Hey, i know this a really really old tablet with basically no software support but, a few months ago it ocurred to me: could the Nintendo Switch coldboot exploit work in my Sony Tablet S?
In theory every tegra chip before the X1 should be vulnerable, provided you have RCM (APX) access.
And that is my first problem: how do i even get to RCM (APX)? Well , i asked just that in the ReSwitched discord server and they told me that modifying some adresses and stuff could boot RCM. In the end it worked, and you need the following: ROOT, Terminal Emulator and busybox.
Type in terminal emu this in this order:
Any ideas?
In theory every tegra chip before the X1 should be vulnerable, provided you have RCM (APX) access.
And that is my first problem: how do i even get to RCM (APX)? Well , i asked just that in the ReSwitched discord server and they told me that modifying some adresses and stuff could boot RCM. In the end it worked, and you need the following: ROOT, Terminal Emulator and busybox.
Type in terminal emu this in this order:
Now you have booted into RCM (APX) . I tried to push a payload with fusee launcher editing the usb pid, but it still errors out. Log: https://del.dog/zuquyejeqo
Any ideas?
