Sorry for those who need captions! I forgot to publish them :S but they should be there now! Please let me know right away when I forget them for a video
Hey, could you take a look at the recent windows patch pertaining to IE and uts renote code execution bug? Im interested to see your views on it. ua-cam.com/video/65XOWNwXgvU/v-deo.html
Hey hello, I'd like to know how did you open the Chrome Developer Console for the Ledger Manager App? It doesn't exist anymore but I still have it in my Chrome Apps. However it seems to only open the Ledger Manager Desktop Application. So did you manage to use the Developer Console because you ere using an older version of the Ledger Manager Chrome App? Or is there a way to really attach a developer console? Thanks for your answer
In the chrome extensions menu there should be links to open the dev console and inspect the background page etc. but i havent checked the new app and how it all works now
Hello, electronics hobbyist here. The markings on the ST chip are most likely some kind of special internal number, either ST's or Ledger's (you can get custom labelling on chips if you order enough of them, and Ledger surely did), in order to conceal the secure chip's identity (even if it's obvious after inspecting the other chips). As for the other chip, a boost converter is a kind of DC-DC converter that boosts (hence the name) DC voltage. Say, you have 3.3 V and want 5 V, then you can use a boost converter. And yes, it's most likely for producing the voltages required to drive the display. The output current cut-off function is a safety feature against overcurrent (which could burn the chip), like in the event of a short circuit.
I really enjoyed those shots from the new camera. I got a good laugh from your commentary while I "just enjoyed the footage from your $1,500 camera" :)
@@roridev why do I know the reference even thou I don't repair Macs myself and I don't look at documentation while watching LR? :D Guess he talks about "PP3V3 Hot" all the time :D
The ST8R00 is a step up DC to Dc converter, it is used to take a lower voltage and rise it to a higher one. (With a voltage of around 4/6V can provide from 6 to 12V. It might be used to supply some parts of the circuit that works with a higher voltage of the 5V of usb like the oled screen
Most of the time the labeling is not custom, it just does not fit on the package. This is always the case for small packages, like SOT-23, but that chip might also to small to fit the full length part number. It is worth looking at the datasheet's "Packaging specifications", and maybe "Ordering informations" section to find out the chip markings, which one belongs to which part number. Mostly the complete part numbers are long, because they not just contain the chip name but also the classification (industrial, consumer grade), maybe operating frequency range if there are multiple choices, access time for RAMs, etc...
Awesome! I'm into learning MCU programming recently and hoping one day I could hack some smartbands (aka fitness trackers) I'm not a low-level programmer at all, just a beginner in embedded systems so your videos on reverse engineering a Ledger Nano S are just perfect for me right now. I understand what you're talking about and at the same time learning new things. Thanks a lot
The ST8R00 is basically a step down converter for power delivery. Essentially a buck converter, used to take the voltage that the USB delivers and lower it to be usable by the components that run on lower voltages on the board.
@@positivemelon7578 Yeah, if it's outputting 6-12v it would have to be, I'm pretty sure USB only delivers 5v ?? But I can't imagine anything on that board needing 6- 12v...
Maybe you should use a higher f-number, so the aperture is more closed. That way you'll get more depth of field and more of the small chip is sharp and i focus.
If I reset the nano X, is it possible for anyone including ledger, to be able to extract the previous seed phrase?I need to send mine back for warranty. Is it safe to restore my crypto on the replacement device using my seed phrase? Will the one I return be certain unhackable?
that is one hell of a nice camera man. I'd say I'm jealous, but I wouldnt have a use for anything that extreme, not in the way of a camera anyway. so you enjoy that camera man. if it makes you feel better about your shots then take more of them man. I would assume its hella useful for doccumenting hardware and PCB's.
The low F stop for your b-roll is fine but I suggest having an higher F stop for your main video so more of the object you record can be infocus at a given time.
yeah I guess it was a bit too annoying at points. It was my very first experiment using such a camera. Before deciding to buy it I didn't even know about f-stop! xD
maybe I also identified the wrong chip... I couldn't find anything about the display, and I thought maybe that the display needs a high voltage? But that is my guess with a lack of electronics knowledge .
@@LiveOverflow i found the same ship and the inductor above is typical for boost circuits. all the traces seem to go to the Display. i thought it would be a I2C, 3.3v Display. XD
TBH I thought maybe there's a way to generate a new key on the device and you simply did that after recording a video about how to get the phrase out. Maybe. IDK.
