02-05-2014, 08:36 PM
BPI+ Bypass is just spoofing the modem to registered (locally) and enabling the cpe bridge when you received a negative reg-rsp, there are telnet commands for it but not all firmwares have them..
that's how the bpi+ bypass exploit worked on some older CMTS's... the CMTS's allowed traffic even when a modem received a negative reg-rsp.
Anyways, there is a patched Sigma X2 with bpi+bypass, i believe this is it:
http://www73.zippyshare.com/v/63646575/file.html
let me know if it works for you!
that's how the bpi+ bypass exploit worked on some older CMTS's... the CMTS's allowed traffic even when a modem received a negative reg-rsp.
Anyways, there is a patched Sigma X2 with bpi+bypass, i believe this is it:
http://www73.zippyshare.com/v/63646575/file.html
let me know if it works for you!