Not sure if anyone heard this or what but apparently, Microsoft accidentally leaked the UEFI Secure Boot master or "golden" key on the latest builds of Redstone v1607 . Those keys have the potential to totally disable UEFI Secure Boot on almost all devices with no option to disable secure boot (yes that includes us, Windows Phone users). This is some good stuffs for us!
You can grab yourself a key here: https://rol.im/SecureBoot.zip .
Re-upload here, just in case... https://mega.nz/#!Nssj0KzS!fsAwe9TolI2a_pSBU0sr6mBkPAr7G77JeMqtHxQstNg
More info about the exploit here: https://rol.im/securegoldenkeyboot/
Now let's just hope that Microsoft doesn't decide to update the bootloader to fix this exploit but I don't think they can do that in an instant update/patch...
Mods, feel free to move this thread if it needs too since this vulnerability doesn't only apply to Windows Phone. Thanks
Sent from Ponyville
mrchezco1995 said:
Not sure if anyone heard this or what but apparently, Microsoft accidentally leaked the UEFI Secure Boot master or "golden" key on the latest builds of Redstone v1607 . Those keys have the potential to totally disable UEFI Secure Boot on almost all devices with no option to disable secure boot (yes that includes us, Windows Phone users). This is some good stuffs for us!
You can grab yourself a key here: https://rol.im/SecureBoot.zip .
Re-upload here, just in case... https://mega.nz/#!Nssj0KzS!fsAwe9TolI2a_pSBU0sr6mBkPAr7G77JeMqtHxQstNg
More info about the exploit here: https://rol.im/securegoldenkeyboot/
Now let's just hope that Microsoft doesn't decide to update the bootloader to fix this exploit but I don't think they can do that in an instant update/patch...
Mods, feel free to move this thread if it needs too since this vulnerability doesn't only apply to Windows Phone. Thanks
Sent from Ponyville
Click to expand...
Click to collapse
duplicate :http://forum.xda-developers.com/win...eard-windows-secure-boot-golden-keys-t3436657
B U L K / P I P E i n t e r f a c e D e f a u l t c o n f i g u r a t i o n U S B F u n c t i o n D e b u g C l i e n t M i c r o s o f t NAME? NAME= FVE-EOW FVE-EOWBM FVE-EOWBR -FVE-FS- P B K D F 2 _ H M A C _ S H A 2 5 6 1.3.6.1.5.5.7.3.3 1.3.6.1.5.5.7.3.8
"1.3.6.1.5.5.7.3.3 indicates that the certificate is valid for code signing. Always specify this value to limit the intended use for the certificate."
What is this?
ngame said:
duplicate :http://forum.xda-developers.com/win...eard-windows-secure-boot-golden-keys-t3436657
Click to expand...
Click to collapse
Didn't saw that earlier... Was just too excited when I saw this news on NCIX's Netlinked Daily on YouTube earlier... Then I just did some lil' search on Google to realize that the exploit was out 2 days ago... :/
Oh well... XD
Sent from Ponyville
To clarify, @mrchezco1995, Microsoft is unable to patch the vulnerability for most already-existing devices, because in doing so they would revoke manufacturers/operators from being able to service the device without a jtag/serial connection. For example, any software patch would prevent recovery partitions (like on OEM computers, or the SoftReset option) from passing validation. They can only fix this for future devices.
Thread already exists for this here:
http://forum.xda-developers.com/win...eard-windows-secure-boot-golden-keys-t3436657
Please search before posting. Thread closed.
Related
Hi Guys, Though Probably This Is Not The Right Forum To Ask This Question But I M New To This World Of Cracking And Couldn't Find Any Better Place Than This Forum To Ask. So If U Feel That I Should Be Asking From Some Other Forum Do Direct Me To Some Useful Place. I Have A Problem, I Have Sfr France Locked Nokia 3120 Phone Which Was Probably Tried With Wrong Codes By My Younger Broterh And It Still Is Locked, I Tried Many Calculators For Security Code Which It Asks Once I Put In Some Sim But In Vain, No Success. When I Ask It For Imei No It Shows ????????????. Is This Phone Over And Be Thrown To Trash Bin Or Something Can Be Done About It.
P L E A S E H E L P
Please can you tell me how to extract and change change system.hv in ASUS R600 rom ?
i would like to unlock and change navigation programm.
link for rom is: www.acs-bg.net/temp/R600_V4_5_0_TW.rar
tryed with binmod.exe but can not find registry file
can somebody help me to calculate check sum 16 bit for directory?
you can see here inside directory checksum.ini
www.acs-bg.net/temp/PreDL.rar
this is the checksum of whall IGO directory, so if i like to change some files in this directory i have to calculate cheksum and replace in checksum.ini,
but i ca not find tool to do that.
can you help?
ok i have cracket it.
if somebody like, i can give the way to do.
