Let's Hack: Extracting Firmware from Amazon Echo Dot and Recovering User Data

Поділитися
Вставка
  • Опубліковано 23 гру 2024

КОМЕНТАРІ • 316

  • @mattbrwn
    @mattbrwn  Рік тому +145

    UPDATE: the storage partition also has API keys used for various amazon services that are associated with the previous user's account. (albeit probably expired)

    • @neon_Nomad
      @neon_Nomad Рік тому +12

      Those are great for text to speech services;)

    • @xxxxxx2072
      @xxxxxx2072 Рік тому +8

      Sure dd stands for disk dump bro 👍

    • @CaseyStrouse
      @CaseyStrouse Рік тому +9

      @@xxxxxx2072 Disk destroyer is what I've always known it as

    • @snooks5607
      @snooks5607 Рік тому +8

      @@xxxxxx2072 there's many claims to what dd stands for and while it doesn't exactly matter for modern purposes ("disk destroyer" is just as valid imo) but for historical purposes it's a fact (corroborated by Dennis Ritchie, original co-author of Unix) that dd was inspired and named after an old JCL statement for IBM S/360 computers called DD where it stands for "Data/set definition"

    • @xxxxxx2072
      @xxxxxx2072 Рік тому +1

      @@snooks5607 disk dump seems to resonate better with me in my personal opinion, as that's what the command does, it dumps the data to an image file, also it has write capabilities too, but I've never used the dd command to destroy a disk.

  • @randomfrequency
    @randomfrequency Рік тому +213

    There's multiple root filesystems because that's how they do OS updates - they update one root filesystem, then the bootloader switches to it - if it fails to boot, it reverts back to the last known working state.
    Typically any user data would be in its own partition - and you're right, it's an android based system. Amazon's fire products are android based.

    • @mattbrwn
      @mattbrwn  Рік тому +42

      Yeah I kind of came to that conclusion over the course of looking at this device.
      It makes so much sense. Google has invested years of security work into android.

    • @randomfrequency
      @randomfrequency Рік тому +9

      @@mattbrwn FreeNAS does it too, it's how we update switches and routers for the last few decades. We use it for immutable infrastructure in the cloud too.
      Nix offers something like it, and there's a ZFS booter for linux that lets you replicate the same pattern but with snapshots

    • @randomfrequency
      @randomfrequency Рік тому +4

      @@mattbrwn Also IIRC this isn't really an .. 'android' feature, more of your bootloader.

    • @andreastepperink2495
      @andreastepperink2495 Рік тому +3

      Fujitsu does the same with its iRMC (management board for Primergy servers). You have two slots, one is active (running) and you flash new firmware to the 2nd (inactive) one.
      You can switch over manually or automatically ("use the slot with highest firmware version", "use the slot recently flashed", etc.).
      These management boards are Linux-based too ususally.

    • @mustacheboyo
      @mustacheboyo 7 місяців тому +1

      Like android A/B?

  • @bentranch1895
    @bentranch1895 4 місяці тому +28

    I’m an old Unix and Xenix admin and programmer who started in the 80’s. dd- convert and copy was to be named cc, but the C compiler already had that name. The choice was made to move one letter in the alphabet and so dd became its name. dd was the tool we used to backup and restore raw disk partitions that held Oracle database tablespaces.

  • @alanphillips4851
    @alanphillips4851 3 дні тому +1

    Senior Principal EE from a large Military Contractor with nearly 40 years experience here. I am today years old with regards to the microscope light trick. Excellent, will be using that. I still love learning new things. Thank you for that !

  • @yunggoosbumps215
    @yunggoosbumps215 4 місяці тому +9

    Hey man, I am in tech and have had absolutely no hardware hacking experience. But after watching this you have brought a new interest to me and I have no idea why. I feel like 90% of people would never see this as interesting but I'm already looking for tools to buy just so I can copy this project as my first start and then will be exploring further than you did to potentiall find anything you didn't.

  • @user-ui8my9zs7o
    @user-ui8my9zs7o Рік тому +58

    This content is so useful. I'm a software engineer but I'm trying to learn more on the hardware side. Thank you so much for posting this content!

