for specific signal patterns that indicate data transfer and communication operations. Here's a step-by-step guide on how to identify eMMC pins using a logic analyzer:<br />
<br />
# Gather Equipment:<br />
#* Obtain a logic analyzer that is capable of capturing signals at the frequencies used by the eMMC protocol. The logic analyzer should have enough channels to monitor all the relevant pins.<br />
# Identify Power and Ground Pins:<br />
#* Refer to the eMMC datasheet or device documentation to identify the power and ground pins. Typically, these pins are labeled and grouped together.<br />
# Identify Clock Signal (CLK):<br />
#* The eMMC protocol uses a clock signal to synchronize data transfers. Look for a pin that exhibits regular high-frequency oscillations. This is likely the CLK (clock) pin.<br />
# Identify Data Lines (DAT0 - DAT7):<br />
#* eMMC data lines (DAT0 to DAT7) are used to transmit and receive data. You can identify these lines by their proximity to the CLK pin and their signal behavior during data transfer.<br />
#* Data lines might show transitions in response to clock changes, indicating data being shifted in or out.<br />
# Capture Signals:<br />
#* Connect the logic analyzer probes to the CLK and DAT0-DAT7 pins of the eMMC.<br />
#* Configure the logic analyzer to capture signals at a suitable sample rate. Set trigger conditions to start capturing when a specific signal pattern is detected.<br />
# Start Capturing:<br />
#* Begin capturing signals while performing actions that involve eMMC communication, such as reading or writing data.<br />
# Analyze Captured Data:<br />
#* Analyze the captured signals to identify patterns that match the eMMC communication protocol.<br />
#* Look for synchronous data transfers that correspond to the clock signal (CLK) and data lines (DAT0-DAT7).<br />
# Decoding:<br />
#* If your logic analyzer supports protocol decoding, apply the appropriate eMMC protocol decoder to the captured signals. This can help you visualize data packets, command sequences, and responses.<br />
# Compare with Datasheet:<br />
#* Refer to the eMMC datasheet or technical documentation to confirm that the signal patterns you've identified match the expected behavior.<br />
# Trial and Error:<br />
#* If you're unsure about the signals' meaning, you might need to experiment with different actions and observe how the signals change.<br />
<br />
== BlackHat "Hacking hardware with a $10 SD Card Reader" ==<br />
We did a presentation on identifying the pins needed to communicate with eMMC as well as using a cheap SDCard reader/writer for dumping. Check out the whitepaper and video below <br />
<br />
=== BlackHat Whitepaper & Video ===<br />
* [https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf Hacking Hardware with a $10 SDCard Reader]<br />
{{#ev:youtube|piILxlabFws}}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=EMMC&diff=3117EMMC2023-08-23T10:54:27Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= eMMC (Embedded MultiMediaCard) =<br />
<br />
'''eMMC''' (Embedded MultiMediaCard) is a type of non-volatile memory storage commonly used in mobile devices, such as smartphones, tablets, and embedded systems. It integrates both flash memory and a flash memory controller into a single package, making it a compact and cost-effective solution for storage needs.<br />
<br />
== Key Features ==<br />
<br />
eMMC is designed for soldered-down, space-constrained applications.<br />
It uses the same interface and protocol as SD cards, making integration easier.<br />
eMMC offers higher performance and better durability than SD cards.<br />
It supports features like wear leveling and bad block management.<br />
== Relationship with SD Cards ==<br />
<br />
eMMC and SD cards share a similar interface and protocol, known as the SPI (Serial Peripheral Interface) bus. However, there are notable differences between the two:<br />
<br />
* '''Physical Form Factor''': eMMC is soldered onto the device's circuit board, while SD cards are removable.<br />
* '''Performance''': eMMC generally provides faster read and write speeds compared to most SD cards.<br />
* '''Durability''': eMMC tends to be more durable than SD cards due to its integration and soldered connection.<br />
* '''Endurance''': eMMC typically has higher endurance (read/write cycles) compared to consumer-grade SD cards.<br />
<br />
== eMMC vs. NAND/NOR Flash Memory ==<br />
<br />
'''NAND''' and '''NOR''' are two primary types of flash memory used in various devices, including SSDs, USB drives, and embedded systems.<br />
<br />
'''NAND Flash Memory''':<br />
* Used in SSDs, USB drives, memory cards, etc.<br />
* Higher storage density, lower cost per gigabyte.<br />
* Faster write speeds compared to NOR.<br />
* Commonly used for mass storage.<br />
<br />
'''NOR Flash Memory''':<br />
* Used in BIOS chips, firmware storage, bootable devices, etc.<br />
* Slower write speeds compared to NAND.<br />
* Typically lower storage density than NAND.<br />
* Suitable for applications requiring random access and execution.<br />
<br />
In contrast, '''eMMC''' is an embedded storage solution that combines flash memory and a controller. It's optimized for space-constrained applications and offers good performance and durability without requiring external controllers. While NAND and NOR are more versatile and can be used in a wider range of applications, eMMC is specifically tailored for embedded systems and mobile devices where space, performance, and integration are critical.<br />
<br />
<br />
== Identifying eMMC ==<br />
Identifying eMMC (Embedded MultiMediaCard) pins using a logic analyzer involves capturing and analyzing the signals on the pins to identify patterns that correspond to the eMMC communication protocol. eMMC uses a standard communication protocol like SDIO, SPI or a modified version of it, so you'll need to look for specific signal patterns that indicate data transfer and communication operations. Here's a step-by-step guide on how to identify eMMC pins using a logic analyzer:<br />
<br />
# Gather Equipment:<br />
#* Obtain a logic analyzer that is capable of capturing signals at the frequencies used by the eMMC protocol. The logic analyzer should have enough channels to monitor all the relevant pins.<br />
# Identify Power and Ground Pins:<br />
#* Refer to the eMMC datasheet or device documentation to identify the power and ground pins. Typically, these pins are labeled and grouped together.<br />
# Identify Clock Signal (CLK):<br />
#* The eMMC protocol uses a clock signal to synchronize data transfers. Look for a pin that exhibits regular high-frequency oscillations. This is likely the CLK (clock) pin.<br />
# Identify Data Lines (DAT0 - DAT7):<br />
#* eMMC data lines (DAT0 to DAT7) are used to transmit and receive data. You can identify these lines by their proximity to the CLK pin and their signal behavior during data transfer.<br />
#* Data lines might show transitions in response to clock changes, indicating data being shifted in or out.<br />
# Capture Signals:<br />
#* Connect the logic analyzer probes to the CLK and DAT0-DAT7 pins of the eMMC.<br />
#* Configure the logic analyzer to capture signals at a suitable sample rate. Set trigger conditions to start capturing when a specific signal pattern is detected.<br />
# Start Capturing:<br />
#* Begin capturing signals while performing actions that involve eMMC communication, such as reading or writing data.<br />
# Analyze Captured Data:<br />
#* Analyze the captured signals to identify patterns that match the eMMC communication protocol.<br />
#* Look for synchronous data transfers that correspond to the clock signal (CLK) and data lines (DAT0-DAT7).<br />
# Decoding:<br />
#* If your logic analyzer supports protocol decoding, apply the appropriate eMMC protocol decoder to the captured signals. This can help you visualize data packets, command sequences, and responses.<br />
# Compare with Datasheet:<br />
#* Refer to the eMMC datasheet or technical documentation to confirm that the signal patterns you've identified match the expected behavior.<br />
# Trial and Error:<br />
#* If you're unsure about the signals' meaning, you might need to experiment with different actions and observe how the signals change.<br />
<br />
== BlackHat "Hacking hardware with a $10 SD Card Reader" ==<br />
We did a presentation on identifying the pins needed to communicate with eMMC as well as using a cheap SDCard reader/writer for dumping. Check out the whitepaper and video below <br />
<br />
=== BlackHat Whitepaper & Video ===<br />
* [https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf Hacking Hardware with a $10 SDCard Reader]<br />
{{#ev:youtube|piILxlabFws}}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=EMMC&diff=3116EMMC2023-08-23T10:40:12Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = eMMC (Embedded MultiMediaCard) = '''eMMC''' (Embedded MultiMediaCard) is a type of non-volatile memory storage commonly used in mobile devices, such as smartphones, tablets, and embedded systems. It integrates both flash memory and a flash memory controller into a single package, making it a compact and cost-effective solution for storage needs. == Key Features == eMMC is designed for soldered-down, space-constrained applications. It use..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= eMMC (Embedded MultiMediaCard) =<br />
<br />
'''eMMC''' (Embedded MultiMediaCard) is a type of non-volatile memory storage commonly used in mobile devices, such as smartphones, tablets, and embedded systems. It integrates both flash memory and a flash memory controller into a single package, making it a compact and cost-effective solution for storage needs.<br />
<br />
== Key Features ==<br />
<br />
eMMC is designed for soldered-down, space-constrained applications.<br />
It uses the same interface and protocol as SD cards, making integration easier.<br />
eMMC offers higher performance and better durability than SD cards.<br />
It supports features like wear leveling and bad block management.<br />
