log

age author description
Fri, 19 Jan 2018 07:20:42 +0000 Mychaela Falconia dsample-fw-disasm: located cinit records for rf_path and synth_*
Fri, 19 Jan 2018 06:19:59 +0000 Mychaela Falconia cinitdump program written, compiles
Fri, 19 Jan 2018 05:15:50 +0000 Mychaela Falconia dsample-fw-disasm tpudrv10 code analysis: got to calc_a_b()
Thu, 18 Jan 2018 17:12:17 +0000 Mychaela Falconia dsample-fw-disasm: found apparent beginning of the tpudrv10 module
Thu, 18 Jan 2018 08:03:03 +0000 Mychaela Falconia dsample-fw-disasm: beginning to locate tpudrv10 code
Thu, 18 Jan 2018 05:39:53 +0000 Mychaela Falconia dsample-fw-disasm: ARMIO functions located
Thu, 18 Jan 2018 05:10:18 +0000 Mychaela Falconia dsample-fw-disasm: comment fixes
Tue, 26 Dec 2017 12:26:23 +0000 Mychaela Falconia pirelli/fw-disasm: CV charging analyzed
Tue, 26 Dec 2017 07:13:21 +0000 Mychaela Falconia pirelli/fw-disasm: pwr_start_CV_charging() analyzed
Tue, 26 Dec 2017 06:49:53 +0000 Mychaela Falconia pirelli/fw-disasm: CI charging analyzed
Tue, 26 Dec 2017 04:47:58 +0000 Mychaela Falconia pirelli/fw-disasm: pwr_cal_timer_process() analyzed
Tue, 26 Dec 2017 04:12:06 +0000 Mychaela Falconia pirelli/fw-disasm: pwr_short_test_timer_process() analyzed
Tue, 26 Dec 2017 03:28:22 +0000 Mychaela Falconia pirelli/fw-disasm: beginning of pwr_liion_cha code
Tue, 26 Dec 2017 00:56:55 +0000 Mychaela Falconia pirelli/fw-disasm: pwr_cust battery type logic located and analyzed
Mon, 25 Dec 2017 23:54:05 +0000 Mychaela Falconia pirelli/fw-disasm: found what seems to be the charging time limit function
Mon, 25 Dec 2017 23:32:08 +0000 Mychaela Falconia pirelli/fw-disasm: started proper analysis of pwr_cust code
Mon, 25 Dec 2017 21:15:23 +0000 Mychaela Falconia pirelli/fw-disasm: rvf_stop_timer() call confirmed
Mon, 25 Dec 2017 20:50:30 +0000 Mychaela Falconia pirelli/fw-disasm: Switch_ON() analysis complete
Sun, 24 Dec 2017 18:03:25 +0000 Mychaela Falconia pirelli/fw-disasm: continuing Switch_ON() analysis
Sun, 24 Dec 2017 17:18:06 +0000 Mychaela Falconia pirelli/fw-disasm: started analysing the Switch_ON() code
Sun, 24 Dec 2017 16:22:28 +0000 Mychaela Falconia pirelli/fw-disasm: Switch_ON() code located
Sun, 24 Dec 2017 04:43:48 +0000 Mychaela Falconia pirelli/fw-disasm: abb_inth located
Sun, 24 Dec 2017 01:19:25 +0000 Mychaela Falconia pirelli/fw-disasm: abb_core_inth located
Sun, 24 Dec 2017 00:03:49 +0000 Mychaela Falconia pirelli/fw-disasm: l1_abb_power_on() located
Sat, 23 Dec 2017 23:26:06 +0000 Mychaela Falconia pirelli/fw-disasm: l1_initialize() located
Sat, 23 Dec 2017 16:38:50 +0000 Mychaela Falconia pirelli/fw-disasm: ABB_Read_ADC() and ABB_Conf_ADC() located
Sat, 23 Dec 2017 08:27:26 +0000 Mychaela Falconia pirelli/fw-disasm: first round of ABB functions
Sat, 23 Dec 2017 03:56:02 +0000 Mychaela Falconia pirelli/fw-disasm: pwr_env code located
Sat, 23 Dec 2017 01:46:05 +0000 Mychaela Falconia pirelli/fw-disasm: spi_adc_on() located
