seccfg unlock command not available…… #1112

ghost · 2024-07-18T23:11:18Z

sp Flash tool v5 allows reading and writing…
Unfortunately mtkclient didn't work...
command log and
I will paste the sp Flash tool USB log in a zip file.
I hope it gets resolved someday.……
Sorry for my unfamiliar English sentences.

I ran mtk brute to the end, but
Could not dump

device
name For_your_enhancement_01
OS android10

my PC
win10
python 3.9.19

data.zip

ghost · 2024-07-18T23:15:19Z

After executing the command, the process stops and stops working.
PLTools - Successfully sent payload: C:\mtkclient-main\mtkclient\payloads\mt8168_payload.bin
↑At this time, I unplugged the USB.

mtkclient 2.0.1 log

C:\mtkclient-main>mtk da seccfg unlock

Preloader
Preloader - [LIB]: �[31mStatus: Handshake failed, retrying...�[0m
Port - Device detected :)
Preloader -     CPU:                    MT8168/MT6357()
Preloader -     HW version:             0x0
Preloader -     WDT:                    0x10007000
Preloader -     Uart:                   0x11002000
Preloader -     Brom payload addr:      0x100a00
Preloader -     DA payload addr:        0x201000
Preloader -     Var1:                   0xa
Preloader - Disabling Watchdog...
Preloader - HW code:                    0x8168
Preloader - Target config:              0xe0
Preloader -     SBC enabled:            False
Preloader -     SLA enabled:            False
Preloader -     DAA enabled:            False
Preloader -     SWJTAG enabled:         False
Preloader -     EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT:  False
Preloader -     Root cert required:     False
Preloader -     Mem read auth:          True
Preloader -     Mem write auth:         True
Preloader -     Cmd 0xC8 blocked:       True
Preloader - Get Target info
Preloader - BROM mode detected.
Preloader -     HW subcode:             0x8a00
Preloader -     HW Ver:                 0xca01
Preloader -     SW Ver:                 0x100
Preloader - ME_ID:                      82895C574811C3E2B3E27A1E609D1029
Preloader - SOC_ID:                     0000000000000000000000000000000000000000000000000000000000000000
DaHandler - Device is unprotected.
DaHandler - Device is in BROM-Mode. Bypassing security.
PLTools - Loading payload from mt8168_payload.bin, 0x258 bytes
Exploitation - Kamakiri Run
Exploitation
Exploitation - [LIB]: �[31mError on sending payload.�[0m
PLTools - Successfully sent payload: C:\mtkclient-main\mtkclient\payloads\mt8168_payload.bin
DaHandler
DaHandler - [LIB]: �[33mDevice is in BROM mode. No preloader given, trying to dump preloader from ram.�[0m
DeviceClass - USBError(19, 'No such device (it may have been disconnected)')
DaHandler
DaHandler - [LIB]: �[31mFailed to dump preloader from ram, provide a valid one via --preloader option�[0m
DAXFlash - Uploading xflash stage 1 from MTK_DA_V5.bin
XFlashExt - Patching da1 ...
Mtk - Patched "Patched loader msg" in preloader
Mtk - Patched "hash_check" in preloader
Mtk - Patched "Patched loader msg" in preloader
Mtk - Patched "get_vfy_policy" in preloader
XFlashExt - Patching da2 ...
XFlashExt - Security check patched
XFlashExt - SBC patched to be disabled
XFlashExt - Register read/write not allowed patched
DeviceClass - USBError(5, 'Input/Output Error')
Preloader
Preloader - [LIB]: �[31mError on DA_Send cmd�[0m
DAXFlash
DAXFlash - [LIB]: �[31mError on sending DA.�[0m

