Attend XDA's Second Annual Developer Conference, XDA:DevCon 2014!
5,734,168 Members 51,362 Now Online
XDA Developers Android and Mobile Development Forum

Qualcomm Hexagon Disassembler?

Tip us?
 
E:V:A
Old
(Last edited by E:V:A; 13th January 2014 at 12:45 PM.)
#1  
E:V:A's Avatar
Recognized Developer - OP
Thanks Meter 1698
Posts: 1,297
Join Date: Dec 2011
Location: -∇ϕ
Default Qualcomm Hexagon Disassembler?

Anyone Interested?

As our mobile devices are getting more and more locked-up and harder to maintain, it's is surprising that so little effort has been done in vulnerability research of the Qualcomm Hexagon DSP's. After all, these beasts have been roaming around freely in our phone cores for nearly 8 years already. (In all Snapdragons since 2006). But very few, to none of our security experts have had a good look at what's hiding inside.

So what I propose, is that we start an effort to build an Open Source Hexagon Disassembler for public security research of mobile baseband firmware.

The only effort I know of to this date is that made by Jan Willem Hengeveld (itsme), who wrote an IDA module (here) to the best of his abilities. I don't know what is the current status of that today, but the IDA Hexagon module is now hosted at Github HERE by Ralf-Philipp Weinmann (rpw), who reverse engineered parts of the baseband (shown in THIS video) and recently helped expose the insecurity of TOR hidden-services.

I'm not going to answer why this is important at this point, but I'd rather like to know more about what mobile developers in the security field think about this. Highly technical talk is welcome and preferred.

If you have any additional information on how to do this, or what would be required, please chime in!
MSM8960 Info, Architecture and Bootloader(s)
El Grande Partition Table Reference
How to talk to the Modem with AT commands

[REF][ServiceMode] How to make your Samsung perform dog tricks
[REF|R&D|RF] RF/Radio properties of Samsung ServiceMode

Want to know when your phone is getting tracked or tapped?

Help us develop the IMSI Catcher / Spy Detector!
(To be part of the EFF & The Guardian Project toolsets.)
_______________________________
If you like what I do, just click THANKS!
Everything I do is free, altruism is the way!
ŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻŻ
I do not answer support related PM's.

The Following User Says Thank You to E:V:A For This Useful Post: [ Click to Expand ]
 
SecUpwN
Old
#2  
SecUpwN's Avatar
Senior Member
Thanks Meter 541
Posts: 1,861
Join Date: Jun 2012
Location: CLASSIFIED

 
DONATE TO ME
Quote:
Originally Posted by E:V:A View Post
Anyone Interested?
If you have any additional information on how to do this, or what would be required, please chime in!
PUSH! I recommend you to have a chit-chat with developer @c0rnholio, who developed the awesome HushSMS.


SICK OF SURVEILLANCE?

Get the Android IMSI-Catcher Detector.


Help us support EFF, Guardian Project and Privacy International!
DONATE DarkCoin:
XxEJvrYtkTZzvMUjtbZwPY34MyCGHSu4ys

 
sebeqone
Old
#3  
Junior Member
Thanks Meter 0
Posts: 14
Join Date: Nov 2013
That is very interesting topic. I think it will be hard to disassemble the modem/baseband DSP, but it will be easier accessing the multimedia DSP which is open for user programming. There is even a linux project running on hexagon cores
Tags
baseband, disassembler, hexagon, ida, reverse
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes


XDA PORTAL POSTS

How to Root the Sony Xperia Z2 – XDA Developer TV

In this episode,XDA Developer TV Producer TK shows you how to root your Sony Xperia … more

TWRP Now Available for the LG G Watch and Samsung Gear Live

Over the past week or so, we’ve talkedquite a bit about the first … more

Slate Calendar Helps You Organize Your Life

Without calendars in some form or another, most of our lives would be utter chaos. Unless you are … more

Shane Francis to Talk Android, Robotics, and Vision at XDA:DevCon 2014

Our international xda:devcon 14in Manchester, UK on the weekend of … more