  • @tomska7
    @tomska7 Рік тому +9

    Amazing Matt, please keep uploading this kind of live sessions. I personally learn a lot from this kind of videos! Thanks a lot for your work! :)

  • @nectarinetangerineorange
    @nectarinetangerineorange Рік тому +26

    when using the "dd" command; if you specify an appropriate blocksize (i.e. 'bs=4M' is reasonable for most flash storage), the "dd" command can finish much, much faster than if a less optimal blocksize (i.e. the default) was chosen
    Also amazon products use a derivation of 'FireOS' which is a fork of android from a while back, kinda like how linux-mint is a fork of ubuntu

  • @ThaDanzar
    @ThaDanzar 2 місяці тому +2

    Dude, great videos! I can't stop watching them! Love the raw just digging into it and figuring it out step by step.

  • @ValleyMustang
    @ValleyMustang 7 місяців тому +22

    Dude, usually I build race cars, street race and do some computer stuff but this is the first video that I seen that truly got me into wanting to explore more of the deep end on the chips. This is also the first video I've seen from you. New subscriber here.. Also just ordered my chip reader from your link in the description. Can't wait to see what other content you have on your channel!

  • @mattclaudio2502
    @mattclaudio2502 7 місяців тому +6

    bro you are a friggin wizard, these videos are SO engaging i love them

  • @CA-FE-C0-FF-EE-00
    @CA-FE-C0-FF-EE-00 9 місяців тому +6

    Damn, that was damn interesting. Has been some time, since I watched a 1-hour video :D
    Thanks for all the helpful explanations, I really learned some stuff.
    I loved that you were like "let's find out together" when you didn't understand something instantly. This way, people like me can build up confidence when doing something like this alone.
    Most UA-camrs act like they know anything, this way you get really unconfident as a viewer because you feel you ass a viewer are the only person who struggles with stuff on the first try :D
    Thanks! Keep it up.

  • @terryhayward7905
    @terryhayward7905 5 місяців тому +7

    The one thing that would be very interesting is the microphone algorithm that allows it to pick out a voice command from a lot of background noise.

  • @jurkodev
    @jurkodev 7 місяців тому +8

    51:18 the user name "owner" and the 2 XML files you explored there are standard for android if u take a vanilla android image u can make additional users and the main will always be named owner and the other users when created will appear there also as u see in the first xml it prohibits the dialer and WiFi for the guest user and that's android standard too

  • @LonnonFoster
    @LonnonFoster 3 місяці тому +1

    Watching the joy of exploration in real time is so much fun. This is the true spirit of hacking! Thanks for sharing this journey and for diving in unscripted.

  • @chester_ville_4066
    @chester_ville_4066 Рік тому +5

    Matt the way you show the commands I love it thanks you, keep it up brother.

  • @askal916
    @askal916 Рік тому +8

    Thanks for making this video. I would like to understand this information enough, to apply it to a 1st generation Echo Plus for the purpose of repurposing the hardware. I have always felt that the ~9" tall cylinder has impressive features: Microphones, lighted volume ring, top function buttons, and a pretty great sounding speaker setup. Do you think the main board could be repurposed, or that a newly designed board could be fitted while maintaining the functionality of the other components? I have a new 1st generation Echo Plus I'd be willing to send you. Also is that a Ravens hat your wearing? 👍Let me know.

  • @Myself-yh9rr
    @Myself-yh9rr 7 місяців тому +12

    Some people call DD disk destroyer. That is because you must be careful with the if and of or you might erase what you tried to copy.

  • @jonmarler
    @jonmarler 7 місяців тому +28

    Great video Matt! The moniker "dd" stands for "data dumper" because it dumps data. Now you know!