== Relationship with SD Cards ==<br />
<br />
eMMC and SD cards share a similar interface and protocol, known as the SPI (Serial Peripheral Interface) bus. However, there are notable differences between the two:<br />
<br />
* '''Physical Form Factor''': eMMC is soldered onto the device's circuit board, while SD cards are removable.<br />
* '''Performance''': eMMC generally provides faster read and write speeds compared to most SD cards.<br />
* '''Durability''': eMMC tends to be more durable than SD cards due to its integration and soldered connection.<br />
* '''Endurance''': eMMC typically has higher endurance (read/write cycles) compared to consumer-grade SD cards.<br />
<br />
== eMMC vs. NAND/NOR Flash Memory ==<br />
<br />
'''NAND''' and '''NOR''' are two primary types of flash memory used in various devices, including SSDs, USB drives, and embedded systems.<br />
<br />
'''NAND Flash Memory''':<br />
* Used in SSDs, USB drives, memory cards, etc.<br />
* Higher storage density, lower cost per gigabyte.<br />
* Faster write speeds compared to NOR.<br />
* Commonly used for mass storage.<br />
<br />
'''NOR Flash Memory''':<br />
* Used in BIOS chips, firmware storage, bootable devices, etc.<br />
* Slower write speeds compared to NAND.<br />
* Typically lower storage density than NAND.<br />
* Suitable for applications requiring random access and execution.<br />
<br />
In contrast, '''eMMC''' is an embedded storage solution that combines flash memory and a controller. It's optimized for space-constrained applications and offers good performance and durability without requiring external controllers. While NAND and NOR are more versatile and can be used in a wider range of applications, eMMC is specifically tailored for embedded systems and mobile devices where space, performance, and integration are critical.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=SWD&diff=3115SWD2023-08-23T10:32:46Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = SWD = SWD stands for Serial Wire Debug, and it is a widely used debug and programming interface for microcontrollers and other embedded systems. SWD is designed to provide a streamlined and more efficient way of debugging and programming compared to the traditional JTAG (Joint Test Action Group) interface. SWD uses a reduced number of pins compared to JTAG, which makes it particularly useful for devices with limited pin counts or space con..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= SWD =<br />
SWD stands for Serial Wire Debug, and it is a widely used debug and programming interface for microcontrollers and other embedded systems. SWD is designed to provide a streamlined and more efficient way of debugging and programming compared to the traditional JTAG (Joint Test Action Group) interface.<br />
<br />
SWD uses a reduced number of pins compared to JTAG, which makes it particularly useful for devices with limited pin counts or space constraints. <br />
<br />
The SWD interface requires only two pins:<br />
# '''SWDIO (Serial Wire Debug I/O):''' This bidirectional pin is used for both data communication and control signals during debugging and programming operations.<br />
# '''SWCLK (Serial Wire Clock):''' This pin provides the clock signal necessary to synchronize data transfers between the debugger and the target device.<br />
<br />
In addition to these two main pins, some systems might also include an optional reset pin, similar to the JTAG interface.<br />
<br />
== SWD Protocol ==<br />
SWD operates by using a simplified protocol that allows the debugger to communicate with the target device's debug logic. <br />
<br />
The communication protocol typically involves the following signals and states:<br />
* '''Idle State:''' Both SWDIO and SWCLK are in a high-impedance state, and the target device is not actively communicating.<br />
* '''Turnaround State:''' The debugger sets SWDIO to an output high impedance (tristate) while the target device responds with data on the same pin.<br />
* '''Read and Write Operations:''' The debugger and the target device communicate by shifting data bits serially on the SWDIO line while using the SWCLK signal to clock the data.<br />
* '''Acknowledge Response:''' After each data transfer, the target device sends an acknowledge (ACK) or not-acknowledge (NAK) response to confirm the success of the operation.<br />
<br />
== SWD vs JTAG ==<br />
SWD offers advantages over JTAG:<br />
<br />
# '''Reduced Pin Count:''' SWD requires fewer pins, making it suitable for devices with limited pin availability.<br />
# '''Faster Data Transfer:''' SWD typically operates at higher clock speeds than JTAG, resulting in faster debugging and programming operations.<br />
# '''Simplicity:''' The SWD protocol is simpler than JTAG, making it easier to implement and use.<br />
# '''Lower Power Consumption:''' The reduced pin count and simplified protocol contribute to lower power consumption compared to JTAG.<br />
<br />
== Identifying SWD == <br />
<br />
Identifying SWD (Serial Wire Debug) pins using a multimeter, logic analyzer, or oscilloscope can be a bit challenging due to the high-frequency and complex nature of SWD signals. However, with careful observation and understanding of the SWD signal characteristics, you can attempt to identify the SWD pins. Here's a basic approach for each tool:<br />
<br />
=== Using a Multimeter ===<br />
<br />
* '''Identify Power and Ground Pins:''' Begin by identifying the power and ground pins of the device. These are often labeled on the device's package or in the datasheet. Use the continuity mode of the multimeter to verify these pins.<br />
* Check for Clock Signal (SWCLK):<br />
** Set your multimeter to voltage mode and connect the negative lead to a ground pin.<br />
** Probe various pins with the positive lead while observing the multimeter reading.<br />
** Look for pins that show pulsating voltage changes. The SWCLK pin should have a clock-like signal.<br />
* Check for Data Signal (SWDIO):<br />
** Similar to the clock signal, probe different pins while observing the multimeter reading.<br />
** The SWDIO pin should show some voltage transitions as data is shifted in and out during communication.<br />
<br />
Please note that using a multimeter to identify SWD pins might not provide detailed information about the signal characteristics, but it can help you identify pins that are likely candidates for SWD.<br />
<br />
=== Using a Logic Analyzer or Oscilloscope ===<br />
<br />
# Identify Power and Ground Pins: As before, start by identifying power and ground pins using the datasheet or any labeling on the device.<br />
# Capture Signal Patterns<br />
#* Set up your logic analyzer or oscilloscope to capture signals from potential SWD pins.<br />
#* Focus on the pins that are likely candidates for SWD, particularly those near the power and ground pins.<br />
#* Configure the capture settings to match the expected SWD clock frequency (typically in the MHz range).<br />
# Analyze Signal Patterns:<br />
#* Examine the captured signals for repetitive patterns that resemble clock signals and data transitions.<br />
#* The SWCLK signal should exhibit a regular clock pattern, and the SWDIO signal should show data transitions in sync with the clock.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=JTAG&diff=3114JTAG2023-08-23T07:44:02Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = JTAG = JTAG, which stands for Joint Test Action Group, is a standardized interface and protocol primarily used for testing, debugging, and programming integrated circuits, particularly those found on printed circuit boards (PCBs). JTAG was originally developed for improving the efficiency of manufacturing test processes for complex electronic systems, but it has also found extensive use in development, debugging, and programming stages. ==..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= JTAG =<br />
JTAG, which stands for Joint Test Action Group, is a standardized interface and protocol primarily used for testing, debugging, and programming integrated circuits, particularly those found on printed circuit boards (PCBs). JTAG was originally developed for improving the efficiency of manufacturing test processes for complex electronic systems, but it has also found extensive use in development, debugging, and programming stages.<br />
<br />
== JTAG PINS ==<br />
JTAG uses a serial communication interface to access and control various functions of a target device, such as microcontrollers, digital signal processors (DSPs), FPGAs, and other digital integrated circuits. The interface typically consists of four or more pins:<br />
<br />
* '''TCK (Test Clock):''' This pin provides the clock signal that synchronizes the data exchange between the tester (debugging or programming equipment) and the target device.<br />
* '''TMS (Test Mode Select):''' This pin controls the state transitions of the target device's internal test logic, allowing it to enter various test modes.<br />
* '''TDI (Test Data In):''' This pin is used to input test or programming data into the target device.<br />
* '''TDO (Test Data Out):''' This pin is used to output test results or readback data from the target device.<br />
<br />
In addition to these core pins, JTAG interfaces often include optional pins like:<br />
<br />
* '''TRST (Test Reset):''' This pin provides a way to reset the target device's JTAG state machine and bring it back to a known state.<br />
* '''RTCK (Return Test Clock):''' This optional pin helps to adjust the timing of the test clock signal for devices that operate at different clock speeds.<br />
<br />
== JTAG States ==<br />
JTAG operates through a state machine that guides the target device through various states and operations. The primary states are:<br />
<br />
* '''Test-Logic-Reset (TLR):''' This is the initial state when the JTAG interface is reset. The target device's internal logic is reset, and the JTAG state machine is prepared for further operations.<br />
* '''Run-Test/Idle (RTI):''' In this state, the target device is in an idle mode, waiting for further instructions.<br />