@@LiveOverflow I see. I use the 70D which looks like an older version of the same thing (split-pixel CMOS, articulated screen). I've used Canon EOS bodies since they came out in 1987. Happy to give pointers or answer questions.
7:21 I like these short interruptions. But can you explain how you mean this? is it total important or not for you? There a people how not have maybe the same skills in langue like dyslexia and more.
I haven't really earned anything with youtube. I just created a business for this channel and started last week trying to earn a side-income with UA-cam. My main job is being a security consultant doing pentesting and security code audits.
I thought the best thing you can do with JTAG is this: ua-cam.com/video/a67p6pziKz8/v-deo.html Will be waiting what you can do with those unnamed test (SWD/JTAG) points.
didn't get anything useful, JTAG? easily disabled by sceure bit/fuse, any none stupid manufacturer will disable it by default, even it just a toster controller
Sorry for those who need captions! I forgot to publish them :S but they should be there now!
Please let me know right away when I forget them for a video
Hey, could you take a look at the recent windows patch pertaining to IE and uts renote code execution bug? Im interested to see your views on it. ua-cam.com/video/65XOWNwXgvU/v-deo.html
Hello, I was going to look at your "making of" video but it seems private now. It is for Patreons only now ? Thanks a lot.
Nono, it turned into a two day stream, so just editing them together and uploading them as one video soon
Hey hello,
I'd like to know how did you open the Chrome Developer Console for the Ledger Manager App?
It doesn't exist anymore but I still have it in my Chrome Apps. However it seems to only open the Ledger Manager Desktop Application.
So did you manage to use the Developer Console because you ere using an older version of the Ledger Manager Chrome App? Or is there a way to really attach a developer console?
Thanks for your answer
In the chrome extensions menu there should be links to open the dev console and inspect the background page etc. but i havent checked the new app and how it all works now
Hello, electronics hobbyist here. The markings on the ST chip are most likely some kind of special internal number, either ST's or Ledger's (you can get custom labelling on chips if you order enough of them, and Ledger surely did), in order to conceal the secure chip's identity (even if it's obvious after inspecting the other chips). As for the other chip, a boost converter is a kind of DC-DC converter that boosts (hence the name) DC voltage. Say, you have 3.3 V and want 5 V, then you can use a boost converter. And yes, it's most likely for producing the voltages required to drive the display. The output current cut-off function is a safety feature against overcurrent (which could burn the chip), like in the event of a short circuit.
OLED displays usually need a slightly higher supply voltage. Typically 12V for small ones like this.
Holy shit ! Those camera shots look so professional
Hard to believe it is made by one person also maintaining a full time pentesting job
#nolife
But thanks :3 glad the work was worth it
@@LiveOverflow Love the quality!
That B-Roll footage is actually quite good and adds a new charme to your video. Stay up with that!
**appreciates beautiful shots**
***Appreciates appreciative comments***
I really enjoyed those shots from the new camera. I got a good laugh from your commentary while I "just enjoyed the footage from your $1,500 camera" :)
Best camera work ever! Totally worth the $1500
JTAG? That sounds terrible @Louis Rossmann :D
JTAG is really nice, Apple just uses terrible connectors :D
@@k1ngjulien_ > sees JTAG.
>Instaly goes to PP3V3G3H
@@roridev why do I know the reference even thou I don't repair Macs myself and I don't look at documentation while watching LR? :D
Guess he talks about "PP3V3 Hot" all the time :D
Im loving the hardware wallet videos :)
The ST8R00 is a step up DC to Dc converter, it is used to take a lower voltage and rise it to a higher one. (With a voltage of around 4/6V can provide from 6 to 12V. It might be used to supply some parts of the circuit that works with a higher voltage of the 5V of usb like the oled screen
cool yeah, that was also my guess
JTAG is an industry standard for verifying designs and testing printed circuit boards after manufacture.
I don't understand most of these videos but I still love to watch them all. Good job keep them coming!!
Love the photography. Great choice on getting that camera! Great video as always!
