testanull

Hey guys I have successfully decrypted and encrypted the data transfer to the API But it seem depend on the server, can't bypass without the token from server :(

@FaArIsH yeah exactly, But the points is, the encrypted data you got is generated from the server. It was generated base on the serial number + random noise data. So...

Yes, I have captured and decrypted the bond request, unlock request. I already tried to change the serial number but no hope. They use some kind of token to verify...

Hey guys, I have succeed in find out the way to decrypt the sig.data. This is how it work: - When receive the sig.data from server, the device decrypt sig.data...

@xderalt Yeah sure, I can, This is the decrypted string: VQEBIgEQW+oZUK8O4Oa11LkB1EtpuQMIbGF2ZW5kZXICBF2MWvM= I used the public key inside the bootloader to decrypt it

This string is decrypted INSIDE the bootloader, and used for comparing with the token generated by bootloader. Everytime the phone reboot, it generates new token (that 's why the token...

Main problems is you can't @penn5

Can you tell me where is the master branch?