Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - alberthrocks

Pages: 1 ... 53 54 [55]
Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 20, 2010, 10:38:37 pm »
Just wondering... does the TNS format need cracking?

Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 20, 2010, 09:56:20 pm »
@apcalc: Well, we'll see. :) And happy 100 posts! ;)

Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 20, 2010, 09:37:32 pm »
@graphmastur: OK, I see. So much for hope.... I still think we should at least TRY to factor the keys. After we're done, we're free forever! :)

@Lionel Debroux: Well, I must be really behind! :)
I still think it's BSD, or at least has some BSD parts in it. Lookie here:

The interesting text is "usbd_start_next: error=%d". The google search above yields plenty of BSD source links. How isn't it BSD? ;)
This was found in the latest stock OS, 2.1. Line 8752 to be exact (after extracting phoenix.raw, and "strings"ing it).

And since you are the TiLP dev, could you look at these bugs?

I still think we should at least TRY - it's hard, seemingly impossible, but if you look at today's hardware - it's better!
1000s of computers doing this is pretty strong. If we crack this, we basically unlocked the biggest door to community hacking! :)
If it's really THAT bad, then maybe not. :P

@bwang: Ndless2 sounds dismal... so I thought that I should try to crack it and develop an exploit.
A little bit of general discoveries for now though.

@Silver Shadow: Downgrade protection removal is impossible without cracking the keys. (Which fuels my point for at least trying to crack it) The latest news seems to indicate that, so it's pretty bleak.

Machine code execution? Definitely something I'm aiming for. ;)

Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 17, 2010, 10:37:01 pm »
@Ancient Power: My goal is to disassemble it and find bugs that way. ;)

@Lionel Debroux: Wow.... well, I'm certainly behind! :-o I'll look into it.
It seems though that nobody in the UnitedTI forums noticed (nor in the Wiki) that the Nspire OS is BSD based.

Also... in theory, couldn't the boot1 be extracted and used to find the keys?
RSA is public/private key based - it should be decrypting it with the private key.
Finding the private key can lead to the public key...?

BTW, are you the TiLP developer by any chance?

@DJ Omnimaga: I've looked into that. I don't think it'll work, since it's bound to break CRC/MD5/SHA1/whatever checks.
(And possibly the 1028 bit RSA key encryption too!)

And some French will do me some good. ;) I take French, and I think it's a cool language! :) (Je pense français est très super!)

EDIT: Wow... unfortunately, I was right about the process not working. :(

@TC01: I wish it was that way. I'm pretty sure there are some interesting checks that they put in (listed above).

Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 17, 2010, 12:01:16 am »
On my Ubuntu, p7zip is installed, so it was able to open and extract it. (p7zip is the linux version of 7zip.)

I'm not really sure about finding the causes though. That requires decrypting and extracting the OS
(and decompiling it too!), so I'm not sure.

If you want to know what the hackers are up to, check out this:

They are far up ahead than me. ;)

Other Calculators / Re: Let's hack Nspire OS 2.1!
« on: July 16, 2010, 10:52:56 pm »
@apcalc: I would assume that if you were interested, you would know what the goal is. ;)
It is to indeed, execute community apps/programs. For Nspire, it's more or less C programs,
but can be ASM too.

I'm not sure about that though. You could go inside the file and muck around and attempt to replace files.

Other Calculators / Let's hack Nspire OS 2.1!
« on: July 16, 2010, 10:31:30 pm »
I'm frankly pissed at TI, so I've decided to get hacking! :)

This method is different. I'm not interested in finding a way to crash the OS (and from there, develop a hack).
Instead, I'll take the other way instead - hacking with the original firmware/OS update instead!

Of course:

1) I have ZERO knowledge of how this works and such, but I'll use what I know to hack it
2) This isn't a one person project - anyone can join in! :)
3) You will not be able to download anything I have. You can follow along, but to keep TI from sending crazy
DMCA takedowns, I will NOT post links.

So, let's get started!

Downloading the cursed update
I've downloaded the official, evil update from TI's website.
If you are downloading this, PLEASE, disconnect your Nspire(s) from the computer!
You never know if TI's going to try auto-updating your calc...   :o

...and it's done.

Into the mysterious world of TI Nspire OS Updates...

Now, there's a forum that gave me a interesting hint on opening these update files:

The tnc and tno files are PKZIPs with 63 header bytes. Some unzippers will unzip them unmodified. Inside are a .img and .cer file. The .img is a zip with other stuff in it as well. I have only managed to extract the .img with Peazip (Windows version runs in wine/darwine -- the source looks like a bitch to compile). Inside it seems to only be factory default settings (which are in a .xml in a .zip), 6 language localizations, and in the non-CAS version, parts of the 84+ ROM (I can only identify the user archive -- has several language localization apps, as well as language-local versions of at least StudyCards and Periodic). The rest of the .img (about 4/5 of it) seems to be the actual code part of the OS. I haven't spent much time examining it yet. It may or may not be compressed and/or encrypted. I certainly haven't tried to ID the processor yet.

