Search results

So I'll update randomly... boot.img and recovery.img -> https://drive.google.com/file/d/0B5QYBzdG6RuyZy1TSHc2VDVhY2M/view?usp=sharing temp root: adb push root /data/local/tmp adb push wpoff /data/local/tmp adb push fbunlock /data/local/tmp adb push recovery.img /data/local/tmp adb push...

I'd like to share some experience on hacking SHARP Android phones. In the past I have published 102SH unlock and a tool helping users outside Japan to obtain OTA. About rooting. We have following preconditions. a. Locked bootloader. b. aboot without fastboot facilities. c. kernel driver...

Hello, I said there is a trick to UICC unlock 306SH unofficially, and here it is. Please try out and feedback. Since it's very easy to reverse this APK, please don't leak the details to public or SHARP. USE THE APK IN 306SH UNLOCK THREAD INSTEAD. I don't know which f**king guy edited this and...

Hi, I have grabbed mmgsdi/perso.txt from my locked phone. I can see there are various unlock codes, and I don't have any entry to input the unlock code for now. My phone is subset locked to SoftBank, but I cannot find MCC/MNC in this file. Anyone knows where it should be?

Hi, does ARM and Hexagon share the same physical memory? If so, how can I access memory used by modem? /dev/mem or a kernel module calling ioremap()? I tried both with no luck, just 0/0xff or reboot.

Hi, I have a SHARP SH-06E and I successfully turned on its DIAG mode. Now I have some devices not recognized, the HW IDs are below: USB\VID_04DD&PID_96CD&REV_0228&MI_02 USB\VID_04DD&PID_96CD&MI_02 USB\VID_04DD&PID_96CD&REV_0228&MI_03 USB\VID_04DD&PID_96CD&MI_03 I cannot find its driver...

According to CVE-2012-4220. No more flashtool, root mt25i, 4.1.B.0.479 only. Other versions can be done after I IDA the stock kernel... Source will be out soon. 1. install the APK and run 2. push diaggetroot to /data/local/tmp, chmod 755 and run it You should get root shell now...

Hi, when I dig into a modem dump of a 7x30 device, I find that there is a simple block based file system. So I'v written a simple program to extract OSBL/APPSBL/AMSS. https://github.com/tewilove/unpacker_7x30 But it seems that I've got something wrong since dump from another phone generates...

I do not own a sharp sh-06d, but I need /system/bin/CB400SF to do my work. Maybe root(temp is OK) access is needed. And if someone has sh-02d/sh-12c AMSS dump it's welcome if you share it with me. If you can send me those files, I can share my sh-01d network unlock code GENERATOR(ak keygen) with...

Hi, I want to profile my code. I tried emulator but it ended up with a qemu fatal error. qemu: fatal: Unimplemented cp15 register write (c9, c12, {0, 0}) On x10 I found oprofile support is disabled. And I can't find /proc/config.gz so I don't know how to compile the module. Can somebody help?

Since we don't have vendor's source code, it's hard to modify JNI parts. I have an idea. For example, I want hook all operations through SQLiteDataBase. SQLiteDataBase is registered in libandroid_runtime.so, then I modify framework Java byte code, inject an library(System.loadLibrary) into it...

I've traced for a while and changed check_pmem_info msm_pmem_frame_vtop_lookup msm_pmem_frame_ptov_lookup in msm_camera.c. After "fixing" these camera works, but recording get frozen and camera can't be opened unless reboot. Well, definitely I should not touch kernel source and the problem...

At the last few steps before booting the linux kernel, SPL will read the value in booting image which determines where the kernel will be loaded to. In desire it looks like below. RAM:8E00F5F4 MOV R4, boot_img_header_addr RAM:8E00F5FC LDR R0, [R4,#0xC]...

Hi, I'm doing some porting for the phone. Everything goes fine but except... # iptables -A INPUT -p tcp --sport 80 --tcp-flags FIN,SYN,RST,ACK SYN,ACK -m state --state ESTABLISHED -m set --match-set NOCLIP src -j ZHANG FIX ME! implement getprotobyname() bionic/libc/bionic/stubs.c:372 iptables...

Since we have rooted it now SPL seems to be useless. ---- Well, this is the original SPL image on Tattoo, nothing related to update.zip. ---- I was trying to reverse it, and just found why it refuses to erase, but I could not find why it refuses to download data from the host. :( ---- By...