* '''Select-DR-Scan (SDR):''' This state is used to select the Data Register (DR) scan chain for data input and output.<br />
* '''Capture-DR (CDR):''' This state captures data from the selected DR scan chain.<br />
* '''Shift-DR (SDR):''' In this state, data is shifted into or out of the selected DR scan chain.<br />
* '''Exit1-DR (EDR1):''' This state prepares for transitioning out of the Shift-DR state.<br />
* '''Update-DR (UDR):''' The captured data is loaded into the target device's registers.<br />
<br />
JTAG also includes similar states for accessing the Instruction Register (IR) scan chain, which allows selecting and executing different operations within the target device, such as debugging or programming operations.<br />
<br />
== Identification ==<br />
<br />
Identifying JTAG pins using an oscilloscope or multimeter can be a bit challenging because JTAG operates at relatively high frequencies and involves complex signal patterns. However, with careful observation and understanding of the JTAG signal characteristics, you can attempt to identify the JTAG pins. Here's a basic approach you can follow:<br />
<br />
* '''Consult the Datasheet:''' If you have access to the datasheet or technical documentation of the device you're working with, it might provide information about the JTAG pinout and signal names.<br />
* '''Identify Power and Ground Pins:''' Begin by identifying the power and ground pins of the device. These pins are often marked on the device's package. Check for voltage levels and continuity using a multimeter to places like the metal shielding for an ethernet or USB header.<br />
* '''Search for JTAG Test Access Port (TAP) Pins:''' JTAG typically has four main pins: TCK, TMS, TDI, and TDO. These pins are part of the Test Access Port (TAP) controller. Look for pins that have fast switching patterns or clock-like signals when the device is powered on. These are likely to be TCK (clock) and TMS (mode select) pins.<br />
* '''Identify TDI and TDO Pins:''' The TDI pin (Test Data In) usually experiences data transitions when you interact with the JTAG interface. You can try sending test patterns or using a JTAG programmer to see if you can observe any signal changes on certain pins. Similarly, TDO (Test Data Out) might show some signal activity when you perform JTAG operations.<br />
* '''Look for Patterns and Relationships:''' Use an oscilloscope to monitor the signal patterns on potential TCK, TMS, TDI, and TDO pins. You might notice synchronous or sequential patterns that resemble JTAG operations, such as shifting in data. Also, TDO might show data that matches the TDI data you input.<br />
* '''Check for JTAG Header or Test Points: Some devices have dedicated JTAG headers or labeled test points for JTAG pins. These make identification much easier. Look for any labels or markings on the PCB that indicate JTAG-related pins.<br />
* '''Observe Signal Timing and Frequencies:''' JTAG operates at specific clock frequencies. If you're using an oscilloscope, try to identify pins that have signal patterns with the expected JTAG clock frequency.<br />
* '''Use Specialized Tools:''' There are specialized tools and probes designed for JTAG pin identification, such as JTAG debugging probes. These tools can help you locate JTAG pins more accurately.<br />
* '''JTAG Enum/JTAGulator:''' JTAG Enum is a sketch that can be used with an arduino and JTAGulator is a board created by joe grand which can be used to identify proper JTAG pins from a set of test points.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=UART&diff=3113UART2023-08-23T00:45:36Z<p>Zenofex: /* UART */</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= UART =<br />
UART stands for Universal Asynchronous Receiver-Transmitter. It is a type of hardware communication protocol that facilitates serial communication between electronic devices. UART is commonly used to transmit and receive data between a microcontroller or a computer and peripheral devices such as sensors, actuators, displays, and other components.<br />
<br />
== Protocol==<br />
UART communication involves sending and receiving individual bits of data sequentially over two wires: a transmit (TX) wire and a receive (RX) wire. The communication is asynchronous, meaning that there is no common clock signal shared between the transmitting and receiving devices. Instead, both devices agree on a common baud rate (data transfer rate) to synchronize the communication.<br />
<br />
The basic characteristics of UART communication include:<br />
<br />
* '''Start Bit:''' Each data frame starts with a low-level start bit, indicating the beginning of the data transmission.<br />
* '''Data Bits:''' The actual data to be transmitted or received, usually ranging from 5 to 9 bits per frame.<br />
* '''Parity Bit (optional):''' A parity bit can be included to help detect errors in the transmission. It can be set to odd, even, mark, space, or none.<br />
* '''Stop Bit(s):''' One or more high-level stop bits indicate the end of a data frame. The stop bit(s) provide time for the receiver to prepare for the next data frame.<br />
<br />
== Pins ==<br />
* GND - Ground connection, required for good TX/RX.<br />
* TX - This is the transmission line.<br />
* RX - This is the receiving line.<br />
* VCC - Connection power (generally left unconnected).<br />
<br />
== Baud Rate ==<br />
Baud rate, often denoted as "baud," is a crucial parameter in serial communication systems like UART (Universal Asynchronous Receiver-Transmitter). It determines the rate at which data is transmitted over a communication channel in terms of signal changes per second. In other words, the baud rate specifies how quickly the signaling voltage levels on the communication line change to represent data.<br />
<br />
It's important to note that baud rate is not the same as bits per second (bps), although the terms are sometimes used interchangeably. Baud rate refers to the number of signaling events (changes in voltage levels) that occur in a second, while bits per second refers to the number of actual data bits transmitted per second.<br />
<br />
For example, in a UART communication system with a baud rate of 9600 baud, one signaling event might represent multiple bits. If the system uses 8-N-1 configuration (8 data bits, no parity, 1 stop bit), then a single character would consist of 10 bits (8 data bits + 1 start bit + 1 stop bit). Therefore, the actual data rate in bits per second (bps) would be 9600 / 10 = 960 bps.<br />
<br />
== Flow Control ==<br />
Flow control in serial communication is a mechanism used to manage the data flow between a sender and a receiver to prevent data loss or buffer overflow when the receiving device is temporarily unable to process incoming data. It ensures that the sender doesn't overwhelm the receiver with data at a faster rate than it can handle. Flow control becomes especially important when the sender and receiver have different processing speeds or capacities.<br />
<br />
There are two main types of flow control in serial communication: hardware flow control and software (also known as XON/XOFF) flow control.<br />
<br />
=== Hardware Flow Control ===<br />
Hardware flow control involves using dedicated control lines (wires) for managing the data flow. The most common hardware flow control signals are:<br />
<br />
* '''Request to Send (RTS):''' The sender asserts this signal to indicate that it is ready to transmit data.<br />
* '''Clear to Send (CTS):''' The receiver asserts this signal to indicate that it is ready to receive data.<br />
* '''Data Terminal Ready (DTR):''' The sender asserts this signal to indicate that it is ready for communication.<br />
* '''Data Set Ready (DSR):''' The receiver asserts this signal to indicate that it is ready for communication.<br />
<br />
When a sender (transmitter) wants to send data, it checks the state of the CTS signal before transmitting. If CTS is asserted by the receiver, it means the receiver is ready to receive data. If not, the sender waits until CTS is asserted.<br />
<br />
=== Software Flow Control (XON/XOFF) ===<br />
Software flow control involves using special control characters to signal the sender to stop or resume transmission. This method doesn't require dedicated control lines; instead, it's integrated into the data stream. The two control characters used are:<br />
<br />
* '''XON (Transmit On):''' When the receiver's buffer is ready to receive data, it sends an XON character to the sender to indicate that transmission can continue.<br />
* '''XOFF (Transmit Off):''' If the receiver's buffer is nearing its capacity, it sends an XOFF character to the sender to indicate that transmission should be paused until further notice.<br />
The sender monitors for XOFF characters and stops transmitting when it receives one. It resumes transmission when it receives an XON character.<br />
<br />
Hardware flow control is considered more reliable and efficient than software flow control, especially in noisy environments. However, software flow control is simpler to implement and doesn't require extra hardware connections. The choice between the two depends on the specific requirements of the communication system and the devices involved.<br />
<br />
== Adapters ==<br />
<br />
== Finding UART==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=GTVHacker_Low_Voltage_e-MMC_Adapter_Usage&diff=3112GTVHacker Low Voltage e-MMC Adapter Usage2023-05-24T00:25:03Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} This page is dedicated to the Exploitee.rs Low Voltage eMMC Adapter. thumb Category:Exploitee.rs_Hardware = Exploitee.rs Low Voltage eMMC Adapter = This page is dedicated to listing out all the needed info to use our low voltage adapters. == Low Voltage eMMC Adapter == === Photos === === Schematic === == uSD and SD Breakouts == === Photos === === Schematic..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
This page is dedicated to the Exploitee.rs Low Voltage eMMC Adapter.<br />