ghost · 2024-07-19T04:15:21Z

mtkclient 2.0.1 mtk dumpbrom log

C:\mtkclient-main>mtk dumpbrom --debugmode
Port - Device detected :)
DeviceClass
DeviceClass - [LIB]: �[95mTX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:81680000�[0m
Preloader -     CPU:                    MT8168/MT6357()
Preloader -     HW version:             0x0
Preloader -     WDT:                    0x10007000
Preloader -     Uart:                   0x11002000
Preloader -     Brom payload addr:      0x100a00
Preloader -     DA payload addr:        0x201000
Preloader -     Var1:                   0xa
Preloader - Disabling Watchdog...
DeviceClass
DeviceClass - [LIB]: �[95mTX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
Preloader - HW code:                    0x8168
DeviceClass
DeviceClass - [LIB]: �[95mTX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrbyte:0x6�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000000e00000�[0m
Preloader - Target config:              0xe0
Preloader -     SBC enabled:            False
Preloader -     SLA enabled:            False
Preloader -     DAA enabled:            False
Preloader -     SWJTAG enabled:         False
Preloader -     EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT:  False
Preloader -     Root cert required:     False
Preloader -     Mem read auth:          True
Preloader -     Mem write auth:         True
Preloader -     Cmd 0xC8 blocked:       True
Preloader - Get Target info
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_blver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
Preloader - BROM mode detected.
DeviceClass
DeviceClass - [LIB]: �[95mTX:ff�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_bromver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:05�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:8a00ca0101000000�[0m
Preloader -     HW subcode:             0x8a00
Preloader -     HW Ver:                 0xca01
Preloader -     SW Ver:                 0x100
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000010�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x10�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:82895c574811c3e2b3e27a1e609d1029�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - ME_ID:                      82895C574811C3E2B3E27A1E609D1029
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000020�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x20�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000000000000000000000000000000000000000000000000000000000000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - SOC_ID:                     0000000000000000000000000000000000000000000000000000000000000000
PLTools - Kamakiri / DA Run
PLTools - Loading payload from generic_dump_payload.bin, 0xf4 bytes
Exploitation - Kamakiri Run
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:78301000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000000f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000000f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:1d1a�[0m
Exploitation
Exploitation - [LIB]: �[31mError on sending payload.�[0m
PLTools - Successfully sent payload: C:\mtkclient-main\mtkclient\payloads\generic_dump_payload.bin
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Exploitation
Exploitation - [LIB]: �[31mError on opening brom_MT8168_MT6357_8168.bin for writing: unsupported operand type(s) for -: 'NoneType' and 'int'�[0m

ghost · 2024-07-19T20:05:04Z

When using sp flash tool v5
Every movement is perfect.…

I hope you get mtkclient working^_^

ghost · 2024-07-21T06:47:41Z

https://mega.nz/file/Fm02VQBY#EvNWrbyTk2Mmu9KIEUncrEXiewsHygyr0V80Ihrn8tI

of this device
mmcblk0 dump file

bkerler · 2024-07-22T18:43:03Z

you can run dumpbrom now using this commit: 586d86e

ghost · 2024-07-22T23:35:57Z

you can run dumpbrom now using this commit: 586d86e

thank you
I tried mtk dumpbrom.
I'll paste the results

C:\mtkclient-main>mtk dumpbrom --debugmode
MTK Flash/Exploit Client Public V2.0.1 (c) B.Kerler 2018-2024

Main
Main - [LIB]: �[95mC:\mtkclient-main\mtk.py dumpbrom --debugmode�[0m
Preloader - Status: Waiting for PreLoader VCOM, please reconnect mobile to brom mode
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
Port
Port - [LIB]: �[95m[Errno 5] Input/Output Error�[0m
Preloader
Preloader - [LIB]: �[31mStatus: Handshake failed, retrying...�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
Port - Device detected :)
DeviceClass
DeviceClass - [LIB]: �[95mTX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:81680000�[0m
Preloader -     CPU:                    MT8168/MT6357()
Preloader -     HW version:             0x0
Preloader -     WDT:                    0x10007000
Preloader -     Uart:                   0x11002000
Preloader -     Brom payload addr:      0x100a00
Preloader -     DA payload addr:        0x201000
Preloader -     Var1:                   0xa
Preloader - Disabling Watchdog...
DeviceClass
DeviceClass - [LIB]: �[95mTX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
Preloader - HW code:                    0x8168
DeviceClass
DeviceClass - [LIB]: �[95mTX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrbyte:0x6�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000000e00000�[0m
Preloader - Target config:              0xe0
Preloader -     SBC enabled:            False
Preloader -     SLA enabled:            False
Preloader -     DAA enabled:            False
Preloader -     SWJTAG enabled:         False
Preloader -     EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT:  False
Preloader -     Root cert required:     False
Preloader -     Mem read auth:          True
Preloader -     Mem write auth:         True
Preloader -     Cmd 0xC8 blocked:       True
Preloader - Get Target info
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_blver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
Preloader - BROM mode detected.
DeviceClass
DeviceClass - [LIB]: �[95mTX:ff�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_bromver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:05�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:8a00ca0101000000�[0m
Preloader -     HW subcode:             0x8a00
Preloader -     HW Ver:                 0xca01
Preloader -     SW Ver:                 0x100
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000010�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x10�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:82895c574811c3e2b3e27a1e609d1029�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - ME_ID:                      82895C574811C3E2B3E27A1E609D1029
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000020�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x20�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000000000000000000000000000000000000000000000000000000000000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - SOC_ID:                     0000000000000000000000000000000000000000000000000000000000000000
PLTools - Kamakiri / DA Run
PLTools - Loading payload from generic_dump_payload.bin, 0xf4 bytes
Exploitation - Kamakiri Run
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:78301000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000000f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000000f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:1d1a�[0m
Exploitation
Exploitation - [LIB]: �[31mError on sending payload.�[0m
PLTools - Successfully sent payload: C:\mtkclient-main\mtkclient\payloads\generic_dump_payload.bin
Progress: |--------------------------------------------------| 0.0% CompleteDeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTimed out�[0m
Exploitation
Exploitation - [LIB]: �[31mError on opening brom_MT8168_MT6357_8168.bin for writing: integer division or modulo by zero�[0m

