11-09-15 07:41 AM
99 123 ...
tools
  1. kennyb36's Avatar
    I've just read the news, no bb10 on PlayBook.
    Gutted to say the least, but life goes on I suppose.
    Here is my question, is there any way you can unlock your PlayBook to make it better or run another os
    Cheers
    Kenny

    Posted via CB10
    winkyone likes this.
    06-29-13 06:17 AM
  2. howarmat's Avatar
    you will not be able to unlock the bootloader and load another OS. BB would have to do it
    06-29-13 06:48 AM
  3. blueberrymerry's Avatar
    We're trying (at least quackquack147 is trying) to hack it by going in with a JTAG rig and installing a new bootloader. Failing that, I gotta save up for a Nexus 7...
    06-29-13 06:53 AM
  4. Lionellmax's Avatar
    We're trying (at least quackquack147 is trying) to hack it by going in with a JTAG rig and installing a new bootloader. Failing that, I gotta save up for a Nexus 7...
    Please sign this petition.this is to tell black berry to unock bootloader for playbook ....https://www.change.org/en-IN/petitio...-of-our-liking
    Deborah2014 likes this.
    06-29-13 06:56 AM
  5. kennyb36's Avatar
    What is the bootloader? And what can you do with it.
    I was really looking forward to the new os, but another question was, even if the 10 os did come out for PB how would it have worked with bbm and instant messaging if it was wifi on PB, i am using BlackBerry bridge but having it constantly hooked would have played havoc with my battery life.

    Posted via CB10
    06-29-13 11:39 AM
  6. Synerworks's Avatar
    Please sign this petition.this is to tell black berry to unock bootloader for playbook ....https://www.change.org/en-IN/petitio...-of-our-liking
    If Blackberry ever unlocks the Playbook, it would be violating DoD requirements for secured platforms and leave Blackberry with a black eye for military comms equipment in the future. Just imagine all those secured devices used by spooks and all getting a free update to wipe out the Playbook and put whatever you want on it including a clone look-alike that is virtually 100% to the PBOS. Hide all the backdoors in there and leak at will to the neighbors wanting to know how much is really going on. Nope, not even a dumb-a$$ executive would say sure what the hell. If you want it to do what you want, it will need to be broken by anybody other than Blackberry.
    chaosdivine and flyingsolid like this.
    06-29-13 01:16 PM
  7. quackquack147's Avatar
    you will not be able to unlock the bootloader and load another OS. BB would have to do it
    i am not unlocking it. i am wiping it clean. i know how to do it with hardware jigs like jtag (buffered [fast jtagging], unbuffered (slow jtagging) and buspirate and busblaster and logic sniffer and lastly icepick (which i dont have, i dont mind someone donating me an icepick, its the fastest 2 wire jtag) and also 3.3v serial).
    we can crack the rsa 128 bit. but if its more than rsa 192 or 256 then tough luck, bruteforce is not possible with my limited resource, we need 1000's of quad core cpu running 24/7/365 to crack it and dont know for how long.
    which leaves me with no choice but to try and hit the nail hard in the head. its a dirty job and as usual like everytime i love the dirty jobs and always gets my hands dirty.
    howarmat, i hope you understood now.
    yes its possible, with hardware, software its real tough. we are trying to find other methods. and once i got jtag then i first backup, then wipe, then restore and then i will start to attack the foundation aka system calls. so this is not happening in one day or a week. min 3 weeks max 5-6 weeks.
    and i guess not more than than, since once we get the jtag we can shake up the foundation, piece of cake! ;-) got it?
    got more doubts? spit rapid fire your questions.
    hope this helps!
    thanks!
    -paul
    06-29-13 01:56 PM
  8. quackquack147's Avatar
    We're trying (at least quackquack147 is trying) to hack it by going in with a JTAG rig and installing a new bootloader. Failing that, I gotta save up for a Nexus 7...
    99% i wont fail. jtag never failed me.
    but you are right. i have 1% chance of failing miserably.
    i have explained the process in detail.
    hope everyone understands.
    and if i say 100% then i will be over-confident and i will for sure fail 100%. UNACCEPTABLE.
    so i will keep that 1% in mind and will try to work on it. synerworks been helping me with suggestions all this while. and they been extremely helpful. thanks synerworks.
    tomorrow is the D-Day! Red Letter Day!
    hope this helps!
    thanks
    -paul
    Johny 5 and SEAWARRIOR like this.
    06-29-13 02:00 PM
  9. antiRIM's Avatar
    If Blackberry ever unlocks the Playbook, it would be violating DoD requirements for secured platforms and leave Blackberry with a black eye for military comms equipment in the future. Just imagine all those secured devices used by spooks and all getting a free update to wipe out the Playbook and put whatever you want on it including a clone look-alike that is virtually 100% to the PBOS. Hide all the backdoors in there and leak at will to the neighbors wanting to know how much is really going on. Nope, not even a dumb-a$$ executive would say sure what the hell. If you want it to do what you want, it will need to be broken by anybody other than Blackberry.
    Just so you know, I know people that work for the U.S. government, they do NOT use the same software that we get on our devices. I can GUARANTEE you that.
    06-29-13 03:45 PM
  10. OldSkoolVWLover's Avatar
    99% i wont fail. jtag never failed me.
    but you are right. i have 1% chance of failing miserably.
    i have explained the process in detail.
    hope everyone understands.
    and if i say 100% then i will be over-confident and i will for sure fail 100%. UNACCEPTABLE.
    so i will keep that 1% in mind and will try to work on it. synerworks been helping me with suggestions all this while. and they been extremely helpful. thanks synerworks.
    tomorrow is the D-Day! Red Letter Day!
    hope this helps!
    thanks
    -paul
    You WILL FAIL!!!!