[[File:GTVHacker Low Voltage eMMC Adapter Top & Bottom (v1).jpg|100px|left|thumb]]<br />
[[Category:Exploitee.rs_Hardware]]<br />
<br />
= Exploitee.rs Low Voltage eMMC Adapter =<br />
<br />
This page is dedicated to listing out all the needed info to use our low voltage adapters.<br />
<br />
== Low Voltage eMMC Adapter ==<br />
<br />
=== Photos ===<br />
<br />
=== Schematic ===<br />
<br />
== uSD and SD Breakouts ==<br />
<br />
=== Photos ===<br />
<br />
=== Schematic ===<br />
<br />
== USB SDCard Reader/Writer==<br />
<br />
=== Finding a working USB SD Reader/Writer ===<br />
<br />
== FAQ ==<br />
<br />
=== Low Voltage Adapter vs (u)SD Breakouts ===<br />
<br />
=== When to use a (u)SD breakout ===<br />
<br />
=== When to use the low voltage adapter ===<br />
<br />
=== Hacking Hardware with a $10 SD Card Reader ===<br />
<br />
==== Blackhat Video ====<br />
<br />
==== Blackhat Whitepaper ====<br />
<br />
<br />
== Licensing ==<br />
The Exploitee.rs Low Voltage e-MMC Adapter was created under the [http://www.tapr.org/ohl.html OHL license]. More information on its use can be found [http://www.tapr.org/ohl.html Here]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=UART&diff=3111UART2022-11-06T05:04:52Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= UART =<br />
UART stands for universal asynchronous receiver / transmitter and is a simple protocol consisting of a single wire for data reception and a separate single wire for data transmission. These two wires along with a ground connection (used to determine a digital low value in data) are the general requirements for a full connection (with both receiving and transmitting) to a UART debug header.<br />
<br />
== Pins ==<br />
* GND - Ground connection, required for good TX/RX.<br />
* TX - This is the transmission line.<br />
* RX - This is the receiving line.<br />
* VCC - Connection power (generally left unconnected).<br />
<br />
== Protocol==<br />
<br />
=== Baud Rate ===<br />
<br />
=== Flow Control ===<br />
<br />
== Adapters ==<br />
<br />
== Finding UART==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=UART&diff=3110UART2022-11-06T05:04:19Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = UART = UART stands for universal asynchronous receiver / transmitter and is a simple protocol consisting of a single wire for data reception and a separate single wire for data transmission. These two wires along with a ground connection (used to determine a digital low value in data) are the general requirements for a full connection (with both receiving and transmitting) to a UART debug header. == Pins == * GND - Ground connection, requi..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= UART =<br />
UART stands for universal asynchronous receiver / transmitter and is a simple protocol consisting of a single wire for data reception and a separate single wire for data transmission. These two wires along with a ground connection (used to determine a digital low value in data) are the general requirements for a full connection (with both receiving and transmitting) to a UART debug header.<br />
<br />
== Pins ==<br />
* GND - Ground connection, required for good TX/RX.<br />
* TX - This is the transmission line.<br />
* RX - This is the receiving line.<br />
* VCC - Connection power (generally left unconnected).<br />
<br />
== Protocol==<br />
<br />
=== Baud Rate ===<br />
<br />
=== Flow Control ===<br />
<br />
== Adapters =<br />
<br />
== Finding UART==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Attacking_Embedded_Devices&diff=3109Attacking Embedded Devices2022-10-29T09:36:20Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= Attacking Embedded Devices =<br />
This page is intended to be a set of resources on attack types, methodologies and general embedded device hacking principals. This should include information for beginners on intro topics like how to solder as well as include recommended hardware.<br />
<br />
== Beginner Topics ==<br />
* [[Getting Started In Hardware Hacking]]<br />
<br />
== Hardware Hacking ==<br />
<br />
=== Methodology ===<br />
* [[Understanding Secure Boot]]<br />
<br />
=== Tools ===<br />
* [[Useful Hardware Hacking Tools]]<br />
<br />
=== Debug Protocols ===<br />
* [[UART]]<br />
* [[JTAG]]<br />
* [[SWD]]<br />
<br />
== Flash Storage ==<br />
* [[eMMC]]<br />
* [[NAND]]<br />
* [[NOR]]<br />
* [[SPI]]<br />
<br />
== Firmware/Software Hacking ==<br />
<br />
=== Acquiring Firmware Updates ===<br />
<br />
* [[How To MiTM]]<br />
<br />
=== Reverse Engineering ===<br />
<br />
* [[Useful Reverse Engineering Tools]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Attacking_Embedded_Devices&diff=3108Attacking Embedded Devices2022-10-29T09:32:35Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} = Attacking Embedded Devices = This page is intended to be a set of resources on attack types, methodologies and general embedded device hacking principals. This should include information for beginners on intro topics like how to solder as well as include recommended hardware. == Beginner Topics == * Getting Started In Hardware Hacking == Hardware Hacking == === Methodology === * Understanding Secure Boot === Tools === * Useful..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
<br />
= Attacking Embedded Devices =<br />
This page is intended to be a set of resources on attack types, methodologies and general embedded device hacking principals. This should include information for beginners on intro topics like how to solder as well as include recommended hardware.<br />
<br />
== Beginner Topics ==<br />
* [[Getting Started In Hardware Hacking]]<br />
<br />
== Hardware Hacking ==<br />
<br />
=== Methodology ===<br />
* [[Understanding Secure Boot]]<br />
<br />
=== Tools ===<br />
* [[Useful Hardware Hacking Tools]]<br />
<br />
=== Debug Protocols ===<br />
* [[UART]]<br />
* [[JTAG]]<br />
* [[eMMC]]<br />
* [[SPI]]<br />
<br />
== Firmware/Software Hacking ==<br />
<br />
=== Acquiring Firmware Updates ===<br />
<br />
* [[How To MiTM]]<br />
<br />
=== Reverse Engineering ===<br />
<br />
* [[Useful Reverse Engineering Tools]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3107Main Page/Devices2022-10-29T09:09:58Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''TOYS'''<br />
| style="border-top: 0px solid #000000;"|[[File:TeddyRuxpin.jpg|center|60px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Teddy Ruxpin'''<br />
*[[Teddy Ruxpin]]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
*[[Useful Hardware Hacking Tools]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Open Research Project (ORP)'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[About ORP]]<br />
*[[ORP APK Bot]]<br />
*[[ORP Fuzz Bot]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Attacking Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Attacking Embedded Devices]]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_APK_Bot&diff=3106ORP APK Bot2022-09-06T03:48:41Z<p>Zenofex: /* Services */</p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands.<br />
<br />
== Services ==<br />
<br />
* Amazon AWS S3 Buckets<br />
* Linode Objects Buckets<br />
* Digital Ocean Spaces <br />
* DreamHost Buckets<br />
* Azure Blobs<br />
* BackBlaze S3<br />
* IBM Cloud Buckets<br />
* Wasabi Object Buckets<br />
* Vultr Objects Buckets<br />
* FireBase Database<br />
* FireBase Cloud Storage<br />
* Rackspace Cloud Drive Buckets<br />
* AliBaba Cloud Storage<br />
* E2E Networks Buckets<br />
* Google Cloud Buckets<br />
* RSA Private Keys<br />
* AWS Creds<br />
<br />
== Usage ==<br />
{| class="wikitable"<br />
!| Command <br />
!| Description<br />
|-<br />
| !start<br />
| Starts the bot in the specified channel.<br />
|-<br />
| !scan <app_id><br />
| Scans the provided app id (ex: com.google.play)<br />
|-<br />
| !get_findings <app_id><br />
| Gets previously found findings for a specified app id<br />
|-<br />
| !update_notified <finding_id_num><br />
| Used to set the finding (based on the finding id) as reported (for reports handled outside of bot).<br />
|-<br />
| !get_email <finding_id_num> <researcher_name><br />
| Create a report for the specified finding with the specified researchers name (submission is previewed before sending).<br />
|-<br />
| !add_note <Not to application developer here><br />
| Adds a note to a finding submission (used after !get_email)<br />
|-<br />
| !cancel_email<br />
| Cancels an email after being previewed through !get_email<br />
|-<br />
| !send_email<br />
| Sends an email after being previewed through !get_email<br />
|}<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_APK_Bot&diff=3105ORP APK Bot2022-09-06T03:47:28Z<p>Zenofex: /* Services */</p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands.<br />
<br />
== Services ==<br />
<br />
* Amazon AWS S3 Buckets<br />
* Linode Objects Buckets<br />
* Digital Ocean Spaces <br />
* DreamHost Buckets<br />
* Azure Blobs<br />
* BackBlaze S3<br />
* IBM Cloud Buckets<br />
* Wasabi Object Buckets<br />
* Vultr Objects Buckets<br />
* FireBase Database<br />
* FireBase Cloud Storage<br />
* Rackspace Cloud Drive Buckets<br />
* AliBaba Cloud Storage<br />
* Google Cloud Buckets<br />
* RSA Private Keys<br />
* AWS Creds<br />
<br />
== Usage ==<br />
{| class="wikitable"<br />
!| Command <br />
!| Description<br />
|-<br />
| !start<br />
| Starts the bot in the specified channel.<br />
|-<br />
| !scan <app_id><br />
| Scans the provided app id (ex: com.google.play)<br />
|-<br />
| !get_findings <app_id><br />
| Gets previously found findings for a specified app id<br />
|-<br />
| !update_notified <finding_id_num><br />
| Used to set the finding (based on the finding id) as reported (for reports handled outside of bot).<br />
|-<br />
| !get_email <finding_id_num> <researcher_name><br />
| Create a report for the specified finding with the specified researchers name (submission is previewed before sending).<br />
|-<br />
| !add_note <Not to application developer here><br />
| Adds a note to a finding submission (used after !get_email)<br />