Please, help!
I have ASUS R600, and I have a lot of maps in *.fbl format - but Asus can't use all that maps. As I understand, I have cracket Asus - not maps.
My last upgrade - R600-ASUS-RU-RU-R102-0-V4.3.0
That is the reason i go to crack this expensive unit.
lot of money but no support for maps.
more than 7 guards not to give you access to "residentflesh", even in new rom file and way to reflashing they use, and special checksum for IGO directory etc.. etc.., even system registry is in ram and when switch of all new software is gone, but there is some way to make it useful.
after my work i can use every map and can install games and other soft
reallu how you do this....
I changed the file ASUS_UserFlashCopy.dll in order not to read the lic file from device, but i', stuck in the same "checksum" file
As i need to go to us next week is very urgent matter to solve this
tx
what mean go to us?
i am in Sofia , Bulgaria
I I will go to US next week, and for this I want US maps on device, but I do not know how to make device to accept them
Dobre danie !
What you do in order to put all the maps in device? Can you explain me, or help me to do the same?
Thank you
if you are not very close to Widows CE 5.0 you can not do that
Ok let't try... If I will not succed this I will go to my programmer.
I wait for some hints.
thank you
tomorrow will give you link for download remaked rom and working igo
and how to flash unit with no original image.
here it is
www.acs-bg.net/temp/crack.rar
Tx a lot.... I will test late.
I solve yesterday night my issu in the folowing way:
Icanged ASUS_UserFlash Copy with the folowing:
\ W i n d o w s \ A s u s _ F l a s h C o p y . e x e UnlimitedVersion %s r P r e D L V e r n o . i n i \ S D M M C \ P r e D C S D M M C \ C O M \ i G O \ l i c e n s e . d b S D M M C \ P r e D L \ i G O \ l i c e n s e . d b c h e c k s u m . i n i F l a s h D i s k \ * . *
With this I Make 2 thinks: Do not compare license.db from device with the version from card..... (I created on card a folder: com \igo\ where i put licence.db (the same as the one from predl\igo licence.db
Also I creata new forlder PreDC where I put my apliaction needen to transf in the device. Even If I received check sum error, I take out card and rested ....and the content of predc is on palm.....
As the "Nvigation" buton is linked to exe file (from device) igo\igopna.exe you need to take in cons to rename the folder and exe. (if you want to put something else)
I found that version MioMap 3.3 is ok with the device and I have now Florida map working ...and also all european countries
Anyhow thanks a lot to you, I will test also your version who is more profesional than mine.
thank you again
PS: When I will be in Sofia (as I go there time to time) I will give you a beer
Blagodaria !
Hi there!
I also have R600 and I have no idea how can I reach windows on it. Please write me how could unlock it! I haven't found any info about it on the net....
Many thanks,
B.
rumensat said:
here it is
www.acs-bg.net/temp/crack.rar
Click to expand...
Click to collapse
Hi,rumensat,
The link is broken,would you please post it again,thanks a lot.
zhyeug said:
Hi,rumensat,
The link is broken,would you please post it again,thanks a lot.
Click to expand...
Click to collapse
i'd like to DL it too...
link work again
Hi,
I follow your howto to flash ROM,but I got wrong version error.My R600 is R600-ASUS-TW-TC-R102-0-V4.5.0.
Can someone fix this crack to work with the Australian Version?
At present the crack is for
R600-ASUS-EE-EN-R102-0-V4.3.0-ROM
The Australian version is known as
R600-ASUS-AU-EN-R102-0-V4.3.0-ROM
I'm pretty sure that just renaming the file wont help, and at present, you cannot cross patch versions.
Please help.
Hello guys, today I just figure out a way to get redstone on 512mb devices, this is not an tutorial, its a petition for windows phone users who have an official eligible lumia device for Windows 10 Mobile to share a real important data from their official windows devices.
In this case I need some screenshots from a device updated with upgrade advisor and not via windows insider, needs to be on TH2 of course, I'm trying to bypass MS hardware verification process. this process block our devices with 512mb to be connected througth Windows Insider Server.
Things I need to setup a working method for upgrade our devices to RS1:
1- Official eligible Lumia device for Windows 10 Mobile
2- Device updated througth Upgrade Advisor
3- screenshots> 1 with default W10m Extras&info outdated and other with Extras&info updated.