    • @DanielSimon1995
      @DanielSimon1995 7 місяців тому +3

      i always call it disc destroyer - for uknown reasons ofc

    • @kramermccabe8601
      @kramermccabe8601 7 місяців тому +2

      @@DanielSimon1995 you can command DD to write all 0 preforming a low level format of the device destroying the disk to a layman

    • @trombonedude5312
      @trombonedude5312 7 місяців тому

      I always thought it stood for "copy and convert" but "cc" was already taken

    • @DanielSimon1995
      @DanielSimon1995 7 місяців тому

      @@kramermccabe8601 yeah, thats why i call it disc destroyer

    • @vladventura1928
      @vladventura1928 6 місяців тому +1

      Thank you! I've gone for an embarrassingly long time thinking that dd was just disk destroyer

  • @by010
    @by010 7 місяців тому +25

    the 700MB sized partitions are android A/B SYSTEM partitions. The big one that had "data" directory is what is wiped when you do factory reset, it contains.. well, data. And ye, it is android. /data directory may be very intresting on biggest partition. /data/data IIRC for application data. I would take a peek at files in there.
    media / 0 is "sd card" storage in android

  • @thesilvercreepers
    @thesilvercreepers Рік тому +3

    These are the type of videos I was looking for, Keep up the good work!

  • @CM-xr9oq
    @CM-xr9oq 7 місяців тому +7

    21:30 silicone is a thermal insulator. It has very low thermal conductivity.
    Great video. I learned a lot.

    • @jankomuzykant1844
      @jankomuzykant1844 4 місяці тому

      Thats interesting because old days, as I remember, there was a silicon only (with no nowadays additives as silver or diamonds or so) paste for better heat conductivity to the cpu/psu radiator

    • @surewhynot6259
      @surewhynot6259 3 місяці тому

      @@jankomuzykant1844 silicon vs silicone

    • @jankomuzykant1844
      @jankomuzykant1844 3 місяці тому

      @@surewhynot6259 I mean silicone. The silicone paste looks like gel.
      I'm sorry if I mess something, english is not my first language.

  • @RB-pc7tg
    @RB-pc7tg 7 місяців тому +1

    You can also use hot air on the chip or board while holding the braid with tweezers. As the solder liquifies, you use the braid to mop it up by just running it over.

  • @olmrgreen1904
    @olmrgreen1904 Рік тому +4

    Insane content. Its truly inspiring to see you in action.

  • @VSteam81
    @VSteam81 7 місяців тому +6

    I love how it has an android partition layout

    • @timotheegoulet1511
      @timotheegoulet1511 2 місяці тому

      It’s an IoT device. Many implementations use Android for its simplification and standard.

  • @Jason-ug7ey
    @Jason-ug7ey Рік тому +5

    Do you ever do in-system programming (ISP) extractions?

    • @LeePrzy
      @LeePrzy 4 місяці тому

      What is that

  • @mattclaudio2502
    @mattclaudio2502 7 місяців тому +1

    also which terminal window manager do you use??

  • @pierpa_76pierpaolo
    @pierpa_76pierpaolo 11 місяців тому +1

    19:57 WOW reballing. What equipment do you use?

    • @junkman8742
      @junkman8742 3 місяці тому +1

      Boxers, for FreeBalling

  • @thargok
    @thargok 7 місяців тому +11

    Absolutely is an Android system, the runtime environment dalvik has a folder in the root directory which was the giveaway before the APK files.
    It looks like Amazon took a sample image used by MediaTek for that chipset (probably originally made for Xiaomi as some of their stuff is on it) but I'm not sure if they are actually doing much more than running background services or even starting up the runtime environment as it seems like a lot of overhead for what is really just a glorified IoT microphone and DAC.

    • @Xanderfied
      @Xanderfied 7 місяців тому +1

      Yeah, that was my thought as soon as the premise of the video was made clear. Also while Amazon may slap their logo on a device they didn't manufacturer jack crap. Just bought a bulk amount of components, hired a company in China to assemble them, and a couple of internal software engineers to write an API to make it all work together and answer to ALEXA. The amount of usable information that could possibly be altered or repurposed for something else is minimal at best.

    • @309electronics5
      @309electronics5 7 місяців тому

      All these smart speakers run some android or linux because making applications for android is damn easy and android already comes with all drivers and tools needed

  • @devsecfranklin
    @devsecfranklin Рік тому +5

    Really nice work Matt!

