Actions

Difference between revisions of "Osmocombb"

From HacDC Wiki

(→‎Order: removing erroneous link)
(working on supsequent steps still)
Line 9: Line 9:
==Order==
==Order==
* get clean firmware image
* get clean firmware image
* use the cNNNxor of the model for -m
* load osmocombb firmware (see [http://bb.osmocom.org/trac/wiki/flashing_new#actualinstallation this])
* load osmocombb firmware (see [http://bb.osmocom.org/trac/wiki/flashing_new#actualinstallation this])
* do evil things
* do evil things
==Get Clean Firmware Image==
* start loader in ram (for c140 or c139)
  $ osmocon -p /dev/ttyUSB0 -m c140xor target/firmware/board/compal_e86/loader.compalram.bin
* in a new window dump the firmware
  $ osmoload memdump 0x000000 0x7fffff stock_flash.bin
* go get a cup of caffiene
==Load OsmocomBB==


==Do Evil Things==
==Do Evil Things==

Revision as of 22:16, 3 December 2014

WIP

notes on using osmocombb to abuse feature phones. this is a work in progress. the above section label will be removed once complete.

Prereqs

Order

  • get clean firmware image
  • load osmocombb firmware (see this)
  • do evil things

Get Clean Firmware Image

  • start loader in ram (for c140 or c139)
 $ osmocon -p /dev/ttyUSB0 -m c140xor target/firmware/board/compal_e86/loader.compalram.bin
  • in a new window dump the firmware
 $ osmoload memdump 0x000000 0x7fffff stock_flash.bin
  • go get a cup of caffiene

Load OsmocomBB

Do Evil Things