Recent content by Cobaltikus

With the best current published factoring algorithm, you are probably correct that it would take that much computing power that much time, but with a better non-published algorithm it could be much quicker with much less computing power. It's a long shot, but worth putting the idea out there...

The knowledge of a factor to the given number would enable us to recreate the private key and sign a new bootloader of our choosing such that we could simply flash the new bootloader as if it were an official Samsung bootloader. More than likely it would not be a brand new bootloader from...

It's not prime, but rather the product of 2 numbers that are probably prime. We're looking for one of those probable primes.

Here's a challenge, with a promise: If anyone can tell me a *whole* number, that is greater than 1, less than the number below, and can divide evenly (no remainders) into this given number, then I will post an unlocked version of this bootloader...

I think of the fuses as set-only bits, that start out as 0's, and you can set them individually to 1's, but once they are set to 1 they can never go back to 0. At least that is the idea. I find it difficult to believe any statement that contains the word "never". Each upgrade has a maximum value...

1) I am very much hoping I still have the source code. I wrote this in the days before I used GitHub. And it was a few computers ago. 2) I might release the source code, but I have a concern about how I made it work for the Microsoft Bluetooth Stack. The Widcomm stack was straight forward, but...

Can I? Yes. I can do anything. Will I? ... I suppose.... I don't have a Windows Phone any longer. I got the very first HTC Windows Phone the day it came out, a few years ago. Had it for a week. Exchanged it for an Android phone. I miss Windows Mobile...

v0.5.1 released

IDA shows you all the instructions, and you have to read it and keep track of variables in your head or on paper as you follow the code, trying to figure out what it's doing. With CobaltDebugger, you can step through these instructions one at a time and see for yourself what the result of that...

The image is not encrypted, but rather signed. An HMAC hash is created based on the image. This hash is then signed using a private 2048 bit RSA key. The public key is already on the device, we have the public key, and it can be used to verify the signature. So although RSA can be used for...

I got a bit side tracked. Thanks to Tal Aloni, Cobalt Debugger now shows and validates the certificate chain and image signature, which started me down the rabbit hole of potentially cracking RSA. When I come back up for air I'll post my latest changes.

v0.5 v0.5

v0.4 v0.4 runs Verizon S4 NK1 aboot to completion, and you can view and modify the active Instruction Set (ARM vs Thumb).

Yep. I need to re-implement MCR. I wasn't doing all that needed to be done.

IDA Pro has always been able to read mbn files. You just need to set the processor type to ARM little endian and set the proper address offsets. You can get those address values from my program CobaltDebugger which is no IDA substitution by any means, yet, but it's a good companion tool for now...