  • @ErickBuildsStuff
    @ErickBuildsStuff Рік тому +1

    Matt, i stumbled upon your video after trying to solve the stuck red mute button and no ring light for my echo 4. I purchased as defective and unable to figure out the problem. Both do not reset and only light that turns on is red mute button at 2 different lighting levels. I'm guessing it's some type of firmware issue. Many others have the same problem and could you look at one in the used market? Follow up video would be awesome.

  • @ransomxvi
    @ransomxvi Рік тому +4

    This was fantastic! Thanks for the great walkthrough. Let us know how it continues :)

    • @mattbrwn
      @mattbrwn  Рік тому

      thanks! this device was pretty interesting.

  • @markayala7752
    @markayala7752 2 роки тому +9

    i have learned a lot hope you post more :) .

    • @mattbrwn
      @mattbrwn  2 роки тому +1

      Hoping to do lots of new videos in 3023!

    • @AdricM
      @AdricM Рік тому +2

      @@mattbrwn hope we dont have to wait that long. *eyeing the cryotank

  • @randomfrequency
    @randomfrequency Рік тому +5

    Regarding "typing your password into youtube", why don't you just disable sudo prompting for passwords for users? by default there's a commented out entry in `visudo` that tells you how to do it.

    • @mattbrwn
      @mattbrwn  Рік тому +1

      haha yeah that's not a bad idea...

  • @omegatotal
    @omegatotal 7 місяців тому +2

    Should definitely add newer lower temp desoldering solder (like CHIPQUIK) to the bottom of that to alloy with it and lower the melting temp, making it easier to clean up with the braid

  • @atubebuff
    @atubebuff 4 місяці тому +1

    If you could find the JTAG pins you'd be able to read off the Flash w/o having to remove. We've used JTAG for debugging our boards but this one having a low chip count they may have omitted it, but it is the "modern" way to test production boards ("bed of nails" being the other).

  • @mattbrwn
    @mattbrwn  2 роки тому +2

    What devices should I look at in the future?

    • @markayala7752
      @markayala7752 2 роки тому +2

      I want starlink dishy :p .

    • @DJChol
      @DJChol Рік тому +4

      What about participating in John McMasters reverse engineering of the XGecu programmer?

    • @mattbrwn
      @mattbrwn  Рік тому +5

      @@DJChol wow didn't know about this project! I currently use the xgecu software in wine. I'll look into this project!

    • @redacted1946
      @redacted1946 Рік тому +2

      How about something that requires fault injection/voltage glitching. For example to bypass rdp protection on an stm32. Hooking up to a uart shell or a jtag/swd debugger or mounting a filesystem is only so interesting.

    • @viewgoog
      @viewgoog Рік тому

      I have really been enjoying your videos they are all great! I would love to see you mess around with a DVR for cameras maybe one that is locked and see if you can unlock it? Could probably find one at a goodwill too!

  • @shanebrady568
    @shanebrady568 Рік тому +1

    Not sure if you've covered this already but what microscope are you using? Could you go over the tools you have in a future video. Thank you!!!

    • @neon_Nomad
      @neon_Nomad Рік тому

      Louis rossman.

    • @mattbrwn
      @mattbrwn  Рік тому

      Yeah I will do some videos soon on that. I get a lot of stuff based on Louis Rossmann's recommendations.

  • @frosty1433
    @frosty1433 7 місяців тому

    To reattach can you just use a solder mask and hope for the best or do you absolutely need to reball it?

  • @thewolfin
    @thewolfin 5 місяців тому

    As someone who hates the jumpcut-heavy, ADD-inducing, algorithm pandering meta... Love the uncut format.

  • @pandorasbox7957
    @pandorasbox7957 7 місяців тому +1

    Just watched this a year later after it was posted love it hope your doing more of this type of video already

  • @AdricM
    @AdricM Рік тому +6

    id love to see more analysis of the google home mini.

  • @FlorianGT396
    @FlorianGT396 Рік тому +3

    That is REALLY great. Is there some way, we can exchange the extracted data, so people / others can work on Hacking the Bluetooth Firmware Update / Create alternative Firmware that does work without Amazon Stuff?

