Grant Hernandez
Grant Hernandez
On mobile devices, USB host mode is not the default. Instead, the Linux gadget stack is active. Gadgets allow an operating system to act as any USB device type, provided...
PyPanda's Panda() top-level class by default creates an interactive monitor like `-monitor unix:/tmp/pypanda_mbwril7yr,server,nowait`. I dont believe monitor is not the same as QMP, but a text based protocol There are...
Newer AOSP images (specifically payload.bin) cannot be extracted due to the new format. This tool does the job: https://github.com/cyxx/extract_android_ota_payload
This would replace the external Python scripts that are normally used for this
Newer basebands have protection against memory dumping through a mysterious TBL structure in the bootload. I suspect this is from TrustZone or SBOOT as I can't see any reference to...
* Use Frida to record RIL messaging to the kernel * Understand how RFS is implemented * Further explore SIPC message encoding - https://github.com/grant-h/SM-G973F-Kernel/blob/a6c2623ef5ce4644e701d689e60809b0553cf01d/drivers/misc/modem_v1/include/sipc5.h * Create giant diagram showing how...
* Discuss the files opened by CBD * Discuss the IOCTLs made to the kernel * Describe the command line options
Newer modems (even non 5G) have bumped the version by one. Add support for these by adding version support to BTL printer.
Samsung devices have NV data that is accessed by Shannon via RFS to the EFS partition. This file `/mnt/vendor/efs/nv_data.bin` fits directly into memory of the NV partition in the TOC...
ShannonLoader is able to load TOC based images from 5G modems, but is unable to recover their memory maps, making the usefulness of the loader decrease. Do more research on...