    Okay only said that in hopes you succeed, if you crack it I know some folks that might be interested in loading webOS on it, sure you could load a CM build as well. What's your end game though? If you can crack the bootloader, you have to have a plan for what OS to load, right? As a geek, I am super interested on seeing how this progresses.
    06-29-13 03:57 PM
  11. quackquack147's Avatar
    You WILL FAIL!!!!

    Okay only said that in hopes you succeed, if you crack it I know some folks that might be interested in loading webOS on it, sure you could load a CM build as well. What's your end game though? If you can crack the bootloader, you have to have a plan for what OS to load, right? As a geek, I am super interested on seeing how this progresses.

    thanks for the lines

    You WILL FAIL!!!! -> the catalyst, this always helped me succeed. to thanks for the kick... ;-)

    i am not cracking it tomorrow. tomorrow, already tomorrow, i mean in 6 hours from now, full hardware hacking. find hardware weakness. then take a jtag backup. then wipe the device. then jtag restore.

    if this works? i can then hit the foundation. syscalls, which is for the non jtag users. so that its easy for them as well.
    i am not exactly cracking the loader. nickstarmaster told me the bootloader is 128 bit.
    if its so bruteforce the key. else? find fault aka system calls and attack. there is facl and acl and pf (openbsd firewall) so? things are like protected even against 0 day. so rooting alone wont help take over the bootrom.

    end game? corrupt /dev/mem and /dev/fmem ;-) not easy. not easy at all. this is what i will be spending all my time. jtag should be easy keepin in mind i know how to jtag but others dont will be my assumption.
    now coming to OS? once its locked or wiped or over written? install a new FOSS bootloader.

    there is qcfp in the system i assume. i havent seen the full functionality of the entire device as a devuser login. so my target is to corrupt /dev/mem and /dev/fmem steal the keys from me using aes-keyfind and document the entire process.
    did you get what i said.

    this is a long and complicated plan. i hope i succeed tomorrow. and oh yeah forgot one more thing. use the TI's NDA debugger and try to find the software based weakness. already planning to use the register mapper where i will get the detailed register information and mapping. and then use the TI debugger and disable the HS register and turn it into GP mode.