    • @u0000-u2x
      @u0000-u2x Рік тому +1

      its illegal to share firmware dumps

    • @FlorianGT396
      @FlorianGT396 Рік тому

      @@u0000-u2x hm ok. It would be cool to know, if there is some way to enable adb.

    • @u0000-u2x
      @u0000-u2x Рік тому +3

      @@FlorianGT396 xda forums is your friend

  • @djtecthreat
    @djtecthreat 7 місяців тому +1

    I have no interest (right now) to dump chips but I love that I'm learning some linux stuff while watching and picking up some hardware hacking tips. Thanks Matt!

  • @АнатолийП-у3к
    @АнатолийП-у3к 2 роки тому +6

    Грубые загрязнения хорошо счищается мягкой зубной щеткой.
    Чип от флюса хорошо чистить обычной салфеткой смоченной изопропиловым спиртом.

  • @marcosscriven
    @marcosscriven Рік тому +1

    Incredibly well presented video. Thank you. I’ve been trying to understand how an IoT device that uses eMMC can be analysed, as I was only familiar with either simple 8-pin chips, or setups where the firmware could be downloaded without encryption.

  • @randomfrequency
    @randomfrequency Рік тому +3

    The SSID or password could also be in some other flash/nvram storage that operates more like a k/v store, this is pretty common with some other devices, although this one has a lot of storage.
    Likely that keychain apk would lead to more details.

  • @s3anuk
    @s3anuk Рік тому +2

    damn my xgecu t48 wont read that emmc :( that reader you used is really expensive too. anyone else found another way to read these? i've tried soldering it onto an sd breakout board but they are really difficult to reball and fit

    • @mattbrwn
      @mattbrwn  Рік тому +1

      Yeah unfortunately these readers are the best way to go. Sometimes the pads are available for ICP but not always

  • @JonathanSwiftUK
    @JonathanSwiftUK 7 місяців тому +50

    To be honest it doesn't seem to make any financial sense, those components and fabrication and construction must have cost the same or more than I paid for it, especially when you say there is 16GB ram and 16G storage.

    • @deanvangreunen6457
      @deanvangreunen6457 7 місяців тому +15

      16gb storage is sus.

    • @fuehwbdb3765
      @fuehwbdb3765 7 місяців тому +2

      It's shared storage

    • @graytico
      @graytico 7 місяців тому +51

      It makes perfect financial sense, they sell them at a loss because they'll make the money back and more in ads and extra sales you make on it. It's the same reason printers are so cheap, they're selling the ink not the printers.

    • @GorlockSlayer
      @GorlockSlayer 7 місяців тому +13

      @@grayticoYep. In this case, your data is the “ink” that these run on😂

    • @JonathanSwiftUK
      @JonathanSwiftUK 7 місяців тому +2

      @graytico you mean they're a bit slow - they've only ever made massive losses, nobody buys on those things, yet they have stuck to making and selling them, maybe they are starting to suss out the business model about now, hence the heavy layoffs in this part of the business. Nice hardware, if I could figure out an actual use case, right now she is an expensive egg timer most of the time.

  • @crawshaws1234
    @crawshaws1234 Місяць тому +2

    Im sure you have Googled it by now, but Echo uses FireOS (like on their tablets). Which is Android based.

  • @norm1124
    @norm1124 3 місяці тому

    Is there a serial port on the board and a username in the flash to login?

  • @tanjiro3285
    @tanjiro3285 Рік тому +1

    I'm trying to learn about writing firmware to cheap apple clone smartwatches and smartbands but I don't know where to look for tutorials on firmware development for mediatek chips and nrf chips.please guide 🙏

    • @mattbrwn
      @mattbrwn  Рік тому +3

      check out the PineTime watch!
      www.pine64.org/pinetime/
      wiki.pine64.org/wiki/PineTime
      Its software and hardware is open source! You would be able to study the HW and SW for your own learning.