ghost · 2024-07-23T01:30:07Z

mtk stage --ptype=kamakiri2 --debugmode log
It doesn't seem to be going well(・_・;)

MTK Flash/Exploit Client Public V2.0.1 (c) B.Kerler 2018-2024

Main
Main - [LIB]: �[95mC:\mtkclient-main\mtk.py stage --ptype=kamakiri2 --debugmode�[0m
Preloader - Status: Waiting for PreLoader VCOM, please reconnect mobile to brom mode
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m

Port - Hint:

Power off the phone before connecting.
For brom mode, press and hold vol up, vol dwn, or all hw buttons and connect usb.
For preloader mode, don't press any hw button and connect usb.
If it is already connected and on, hold power for 10 seconds to reset.


DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 500 mA ==================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x3 USB CDC ACM for preloader
   bmAttributes         :   0xc0 Self Powered
   bMaxPower            :   0xfa (500 mA)
    INTERFACE 0: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x4 CDC ACM Data Interface
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
    INTERFACE 1: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x5 CDC ACM Comm Interface
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :   0x10�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 500 mA ==================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x3 USB CDC ACM for preloader
   bmAttributes         :   0xc0 Self Powered
   bMaxPower            :   0xfa (500 mA)
    INTERFACE 0: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x4 CDC ACM Data Interface
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
    INTERFACE 1: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x5 CDC ACM Comm Interface
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :   0x10�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
Port
Port - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
.Preloader
Preloader - [LIB]: �[31mStatus: Handshake failed, retrying...�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m

Port - Hint:

Power off the phone before connecting.
For brom mode, press and hold vol up, vol dwn, or all hw buttons and connect usb.
For preloader mode, don't press any hw button and connect usb.
If it is already connected and on, hold power for 10 seconds to reset.


DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m

Port - Hint:

Power off the phone before connecting.
For brom mode, press and hold vol up, vol dwn, or all hw buttons and connect usb.
For preloader mode, don't press any hw button and connect usb.
If it is already connected and on, hold power for 10 seconds to reset.


DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95mCouldn't detect the device. Is it connected ?�[0m
.DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0 
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
DeviceClass
DeviceClass - [LIB]: �[95m  CONFIGURATION 1: 0 mA ====================================
   bLength              :    0x9 (9 bytes)
   bDescriptorType      :    0x2 Configuration
   wTotalLength         :   0x43 (67 bytes)
   bNumInterfaces       :    0x2
   bConfigurationValue  :    0x1
   iConfiguration       :    0x0 
   bmAttributes         :   0x80 Bus Powered
   bMaxPower            :    0x0 (0 mA)
    INTERFACE 0: CDC Communication =========================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x0
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x1
     bInterfaceClass    :    0x2 CDC Communication
     bInterfaceSubClass :    0x2
     bInterfaceProtocol :    0x1
     iInterface         :    0x1 comm_if̦data_if̄Љ鼰
      ENDPOINT 0x83: Interrupt IN ==========================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x83 IN
       bmAttributes     :    0x3 Interrupt
       wMaxPacketSize   :   0x40 (64 bytes)
       bInterval        :    0x1
    INTERFACE 1: CDC Data ==================================
     bLength            :    0x9 (9 bytes)
     bDescriptorType    :    0x4 Interface
     bInterfaceNumber   :    0x1
     bAlternateSetting  :    0x0
     bNumEndpoints      :    0x2
     bInterfaceClass    :    0xa CDC Data
     bInterfaceSubClass :    0x0
     bInterfaceProtocol :    0x0
     iInterface         :    0x2 data_if̄Љ鼰�顮☆핶ⴢ䵜胋铓
      ENDPOINT 0x81: Bulk IN ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :   0x81 IN
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0
      ENDPOINT 0x1: Bulk OUT ===============================
       bLength          :    0x7 (7 bytes)
       bDescriptorType  :    0x5 Endpoint
       bEndpointAddress :    0x1 OUT
       bmAttributes     :    0x2 Bulk
       wMaxPacketSize   :  0x200 (512 bytes)
       bInterval        :    0x0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mNo kernel driver supported: Operation not supported or unimplemented on this platform�[0m
Port - Device detected :)
DeviceClass
DeviceClass - [LIB]: �[95mTX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fd�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:81680000�[0m
Preloader - 	CPU:			MT8168/MT6357()
Preloader - 	HW version:		0x0
Preloader - 	WDT:			0x10007000
Preloader - 	Uart:			0x11002000
Preloader - 	Brom payload addr:	0x100a00
Preloader - 	DA payload addr:	0x201000
Preloader - 	Var1:			0xa
Preloader - Disabling Watchdog...
DeviceClass
DeviceClass - [LIB]: �[95mTX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:22000064�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0001�[0m
Preloader - HW code:			0x8168
DeviceClass
DeviceClass - [LIB]: �[95mTX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrbyte:0x6�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000000e00000�[0m
Preloader - Target config:		0xe0
Preloader - 	SBC enabled:		False
Preloader - 	SLA enabled:		False
Preloader - 	DAA enabled:		False
Preloader - 	SWJTAG enabled:		False
Preloader - 	EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT:	False
Preloader - 	Root cert required:	False
Preloader - 	Mem read auth:		True
Preloader - 	Mem write auth:		True
Preloader - 	Cmd 0xC8 blocked:	True
Preloader - Get Target info
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_blver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
Preloader - BROM mode detected.
DeviceClass
DeviceClass - [LIB]: �[95mTX:ff�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_bromver:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:05�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fc�[0m
DeviceClass
DeviceClass - [LIB]: �[95mmtk_cmd:0x8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:8a00ca0101000000�[0m
Preloader - 	HW subcode:		0x8a00
Preloader - 	HW Ver:			0xca01
Preloader - 	SW Ver:			0x100
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000010�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x10�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:82895c574811c3e2b3e27a1e609d1029�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_meid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - ME_ID:			82895C574811C3E2B3E27A1E609D1029
DeviceClass
DeviceClass - [LIB]: �[95mTX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:fe�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:e7�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000020�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x20�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000000000000000000000000000000000000000000000000000000000000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mget_socid:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
Preloader - SOC_ID:			0000000000000000000000000000000000000000000000000000000000000000
Main - Uploading stage 1
PLTools - Loading payload from generic_stage1_payload.bin, 0x3e8 bytes
Exploitation - Kamakiri Run
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000137f4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000004�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:78301000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:d1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:10007050�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrword:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mrdword:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mread:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:0000�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x1�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:da�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:00000001�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:001009c0�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:000003e8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mecho:0x4�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:000003e8�[0m
DeviceClass
DeviceClass - [LIB]: �[95mbrom_register_access:0x2�[0m
DeviceClass
DeviceClass - [LIB]: �[95mRX:1d1a�[0m
Exploitation
Exploitation - [LIB]: �[31mError on sending payload.�[0m
PLTools - Successfully sent payload: C:\mtkclient-main\mtkclient\payloads\generic_stage1_payload.bin
Main - Successfully uploaded stage 1, sending stage 2
DeviceClass
DeviceClass - [LIB]: �[95mTX:f00dd00d�[0m
DeviceClass
DeviceClass - [LIB]: �[95mTX:00004000�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 10060] Operation timed out�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 5] Input/Output Error�[0m
DeviceClass
DeviceClass - [LIB]: �[95m[Errno 5] Input/Output Error�[0m