Sat, 23 Dec 2017 01:38:28 +0000 Mychaela Falconia pirelli/fw-disasm: spi_core() located
Sat, 23 Dec 2017 01:13:07 +0000 Mychaela Falconia pirelli/fw-disasm: spi_env code located
Fri, 22 Dec 2017 23:26:41 +0000 Mychaela Falconia pirelli/fw-disasm: RVM SWE array analyzed
Fri, 22 Dec 2017 21:50:59 +0000 Mychaela Falconia pirelli/fw-disasm: more l1_cust stuff
Fri, 22 Dec 2017 06:10:26 +0000 Mychaela Falconia pirelli/fw-disasm: Cust_Init_Layer1() and madc_hex_2_physical() located
Fri, 22 Dec 2017 02:58:33 +0000 Mychaela Falconia pirelli/fw-disasm: math for the IRAM code location
Fri, 22 Dec 2017 02:10:56 +0000 Mychaela Falconia pirelli/fw-disasm: IRAM code loading located
Thu, 21 Dec 2017 23:12:46 +0000 Mychaela Falconia pirelli/fw-disasm: main and init modules located
Thu, 21 Dec 2017 22:17:11 +0000 Mychaela Falconia tiobjd: same bug in ARM SWP decoding as in standalone armdis
Thu, 21 Dec 2017 22:15:00 +0000 Mychaela Falconia arm7dis/armdis: bug in the decoding of SWP instructions
Thu, 21 Dec 2017 21:54:39 +0000 Mychaela Falconia pirelli/fw-disasm: beginning of proper static RE
Tue, 19 Dec 2017 04:02:32 +0000 Mychaela Falconia pirchgdbg: complete enough for first test
Tue, 19 Dec 2017 02:58:38 +0000 Mychaela Falconia pirchgdbg started
Sun, 17 Dec 2017 19:30:22 +0000 Mychaela Falconia current-draw: checking in experiment results
Wed, 29 Nov 2017 22:51:50 +0000 Mychaela Falconia Pirelli's a_pwr_thresholds[] table found
Tue, 28 Nov 2017 02:47:01 +0000 Mychaela Falconia compal/charging: checking in captured booty
Tue, 28 Nov 2017 02:14:44 +0000 Mychaela Falconia pirelli/charging/i2v: note added
Tue, 28 Nov 2017 02:04:52 +0000 Mychaela Falconia pirelli/charging: read-abb-regs script and observed results
Thu, 23 Nov 2017 22:24:18 +0000 Mychaela Falconia osmo2psi test program written
Fri, 17 Nov 2017 19:58:07 +0000 Mychaela Falconia ftmdump (C1xx factory data reverse eng) tool written
Thu, 16 Nov 2017 04:19:58 +0000 Mychaela Falconia pirelli/rfcal: new understanding
Sun, 28 May 2017 20:33:26 +0000 Mychaela Falconia pircalextr: added second argument for output directory
Sun, 28 May 2017 20:12:14 +0000 Mychaela Falconia pircalextr program written, compiles
Tue, 14 Mar 2017 06:19:52 +0000 Mychaela Falconia leo-obj: disasm hints created for l1audio_cust.obj
Tue, 14 Mar 2017 06:04:28 +0000 Mychaela Falconia leo-obj: started analyzing l1audio_cust.obj in l1_custom_ext.lib
Sun, 25 Dec 2016 23:48:16 +0000 Mychaela Falconia Pirelli: documented and verified the checksum scheme used for the factory block
Tue, 26 Jul 2016 23:32:17 +0000 Mychaela Falconia analysis of ultra-malicious new C123 boot code from Ajay Fuloria
Mon, 25 Jul 2016 19:29:03 +0000 Mychaela Falconia compal directory: added analysis of C139 boot code version with 1004 signature
Mon, 28 Mar 2016 07:04:20 +0000 Mychaela Falconia leo-obj/l1_dyn_dwl: created hints file for async module to get ASCII strings
Sat, 26 Mar 2016 22:03:08 +0000 Mychaela Falconia tiobjd disasm -ll: show the actual line numbers