|-<br />
| !cancel_email<br />
| Cancels an email after being previewed through !get_email<br />
|-<br />
| !send_email<br />
| Sends an email after being previewed through !get_email<br />
|}<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_APK_Bot&diff=3104ORP APK Bot2022-09-02T03:23:20Z<p>Zenofex: /* Services */</p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands.<br />
<br />
== Services ==<br />
<br />
* Amazon AWS S3 Buckets<br />
* Linode Objects Buckets<br />
* Digital Ocean Spaces <br />
* DreamHost Buckets<br />
* Azure Blobs<br />
* BackBlaze S3<br />
* IBM Cloud Buckets<br />
* Wasabi Object Buckets<br />
* Vultr Objects Buckets<br />
* FireBase Database<br />
* FireBase Cloud Storage<br />
* Google Cloud Buckets<br />
* RSA Private Keys<br />
* AWS Creds<br />
<br />
== Usage ==<br />
{| class="wikitable"<br />
!| Command <br />
!| Description<br />
|-<br />
| !start<br />
| Starts the bot in the specified channel.<br />
|-<br />
| !scan <app_id><br />
| Scans the provided app id (ex: com.google.play)<br />
|-<br />
| !get_findings <app_id><br />
| Gets previously found findings for a specified app id<br />
|-<br />
| !update_notified <finding_id_num><br />
| Used to set the finding (based on the finding id) as reported (for reports handled outside of bot).<br />
|-<br />
| !get_email <finding_id_num> <researcher_name><br />
| Create a report for the specified finding with the specified researchers name (submission is previewed before sending).<br />
|-<br />
| !add_note <Not to application developer here><br />
| Adds a note to a finding submission (used after !get_email)<br />
|-<br />
| !cancel_email<br />
| Cancels an email after being previewed through !get_email<br />
|-<br />
| !send_email<br />
| Sends an email after being previewed through !get_email<br />
|}<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:Privacy_policy&diff=3103Exploitee.rs:Privacy policy2022-05-30T20:43:44Z<p>Zenofex: </p>
<hr />
<div>This Privacy Policy governs the manner in which Exploitee.rs collects, uses, maintains and discloses information collected from users (each, a "User") of the exploitee.rs website ("Site"). This privacy policy applies to the Site and all products and services offered by Exploitee.rs.<br />
<br />
== Personal identification information ==<br />
<br />
We may collect personally identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, register on the site, and in connection with other activities, services, features or resources we make available on our Site. Users may be asked for, as appropriate, name, email address. Users may, however, visit our Site anonymously. We will collect personal identification information from Users only if they voluntarily submit such information to us. Users can always refuse to supply personally identification information, except that it may prevent them from engaging in certain Site related activities.<br />
<br />
== Non-personal identification information ==<br />
<br />
We may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer and technical information about Users means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information.<br />
<br />
== Web browser cookies ==<br />
<br />
Our Site may use "cookies" to enhance User experience. User's web browser places cookies on their hard drive for record-keeping purposes and sometimes to track information about them. User may choose to set their web browser to refuse cookies, or to alert you when cookies are being sent. If they do so, note that some parts of the Site may not function properly.<br />
<br />
== How we use collected information ==<br />
<br />
Exploitee.rs collects and uses Users personal information for the following purposes:<br />
<br />
* - To personalize user experience<br />
We may use information in the aggregate to understand how our Users as a group use the services and resources provided on our Site.<br />
* - To improve our Site<br />
We continually strive to improve our website offerings based on the information and feedback we receive from you.<br />
<br />
== How we protect your information ==<br />
<br />
We adopt appropriate data collection, storage and processing practices and security measures to protect against unauthorized access, alteration, disclosure or destruction of your personal information, username, password, transaction information and data stored on our Site.<br />
<br />
== Sharing your personal information ==<br />
<br />
We do not sell, trade, or rent Users personal identification information to others. <br />
<br />
== Third party websites ==<br />
<br />
Users may find advertising or other content on our Site that link to the sites and services of our partners, suppliers, advertisers, sponsors, licensors and other third parties. We do not control the content or links that appear on these sites and are not responsible for the practices employed by websites linked to or from our Site. In addition, these sites or services, including their content and links, may be constantly changing. These sites and services may have their own privacy policies and customer service policies. Browsing and interaction on any other website, including websites which have a link to our Site, is subject to that website's own terms and policies.<br />
<br />
== Changes to this privacy policy ==<br />
<br />
Exploitee.rs has the discretion to update this privacy policy at any time. When we do, we will revise the updated date at the bottom of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.<br />
<br />
== Your acceptance of these terms ==<br />
<br />
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.<br />
<br />
== Contacting us ==<br />
<br />
If you have any questions about this Privacy Policy, the practices of this site, or your dealings with this site, please contact us at:<br />
zenofex@exploitee.rs<br />
<br />
This document was last updated on May 30, 2022.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:General_disclaimer&diff=3102Exploitee.rs:General disclaimer2022-05-30T07:34:11Z<p>Zenofex: </p>
<hr />
<div>Exploitee.rs strives to educate and inform the community about IOT and Security; please hack responsibly.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:General_disclaimer&diff=3101Exploitee.rs:General disclaimer2022-05-30T06:14:48Z<p>Zenofex: Replaced content with "All the information provided is for educational purposes only."</p>
<hr />
<div>All the information provided is for educational purposes only.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:About&diff=3100Exploitee.rs:About2022-05-30T06:12:18Z<p>Zenofex: </p>
<hr />
<div>We are a group of individuals who originally came together in 2011 to hack Google TV devices and after the original demise of the platform, pivoted to "Hacking All The Things". Since our start we've grown to also include a large community of other hackers who together provide a shared knowledge through the Exploitee.rs network of sites and Discord chat server.<br />
<br />
== Exploitee.rs ==<br />
*[mbm]<br />
*cj_000<br />
*Cody<br />
*Ian<br />
*Maximus64<br />
*mstylz<br />
*Nullstring<br />
*QRTRMSTR<br />
*saurik<br />
*tdweng<br />
*WanderingGlitch<br />
*[[Zenofex]]<br />
<br />
== Previous Members ==<br />
*AgentHH<br />
*[[craigdroid]]<br />
*[[Resno]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:About&diff=3099Exploitee.rs:About2022-05-30T06:06:41Z<p>Zenofex: /* Exploitee.rs */</p>
<hr />
<div>We are a group of individuals who originally came together in 2011 to hack Google TV devices and after the original demise of the platform, pivoted to "Hacking All The Things". Since our start we've grown to also include a large community of other hackers who together provide a shared knowledge through the Exploitee.rs network of sites and Discord chat server.<br />
<br />
== Exploitee.rs ==<br />
*[mbm]<br />
*cj_000<br />
*Cody<br />
*Ian<br />
*Maximus64<br />
*mstylz<br />
*Nullstring<br />
*QRTRMSTR<br />
*saurik<br />
*tdweng<br />
*WanderingGlitch<br />
*[[Zenofex]]<br />
<br />
== Previous Members ==<br />
*AgentHH<br />
*[[craigdroid]]<br />
*Abliss<br />
*Catrane<br />
*[[Resno]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Exploitee.rs:About&diff=3098Exploitee.rs:About2022-05-30T06:05:18Z<p>Zenofex: </p>
<hr />
<div>We are a group of individuals who originally came together in 2011 to hack Google TV devices and after the original demise of the platform, pivoted to "Hacking All The Things". Since our start we've grown to also include a large community of other hackers who together provide a shared knowledge through the Exploitee.rs network of sites and Discord chat server.<br />
<br />
== Exploitee.rs ==<br />
*[mbm]<br />
*cj_000<br />
*Cody<br />
*Ian<br />
*Maximus64<br />
*Nullstring<br />
*saurik<br />
*tdweng<br />
*WanderingGlitch<br />
*[[Zenofex]]<br />
<br />
== Previous Members ==<br />
*AgentHH<br />
*[[craigdroid]]<br />
*Abliss<br />
*Catrane<br />
*[[Resno]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_Fuzz_Bot&diff=3097ORP Fuzz Bot2022-05-29T06:09:22Z<p>Zenofex: Created page with "== About == The Discord bot "ORP_Fuzz" is a small service built on top of the Mozilla FuzzManager project which sends a message to a Discord channel with crash information submitted to FuzzManager. This can be fuzz jobs of any kind but current is leveraging a chain of other mozilla projects. * [https://github.com/MozillaSecurity/grizzly Grizzly] (Fuzzing Framework) * [https://github.com/googleprojectzero/domato Domato], [https://github.com/sslab-gatech/freedom FreeDOM]..."</p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_Fuzz" is a small service built on top of the Mozilla FuzzManager project which sends a message to a Discord channel with crash information submitted to FuzzManager. This can be fuzz jobs of any kind but current is leveraging a chain of other mozilla projects.<br />
<br />
* [https://github.com/MozillaSecurity/grizzly Grizzly] (Fuzzing Framework)<br />
* [https://github.com/googleprojectzero/domato Domato], [https://github.com/sslab-gatech/freedom FreeDOM], and [https://github.com/MozillaSecurity/dharma Dharma] generators<br />