ghost · 2024-07-23T07:03:45Z

For_your_enhancement_01_log.zip

This is the log when running mtk plstage.
I'll paste it

--rather than kamakari2
The reasons for specifying --kamakari are as follows.
-- This is because the process stops when using kamakari2.
So I'm specifying --kamakari instead

bkerler · 2024-07-25T08:08:53Z

if sp flash tool is working, then use --stock option. Obviously the preloader doesn't report the efuses correctly as the device seems to be protected, although it says it is not (we've seen such things on amazon devices)

ghost · 2024-07-25T08:53:30Z

if sp flash tool is working, then use --stock option. Obviously the preloader doesn't report the efuses correctly as the device seems to be protected, although it says it is not (we've seen such things on amazon devices)

python mtk.py r boot boot.img --stock --loader=MTK_AllInOne_DA.bin --preloader=preloader.img
Is this command correct?

--stock option
It was successfully used!
thank you

archive.zip

ghost · 2024-07-27T18:09:05Z

if sp flash tool is working, then use --stock option. Obviously the preloader doesn't report the efuses correctly as the device seems to be protected, although it says it is not (we've seen such things on amazon devices)

(mt8168_BROM)For_your_enhancement_01.zip

thank you!
Thanks to you, I was able to dump BROM!
thank you very much! !

I hope that mtk plstage will be able to work with this device.

bkerler · 2024-08-24T13:06:46Z

Can you please try the latest commit with kamakiri2 ? I think the issue might be due to kamakiri.

ghost · 2024-08-25T10:04:30Z

Can you please try the latest commit with kamakiri2 ? I think the issue might be due to kamakiri.

It's okay to close this issue.
Last week my device broke down
I'm giving up on this device
Thank you very much.

ghost · 2024-08-25T10:10:16Z

mtk plstage --ptype =kamakiri2 --preloader=preloader.img
MTK Flash/Exploit Client Public V2.0.1 (c) B.Kerler 2018-2024

ArgHandler - O:Var1: 0x0
Preloader - Status: Waiting for PreLoader VCOM, please reconnect mobile to brom mode

Port - Hint:

Power off the phone before connecting.
For brom mode, press and hold vol up, vol dwn, or all hw buttons and connect usb.
For preloader mode, don't press any hw button and connect usb.
If it is already connected and on, hold power for 10 seconds to reset.

..Port - Device detected :)
Preloader - CPU: MT8168/MT6357()
Preloader - HW version: 0x0
Preloader - WDT: 0x10007000
Preloader - Uart: 0x11002000
Preloader - Brom payload addr: 0x100a00
Preloader - DA payload addr: 0x201000
Preloader - Var1: 0xa
Preloader - Disabling Watchdog...
Preloader - HW code: 0x8168
Preloader - Target config: 0xe0
Preloader - SBC enabled: False
Preloader - SLA enabled: False
Preloader - DAA enabled: False
Preloader - SWJTAG enabled: False
Preloader - EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT: False
Preloader - Root cert required: False
Preloader - Mem read auth: True
Preloader - Mem write auth: True
Preloader - Cmd 0xC8 blocked: True
Preloader - Get Target info
Preloader - BROM mode detected.
Preloader - HW subcode: 0x8a00
Preloader - HW Ver: 0xca01
Preloader - SW Ver: 0x100
Preloader - ME_ID: 82895C574811C3E2B3E27A1E609D1029
Preloader - SOC_ID: 0000000000000000000000000000000000000000000000000000000000000000
Main - Connected to device, loading
Main - Using custom preloader : preloader.img
Mtk
Mtk - [LIB]: �[33mPreloader detected as shellcode, might fail to run.�[0m
Mtk - Patched "mt6739 c30" in preloader
Mtk - Patched "ram blacklist" in preloader
Mtk - Patched "seclib_sec_usbdl_enabled" in preloader
Mtk - Patched "Patched loader msg" in preloader
Mtk - Patched "sec_img_auth" in preloader
Mtk - Patched "get_vfy_policy" in preloader
Preloader
Preloader - [LIB]: �[31mDA_Send status error:DA_INVALID_ADDR_AND_LEN (0x1d12)�[0m
Preloader
Preloader - [LIB]: �[31mError on DA_Send cmd�[0m
Main
Main - [LIB]: �[31mError on sending pl�[0m

I'll post the results from when I tried it last week.

