Revolutionary - zergRush local root 2.2/2.3 [22-10: Samsung/SE update]

ieftm · 12:32 AM

Revolutionary - zergRush local root 2.2/2.3 [22-10: Samsung/SE update]

Hello!

We would like to announce the public availability of the root exploit we use in Revolutionary, named zergRush.

This local root exploit should be Android-wide, across Froyo (2.2) and Gingerbread (2.3). However, this will not work on Android Honeycomb and up (3.0+).

Simultaneously, we're also releasing source code for this root exploit through our github.

The binary is available from here: zergRush binary.

The exploit source is available here: Revolutionary GitHub.

Usage:

You will need adb shell to execute this exploit. We need shell permissions.
Push the binary onto /data/local/ and execute these commands in a shell:

Code:

$ chmod 755 /data/local/zergRush
$ /data/local/zergRush

The resulting output should look something like this:

Code:

[**] Zerg rush - Android 2.2/2.3 local root
[**] (C) 2011 Revolutionary. All rights reserved.

[**] Parts of code from Gingerbreak, (C) 2010-2011 The Android Exploid Crew.

[+] Found a GingerBread ! 0x00017118[*] Sending 149 zerglings ...[*] Trying a new path ...[*] Sending 149 zerglings ...[*] Trying a new path ...[*] Sending 149 zerglings ...[*] Trying a new path ...[*] Sending 149 zerglings ...
[+] Zerglings caused crash (good news): 0x401219c4 0x0054[*] Researching Metabolic Boost ...
[+] Speedlings on the go ! 0xafd260a9 0xafd39f9f[*] Poping 24 more zerglings[*] Sending 173 zerglings ...

[+] Rush did it ! It's a GG, man !
[+] Killing ADB and restarting as root..enjoy!

*reconnect adb shell*

Code:

# id
uid=0 gid=0

That is all folks!

Update 20-10-2011: zergRush has been updated to include some support for Sony Ericsson phones, updates for Samsung coming soon!
Update 22-10-2011: updates for Samsung phones, get the new download (or build yourself)

cdesai · 10th October 2011, 04:34 PM

Cool

...

QueNerdo · 10th October 2011, 05:21 PM

Does this work on the Evo 3D with Hboot1.5?

zeekiz · 10th October 2011, 06:57 PM

hahahaha nice script.

thank you!

ingro · 10th October 2011, 07:09 PM

very cool script, even tough I really hate lings rush, as I'm a protoss player :P

XeKToReX · 11th October 2011, 12:47 AM

Quote:

Originally Posted by QueNerdo

Does this work on the Evo 3D with Hboot1.5?

Worked for me on Evo 3D with HBOOT 1.49.0013, awesome, now to work out a downgrade.

dapaua · 09:40 AM

Reboot?

It worked in my HTC Chacha. Then I remounted System as rw. And then after a while(about 30 secs), my device reboots.
I tried it twice, after deleting /data/local/tmp/*
Is it normal? My device is S-ON.

Edited: I found it, it is because I modified the system partition, because after reboot it was as before.
Thank you.

Droidyou · 11th October 2011, 09:54 AM

Thanks for releasing

Send from a lightning fast Htc Sensation

qzem · 04:15 PM

It is not working on my new Samsung w i8150, with Gingerbread 2.3.5

. But thanks for your work anyway!

I've got something like (if someone might be willing to help):

Zerglings haven't found anything interesting...

I can post screenshot later.