Denny, yes, your way is good! But we need hack TV first to get telnet access. New 3009 firmwares do not allow make hotel mode hack and widget hack is gone too. Then we need somthing new...
Is here a way to run telnet-enabler from widget? Or widget-telnet enabler, makes no sense how do we call it.
T-VALDEUC Firmware AES key :)
Re: T-VALDEUC Firmware AES key :)
LE40B653T5W,UE40D6750,UE65Q8C
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Re: T-VALDEUC Firmware AES key :)
Code: Select all
Denny, yes, your way is good! But we need hack TV first to get telnet access. New 3009 firmwares do not allow make hotel mode hack.i know what u mean, but dont worry about this , will be also posible to do by widget, just the one point that needs to be done, in code is litelbit fuzzy to reverse it complete but will be done!!!
look, if someone alredy update 3009 he even can not do anything with modified firmware coz he can not disable rsa check coz it is in exeDSP and we dont have private key, so no way except widget way and i am 1000% sure it can be done coz i have for cmk private rsa key!
.Denny
Denny - 데니 - 丹尼 (card2000)
UE55C8000 UE55D8000 UE32D6510 BD-C9600 3xDM8000
Reversing HW Demux Drivers and API from Samsung´s TV
UE55C8000 UE55D8000 UE32D6510 BD-C9600 3xDM8000
Reversing HW Demux Drivers and API from Samsung´s TV
Re: T-VALDEUC Firmware AES key :)
God bless (Denny)!coz i have for cmk private rsa key!
LE40B653T5W,UE40D6750,UE65Q8C
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Re: T-VALDEUC Firmware AES key :)
wortex , yes simple arm_v7_vfp_le
i think if u try #include <openssl/something.h> u will get error, so , simple c standard code , finish
@ juuso ^..^
so am now away, let see when i get fw flash routine out, in BD-C6900 asm code was easy, for valdeuc is litelbit fuzzy to trace all.
i think if u try #include <openssl/something.h> u will get error, so , simple c standard code , finish
@ juuso ^..^
so am now away, let see when i get fw flash routine out, in BD-C6900 asm code was easy, for valdeuc is litelbit fuzzy to trace all.
Last edited by Denny on Thu May 12, 2011 8:11 pm, edited 1 time in total.
Denny - 데니 - 丹尼 (card2000)
UE55C8000 UE55D8000 UE32D6510 BD-C9600 3xDM8000
Reversing HW Demux Drivers and API from Samsung´s TV
UE55C8000 UE55D8000 UE32D6510 BD-C9600 3xDM8000
Reversing HW Demux Drivers and API from Samsung´s TV
Re: T-VALDEUC Firmware AES key :)
Yes, i can confirm, it decrypts T-VALDEUC-3009.2 properly. Just donewortex wrote: BTW a good idea to test key with 3009 too...
LE40B653T5W,UE40D6750,UE65Q8C
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Re: T-VALDEUC Firmware AES key :)
T-VALDAAC-1008.0 as well.k4roshi wrote:Just so you know.. it decrypts t-val6deuc successfully too..
I think the same key is for whole T-VAL**** firmware family.
LE40B653T5W,UE40D6750,UE65Q8C
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Have questions? Read SamyGO Wiki, Search on forum first!
FFB (v0.8), FFB for CI+ . Get root on: C series, D series, E series, F series, H series. rooting K series, exeDSP/exeTV patches[C/D/E/F/H]
DO NOT EVER INSTALL FIRMWARE UPGRADE
Re: T-VALDEUC Firmware AES key :)
T-VALDCNC 1011.1
decrypted too
decrypted too
Re: T-VALDEUC Firmware AES key :)
Hi, I don't understand, if you can decrypt and encrypt back firmware, why don't you just install telnetd, ftpd, and/or sshd and their startup scripts on the decrypted rootfs or mtd_exe, build new squashfs, rewrite hashes, encrypt firmware back and flash it by standard way? Is there problem do do that?card2000 wrote:i know what u mean, but dont worry about this , will be also posible to do by widget, just the one point that needs to be done, in code is litelbit fuzzy to reverse it complete but will be done!!! :)Code: Select all
Denny, yes, your way is good! But we need hack TV first to get telnet access. New 3009 firmwares do not allow make hotel mode hack.
look, if someone alredy update 3009 he even can not do anything with modified firmware coz he can not disable rsa check coz it is in exeDSP and we dont have private key, so no way except widget way and i am 1000% sure it can be done coz i have for cmk private rsa key! :D .
Denny