4- install interop tools.
5- Navigate for the followings strings:
(Instead of /OEM/NOKIA can be /OEM/Microsoft or /OEM/MicrosoftMDG)
HKLM/SOFTWARE/OEM/Nokia/Variant/BSPRelease
HKLM/SOFTWARE/OEM/Nokia/Variant/ConfigurationID
HKLM/SOFTWARE/OEM/Nokia/Variant/labelID
HKLM/SYSTEM/Platform/DeviceTargetingInfo/ < here I need all the strings stored for example: "PhoneManufacturer" "PhoneManufacturerModelName" "PhoneModelName" "PhoneHardwareVariant" and more.
6- Shared all these info from your device here + screenshots and let call it a day, redstone is waiting for us guys!
Do you know a way to get WM10 on 512 mb device right now? I''m stuck and unable to update since MS change the release preview ring to the redstone build.
a registry edit is not enough, if you managed to install RS1 your phone will simply bootloop, there are missing files that are related to that continuum hack and cant be shared at the moment, so please just be patient, whenever they can share the procedure they will make it available, asking a bazillion times wont change a thing
EspHack2 said:
a registry edit is not enough, if you managed to install RS1 your phone will simply bootloop, there are missing files that are related to that continuum hack and cant be shared at the moment, so please just be patient, whenever they can share the procedure they will make it available, asking a bazillion times wont change a thing
Click to expand...
Click to collapse
this is not just a registry edit, Im not asking about a way to get redstone on my 512mb device, I made this post with one a mission of gather important data and make my own "method"
wiien said:
Do you know a way to get WM10 on 512 mb device right now? I''m stuck and unable to update since MS change the release preview ring to the redstone build.
Click to expand...
Click to collapse
sure, are you stuck at Windows 8.1 ?
sorry to crush your dreams but that data you requested are not enough and will not be and you dont even need to collect them cause you find enough on the net.long story short: what esphack2 said is right, dont waste your time cause i assume you dont even know what you are doing
tofuschnitte said:
sorry to crush your dreams but that data you requested are not enough and will not be and you dont even need to collect them cause you find enough on the net.long story short: what esphack2 said is right, dont waste your time cause i assume you dont even know what you are doing
Click to expand...
Click to collapse
I know what I do, i just need these data. btw I brick any phone everyday and that makes me enjoy cause I enjoy play with some hard stuff, anyway here is a petition, not a dreambreaker post
http://forum.xda-developers.com/win...grade-advisor-redstone-lumias-t3434774/page10
Just change your keys with a supported device and upgrade using the upgrade advisor.
thanks to @BlueTR my 512mb lumia 635 is getting the update 10.0.14393.67
here's how to grab the update:
http://forum.xda-developers.com/win...-redstone-lumias-t3434774/page14#post68220276
No tienes problemas de bootloop?
Translation:
You not have problems with bootloop?
MrCego said:
No tienes problemas de bootloop?
Click to expand...
Click to collapse
No but there is a rendering issue (on devices with virtual keys) which causes apps not to fit to the screen. Normally, you hide the nav bar and it is fixed but 630 doesnt have that hiding option.
New version of DHT UpgradeAdvisor released and should be allow you to upgrade your phones . http://forum.xda-developers.com/win...-dht-upgrade-advisor-redstone-lumias-t3434774
Check OP or #2 post
BlueTR said:
No but there is a rendering issue (on devices with virtual keys) which causes apps not to fit to the screen. Normally, you hide the nav bar and it is fixed but 630 doesnt have that hiding option.
Click to expand...
Click to collapse
I have the same issue on where some apps not fit, but lumia 635 and 636 have the same screen resolution so I think updating to the new release preview cummulative update will fit again
BlueTR said:
No but there is a rendering issue (on devices with virtual keys) which causes apps not to fit to the screen. Normally, you hide the nav bar and it is fixed but 630 doesnt have that hiding option.
Click to expand...
Click to collapse
So no problem in my L620. That's a great news, dude!
Thread closed at OP request.
Only for Samsung eMMC chip devices!
It is all about laziness, get Fall Creators Update straight on Denim each time you want it. Read the WPI FAQ before it.
Variant: CV GB
System: Windows 10 Mobile Fall Creators Update
System version: 10.0.15254.158 (upgradeable)
Reduced OOBE
Included LED notification and Continuum libraries (import registry req.)