    i may make changes and modify my plan or path or code but i am going in for sure. :-D thats about it. tough work. but somone gotta do the dirty job. thats why i thought i can do it in 3 weeks. but then i may take more than 3 weeks for a non-jtag mode.

    so once blueberrymerry said "this is the heights, mount everest" i would say i am not interested in Mt everest, i am game for Mt K2 the most toughest mountain to conquer. someone else can take Everest, i am going after K2. ;-) i hope its all clear now this is the game plan. and this mode of attack is called data drain. i already told in the forum whats data drain. 100% fatality and slow and painful work. ;-)

    hope this helps!

    thanks
    -paul
    kennyb36, antiRIM and Eskibo like this.
    06-29-13 05:04 PM
  12. Bakamushi's Avatar
    Congrats to the OP for the title of his thread.

    Calling a thread "Playbook" on the Playbook forum............
    OldSkoolVWLover and Djlatino like this.
    06-29-13 05:11 PM
  13. kennyb36's Avatar
    Hehe couldn't think of what to put after PlayBook

    Posted via CB10
    OldSkoolVWLover likes this.
    06-29-13 05:39 PM
  14. OldSkoolVWLover's Avatar
    Congrats to the OP for the title of his thread.

    Calling a thread "Playbook" on the Playbook forum............
    Hehe couldn't think of what to put after PlayBook

    Posted via CB10
    Updated thread title, hope quackquack is okay with me including "project" in the title as it is him doing the heavy lifting. quackquack, feel free to PM me if you want me to remove the tag, and if you get more going on this feel free to create a separate thread, let me know and I will link to your thread and close this thread if needed.

    Good luck with your hacking away, you are much more bold than me... I let guys like you do the work then use your automated solutions. (wait that's what people do to me at work...)
    06-29-13 05:45 PM
  15. kennyb36's Avatar
    Did you ask my permission to change that? Hehe lol ^my title has been hacked!! .........run away

    Posted via CB10
    OldSkoolVWLover likes this.
    06-29-13 06:28 PM
  16. ma678's Avatar
    Give up. If there were more devs developing for PB in the beginning, it wouldn't be dying now.

    Not too many devs are interested in pb or bb.
    06-29-13 06:52 PM
  17. quackquack147's Avatar
    Give up. If there were more devs developing for PB in the beginning, it wouldn't be dying now.

    Not too many devs are interested in pb or bb.
    no i am! i am still on! and i am not giving up!
    work has started. we are probing with multimeter and we are waiting for the tone....... "beep beep"

    thanks!
    -paul
    chaosdivine and hienpb like this.
    06-30-13 02:10 AM
  18. quackquack147's Avatar
    Updated thread title, hope quackquack is okay with me including "project" in the title as it is him doing the heavy lifting. quackquack, feel free to PM me if you want me to remove the tag, and if you get more going on this feel free to create a separate thread, let me know and I will link to your thread and close this thread if needed.

    Good luck with your hacking away, you are much more bold than me... I let guys like you do the work then use your automated solutions. (wait that's what people do to me at work...)
    no issues with thread. its not the title but the content which matters. and lastly? pm? man my private message box will over flow already some 120 message out of 250 alloted. try the irc. i have mentioned in detail about irc. i will be in irc tomorrow. not today. others are also there. irc is live. and i am logging all conversation when i am online. when i am not? not sure. i need to keep a bot, a nice little bawttyyyy :-D robawtty (robot) which will manage the channel. dr_akula's client is a mess it locks the channel and it kicks and bans users. i need to take care of his script.
    see ya on monday.
    and you dont need to ask to ask, just ask. i will pm you tomorrow. thanks. and bye!
    thanks
    -paul
    OldSkoolVWLover likes this.
    06-30-13 02:14 AM
  19. Eskibo's Avatar
    Man Quackquack, have I been waiting for a guy like you to come by. I always figured someone must be able to crack the bloody PB padlock - seems like the time has come. Good luck with your so called red letter day

    Posted via CB10
    06-30-13 02:58 AM
  20. quackquack147's Avatar
    Man Quackquack, have I been waiting for a guy like you to come by. I always figured someone must be able to crack the bloody PB padlock - seems like the time has come. Good luck with your so called red letter day