Sat, 05 Mar 2016 02:51:04 +0000 Mychaela Falconia leo-obj/l1_ext/l1_async.hints: one more ASCIZ string
Sat, 05 Mar 2016 01:28:06 +0000 Mychaela Falconia leo-obj: analysis of l1_async.obj with disassembly hints
Fri, 04 Mar 2016 23:36:16 +0000 Mychaela Falconia tiobjd disasm -g: grok struct/union/enum definitions and statics in functions
Fri, 01 Jan 2016 23:24:05 +0000 Mychaela Falconia D-Sample 20020917 firmware analysis
Wed, 30 Dec 2015 08:27:46 +0000 Mychaela Falconia old Calypso F741979B boot ROM analyzed
Thu, 10 Dec 2015 07:29:35 +0000 Mychaela Falconia memwrite-grep hack-utility written
Mon, 19 Oct 2015 05:07:25 +0000 Mychaela Falconia dspanal/patchanal: added -v option to dump section content
Fri, 16 Oct 2015 17:00:22 +0000 Mychaela Falconia dspanal/patchanal.c written, insight gained
Sat, 04 Jul 2015 18:37:26 +0000 Space Falcon leo-obj/l1_dyn_dwl/l1_dyn_dwl_init.hints: show 2D byte arrays more clearly
Sat, 04 Jul 2015 02:30:27 +0000 Space Falcon leo-obj: need to look at l1_dyn_dwl objects
Sat, 06 Jun 2015 18:32:49 +0000 Space Falcon leo-obj/frame_na7_db_ir: disassemble frame.obj in order to bring to light
Mon, 25 May 2015 04:50:24 +0000 Space Falcon leo-obj: let's take a look at bootloader.lib
Tue, 12 May 2015 20:38:15 +0000 Space Falcon pirelli/rfcal: Rx agcparams and calchan were swapped
Thu, 16 Apr 2015 04:12:48 +0000 Michael Spacefalcon bootrom.notes typo fix (courtesy of pfalcon <pmiscml@gmail.com>)
Sun, 15 Mar 2015 01:13:42 +0000 Michael Spacefalcon pirelli/32khz: investigative note checked in
Sun, 11 Jan 2015 04:33:48 +0000 Michael Spacefalcon pirelli/vctcxo: VCTCXO connections traced out
Wed, 07 Jan 2015 22:15:51 +0000 Michael Spacefalcon grokdsn: buglet in the hierarchy traversal order
Wed, 07 Jan 2015 08:09:30 +0000 Michael Spacefalcon grokdsn: tree dump implemented
Wed, 07 Jan 2015 07:12:51 +0000 Michael Spacefalcon grokdsn: able to follow the FAT chain for the directory
Wed, 07 Jan 2015 06:55:33 +0000 Michael Spacefalcon started grokdsn utility, parses header successfully
Thu, 04 Dec 2014 07:25:12 +0000 Michael Spacefalcon pirelli/vibrator: footprint measurements
Sun, 17 Aug 2014 22:49:48 +0000 Michael Spacefalcon leo-obj/l1_pei: added and analyzed
Sun, 17 Aug 2014 18:41:11 +0000 Michael Spacefalcon leo-obj/l1_int/dl1_com.hints: created
Sun, 17 Aug 2014 18:26:06 +0000 Michael Spacefalcon leo-obj: started looking at dl1_com.obj
Fri, 15 Aug 2014 00:59:45 +0000 Michael Spacefalcon leo-obj/tpudrv/tpudrv12.hints: literal pools and branches around them
Mon, 11 Aug 2014 21:32:30 +0000 Michael Spacefalcon leo-obj: started analyzing tpudrv.lib objects
Mon, 04 Aug 2014 21:17:06 +0000 Michael Spacefalcon tiobjd: chararray extraction command implemented
Tue, 15 Jul 2014 00:24:40 +0000 Michael Spacefalcon pirelli/rfcal: found /sys/adccal, no luch with /gsm/rf/afc*
Sun, 13 Jul 2014 07:51:24 +0000 Michael Spacefalcon calextract: forgot the final semicolon after the last closing brace
Sun, 13 Jul 2014 01:11:22 +0000 Michael Spacefalcon Pirelli's RF calibration cracked