* [https://github.com/MozillaSecurity/ffpuppet FFPuppet] (Harness for opening firefox)<br />
* [https://github.com/MozillaSecurity/fuzzfetch FuzzFetch] (Grabbing asan versions of firefox).<br />
* [https://github.com/MozillaSecurity/FuzzManager FuzzManager] (Central server for binning and crash management)<br />
<br />
Test cases are uploaded to discord but are a .zip archive inside of a .tgz archive. This is because of limitations within uploading files to Discord.<br />
<br />
== Usage ==<br />
{| class="wikitable"<br />
!| Command <br />
!| Description<br />
|-<br />
| !fuzz_here<br />
| Starts fuzzer output to specified channel.<br />
|}<br />
<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_APK_Bot&diff=3096ORP APK Bot2022-05-29T05:49:11Z<p>Zenofex: </p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands.<br />
<br />
== Services ==<br />
<br />
* Amazon AWS S3 Buckets<br />
* Linode Objects Buckets<br />
* Digital Ocean Spaces <br />
* DreamHost Buckets<br />
* Azure Blobs<br />
* BackBlaze S3<br />
* IBM Cloud Buckets<br />
* Wasabi Object Buckets<br />
* Vultr Objects Buckets<br />
* FireBase Database<br />
* Google Cloud Buckets<br />
* RSA Private Keys<br />
* AWS Creds<br />
<br />
== Usage ==<br />
{| class="wikitable"<br />
!| Command <br />
!| Description<br />
|-<br />
| !start<br />
| Starts the bot in the specified channel.<br />
|-<br />
| !scan <app_id><br />
| Scans the provided app id (ex: com.google.play)<br />
|-<br />
| !get_findings <app_id><br />
| Gets previously found findings for a specified app id<br />
|-<br />
| !update_notified <finding_id_num><br />
| Used to set the finding (based on the finding id) as reported (for reports handled outside of bot).<br />
|-<br />
| !get_email <finding_id_num> <researcher_name><br />
| Create a report for the specified finding with the specified researchers name (submission is previewed before sending).<br />
|-<br />
| !add_note <Not to application developer here><br />
| Adds a note to a finding submission (used after !get_email)<br />
|-<br />
| !cancel_email<br />
| Cancels an email after being previewed through !get_email<br />
|-<br />
| !send_email<br />
| Sends an email after being previewed through !get_email<br />
|}<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ORP_APK_Bot&diff=3095ORP APK Bot2022-05-29T01:29:18Z<p>Zenofex: Created page with "== About == The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands. == Services == * Amazon AWS S3 Buckets * Linode Objects Buckets * Digital Ocean Spaces * DreamHost Buckets * Azure Blobs * BackBlaze S3 * IBM Clo..."</p>
<hr />
<div>== About ==<br />
<br />
The Discord bot "ORP_APK" iterates through applications in the Google Play store looking for instances of insecure cloud storage, open real time databases, and private keys. After manual verification of the finding, a user can then report the finding to the affected app developer through the use of bot commands.<br />
<br />
== Services ==<br />
<br />
* Amazon AWS S3 Buckets<br />
* Linode Objects Buckets<br />
* Digital Ocean Spaces <br />
* DreamHost Buckets<br />
* Azure Blobs<br />
* BackBlaze S3<br />
* IBM Cloud Buckets<br />
* Wasabi Object Buckets<br />
* Vultr Objects Buckets<br />
* FireBase Database<br />
* Google Cloud Buckets<br />
* RSA Private Keys<br />
* AWS Creds<br />
<br />
== Usage ==<br />
<br />
* !start<br />
* !scan <app_id><br />
* !get_findings <app_id><br />
* !update_notified <finding_id_num><br />
* !get_email <finding_id_num> <researcher_name><br />
* !add_note <Not to application developer here><br />
* !cancel_email<br />
* !send_email<br />
<br />
[[Category:Open Research Project]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3094Main Page/Devices2022-05-29T01:08:48Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''TOYS'''<br />
| style="border-top: 0px solid #000000;"|[[File:TeddyRuxpin.jpg|center|60px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Teddy Ruxpin'''<br />
*[[Teddy Ruxpin]]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
*[[Useful Hardware Hacking Tools]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Open Research Project (ORP)'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[About ORP]]<br />
*[[ORP APK Bot]]<br />
*[[ORP Fuzz Bot]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=MediaWiki:Monobook.css&diff=3093MediaWiki:Monobook.css2022-05-19T06:08:59Z<p>Zenofex: </p>
<hr />
<div>/* CSS placed here will affect users of the MonoBook skin */<br />
<br />
/* increase sidebar width */<br />
/* #column-content { margin-left: -16em; } */<br />
/* #column-content #content { margin-left: 16em; } */<br />
/* #p-logo a, #p-logo a:hover { width: 16em;} */<br />
#p-cactions { left: 15.5em; }<br />
.portlet { width: 15em; }<br />
/* div#column-content { margin-left: -15em; } */<br />
/* div#content { margin-left: 15em; } */<br />
.mw-wiki-logo { background-size:100%;}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=MediaWiki:Monobook.css&diff=3092MediaWiki:Monobook.css2022-05-19T06:08:32Z<p>Zenofex: </p>
<hr />
<div>/* CSS placed here will affect users of the MonoBook skin */<br />
<br />
/* increase sidebar width */<br />
/* #column-content { margin-left: -16em; } */<br />
/* #column-content #content { margin-left: 16em; } */<br />
/*#p-logo a, #p-logo a:hover { width: 16em;}*/<br />
#p-cactions { left: 15.5em; }<br />
.portlet { width: 15em; }<br />
/* div#column-content { margin-left: -15em; } */<br />
/* div#content { margin-left: 15em; } */<br />
.mw-wiki-logo { background-size:100%;}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=MediaWiki:Monobook.css&diff=3091MediaWiki:Monobook.css2022-05-19T06:08:13Z<p>Zenofex: </p>
<hr />
<div>/* CSS placed here will affect users of the MonoBook skin */<br />
<br />
/* increase sidebar width */<br />
/* #column-content { margin-left: -16em; } */<br />
/* #column-content #content { margin-left: 16em; } */<br />
#p-logo a, #p-logo a:hover { width: 16em;}<br />
#p-cactions { left: 15.5em; }<br />
.portlet { width: 15em; }<br />
/* div#column-content { margin-left: -15em; } */<br />
/* div#content { margin-left: 15em; } */<br />
.mw-wiki-logo { background-size:100%;}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=MediaWiki:Monobook.css&diff=3090MediaWiki:Monobook.css2022-05-19T06:07:36Z<p>Zenofex: </p>
<hr />
<div>/* CSS placed here will affect users of the MonoBook skin */<br />
<br />
/* increase sidebar width */<br />
/* #column-content { margin-left: -16em; } */<br />
/* #column-content #content { margin-left: 16em; } */<br />
#p-logo a, #p-logo a:hover { width: 16em;}<br />
#p-cactions { left: 15.5em; }<br />
.portlet { width: 15em; }<br />
div#column-content { margin-left: -15em; }<br />
div#content { margin-left: 15em; }<br />
.mw-wiki-logo { background-size:100%;}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Useful_Hardware_Hacking_Tools&diff=3058Useful Hardware Hacking Tools2022-01-24T08:56:20Z<p>Zenofex: Created page with "= About = This page will specify some useful hardware hacking tools and advice (currently from the Exploitee.rs discord server by "Hyphen") = Hardware = == Iron == Chea..."</p>
<hr />
<div>= About = <br />
<br />
This page will specify some useful hardware hacking tools and advice (currently from the Exploitee.rs discord server by "Hyphen") <br />
<br />
= Hardware =<br />
<br />
== Iron == <br />
<br />
Cheap option: PINECIL ($25) https://pine64.com/product/pinecil-smart-mini-portable-soldering-iron/. Make sure to get a silicone USB-C cable, or you will be in for a world of hurt. I had a TS100 (similar form factor) with a PVC cable directly to a power supply directly to an outlet, and it was not fun. Silicon flexes easier and doesn't retain its shape.<br />
<br />
Pricier option: <br />
Quicko/Quecoo ($50) T12-956/952. 952 is cheaper and I'm not totally sure the difference. I'd go for the option here with the metal handle.<br />
https://www.aliexpress.com/item/32803295956.html Also available on Amazon if you're impatient<br />
<br />
== Solder ==<br />
<br />
I'd recommend Kester solder, but it's not available in small quantities and you sure as hell don't need a pound of it. Going to defer to Myself's expertise and recommend chipquik: https://www.chipquik.com/store/index.php?cPath=600_610<br />
As for size: go for 0.031" for now. Should be good for most work.<br />
<br />
== Flux ==<br />
<br />
AMTECH flux is my personal favorite. Breathing it at least doesn't make it feel like it will kill you, and it's relatively easy to clean up.<br />
Buy it from the wonderful Louis Rossmann: https://store.rossmanngroup.com/amtech-nc-559-v2-30-cc-16160.html<br />
Check "plunger-needle", but ALSO grab a set of dispensing tips from ChipQuik: https://www.chipquik.com/store/product_info.php?products_id=906002. These are very useful, and the plastic tips are significantly easier to dispense from.<br />
<br />
== Fume extraction ==<br />
<br />
I'm terrible at this, moreso than I should be. If you live somewhere where it's never too cold to crack a window open, and you're soldering in front of a window, open that window and turn on a fan.<br />
<br />
Otherwise, you can at least pretend you care by buying a cheap fume extractor, which is basically just a computer fan with a carbon filter on top of it.<br />
(message 1/2) <br />
https://www.amazon.com/Aoyue-AO486-Benchtop-Solder-Absorber/dp/B001RLZGKK I use this. Consider trying to find it somewhere other than Amazon, mostly because I hate Amazon.<br />
<br />
== Stand ==<br />
<br />
Wow, does it seem easy to cheap out on this. Don't! It's a safety issue (and not a remote, far-off, "better safe than sorry" one!) and a usability issue. Cheap stands will have open iron holders that are really easy to accidentally stick a finger or hand in. You will burn yourself if you use those. And don't settle for a shitty sponge cleaner. They don't work. They just don't. Go for an iron holder with a good, solid, shrouded holder and a brass wire cleaner. My personal recommendation is the Hakko 633 holder. https://www.amazon.com/dp/B000TGNWCS/ As Myself put it above: "it's twice the price of the cheapies and ten times as nice"<br />