    • @tanjiro3285
      @tanjiro3285 Рік тому

      @@mattbrwni have seen the pinetime projectbut the hardware is not available easily in my country (India) please give me some course names which u followed

    • @redacted1946
      @redacted1946 Рік тому

      That just sounds like regular embedded firmware development. Find a development board with the same mcu that those cheap devices use, reverse engineer the spi/i2c pinouts for the peripherals, write and test your embedded firmware, and then flash it back onto the chip via jtag/swd assuming those cheap devices expose those debuggers

  • @saulmontanez
    @saulmontanez 13 днів тому

    can we use easy jtag box to view file or manipulate the emmc

  • @primeral
    @primeral 5 місяців тому

    Will it ever be possible to overwrite the factory firmware with a Linux distro? There's currently a homebrew project using an RPi Zero 2W and Wyoming Satellite / Home Assistant to localize the voice assistant, but I prefer the big Echo's hardware for its elegance and sound "fidelity"

  • @dwagner6
    @dwagner6 7 місяців тому +9

    Your soldering iron tip looks pretty oxidized. If it’s been giving you trouble, make sure to keep a blob of solder on it when you’re putting it away. Tip should be nice and shiny for best results

    • @junkman8742
      @junkman8742 3 місяці тому

      He keeps it in lemon juice

  • @siosinv3851
    @siosinv3851 Рік тому +1

    What sources or publications did you use?

    • @siosinv3851
      @siosinv3851 9 місяців тому

      @mattbrwn still waiting on the detail Matt.

  • @pumm3l46
    @pumm3l46 7 місяців тому

    is it possible to do something similar to upgrade the storage chip on a fire stick?

  • @cwain96
    @cwain96 4 місяці тому

    Hey, did you ever get an Amazon Cloud Cam to try and get root access to?

  • @shawndonnelly5642
    @shawndonnelly5642 4 місяці тому

    Please do more of these videos.... Just starting out and Im learning a lot.

  • @Jules-ki9nx
    @Jules-ki9nx 10 місяців тому

    Would love to know your lab set up.

  • @chrisk5433
    @chrisk5433 7 місяців тому +3

    You should redo this process with an Echo that you have purchased and used yourself. See how much recognizable data you can find in an extraction.

  • @PapaLuis85
    @PapaLuis85 6 місяців тому

    Do you know how to bypass the activation window on echo show 15?

  • @tbwadz
    @tbwadz 7 місяців тому

    Great video, very detailed. What I wanna know is where in the world do you get that portrait in the background?

  • @evanmurphy8531
    @evanmurphy8531 4 місяці тому

    I havent watched yet, but I'm excited to learn and will be back with notes!

  • @h8handles
    @h8handles Рік тому

    Love hacking but new to hardware on this scale. Learning a lot here thanks so much!

  • @davidshaffer9418
    @davidshaffer9418 7 місяців тому

    Super Great format. Informative and fun to watch.

  • @randomfrequency
    @randomfrequency Рік тому +6

    You're very brave just doing `cat` on files instead of xxd :)

    • @randomfrequency
      @randomfrequency Рік тому +6

      For future readers, cat would not encode any escape characters in the contents of the files, which could lead the either corruption of state in your terminal emulator, or potentially worse

  • @lilladokka
    @lilladokka Рік тому +37

    like the features, setup was difficult for some of my devices (August Door lock, ua-cam.com/users/postUgkxhB5YOMNj04GuoAosExygP4cH-dKeb4aB Bose speaker)... but all switches and outlets (5), thermostat, tankless water heater. Unfortunately all I can do is turn on/off Bose. It doesn't support volume or changing channels, but I believe that is due to the particular speaker I have.... Worth getting if you already have other devices to use it with... I don't sit around and ask Alexa questions much so that doesn't really matter to me....

  • @NKomarov
    @NKomarov Рік тому +3

    It would be so cool to replace a memory chip with a bigger one and stuff it with lots of pirated mp3s, don't you think?
    You could also change some scripts to start ssh server on startup and do other cool things to actually 0wn the device.
    Maybe install a torrent client with a web-UI to control from your phone.
    And after you patched it, you could go to the nearest guy repairing phones, he knows where or how to buy a special "mask" (a tiny board with lots of punched holes in it that strictly correspond the contacts on that chip) to apply on the chip and add little metallic balls in order to put it back on the board.
    Restart, and you finally own it! 😀
    P.S. Thanks for a great video! An instant sub from me!