Most of the time the labeling is not custom, it just does not fit on the package. This is always the case for small packages, like SOT-23, but that chip might also to small to fit the full length part number. It is worth looking at the datasheet's "Packaging specifications", and maybe "Ordering informations" section to find out the chip markings, which one belongs to which part number. Mostly the complete part numbers are long, because they not just contain the chip name but also the classification (industrial, consumer grade), maybe operating frequency range if there are multiple choices, access time for RAMs, etc...
nice explaining with electronic parts specially with drawing and zoom the camera .ur d best 8)
5 mysterious pins on the board and an enabled JTAG;) ...
;)
"So appreciate them!"
JAWOHL!
🤣
Thanks a lot for the Pay TV smart card tip!
JTAG? I have a bad feeling the chip is going to threaten to ban you from Xbox LIVE if you mess this up!
you know you're early for a LiveOverflow video when it's not captioned yet
Oh damn i forgot the captions??? Thanks for letting me know!
Awesome!
I'm into learning MCU programming recently and hoping one day I could hack some smartbands (aka fitness trackers)
I'm not a low-level programmer at all, just a beginner in embedded systems so your videos on reverse engineering a Ledger Nano S are just perfect for me right now.
I understand what you're talking about and at the same time learning new things.
Thanks a lot
The ST8R00 is basically a step down converter for power delivery. Essentially a buck converter, used to take the voltage that the USB delivers and lower it to be usable by the components that run on lower voltages on the board.
the datasheet in the video states 6 to 12 V output, not sure where this is used though
@@AnianBrosig-yv3jn As seen in another comment: "Probably to power the oled screen, which typically requires something around 12V"
I'm pretty sure it's a step *up* converter
@@positivemelon7578 Yeah, if it's outputting 6-12v it would have to be, I'm pretty sure USB only delivers 5v ?? But I can't imagine anything on that board needing 6- 12v...
Boost converter is for power management.
Love the camera shots. Keep doing it.
Great video. I was not able to follow the information as I was too excited about your shots, but that shots were amazing :P
I love the new camera. Great footage.
The new camera shots look great.
These hardware wallet videos are awesome!
Appreciating THEM
We appreciate them! 😃
I just came here to appreciate the slick photos ;) what camera did you buy?
hah! 3:00 The video is so high res, I extracted your finger print out of it! :P
The boost converter essentialy just bumps up the voltage idk for what though maybe the display.
Maybe you should use a higher f-number, so the aperture is more closed. That way you'll get more depth of field and more of the small chip is sharp and i focus.
The boostconverter is like the "power supply" for the chips
Out of curiosity... how long did this research take? And do you have some sort of methodology of keeping track of what you find along the way?
If I reset the nano X, is it possible for anyone including ledger, to be able to extract the previous seed phrase?I need to send mine back for warranty. Is it safe to restore my crypto on the replacement device using my seed phrase? Will the one I return be certain unhackable?
i like the "i dont care about cookies" addon
"It can speak USB" ahh I love when hardware chips are treated as humans ^^
that is one hell of a nice camera man. I'd say I'm jealous, but I wouldnt have a use for anything that extreme, not in the way of a camera anyway. so you enjoy that camera man. if it makes you feel better about your shots then take more of them man. I would assume its hella useful for doccumenting hardware and PCB's.
The low F stop for your b-roll is fine but I suggest having an higher F stop for your main video so more of the object you record can be infocus at a given time.
yeah I guess it was a bit too annoying at points. It was my very first experiment using such a camera. Before deciding to buy it I didn't even know about f-stop! xD
Probably stop down to a smaller aperture for the non-beauty shots?
It will increase the depth of field greatly and show clearer image
Fantastic beauty shots tho..
hey, nice camera shots
Finally i was waiting patiently all weak :)
JTAG in the next video, yeeey !!!! :D
I think they use the battery chip thing as a constant current driver
Great video! :)
Hey, you stopped the telco series -_-
I don't want to hit the subscribe button! It would unsubscribe me from this channel!
I tried pushing the subscribe button but the number went down instead. What did I do wrong?
Nice video, keep it up mate
I'm learning how to hack right now and I want to ask on where will I start learning how to pwn.
Lol jtag (hardware debugger) enabled in a ledger device you can directly manipulate registers and CPU values
i am confused about the hardware. why is ther a boost
converter? ships run on 1.62 V to 5.5 V or 2.0 - 3.6 V
maybe I also identified the wrong chip... I couldn't find anything about the display, and I thought maybe that the display needs a high voltage? But that is my guess with a lack of electronics knowledge .