Sat, 12 Jul 2014 00:05:22 +0000 Michael Spacefalcon calextract tool written, works
Fri, 11 Jul 2014 00:59:50 +0000 Michael Spacefalcon leo-obj/l1_custom_int/l1_cust.hints: created
Thu, 10 Jul 2014 03:20:00 +0000 Michael Spacefalcon leo-obj/l1_custom_int: ind_os.hints added
Thu, 10 Jul 2014 03:16:42 +0000 Michael Spacefalcon leo-obj/l1_custom_int: added
Sun, 06 Jul 2014 20:22:09 +0000 Michael Spacefalcon objgrep/README written
Fri, 04 Jul 2014 16:37:51 +0000 Michael Spacefalcon objgrep-fe: works after fixing a buglet
Fri, 04 Jul 2014 08:46:32 +0000 Michael Spacefalcon objgrep-fe written, compiles
Fri, 04 Jul 2014 06:34:33 +0000 Michael Spacefalcon objgrep -r: dump symbols in other sections recovered through relocs
Fri, 04 Jul 2014 03:22:41 +0000 Michael Spacefalcon objgrep: -r implemented
Fri, 04 Jul 2014 03:07:09 +0000 Michael Spacefalcon objgrep: -s implemented
Fri, 04 Jul 2014 02:56:21 +0000 Michael Spacefalcon objgrep: parsing of -r and -s options implemented, no functionality yet
Fri, 04 Jul 2014 01:45:03 +0000 Michael Spacefalcon objgrep: weed out empty source sections
Fri, 04 Jul 2014 01:01:39 +0000 Michael Spacefalcon objgrep: works after fixing a buglet
Fri, 04 Jul 2014 00:54:33 +0000 Michael Spacefalcon objgrep: written, compiles
Mon, 30 Jun 2014 18:00:09 +0000 Michael Spacefalcon leo-obj/osx_na7_db/osx.hints: created
Mon, 30 Jun 2014 17:34:59 +0000 Michael Spacefalcon leo-obj: starting to look at OSX
Sun, 15 Jun 2014 01:43:55 +0000 Michael Spacefalcon leo-obj/frame_na7_db_ir: os_mem.hints added
Sun, 15 Jun 2014 01:17:36 +0000 Michael Spacefalcon leo-obj/frame_na7_db_fl: os_{sem,tim}.hints created
Thu, 15 May 2014 20:55:39 +0000 Michael Spacefalcon locked C139 bootloader reverse-engineered
Thu, 15 May 2014 20:10:25 +0000 Michael Spacefalcon starting to examine Tracfone's locked C139 bootloader
Thu, 15 May 2014 08:38:42 +0000 Michael Spacefalcon malware version of the C118 bootloader reversed
Thu, 15 May 2014 07:58:07 +0000 Michael Spacefalcon C123 bootloader re complete
Thu, 15 May 2014 06:43:14 +0000 Michael Spacefalcon start of C123 bootloader re
Wed, 14 May 2014 05:34:37 +0000 Michael Spacefalcon mot931c break-in procedure cracked
Sat, 03 May 2014 17:56:45 +0000 Michael Spacefalcon leo-obj: started analyzing frame_na7_db_ir objects
Fri, 02 May 2014 23:41:44 +0000 Michael Spacefalcon tiobjd ctypes: print more useful hex byte offsets for struct fields
Fri, 02 May 2014 06:20:26 +0000 Michael Spacefalcon leo-obj/frame_na7_db_fl: extract ctypes info as well
Fri, 02 May 2014 04:12:14 +0000 Michael Spacefalcon leo-obj: frame_na7_db_fl/os_pro.obj disassembles the way it should
Thu, 01 May 2014 01:01:58 +0000 Michael Spacefalcon tiobjd disasm: implemented -l option to show line markers
Thu, 01 May 2014 00:23:18 +0000 Michael Spacefalcon tiobjd disasm -g: line break after function locals
Tue, 29 Apr 2014 07:51:28 +0000 Michael Spacefalcon tiobjd disasm -g: dump of function locals implemented