[EXE/BINARIES] Some binaries from W10M OEM KIT

[djamol]

Some binaries from Window 10 Mobile OEM KIT.
MobileOS-arm-fre.zip etc.

Included most of the great stuff, like icacls.exe for ARM too. That's great thing.
Developermenu.efi for Mass Storage Mode etc.

Notes:-
Don't fill-up MainOS with this stuff. (MainOS is less in size and need some space for update process. Another reason is, if your device is not secure boot unlocked then device will get bricked on Hard Reset. You need to flash FFU again.)
You can put it here "C:\Data\Test\Bin"
I.e. "C:\Data\Test\Bin\cmd.exe"
"C:\Data\Test\Bin\EN-US\cmd.exe.mui"

While dumping UEFI Variables from developermenu.efi need to create directory (LOGs) in efiesp.
Like this:- "C:\EFIESP\LOGs"

 

[augustinionut]

How to use ?

 

[djamol]

How to use ?

Deploy tshell or sftp access or manually install booth service.
Or here is one of http://forum.xda-developers.com/windows-10-mobile/enable-bootshsvc-windows10mobile-t3455357

 

[BastogneBas]

How do I use developermenu.efi? What should I do with it?

 

[RandomWP]

if your device is not secure boot unlocked then device will get bricked on Hard Reset.

Will I get a brick if put cmd.exe (and some other .exe files) in C:/Windows/system32 and do a hard reset?

 

[RandomWP]

Developermenu.efi for Mass Storage Mode

How to the enable Mass Storage Mode? What I should do with Developermenu.efi?

 

[naiple]

How to the enable Mass Storage Mode? What I should do with Developermenu.efi?

You can replace the resetphone.efi with developermenu.efi. But you need disable uefi secure boot or provision test certificates first.
And i think you need copy the bmpx to EFIESP\Windows\System32\boot\ui.

 

[naiple]

Some pictures about wp dev menu[emoji6]

Sent from my E5823 using XDA-Developers mobile app

 

[RandomWP]

You can replace the resetphone.efi with developermenu.efi. But you need disable uefi secure boot or provision test certificates first.
And i think you need copy the bmpx to EFIESP\Windows\System32\boot\ui.

Is any brick risks? How to disable secure boot? Can i normally update system after disabling secure boot? Too many questions...

 

[naiple]

Is any brick risks? How to disable secure boot? Can i normally update system after disabling secure boot? Too many questions...

You can disable secure boot on lumia x2x using wpinternals. I have no idea how to disable secure boot on other devices... I already have 2 bricked phones when trying to disable secure boot.[emoji23]

Sent from my E5823 using XDA-Developers mobile app

 

[RandomWP]

I have no idea how to disable secure boot on other devices...

How you installed developermenu.efi on Lumia 650 (on photo) without disabling secure boot?

 

[rejithkumar]

How can i enter mass storage mod on my Lumia 430

 

[djamol]

How you installed developermenu.efi on Lumia 650 (on photo) without disabling secure boot?

Without Secure Boot Unlocked it won't work, unless device had test cert provisioned.

His 650 could be secure boot off or may he has custom secure boot policy as im not sure it's prototype or test device.

 

[djtonka]

How can i enter mass storage mod on my Lumia 430

Just tap on Wheather app

 

[RandomWP]

Some binaries from Window 10 Mobile OEM KIT.

Where you find this files?
EFI has no digital signature, can we sign it using original efi's signature? Or this is impossible?

 

[djamol]

Where you find this files?
EFI has no digital signature, can we sign it using original efi's signature? Or this is impossible?

I found this on google search.

Just rename to "example.efi" then go properties, you will see test-signed cert under "digitalSignature".

Original efi means ?
Do you mean retail signed ? Like preview builds etc ?
That's not possible. Only and only Microsoft can sign anything's.

 

[djamol]

@RandomWP well if you can factor this, then you can sign anything you want.
"18972448065962940139915565550429542544127483826779617872033880200805531383810112033519462923455689001184704988629643322320935626522386587923114029165693226888726219810642734784485492479939675930712071937232814450059618069452834633402428960910772103556325402321732401344147493693868867659352675032054708935329819089743015709265983846796758594535993753245690111237034446423120148054406212815847368448494321991594739699349012952561409940006424505666495664581055624281399729068036466219150359946643974593913874303450382131958280356742749034844934294785202092112687219434536744337659608947188429328662226650888351316620003"

 

[RandomWP]

Secure boot blocks files without digital signature, right?

 

[djamol]

Secure boot blocks files without digital signature, right?

Yes, exactly.
Retail Secure boot policy don't allowed any unsigned stuff or any other signed stuff (non-production certs).
We need stuff which are only signed by Microsoft digital certificates which contain in phone sb database. I.e pk,kek,db etc.

So why we need to disable secure boot to flash any unsigned rom or efi apps.

 

[RandomWP]

Yes, exactly.
Secure boot don't allowed any unsigned stuff or any other signed stuff (non-production certs).
We need stuff which are only signed by Microsoft digital certificates which contain in phone sb database. I.e pk,kek,db etc.

So why we need to disable secure boot policy to flash any unsigned rom or efi apps.

And we can't sign our EFI apps using MS setificate :crying:
Or we can sign files using any setificate, but we can't get MS sertificate?