  • @S0ll
    @S0ll Рік тому +1

    Matt you are a genius 👏💯

    • @mattbrwn
      @mattbrwn  Рік тому

      No one is a genius in this field. I probably get imposter syndrome just as much as the next guy. Just keep learning!

  • @WalterGreenIII
    @WalterGreenIII Рік тому

    apk files are generally use in android???

  • @robbdudeson346
    @robbdudeson346 7 місяців тому +1

    I just Subbed - You are pretty good, I want to see a channel where someone teaches Linux on a Kernel Level and goes Up from there... Everyone diverges onto like, Languages and stuff like that but that's not what I'm looking for, I wanna see someone show me how to vuild my own custom Kernel to run on an old Phone and how to force the UBOOT into eating my files and booting my Kernel... I would feel pretty accomplished at that point. The entry for alot of people needs to be the Kernel Level, Need someone to explain the Tools and Hardware that we need to start Learning Properly by RevEngineering Basic Junk... and you went over all that so Kudos! There is a lot of Useful Garbage out there, it would be cool to learn how to repurpose things into Other Stuff...Great Vids I already watched 3 of them...

  • @RickDeckardt
    @RickDeckardt Рік тому +5

    dd stands for copy and convert, but since cc (c compiler) was already in use, they went for dd

    • @johnfeehley8100
      @johnfeehley8100 7 місяців тому +1

      It was originally in IBM's JCL (labeled as "Data Definition") too

  • @Arm1nas
    @Arm1nas 6 місяців тому

    39:40 - Haven't watched the whole video yet, but it definitely runs android. You would find the exact same file structure if you accesed the root filesystem of Android on your phone. The interesting part is in the /data folder, there's your whole userdata of Android. /data is where the userdata partition gets mounted, however it possibly uses encryption, so you would just see gibberish. What you can do to get a root shell on a live system is modify some files to enable adb root access.

  • @timc3600
    @timc3600 4 місяці тому

    I always understood dd to mean Disk to Disk, since its used for block level copying of data between devices.

  • @cwain96
    @cwain96 5 місяців тому

    Could you try to get us into our defunct Amazon Cloud Cams please, so we can use our own virtual servers instead of having a paperweight. (I know at one time they offered Blink replacements, but I missed that 🤷🏻‍♂️).

    • @mattbrwn
      @mattbrwn  5 місяців тому +1

      Very interesting. I'll pick one up on eBay and see what I can do.

  • @Mbro-dq2do
    @Mbro-dq2do 7 місяців тому

    Matt youre a god damn genius. My NEW favorite channel. Please keep at it mang

  • @jamieharper5665
    @jamieharper5665 7 місяців тому

    A masterful removal of the chip and great video dude! 😊 Now I might be a little dumb here (as im primarily a software developer) but how does the flux and alcohol not damage the chip itself? Clearly it doesn't, i think i just don't understand how 🤔

    • @mattbrwn
      @mattbrwn  7 місяців тому +1

      Flux and alcohol are just chemicals used to allow solder to flow and clean the chip respectively. Doesn't affect chip internals or contact points. The alcohol is 99.9% so no corrosion.

    • @jamieharper5665
      @jamieharper5665 7 місяців тому +1

      @@mattbrwn Aaaaah I get ya, thanks that makes more sense now! 😁 As I say, I mostly just write code, but I'm messing with SBCs at the moment so this kind of knowledge is going to be super useful!

  • @kuraz
    @kuraz 5 місяців тому +1

    39:55 No, the Amazon Echo does not run Android. It operates on a custom operating system called Fire OS, which is based on the Android Open Source Project (AOSP) but is heavily modified by Amazon for its devices.

  • @neon_Nomad
    @neon_Nomad Рік тому +4

    You're not missing much without it ;p better off used for training purposes.
    Heres to that hotplate reflow station though

    • @mattbrwn
      @mattbrwn  Рік тому +1

      yeah I've been wanting to get some BGA reball stencils and solder paste. This should be a good opportunity.