<br />
== Wick ==<br />
Solder wick is like high school. You do arguably need it sometimes, but no one I know has a good experience with it. I overpay for my wick at https://northridgefix.com/product/premium-desolder-braid-wick-10ft-length/, mostly because the stuff I got from MG Chemicals was absolute garbage. NorthridgeFix makes good videos anyway, they're worth the money.<br />
<br />
= Why you need everything =<br />
<br />
* '''Iron''': heats up the solder to melt it. A good iron lets you configure temperature so you don't damage the board (e.g. by ripping off copper pads), and will let you use a good (silicone, not PVC) cable to connect it to the station/outlet.<br />
* '''Solder''': it's conductive and it binds to things! Bad solder is bad at that. Should have flux inside.<br />
* '''Flux''': Helps solder flow and stick to the copper where you want it. It's optional in the same way that boots are optional when walking through 2 feet of snow. <br />
* '''Fume extraction''': Dying ten years early from inhalation of toxic fumes means ten years less of soldering. Again, though, I'm a hypocrite here, and its effectiveness is debatable.<br />
* '''Stand''': You'll burn yourself if you don't have a good one.</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3057Main Page/Devices2022-01-24T08:47:26Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''TOYS'''<br />
| style="border-top: 0px solid #000000;"|[[File:TeddyRuxpin.jpg|center|60px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Teddy Ruxpin'''<br />
*[[Teddy Ruxpin]]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
*[[Useful Hardware Hacking Tools]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Teddy_Ruxpin&diff=3054Teddy Ruxpin2021-11-04T21:49:05Z<p>Zenofex: </p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
[[File:TeddyRuxpin.jpg|left|thumb|140px]]<br />
[[Category:Toys]]<br />
<br />
== Teardown == <br />
<br />
== Hardware ==<br />
<br />
== Software ==<br />
<br />
== BLE Info ==<br />
<br />
== SNX Rom ==<br />
<br />
== Video ==<br />
<br />
== Audio ==</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3053Main Page/Devices2021-11-04T21:37:00Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''TOYS'''<br />
| style="border-top: 0px solid #000000;"|[[File:TeddyRuxpin.jpg|center|60px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Teddy Ruxpin'''<br />
*[[Teddy Ruxpin]]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3052Main Page/Devices2021-11-04T21:32:21Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''TOYS'''<br />
| style="border-top: 0px solid #000000;"|[[File:TeddyRuxpin.jpg|60px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Teddy Ruxpin'''<br />
*[[Teddy Ruxpin]]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=Teddy_Ruxpin&diff=3051Teddy Ruxpin2021-11-04T21:25:59Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} 140px Category:Toys"</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
[[File:TeddyRuxpin.jpg|left|thumb|140px]]<br />
[[Category:Toys]]</div>Zenofexhttps://www.Exploitee.rs/index.php?title=File:TeddyRuxpin.jpg&diff=3050File:TeddyRuxpin.jpg2021-11-04T21:24:23Z<p>Zenofex: </p>
<hr />
<div></div>Zenofexhttps://www.Exploitee.rs/index.php?title=Main_Page/Devices&diff=3049Main Page/Devices2021-09-08T21:26:21Z<p>Zenofex: </p>
<hr />
<div>{| style="border: 0px solid #000000; cell-padding:0px; cell-spacing:0px;"<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''INTERNET OF THINGS'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''BLU-RAY PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Sony-bdp-s5100-multi-region-blu-ray-dvd-player.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony BDP-S5100'''<br />
*[[Sony BDP-S5100]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:LG_BP350.JPG|130px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Blu-Ray'''<br />
*[[LG BP350]]<br />
*[[LG BP530]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Panasonic-DMP-BDT230.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Panasonic Blu-Ray'''<br />
*[[DMP-BDT230]]<br />
*[[DMP-BD871]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''CAMERAS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Alarm.com_ADC-v520IR.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Alarm.com v520IR'''<br />
*[[Alarm.com ADC-v520IR]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:DLINK_936L.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''DLink 936L'''<br />
*[[DLink 936L]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Cloudipcam_store.png|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LeFun Cloud IPCam'''<br />
*[[LeFun Cloud IPCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Ring-doorbell.jpg|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ring Doorbell'''<br />
*[[Ring Doorbell]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-SDR3102N.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SDR-3102N'''<br />
*[[Samsung SDR-3102N]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Samsung-smartcam.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung SmartCam'''<br />
*[[Samsung SmartCam]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Summer_Baby_Zoom_WiFi.jpg|75px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Summer Baby Zoom WiFi'''<br />
*[[Summer Baby Zoom WiFi]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Zmodo greet.JPG|35px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Zmodo Greet'''<br />
*[[Zmodo Greet]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''HOME AUTOMATION'''<br />
| style="border-top: 0px solid #000000;"|[[File:BelkinWemo.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin Wemo'''<br />
*[[Belkin Wemo]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:GreenwaveRealityTCPConnectedHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Greenwave Reality Bulbs'''<br />
*[[Greenwave Reality Bulbs]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Lutron LBDG2WH Caseta Smart Home Stock.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Lutron L-BDG2-WH Caseta Smart Bridge '''<br />
*[[Lutron L-BDG2-WH Caseta Smart Bridge]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Staples_Connect_Hub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Staples Connect Hub'''<br />
*[[Staples Connect Hub]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:WinkHub.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Wink Hub'''<br />
*[[Wink Hub]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MEDIA PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:FireTVStickStockPhoto.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Fire TV Stick'''<br />
*[[Amazon Fire TV Stick]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTV.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVCube.jpg|100px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Cube]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:AmazonFireTVPendant.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon FireTV'''<br />
*[[Amazon FireTV Pendant]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:VizioCoStarLT.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio CoStar LT (ISV-B11)'''<br />
*[[Vizio CoStar LT (ISV-B11)]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearPush2TV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear Push2TV (PTV3000)'''<br />
*[[Netgear Push2TV (PTV3000)]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
| style="border-top: 0px solid #000000;"|[[File:NetgearNeoTV.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NTV200-100NAS'''<br />
*[[Netgear NTV200-100NAS]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Front-SMALL.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Boxee Box'''<br />
*[[Boxee]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Chromecast-stock.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Chromecast'''<br />
*[[Google Chromecast]] <br />
*[http://forum.exploitee.rs/google-chromecast-f48 Chromecast forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Roku-pile.jpg|100px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Roku Streaming Players'''<br />
*[[Roku]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Allsharecast.jpg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Samsung Allshare Cast'''<br />
*[[Samsung Allshare Cast]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Steam_Link_Stock.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Steam Link'''<br />
*[[Steam Link]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vudu Spark Stock Photo.jpeg|70px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vudu Spark'''<br />
*[[Vudu Spark]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MOBILE'''<br />
| style="border-top: 0px solid #000000;"|[[File:Razr.png|40px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Moto LTE RAZR, BIONIC, & DROID 4'''<br />
*[[Moto RAZR, BIONIC, DROID 4]]<br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''MUSIC PLAYERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:ALURATEK_WIFI_RADIO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Aluratek WiFi Radio'''<br />
*[[Aluratek WiFi Radio]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:MUZO.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''MUZO Cobblestone'''<br />
*[[MUZO Cobblestone]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''NETWORK ATTACHED STORAGE'''<br />
| style="border-top: 0px solid #000000;"|[[File:ConnectedDataFileTransporter.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Connected Data Transporter'''<br />
*[[Connected Data Transporter]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Pogoplug-mobile.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''PogoPlug Mobile'''<br />
*[[PogoPlug Mobile]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Qnap TS131.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''QNAP TurboStation'''<br />
*[[QNAP TS-131]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Wd_stock_photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Western Digital MyCloud'''<br />