bkerler · 2024-08-25T10:44:40Z

the preloader has to be the preloader file, not the preloader partition, that's why it failed. There is also no need to use the ptype parameter.

ghost · 2024-08-25T11:56:20Z

C:\mtkclient-main>mtk dumpsram
MTK Flash/Exploit Client Public V2.0.1 (c) B.Kerler 2018-2024

Port - Device detected :)
Preloader - CPU: MT8168/MT6357()
Preloader - HW version: 0x0
Preloader - WDT: 0x10007000
Preloader - Uart: 0x11002000
Preloader - Brom payload addr: 0x100a00
Preloader - DA payload addr: 0x201000
Preloader - Var1: 0xa
Preloader - Disabling Watchdog...
Preloader - HW code: 0x8168
Preloader - Target config: 0xe0
Preloader - SBC enabled: False
Preloader - SLA enabled: False
Preloader - DAA enabled: False
Preloader - SWJTAG enabled: False
Preloader - EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT: False
Preloader - Root cert required: False
Preloader - Mem read auth: True
Preloader - Mem write auth: True
Preloader - Cmd 0xC8 blocked: True
Preloader - Get Target info
Preloader - BROM mode detected.
Preloader - HW subcode: 0x8a00
Preloader - HW Ver: 0xca01
Preloader - SW Ver: 0x100
Preloader - ME_ID: 82895C574811C3E2B3E27A1E609D1029
Preloader - SOC_ID: 0000000000000000000000000000000000000000000000000000000000000000
PLTools - Kamakiri / DA Run
PLTools - Loading payload from generic_sram_payload.bin, 0x120 bytes
Exploitation - Kamakiri Run
Exploitation
Exploitation - [LIB]: �[31mError on sending payload.�[0m
PLTools
PLTools - [LIB]: �[31mError on sending payload: C:\mtkclient-main\mtkclient\payloads\generic_sram_payload.bin�[0m
Traceback (most recent call last):
File "C:\mtkclient-main\mtk.py", line 1016, in
main()
File "C:\mtkclient-main\mtk.py", line 1012, in main
mtk = Main(args).run(parser)
File "C:\mtkclient-main\mtkclient\Library\mtk_main.py", line 471, in run
plt.run_dump_brom(filename, self.args.ptype, loader="generic_sram_payload.bin")
File "C:\mtkclient-main\mtkclient\Library\pltools.py", line 140, in run_dump_brom
if self.runpayload(filename=pfilename, ack=0xC1C2C3C4, offset=0):
File "C:\mtkclient-main\mtkclient\Library\pltools.py", line 104, in runpayload
self.error(f"Error, payload answered instead: {hexlify(ack).decode('utf-8')}")
TypeError: a bytes-like object is required, not 'int'

I tried it last week
dump sram log.
Somewhere inside the hdd...

mtk da memdump --stock --preloader=preloader.bin
There must have been data saved with the dump command, so
I'll look for it and post it if I find it.

ghost · 2024-08-25T12:42:17Z

https://mega.nz/file/K3JREICa#K4F4NpLOAHJ5tcrkwF-omZkgDDMsCrw98a5Yci5UFH8

mt8168(memdump)

ghost · 2024-08-25T12:57:45Z

the preloader has to be the preloader file, not the preloader partition, that's why it failed. There is also no need to use the ptype parameter.

log5.txt

With latest mtkClient
mtk da seccfg unlock --stock --loader=MTK_ALLinOne_DA.bin --preloader=preloader.img
This is the log when executing
I'll paste it

ghost · 2024-08-25T13:45:34Z

the preloader has to be the preloader file, not the preloader partition, that's why it failed. There is also no need to use the ptype parameter.

The plstage command runs fine but
The device will reboot to the charging screen.

The mtk stage command also didn't work...