    • @neon_Nomad
      @neon_Nomad Рік тому

      @@mattbrwn ebay is your friend:)

    • @neon_Nomad
      @neon_Nomad Рік тому

      @@mattbrwn lookup theCarplayAiboxFriends

  • @JustANoob1
    @JustANoob1 2 місяці тому

    Love the video! Would be funny to replace Alexa with Mycroft.

  • @CRCinAU
    @CRCinAU 3 місяці тому

    Here's a hint for doing this kinda thing in future.... If you do a dd of the *entire* device, you can then add partitions using `kpartx -a` and have them all available to mount / check directly without having to do it partition by partition. You can also then use tools like binwalk to start mapping out things.

  • @KSITREVS
    @KSITREVS Рік тому +3

    Cool video, please keep it up.

  • @gwebocelestron9194
    @gwebocelestron9194 5 місяців тому +1

    Old, retired Unix admin from the 80's here. dd stands for disk dump. Surprised your man page didn't say that.

  • @paaabl0.
    @paaabl0. 7 місяців тому +1

    Matt, this is brilliant!! Thank you for sharing!

  • @SlinkyD
    @SlinkyD Рік тому

    47:35 run `less` on the files in recover/log
    edit: correction

  • @Sammenluola
    @Sammenluola 7 місяців тому +1

    Before this, I had no idea this is now my preferred entertainment..! Which is weird since I have no hacking skills whatsoever. 😅

  • @scotthewitt6047
    @scotthewitt6047 7 місяців тому

    Any way you can zoom more in when you are working in terminal

    • @mattbrwn
      @mattbrwn  7 місяців тому

      Yeah just realized that when editing my most recent video. Will keep that in mind next time

  • @eduardoanonimo3031
    @eduardoanonimo3031 Рік тому +2

    Dude! I thought you have learned the leasson... sunshade hats are for gardening or for harvesting berries in the fields...
    Still repairing the roof?

  • @lukedavis436
    @lukedavis436 7 місяців тому +1

    I bet some journalist somewhere is gonna see this and spin up some article about "Are your Alexa's really safe?!!"

  • @khatdubell
    @khatdubell 2 місяці тому +1

    You should have just ran sdc under fdisk.
    It would have identified all the partition types on the disk for you

  • @S1Pack
    @S1Pack 7 місяців тому

    That Baltimore Ravens hat got you my subscription.

  • @nikolaikruglikov7358
    @nikolaikruglikov7358 6 місяців тому +1

    Not a security expert, but I think it would be possible to restore your root password from the sound of your typing, especially given that you type another stuff there, so one could build a sound profile of your keyboard. Hope you've changed the password!

    • @RonaldMallory
      @RonaldMallory 24 дні тому

      Haha that was my first thought too :)

  • @Jemacaza
    @Jemacaza 5 місяців тому

    Great video. Very interesting.

  • @mosesmodise4998
    @mosesmodise4998 11 місяців тому

    how about writing this firmware on a new board i mean like cloning cos this one is now a mess

  • @d2sfavs
    @d2sfavs 7 місяців тому

    this is great how you can get into the brains of electronics wish you were my neighbor would love to learn about scaning this new encryption that are becoming popular all over.i bet that could be hacked too.

  • @harjoat
    @harjoat Рік тому

    Excited to see more :)

  • @pederb82
    @pederb82 7 місяців тому +2

    Easy to see you are quite inexperienced with soldering but keep at it and you will get better results. I cringed a lot when you used the solder braid tho. You used like 5% of it and still got a new strip. If you feel braid don’t work add fresh flux onto the braid and it soak up the tin. Use it until it’s full. Don’t waste or you might regret it when you need some but you’ve used it all. ;)

  • @RevJimyJamz
    @RevJimyJamz 9 місяців тому

    30:23 data definition

  • @CanOfCatfood
    @CanOfCatfood 2 місяці тому

    Should've look at the file that says don't panic hitch hikers guide to the galaxy reference