Updating readme and adding some necessary binaries to run the exploit

This commit is contained in:
Jonathan Herrewijnen 2024-08-20 16:31:49 +02:00
parent ac9b7630b9
commit 5154096998
9 changed files with 16 additions and 3 deletions

View File

@ -2,6 +2,8 @@
Code to exploit and research the Exynos Bootrom. Code to exploit and research the Exynos Bootrom.
## Setting up ## Setting up
### Python module
Create a venv, and intall ghidra_assistant. Create a venv, and intall ghidra_assistant.
```bash ```bash
python3 -m venv venv python3 -m venv venv
@ -9,6 +11,16 @@ python3 -m venv venv
pip install -r requirements.txts pip install -r requirements.txts
``` ```
To get to work, run `source/exploit/exploit.py` ### Building the debugger
The debugger needs to be built using [gupje](https://git.herreweb.nl/EljakimHerrewijnen/Gupje). Move the contents of `source/gupje_device` to `Gupje/devices/samsung_s7`. Then proceed to build the debugger.
To view documentation, ensure you have sphinx installed. If not, run `sudo apt install python3-sphinx`. Then proceed to build the documentation by running `make livehtml`. ```bash
mv source/gupje_device/* {your-gupje-root}/devices/samsung_s7
cd {your-gupje-root}
make -f devices/samsung_s7/Makefile
```
Then proceed to move the debugger to `dump/debugger.bin`. To get to work, run `source/exploit/exploit.py`. The launch.json's are located in source/exploit, so its recommended to open this folder in your VSCode/favourite IDE.
### Viewing/building documentation
To view documentation, ensure you have sphinx installed. If not, run `sudo apt install python3-sphinx`. Then proceed to build the documentation by running `make livehtml` in `documentation`.

BIN
dump/debugger.bin Executable file

Binary file not shown.

BIN
dump/reloc_debugger.bin Executable file

Binary file not shown.

View File

@ -10,4 +10,5 @@ ghidra_bridge
tqdm tqdm
pyhidra pyhidra
sphinxcontrib.confluencebuilder sphinxcontrib.confluencebuilder
sphinxcontrib.drawio sphinxcontrib.drawio
source/ghidra_assistant/ghidra_assistant-0.0.1-py3-none-any.whl

Binary file not shown.

BIN
source/exploit/stage1/stage1.bin Executable file

Binary file not shown.

BIN
source/exploit/stage1/stage1.elf Executable file

Binary file not shown.

Binary file not shown.