C:\mtkclient-main>mtk plstage --preloader=dump_sram.bin
MTK Flash/Exploit Client Public V2.0.1 (c) B.Kerler 2018-2024
........Port - Device detected :)
Preloader -     CPU:                    MT8168/MT6357()
Preloader -     HW version:             0x0
Preloader -     WDT:                    0x10007000
Preloader -     Uart:                   0x11002000
Preloader -     Brom payload addr:      0x100a00
Preloader -     DA payload addr:        0x201000
Preloader -     Var1:                   0xa
Preloader - Disabling Watchdog...
Preloader - HW code:                    0x8168
Preloader - Target config:              0xe0
Preloader -     SBC enabled:            False
Preloader -     SLA enabled:            False
Preloader -     DAA enabled:            False
Preloader -     SWJTAG enabled:         False
Preloader -     EPP_PARAM at 0x600 after EMMC_BOOT/SDMMC_BOOT:  False
Preloader -     Root cert required:     False
Preloader -     Mem read auth:          True
Preloader -     Mem write auth:         True
Preloader -     Cmd 0xC8 blocked:       True
Preloader - Get Target info
Preloader - BROM mode detected.
Preloader -     HW subcode:             0x8a00
Preloader -     HW Ver:                 0xca01
Preloader -     SW Ver:                 0x100
Preloader - ME_ID:                      82895C574811C3E2B3E27A1E609D1029
Preloader - SOC_ID:                     0000000000000000000000000000000000000000000000000000000000000000
Main - Connected to device, loading
Main - Using custom preloader : dump_sram.bin
Mtk
Mtk - [LIB]: �[33mPreloader detected as shellcode, might fail to run.�[0m
Mtk
Mtk - [LIB]: �[33mFailed to patch preloader security�[0m
Main - Sent preloader to 0x201000, length 0x38000
Preloader - Jumping to 0x201000
Preloader - Jumping to 0x201000: ok.
Main - PL Jumped to daaddr 0x201000.
Main - Keep pressed power button to boot.```

ghost · 2024-08-26T13:06:49Z

I am not good with English……(・_・;)
I'm sorry for my poor explanation

↓seccfg_data
seccfg.zip

github-actions · 2024-10-25T19:27:33Z

Stale issue message

github-actions bot added the no-issue-activity label Oct 25, 2024

github-actions bot closed this as not planned Won't fix, can't repro, duplicate, stale Nov 1, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

seccfg unlock command not available…… #1112

seccfg unlock command not available…… #1112

ghost commented Jul 18, 2024 •

edited by ghost

Loading

ghost commented Jul 18, 2024 •

edited by ghost

Loading

ghost commented Jul 19, 2024

ghost commented Jul 19, 2024 •

edited by ghost

Loading

ghost commented Jul 21, 2024

bkerler commented Jul 22, 2024

ghost commented Jul 22, 2024 •

edited by ghost

Loading

ghost commented Jul 23, 2024

ghost commented Jul 23, 2024

bkerler commented Jul 25, 2024

ghost commented Jul 25, 2024 •

edited by ghost

Loading

ghost commented Jul 27, 2024 •

edited by ghost

Loading

bkerler commented Aug 24, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024

bkerler commented Aug 25, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024 •

edited by ghost

Loading

ghost commented Aug 25, 2024 •

edited by ghost

Loading

ghost commented Aug 26, 2024

github-actions bot commented Oct 25, 2024

seccfg unlock command not available…… #1112

seccfg unlock command not available…… #1112

Comments

ghost commented Jul 18, 2024 • edited by ghost Loading

ghost commented Jul 18, 2024 • edited by ghost Loading

ghost commented Jul 19, 2024

ghost commented Jul 19, 2024 • edited by ghost Loading

ghost commented Jul 21, 2024

bkerler commented Jul 22, 2024

ghost commented Jul 22, 2024 • edited by ghost Loading

ghost commented Jul 23, 2024

ghost commented Jul 23, 2024

bkerler commented Jul 25, 2024

ghost commented Jul 25, 2024 • edited by ghost Loading

ghost commented Jul 27, 2024 • edited by ghost Loading

bkerler commented Aug 24, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024

bkerler commented Aug 25, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024

ghost commented Aug 25, 2024 • edited by ghost Loading

ghost commented Aug 25, 2024 • edited by ghost Loading

ghost commented Aug 26, 2024

github-actions bot commented Oct 25, 2024

ghost commented Jul 18, 2024 •

edited by ghost

Loading

ghost commented Jul 18, 2024 •

edited by ghost

Loading

ghost commented Jul 19, 2024 •

edited by ghost

Loading

ghost commented Jul 22, 2024 •

edited by ghost

Loading

ghost commented Jul 25, 2024 •

edited by ghost

Loading

ghost commented Jul 27, 2024 •

edited by ghost

Loading

ghost commented Aug 25, 2024 •

edited by ghost

Loading

ghost commented Aug 25, 2024 •

edited by ghost

Loading