*[[Western Digital MyCloud]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''PRINTERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:EpsonArtisan700.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Epson Artisan 700/800'''<br />
*[[Epson Artisan 700/800]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''REFRIGERATOR'''<br />
| style="border-top: 0px solid #000000;"|[[File:LFX31995ST.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''LG Smart Refrigerator (LFX31995ST)'''<br />
*[[LG Smart Refrigerator (LFX31995ST)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''SMART SPEAKERS'''<br />
| style="border-top: 0px solid #000000;"|[[File:GGMME3.JPG|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''GGMM E3 Smart Speaker'''<br />
*[[GGMM E3 Smart Speaker]]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Amazon Tap Stock Photo.jpg|60px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Amazon Tap'''<br />
*[[Amazon Tap]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''TELEVISIONS'''<br />
| style="border-top: 0px solid #000000;"|[[File:HisenseAndroidTV.jpg|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Android TV'''<br />
*[[Hisense Android TV]] <br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Vizio_SmartTV_VF553XVT.png|80px|center]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Smart TV (VF553XVT)'''<br />
*[[Vizio Smart TV (VF553XVT)]] <br />
|}<br />
{| style="border: 0px solid #000000; width:280px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''THERMOSTATS'''<br />
| style="border-top: 0px solid #000000;"|[[File:Nest.jpg|80px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google Nest'''<br />
*[[Nest]] <br />
*[http://forum.exploitee.rs/google-nest-f50/ Google Nest Forum ]<br />
*[[Exploiting Nest Thermostats]]<br />
|}<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''INTERNET OF THINGS (Cont)'''<br />
| valign="top"|<br />
{| style="border: 0px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+ style="text-align: left; padding-left:15px;"|'''VOIP'''<br />
| style="border-top: 0px solid #000000;"|[[File:Ooma_Telo.jpg|80px]] <br />
| valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Ooma Telo'''<br />
*[[Ooma Telo]] <br />
|}<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Medical'''<br />
| style="border-top: 0px solid #000000;"| [[File:Merlin-at-home-1.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''SJM Merlin at Home'''<br />
*[[SJM Merlin at Home]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Networking'''<br />
| style="border-top: 0px solid #000000;"| [[File:BELKIN_N300.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Belkin N300'''<br />
*[[Belkin N300]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:CUJO.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Cujo'''<br />
*[[Cujo]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:Google_OnHub.jpg|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (TP-Link)'''<br />
*[[Google OnHub (TP-Link)]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:ASUS-Google-OnHub.jpg|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Google (ASUS)'''<br />
*[[Asus OnHub]]<br />
*[https://forum.exploitee.rs/viewforum.php?f=58 Google OnHub Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:LINKSYS_WRT1200AC.JPG|75px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Linksys WRT1200AC'''<br />
*[[Linksys WRT1200AC]]<br />
|-<br />
| style="border-top: 0px solid #000000;"| [[File:NETGEAR_WN3000RP.JPG|50px|center]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear WN3000RP'''<br />
*[[Netgear WN3000RP]]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px" valign="top"<br />
|+'''Android TV'''<br />
| style="border-top: 0px solid #000000;"| [[File:Android_TV.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''ADT-1'''<br />
*[[ADT-1 Android TV]]<br />
*[https://forum.exploitee.rs/adt-f52/ ADT-1 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Google-Nexus-Player-Stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Nexus Player'''<br />
*[[Google Nexus Player]] <br />
*[https://forum.exploitee.rs/nexus-player-f54/ Google Nexus Player Forum ]<br />
|}<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px;" valign="top"<br />
|+'''SECOND GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"|[[File:Asus_cube.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Asus Cube'''<br />
*[[Asus Cube]] <br />
*[http://forum.exploitee.rs/cube-f46/ Asus Cube Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Neotv-prime.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Netgear NeoTV Prime'''<br />
*[[Netgear NeoTV Prime]] <br />
*[http://forum.exploitee.rs/neotv-prime-gtv100-f44/ Negear NeoTV Prime Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Hisense pulse stock.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Hisense Pulse'''<br />
*[[Hisense Pulse]] <br />
*[http://forum.exploitee.rs/pulse-gx1200v-f42/ Hisense Pulse Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-NSZ-GS7.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GS7'''<br />
*[[Sony NSZ-GS7 (Streamer)]] <br />
*[http://forum.exploitee.rs/nsz-gs7-streamer/ NSZ-GS7 Forum ]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:Costar01.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Vizio Co-Star'''<br />
*[[Vizio Co-Star]] <br />
*[http://forum.exploitee.rs/star-vap430-f40/ Co-Star Forum ]<br />
|-<br />
| [[File:180px-LG_G2.jpg|150px]]<br />
| colspan="2" valign="top" style="text-align: left;"|<br />
'''LG 47G2/55G2'''<br />
*[[LG 47G2/55G2 (Internet TV)]] <br />
*[http://forum.exploitee.rs/47g2-55g2-internet-f36/ LG devices forum ]<br />
|}<br />
| valign="top"|<br />
{| style="border: 1px solid #000000; cell-padding:0px; cell-spacing:0px; width:300px"<br />
|+'''FIRST GENERATION GOOGLETV'''<br />
| style="border-top: 0px solid #000000;"| [[File:180px-revue.jpg|100px]]<br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Logitech Revue'''<br />
*[[Revue software root]]<br />
*[[Logitech Revue UART root]]<br />
*[http://forum.exploitee.rs/revue/ Revue forum ]<br />
*[http://exploitee.rs/index.php/Category:Logitech_Revue Info on Logitech Revue]<br />
|-<br />
| style="border-top: 0px solid #000000;"|[[File:180px-Sony_NSZ_GT1_NSX_40GT1.jpg|100px]] <br />
| colspan="2" valign="top" style="text-align: left; border-top: 0px solid #000000;"|<br />
'''Sony NSZ-GT1'''<br />
*[[Sony NSZ-GT1 (Bluray Player)]] <br />
*[http://forum.exploitee.rs/nsz-gt1/ NSZ-GT1 Forum ]<br />
'''Sony NSX-##GT1'''<br />
*[[Sony NSX-40GT1 (Internet TV)]]<br />
*[http://forum.exploitee.rs/nsx-40gt1/ NSX-40GT1 Forum ]<br />
''' Sony Generic'''<br />
*[[Sony Bootloader HW Root]]<br />
*[[Sony Unsigned Kernels (SW Root)]]<br />
*[[Sony SATA HW Root]]<br />
*[[I've rooted... now what?!]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Exploitee.rs Hardware'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Exploitee.rs Low Voltage e-MMC Adapter]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Generic Info'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[[Patch for Beagle Bone Black eMMC to dump boot partions]]<br />
*[[All_device_feature_matrix|All Device Feature Matrix]]<br />
*[[Exploiting Key Signing for Root]]<br />
*[[Installing Custom Recovery (Gen 2 Only)]]<br />
*[[RF_Signal_Analysis|RF Signal Analysis]]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Presentation Slides'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON20.pdf DEF CON 20 - "Hacking The Google TV"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON21.pdf DEF CON 21 - "Google TV Or: How I Learned to Stop Worrying and Exploit Secure Boot"]<br />
*[https://download.exploitee.rs/file/generic/GTVHacker-DEFCON22.pdf DEF CON 22 - "Hack All The Things: 20 Devices in 45 Minutes"]<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader.pdf BlackHat 2017 - "Hacking Hardware with a $10 SD Card Reader"]<br />
*[https://download.exploitee.rs/file/generic/Exploiteers-DEFCON25.pdf DEFCON 25 - "All Your Things Are Belong To Us"]<br />
|}<br />
{| style="border: 1px solid #000000; width:300px; cell-padding:0px; cell-spacing:0px;"<br />
|+'''Whitepapers'''<br />
| style="border-top: 0px solid #000000;width:180px; padding-left:25%;"|<br />
*[https://download.exploitee.rs/file/generic/BH2017-Hacking-Hardware-With-A-10-Reader-wp.pdf "Hacking Hardware with a $10 SD Card Reader"]<br />
|}<br />
|}</div>Zenofexhttps://www.Exploitee.rs/index.php?title=ONN_4K_Box&diff=3047ONN 4K Box2021-08-07T09:09:13Z<p>Zenofex: Created page with "__FORCETOC__ {{Disclaimer}} This page will be dedicated to a general overview of descriptions and information related to the ONN 4K streaming box. File:ONN_4K_Box_Stock_Phot..."</p>
<hr />
<div>__FORCETOC__<br />
{{Disclaimer}}<br />
This page will be dedicated to a general overview of descriptions and information related to the ONN 4K streaming box.<br />
[[File:ONN_4K_Box_Stock_Photo.png|200px|left|thumb]]<br />
[[Category:AndroidTV]]<br />
<br />
== aml_autoscript ==<br />
while booting into recovery for any reason, U-Boot will look for USB mass storage devices on the OTG port and, if it finds one, exec a script from its root called aml_autoscript if it finds one and then boot an image called recovery.img if it finds one.<br />
<br />
== Tear Down ==<br />
The ONN 4K streaming box is pretty easy to get apart once all the clips holding the case together are undone. In this tear down we used a razor blade but a guitar pick or similar small and durable piece of plastic is recommended. <br />
<gallery><br />
File:ONN_4K_Top.jpg<br />
File:ONN_4K_Bottom.jpg<br />
File:ONN_4K_Open_Split.jpg<br />
File:ONN_4K_Open_Split_Board_Out.jpg<br />
File:ONN_4K_Board_Top.jpg<br />
File:ONN_4K_Board_Bottom.jpg<br />
File:ONN_4K_Board_Top_EMF_Removed.jpg<br />
File:ONN_4K_Board_Top_EMF_Removed_Cleared.jpg<br />
</gallery></div>Zenofexhttps://www.Exploitee.rs/index.php?title=File:ONN_4K_Top.jpg&diff=3046File:ONN 4K Top.jpg2021-08-07T09:06:18Z<p>Zenofex: </p>
<hr />
<div></div>Zenofex