Enable SIMAddress Book And Export)
Enable Uhs and HS200
Volume limit disabled
Enable static IP
Base 02177.00000.15184.36007 ROM req (for Custom ROM only not unlocking).
Get it from Lumiafirmware as 059W5D2
or
[Lumia 830][Stock ROM][DENIM][FINAL] 02177.00000.15184.36007 CV EU
Unlock bootloader and flash it. No reset req. Enjoy
Download
Source
What happens if flashed to a non-Samsung eMMC device?
Thanks for sharing by the way...I almost want to get another 830 now.
It won't brick the Lumia, size of partition is slightly different in every eMMC from other OEMs so missing baits will stop WPI from carry on.
Thank you, with flashing EFIESP.bin i unbricked my lumia530.
I hope someone does the same for l1020
18 months ago we did it...
http://www.windowsmania.pl/romy-315/
djtonka said:
Only for Samsung eMMC chip devices!
It is all about laziness, get Fall Creators Update straight on Denim each time you want it. Read the WPI FAQ before it.
Variant: CV GB
System: Windows 10 Mobile Fall Creators Update
System version: 10.0.15254.158 (upgradeable)
Reduced OOBE
Included LED notification and Continuum libraries (import registry req.)
Enable SIMAddress Book And Export)
Enable Uhs and HS200
Volume limit disabled
Enable static IP
Base 02177.00000.15184.36007 ROM req (for Custom ROM only not unlocking).
Get it from Lumiafirmware as 059W5D2
or
[Lumia 830][Stock ROM][DENIM][FINAL] 02177.00000.15184.36007 CV EU
Unlock bootloader and flash it. No reset req. Enjoy
Download
Source
Click to expand...
Click to collapse
I used a custom ROM
Well done working flash
After flashing the phone for about 1 hour, it remains on the Windows icon
Is everything all right?
You mean stuck?
djtonka said:
You mean stuck?
Click to expand...
Click to collapse
It stuck on the startup window
djtonka said:
You mean stuck?
Click to expand...
Click to collapse
Do you have no answer ???
Take the SD card out first
[/COLOR]
djtonka said:
You mean stuck?
Click to expand...
Click to collapse
I do not have any memory cards
I used this method. I downloaded the files and flashed with wp
My phone's product code differs from these files. Is there any problem?
entezar3323 said:
[/COLOR]
...
My phone's product code differs from these files. Is there any problem?
Click to expand...
Click to collapse
Go back to the first post and read it again!
:laugh:
entezar3323 said:
[/COLOR]
...My phone's product code differs from these files. Is there any problem?
Click to expand...
Click to collapse
Go back to first post and read it again!
Go back to the first post and read it again!
Go back to first post and read it again!
Thank you for customizing this ROM
I installed this ROM after trying hard
But it works well
thank you again
@djtonka
"Enable static IP" you have registry keys for that, Tweak with InteropTools not working.
It is already active even in OBBE
titi66200 said:
@djtonka
"Enable static IP" you have registry keys for that, Tweak with InteropTools not working.
Click to expand...
Click to collapse
There are two WiFi settings pages in Windows 10 Mobile 1703+. One is visible, the second is hidden and can be started from Interop Tools Applications menu.
The tweak 'static IP' works only with the hidden page.
I stumbled upon a post from 2015 stating there is a vulnerability with swift keyboard app since its installed by default and can't be uninstalled and is ran with system privileges, but seeing as the date is 2015, i didnt want to waste the time trying until i found out if it's patched or not.
The device I'm using right now is a A505U but also would be wanting to try on a S20+ 5G and a Note 10
If anyone knows anything about this vulnerability or wants to learn more about it, the post I stumbled upon is: h t t p s : / / w w w . nowsecure . c o m /blog/2015/06/16/remote-code-execution-as-system-user-on-samsung-phones/
it states that all samsungs with Samsung IME keyboard which is a modified Swift keyboard built upon the Swift SDK are vulnerable if running as system user.
a PoC from that post is on github here: h t t p s : / / github . c o m /nowsecure/samsung-ime-rce-poc/
The vulnerability has been assigned the following CVEUs by CERT: CVE-2015-4640 and CVE-2015-4641.
If this hasn't been patched then this is a way to root the Qualcomm phones fersure, but setting up an automated root would seem difficult due to the need for MITM attacks required. But would be easy to make a noob friendly, but lengthy tutorial.
Also would it be against the rules to make this post in multiple phones forums? say the s20 and note 10 as well as this post here?
Thanks.
PS. can a moderator edit my post so the link is an actual link since I dont have 10 posts yet.