The Hitchhacker’s Guide to iPhone Lightning and JTAG Hacking (DEF CON 30 Presentation)

Рет қаралды 58,572

Жыл бұрын

At DEF CON 30 I talked about a project I've been working on with a couple of friends for the past few month: The Tamarin Cable! An open-source Kanzi Cable.
Thanks to DEF CON for having me!
Links:
- Tamarin Firmware: github.com/stacksmashing/tama...
- OpenOCD fork with Tamarin support: github.com/stacksmashing/openocd
- Twitter: / ghidraninja
- Patreon: / stacksmashing
Original DEF CON recording: • DEF CON 30 - stacksmas...

Пікірлер: 59

@ZozoleonLego Жыл бұрын

This is such a big thing! And it's quite funny that a 750$ device being out of stock led to creating an alternative costing less than 1%!

@humbughumbughumbug Жыл бұрын

Beautiful! Although I was secretly hoping you'd call it "The Harambe Cable"

@gcm4312 Жыл бұрын

🤣

@alainsabum 11 ай бұрын

RIP Harambe. From Cincinnati Ohio with love

@denoww9261 Жыл бұрын

Wow, I remember when this channel was called Ghidra Ninja and you were making Ghidra tutorials when it was first released. To see you go from there to speaking at Defcon is incredible, huge respect.

@mustafacandan9831 Жыл бұрын

"As soon as I am on a wifi that doesnt scam you" every defcon participant ever.

@kipchickensout 11 ай бұрын

I think he said scare

@philrod1 Жыл бұрын

I love this stuff! Cable not available? Build your own. Protocol not working? Build your own. Analyser not working? Build your own :3

@devnol Жыл бұрын

God dammit that pico will never cease to amaze with how absolutely ridiculously good it is at putting every commercial product at shame, from an oscilloscope to a gamecube modchip to a god damn iphone jtag adapter. Great job Stacksmashing but also great job to all the people at the rpi foundation!

@santiagogf89 Жыл бұрын

The pico is just a standard (slightly overpriced actually) microcontroller. There are a million different chips out there with more functionality than the pico. Teensy board is just an example, much more powerful than Pico or Arduino.

@stacksmashing Жыл бұрын

Overpriced? Name one available microcontroller with similar features and availability :D

@santiagogf89 Жыл бұрын

@@stacksmashing availability is usually a bad sign :). If there is stock of your product during a global shortage, it means that not so many people is using them. The pico is a flashless MCU, which makes it almost impossible to compare with any useful industrial grade MCU in the market, because 99% of the general purpose ones have some amount of flash. So to compare it you would have to add the price of the flash chip as well, or you can compare die size vs price, as you wish. In both cases is not the cheapest MCU, nor the one with most features/price, and the quality assurance process I’m sure is way below the industry standards as well. Just my personal opinion, nothing against lowering the entry barrier to embedded development. I just believe Teensy is a much more compelling product for that price, and STM MCUs are way better for the price you pay. BTW, congratulations on the great videos and talks you do, you manage to explain complex concepts in an easy to understand, graphical way. I know how much time and effort goes into it, thanks a lot for it!

@paulhendrix8599 Жыл бұрын

@@santiagogf89 > it means that not so many people is using them Well, it's pretty new. And (per raspi foundation) rather focused on education/individual makers rather than mass production. > and the quality assurance process I’m sure is way below the industry standards as well Maybe in terms of the failure rate. But the documentation and ecosystem is pretty certainly much better. There are some chips that are also somewhat easy to get into that are potentially cheaper (ESP32, STM32), but then the boards for them that are actually useful for development cost about as much as an RP2040 one. I personally like to use the ESP32(-C3) because of the integrated RF comms and am not very impressed by the RP2040 itself, but I do think it's a great chip for starters and one-offs. The Raspi ecosystem tends to be hard to beat, we see this in the SBC market as well.

@MMrz Жыл бұрын

I'm so happy to see your talk on def con! Thank you very much!

@princesidon Жыл бұрын

Super awesome! That audience was so dead, I can imagine you were nervous.