So, renaming to ZIP did it:

And of course, it opened:

The files:

Into Pandora's box

Let's examine the files:

Ignore the dBase files. I'm still trying to figure out what they are.
The TI-Nspire file is interesting. I renamed that to a zip and opened it:

So... what exactly IS inside of these folders?
phoenix/clnk/locales/en/strings.res contains... strings (??) about class logins:
(note: this is strings extracted from the binary)
Code: [Select]
Login to Class
Transfer Status
Session Info
Class not started.
Receiving file...
Destination Folder:
User Name:
Class has ended, you have been logged out.'
There are no pending items to transfer.
Transfer completed successfully.
Login Failed,
Unrecognized user for current class session.+
Communication failed. Check the connection.
Class type mismatch.
Wrong username or password.7
Username must be between 3 and 12 characters in length.7
Password must be between 3 and 12 characters in length.
Login attempt failed.
Wrong device type.
 is already logged in.
You are logged in as user:
Login Successful
 is logged in.
Not logged in.
Wireless cradle is not attached.
Connecting to AP.
Connected to AP.
Connected to Network.
Network Error.
Recharge cradle immediately.

Anyway, that's all I have for now. I'll keep you guys updated! :)


The Axe Parser Project / Re: Axe Parser Comments and Questions
« on: May 16, 2010, 09:23:41 pm »
@_player1537: Ahh, that's the site! :)
From that site, I found that program again:

I see a LOT of potential for this Python script... but nothing much yet!
Later (if I have time), I will get started on the basic editor, assuming that there is demand for it. ;)

As for Ubuntu, does 10.04 work flawlessly? I always delay upgrading since there are potential bugs that may have been missed.

The Axe Parser Project / Re: Axe Parser Comments and Questions
« on: May 16, 2010, 08:26:10 pm »
@Quigibo: That's what I was thinking - the SinReg command *might* be able to do it, but it depends. 5000 bytes isn't that bad. I'm aiming for just 1 min of music/sound (for now). As for the program, see my responses below.

@DJ Omnimaga: Yup, I know that already from the docs. ;) As for that program, I'm not trying to rewrite the compiler (although that would be great, but only after Quigibo finishes his work and stabilizes features and API). Basically, I'm only interested in writing the parser, NOT a compiler. Basically, think of it as a word processor. I'm only interested in writing the spell/grammar check, not any AI that can read the essay I write and check for errors. ;) I already have a BASIC editor that I wrote (actually, I found it online, and since it was GPLed, I took it and modified it for myself. All I have to do is just dig it out, and from there add more to it).

@_player1537: Sounds interesting. Did you use alternate between 2 tones really fast? Or is it something else? And as for Linux support... don't worry! I'm a Linux guy as well (Ubuntu 9.10, will upgrade to 10.04 soon or later). The tool referenced in the above reply to DJ is Python based (I think it came from a big TI wiki, but not sure), and I'll base the tool from that. To be specific, wxWidgets (wxPython) will be used for the program as well to support it cross-platform. :D

@meishe91: Already have one (see reply to DJ), but thanks for pointing out another! :)

The Axe Parser Project / Axe Parser Comments and Questions
« on: May 15, 2010, 09:43:34 pm »
This would be the topic on Axe Parser. ;)


1) Brief comments:
This is an amazing application. I never thought that someone could make an efficient, usable, basic to ASM compiler.
Although this really isn't basic, it still allows many features of basic to be used, and more. Of course, I still haven't been able
to compile a useful program, so I have yet to enjoy Axe Parser to its fullest... :P (Not mentioning other programs that has been
released on this forum, in which I do enjoy and am amazed by!)

2) Questions:
-a) Is it possible to create a mini MP3 player with AXE? Now, I'm not saying actual MP3, which require quite a bit of decoding, in which isn't available on the TI-8x series (as in too slow). I'm just saying music files in general that are non-MIDI. I have a great idea in using AXE to play back music, but wanted to make sure it's feasible and that it would work.
-b) Is it possible for Axe to be able to use standard basic syntax, and just compile with that? I'm not saying that I won't bother to edit the program myself, but with the current state of Axe, it's really hard to understand what has gone wrong, and what commands aren't available. There is a potential feature request about this (see, I have been reading the forums! ;) ), but I think it would be a good idea to implement. Possibly a switch to compile in a specific mode may help.

3) More comments...
I really enjoy Axe... when it compiles nicely. However, I was wondering if Axe coding can
be done on a computer, with a syntax checker for Axe.

I could design the program editor if needed, but I would definitely need to know the logic
and how Axe parses the program.

If it was done on a computer, anyone can code faster for Axe, since they would know
which line has the error, and a possible explanation of the error.

And finally, could you (Axe Parser dev Quigibo) open source the application? :) I would like to take a peek at
how it works, and such. I do some ASM coding myself, but hate it, and still stick to
BASIC for regular programming. It would be great if I have an example to refer to.
No pressure though - if you don't want to release the source code, you don't have to.

That's all! :D

Introduce Yourself! / Disp "Hi there!"
« on: May 15, 2010, 08:40:21 pm »
Hi there! I am alberthrocks. I'm pretty good with calc programming (started in 7th grade, and still doing it today! :) )

I've actually been on this forum a LOT, but haven't really made much noise until now, aka this post! ;)

Anyway, it's a bustling place here, which should make it pretty fun. ;)

I'm also interested in AXE Parser. It's a pretty decent basic to ASM compiler. There are definitely some
shortcomings (I still haven't made a useful program that will compile :P ), but I'll save that for another topic/post.

I hope to enjoy my stay at this community!


Pages: 1 ... 53 54 [55]