Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SB6190 Uncapping in process. Suggestions?
#1
Hi everyone,

I will uncap My SB6190!

I have all pre-requisite knowledge on how to do what I'm asking except the actual knowledge of the process.

My Magic tells Me the firmware blocks every network request and push for SNMP, HTTP, Telnet, etc. to the modem from My LAN. I have to flash the firmware.

I know I need:
USB JTAG
Haxorware firmware - How do I create it from the extracted firmware data?

Assistance is always appreciated. Will pray for you for your help. Wink

Update #1: Added modem photo, added a to buy list and changed subject title.

To buy:
http://usbjtag.com/

http://www.ebay.com/itm/1600-Heat-Resist...SwPc9WyvFW

http://www.ebay.com/itm/5-pairs-Wire-Kit...Swa-dWlnPk

http://www.ebay.com/itm/10PCS-20CM-Femal...SwtO5XIriP

http://www.ebay.com/itm/10-pcs-40-Pin-2-...SwgkRVUF7E

http://www.ebay.com/itm/Desoldering-Pump...SwBLlVa9aH

http://www.ebay.com/itm/Kester-951-Solde...MLM_qxmsfQ

http://www.ebay.com/itm/2-0mm-Desolderin...Sw8gVX7e7F

http://www.ebay.com/itm/Electronic-Solde...SwQJhUf1Pe

http://www.ebay.com/itm/X-TRONIC-MODEL-3...Sw~FNUY4ET

http://www.ebay.com/itm/USB-To-RS232-TTL...SwOyJX4Wqg

Update #2:
https://sourceforge.net/projects/sb6190.arris/files/
holy shit. yes plz.

Update #3:
http://www.usbjtag.com/vbforum/showthread.php?t=5188
Looks like I've got everything I need together. Time to consult a good friend who actually KNOWS how to solder QUITE PERFECTLY. I don't. Smile Will keep you all posted!!! Smile
Goal for all you h4x0rz out there: If possible in My studies I will create a software package that can takeover any SB6190 via LAN and install My custom firmware edition that I will design around uncapping and control of your ISP. Fuck them. They owe us money. Thieving bastards.


Attached Files Thumbnail(s)
   
Reply
#2
Good luck!!! Be sure to post steps and results for all of us to see!!
Reply
#3
(02-10-2016, 06:41 AM)Ictvtec Wrote: Good luck!!! Be sure to post steps and results for all of us to see!!

Of course. That's what I live for. Hooking ya'll up. Angel
Reply
#4
U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.
Reply
#5
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.


Attached Files Thumbnail(s)
   
Reply
#6
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.
it looked like a tssop nand flash
where is spi flash then ?
Reply
#7
(02-10-2016, 07:33 PM)snowden Wrote:
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.
it looked like a tssop nand flash
where is spi flash then ?

there is no longer a SPI Flash,all the new modems are nand flash only. and they have Bad blocks to prevent it from being copied so far.
Reply
#8
(02-10-2016, 07:53 PM)joejoe402012 Wrote:
(02-10-2016, 07:33 PM)snowden Wrote:
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.
it looked like a tssop nand flash
where is spi flash then ?

there is no longer a SPI Flash,all the new modems are nand flash only. and they have Bad blocks to prevent it from being copied so far.

I don't need to copy the firmware, only flash to the NAND. How do I do that? I can compile the firmware from ARRIS, they released it! It's open source, documented link in My first post. Smile

I'm looking into modding & compiling the firmware now. I have an SoC(Jetson TK1) if needed. I should be able to flash to NAND, skipping bad blocks, and the modem will run the My custom firmware just fine. Sounds perfect to Me. Smile
Reply
#9
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.

Can you tell me the numbers of the 48 pin SMT chip on the back of the board
and can you take a clearer picture of the front and back of the board in high resolution so it can be blown up with clarity and post them to a Dropbox and give me the link i will tell you what you will need to read the chip

(02-10-2016, 07:57 PM)colin669 Wrote:
(02-10-2016, 07:53 PM)joejoe402012 Wrote:
(02-10-2016, 07:33 PM)snowden Wrote:
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.
it looked like a tssop nand flash
where is spi flash then ?

there is no longer a SPI Flash,all the new modems are nand flash only. and they have Bad blocks to prevent it from being copied so far.

I don't need to copy the firmware, only flash to the NAND. How do I do that? I can compile the firmware from ARRIS, they released it! It's open source, documented link in My first post. Smile

I'm looking into modding & compiling the firmware now. I have an SoC(Jetson TK1) if needed. I should be able to flash to NAND, skipping bad blocks, and the modem will run the My custom firmware just fine. Sounds perfect to Me. Smile

We need some one with coding experience to write a piece of software that can handle the remapping of the bad blocks so we can read the nand correctly just like the guys did for the XBOX so there is hope out there
Reply
#10
(02-10-2016, 10:33 PM)markoco Wrote:
(02-10-2016, 04:39 PM)colin669 Wrote:
(02-10-2016, 04:24 PM)Ictvtec Wrote: U got a pic of the back of the modem?? I don't see the flash chip anywhere in the front.

here's the pic you're asking for.

Can you tell me the numbers of the 48 pin SMT chip on the back of the board
and can you take a clearer picture of the front and back of the board in high resolution so it can be blown up with clarity and post them to a Dropbox and give me the link i will tell you what you will need to read the chip

(02-10-2016, 07:57 PM)colin669 Wrote:
(02-10-2016, 07:53 PM)joejoe402012 Wrote:
(02-10-2016, 07:33 PM)snowden Wrote:
(02-10-2016, 04:39 PM)colin669 Wrote: here's the pic you're asking for.
it looked like a tssop nand flash
where is spi flash then ?

there is no longer a SPI Flash,all the new modems are nand flash only. and they have Bad blocks to prevent it from being copied so far.

I don't need to copy the firmware, only flash to the NAND. How do I do that? I can compile the firmware from ARRIS, they released it! It's open source, documented link in My first post. Smile

I'm looking into modding & compiling the firmware now. I have an SoC(Jetson TK1) if needed. I should be able to flash to NAND, skipping bad blocks, and the modem will run the My custom firmware just fine. Sounds perfect to Me. Smile

We need some one with coding experience to write a piece of software that can handle the remapping of the bad blocks so we can read the nand correctly just like the guys did for the XBOX so there is hope out there

Experienced coders would be great, but I can write the code Myself, it'll just take more time. That's a guarantee! I will get you a higher res photo set ASAP.

Numbers:
Spansion
S34ML01G200TF100541BB337 A
©12 Spansion
HeartAngel
-C. Colin Applegate
NSA Director GSA35,0
CEO Comcast Cable
CEO Applegate Consulting LLC
AUTHORIZED BY THE PRESIDENT
Reply


Forum Jump:


Users browsing this thread: 5 Guest(s)