    Posted via CB10
    Flash news update :
    JTAG PINS LOCATED : Now time to REALLY confirm IF they are real pins or we need to spend more time.
    please dont jump right now and create a ruckus. thank you.
    thanks
    -paul
    06-30-13 08:04 AM
  21. bambinoitaliano's Avatar
    Flash news update :
    JTAG PINS LOCATED : Now time to REALLY confirm IF they are real pins or we need to spend more time.
    please dont jump right now and create a ruckus. thank you.
    thanks
    -paul
    Hurry up! Before this site is force to put up a poster on your discovery.
    PlayBook - Unlocking Bootloader Possible [Project]-imgres-3.jpeg
    06-30-13 08:07 AM
  22. quackquack147's Avatar
    Hurry up! Before this site is force to put up a poster on your discovery.
    Click image for larger version. 

Name:	imgres-3.jpeg 
Views:	1117 
Size:	8.7 KB 
ID:	177516
    i got news.

    good news. bad news and mixed news.

    bad news first: out of 7 pins? we are missing 3 pins and their voltage and current.
    good news second : out of 7 pins, one is obviously ground, and we found
    #1. jtag_tdi = check
    #2. jtag_tdo = check
    #3. jtag_tms_tmsc = check
    #4. ground = check (obviously)

    thirdly, mixed news: board is partially detected ;-)

    next work on wednesday most probably. and we will have the rest of the pins. ;-)

    posting in detail in rooting forum.

    and bambinoitaliano, i dont care if they have a poster or they ran out of posters ;-) and lastly? i am doing this for GSOC14. :-D i hope you know what is it. if you dont here it is. Google Summer of Code 2014. i missed it this year, next year i wouldn't :-D

    more info in detail in rooting forum.....

    hope this helps!

    thanks!
    -paul
    06-30-13 10:43 AM
  23. jbl0ggs's Avatar
    This is most interesting going for the Playbook. I wish you all the best and success in your endeavours. In the mean time I'll check craigslist/ebay to see if they are selling the patents or may be I can trade my Nook for their patents.
    06-30-13 05:10 PM
  24. Thie rry's Avatar
    Hello every one, just a french guy withe a poor english.
    So, is my first message, please perdon me.

    I have an idea, I don't know if it was explored or suggested but I go ; sombody try to dump all the system to make a kind of iso file to play with on a vm ?
    After that do a job with this vm and a sowftware like ida or somthing like that, perhaps you will take some precious informations.
    I am not a developer ; but I have some ideas that digg in my head

    All off us do a great job in this forum, so don't keep the creative fiber !

    Posted via CB10
    06-30-13 06:41 PM
  25. eblade's Avatar
    If you, or anyone else, figures out how to wipe it clean, so we can load something, anything else, certainly drop me a line. I can sneak time to do stuff, but this kind of stuff is really beyond my current knowledge, so it'd be a waste of time for me to spend trying to help that side of it. :-s
    07-01-13 01:54 AM
99 123 ...

Similar Threads

  1. BlackBerry PlayBook in Movies
    By mphillips828 in forum BlackBerry PlayBook
    Replies: 8
    Last Post: 06-30-13, 03:07 PM
  2. Playbook apps and devs.
    By Blackman91 in forum PlayBook Apps & Games
    Replies: 6
    Last Post: 06-30-13, 06:10 AM
  3. Uk win a playbook comp ....
    By rb99 in forum BlackBerry PlayBook
    Replies: 1
    Last Post: 06-29-13, 05:53 PM
  4. Love my Playbook
    By der_mit in forum BlackBerry PlayBook
    Replies: 1
    Last Post: 06-29-13, 05:37 PM
  5. VIDEO - some of the features of BB Bridge Q10 & PlayBook
    By Harry_III_UK in forum BlackBerry Q10
    Replies: 2
    Last Post: 06-29-13, 05:10 PM
LINK TO POST COPIED TO CLIPBOARD