@johnthomas2970 Жыл бұрын

Great stuff! Your presentation was fantastic. I’m excited to see what comes out of the community from this 😏

@JaseTheAussie Жыл бұрын

Awesome work! And a great presentation, thanks for sharing

@ocsanik502 Жыл бұрын

Amazing talk, I wish I could've been there in-person to see it!

@ewaste9658 Жыл бұрын

WOW! Great work boss

@suncrafterspielt9479 Жыл бұрын

Very nice work.

@testizoizo7373 Жыл бұрын

Nice work 👍

@Jennn Жыл бұрын

Really Inspiring to see~!

@jonhoyles714 Жыл бұрын

Wow such amazing talents proper development ❤🎉

@David-pz4gy 6 ай бұрын

Here is something that might interest you: there is a 3-Pin connector on the back of some iPads only used for keyboards. However, only Apple and Logitech manufacture keyboards that use this connector, leading me to believe that it uses some proprietary protocol for communication. Maybe you can be the first to reverse engineer it and build a rubber-ducky-esque peripheral for the iPad? Anyway, I love your vids, you are part of why I enjoy tinkering around with embedded devices. :)

@brandonpiper5000 Жыл бұрын

What a time to be alive.

@-..--. Жыл бұрын

Amazing!

@FuturiMotionTech Жыл бұрын

Legend

@MultiMegaMaxx Жыл бұрын

Awesome!

@jls1337 Жыл бұрын

bravo!

@sethreign8103 Жыл бұрын

I'm liking this because the title 😆

@kennedn Жыл бұрын

Great talk Thomas! I am curious though, which peripheral did the single swd bit reset?

@RawApeFromAlbion 3 ай бұрын

Super cool

@dabdoube92 Жыл бұрын

We need more of your content. Give it now !

@Lampadina_17 Жыл бұрын

👏👏

@billigerfusel Жыл бұрын

Based

@prinz4q Жыл бұрын

gestern noch über nen neues vid gesprochen und da ist es haha.

@gunseungjin9483 Ай бұрын

Great Project! I have some question about your presentation. Can you share about your environments? (e.g. macOS Version, Architecture, etc...) I tried this process several times but It's not working on my M1 macbook.

@GoodGuyBiker Жыл бұрын

I know what i'm doing this weekend :D

@3eumesmo Жыл бұрын

with that, the possibility to dump the flash memory?

@Jbrimbelibap Жыл бұрын

But the last iphone people were able to jailbreak is the 12 right ?

@lachlanlau Жыл бұрын

Why is the commercial cable SO expensive?

@Dufhuebktdb Жыл бұрын

What sort of basic tools could I buy to get started in this sort of thing? Not necessarily this particular video ... I know how to buy a pico.

@Danni4096 Жыл бұрын

Get a logic analyzer(any kind). That will get you started. Also when you buy a pico/arduino/rpi buy any kind of device that uses spi/iic/1wire to communicate. For example eeprom, accelerometer etc. So you can start learning about communications. And I expect that you have at least high school level knowledge of electronics + bjt and mosfet.

@spielerspiel7473 Жыл бұрын

ich verstehe rein gar nichts von dem was er dort sagt... finde es aber auf der andere seite total interessant :D

@Dax3nt Жыл бұрын

19:43 HE WHAT????

@Nadox15 Жыл бұрын

Forked…

@schwellhaimbassriot2660 Жыл бұрын

was für Lieferengpässe?

@christophsiebert1213 Жыл бұрын

Wer sagt was von Lieferengpässen?

@PhilippStadler Жыл бұрын

Er im Video

@nin1ten1do 6 ай бұрын

hey epl.... CRY ME ARIIIVEEERRR XD

@Scyth3934 Жыл бұрын

@RawApeFromAlbion 3 ай бұрын

Nyan cat 😂😂😂🤣🤣🤣🤣🤣😂😂😂🤣🤣🤣🤣🤣🤣😂😂😂😂🤣🤣🤣🤣

@clayfold1228 Жыл бұрын

Please hack the zune 🙏🙏🙏

@onelastpicandillbegone Жыл бұрын

du hast gerade eine neue tür für jailbreakers geöffnet. respekt

@aziztcf Жыл бұрын

Just.. just disable the comments, everytime there's mention of iPhones the comments are 'can i jailbreak the iphone SE 2022 spring model with this?=???'