Its probably for the Panel supply voltage for the LCD(SSD1306) that requires 7-15V while the IC logic of the LCD just needs 3.3V
@@LiveOverflow i found the same ship and the inductor above is typical for boost circuits. all the traces seem to go to the Display. i thought it would be a I2C, 3.3v Display. XD
"I have no clue what I'm doing, but it looks good" - LiveOverflow
JTAG is normally a programming interface
what camera/ lens did you get?
I have it linked in the description. It’s a Canon 80D and the Canon EF-S 35mm 1:2.8 macro lens
@@LiveOverflow I really should have looked in the description before I asked...
Don’t worry about it :)
APPRECIATE THEM
holy sh!t i love hw related hacking :) Hope to see more GSM videos tho :)
How is that safe to show us your mnemonic backup phrase?
maybe... probably... obviously it's not a real backup phrase? ;)
You cheater! XD
TBH I thought maybe there's a way to generate a new key on the device and you simply did that after recording a video about how to get the phrase out. Maybe. IDK.
I APRECIATE !!1!!!11!
I bet you can reprogram that puppy just like arduino or smth
Maybe even try serial commands somehow
appreciated
What kind of camera and lens?
I have it linked in the description. It’s a Canon 80D and the Canon EF-S 35mm 1:2.8 macro lens
@@LiveOverflow I see. I use the 70D which looks like an older version of the same thing (split-pixel CMOS, articulated screen). I've used Canon EOS bodies since they came out in 1987. Happy to give pointers or answer questions.
0:16 "vires in numeris"? I thought that means "lots of viruses"
7:21 I like these short interruptions. But can you explain how you mean this? is it total important or not for you? There a people how not have maybe the same skills in langue like dyslexia and more.
It’s just a joke of course. Who cares about that ;)
i like the crypto themes
what do you do for a living beside youtube?
I haven't really earned anything with youtube. I just created a business for this channel and started last week trying to earn a side-income with UA-cam. My main job is being a security consultant doing pentesting and security code audits.
Love you
waiting for next video...
Where can i find you and have a quick chat and ask you questions about how did you do that and that? Btw use your camera skills as a second job :))
where have you been at al 2020. ;u..!! just gone from youtube. :(..!!
tipo-tipo!
Shots apericated
screw the timeline, the videow would be better if you hadn't menchond the Crome extension until you needed to
Does anyone know where I can find apache2.4 settings for the apache2.conf configuration file in Linux?
Please make sure to keep your backup phrase secure by engraving it in titanium, check it out at cryptotag.io
Quality's so good, someone could reverse engineer your fingerprint(s). Like they did with chancellor Merkel's.
appreciate my artistic skills with a camera damn it (ノಠ益ಠ)ノ彡┻━┻
7:22
Only thing I can figure about the NB0 chip might be this: imgur.com/a/UYSYYhF
interesting! I wonder if that's coincidence or somebody liked that as a reference :D
I thought the best thing you can do with JTAG is this: ua-cam.com/video/a67p6pziKz8/v-deo.html Will be waiting what you can do with those unnamed test (SWD/JTAG) points.
*_fancy language_*
No come on, Show us more of your finger prints x)
I miss the face.
0:24 But if I hit the subscribe button, I'll unsubscribe from your channel and that number will go down!
10:45 :thinking: sound like xbox exploit
Woah
I solved my first CTF challenge at ctflearn.com, thanks for the quality videos
Run to like the video. then watch
plz watch first before rating it :)
@@LiveOverflow It doesn't matter, you can change your mind afterwards (and I highly doubt I wouldn't like one of your videos).
Helooooooi
In what way "Vires in Numeris" is "fancy language" ?....... Man that is Latin.... The way you talked about was like is was leetspeak.. :(
Honestly, the constant focusing of the camera is quite irritating.
haha sorry. yeah I was playing with it. I guess I was a bit too "artistic" with it :P
@@LiveOverflow I can appreciate that. I also find it wierdly satisfying when the focus is nailed perfectly.
EarLY
didn't get anything useful, JTAG? easily disabled by sceure bit/fuse, any none stupid manufacturer will disable it by default, even it just a toster controller
chrome again xDDDDDD
First
I love your videos, I also make crypto videos if anyone is interested 😉
You are lying
I sir....great video please make a video about making own python tools and how they works...
He has a video about programming in python, go watch it!
This channel is not for programming
@@damejelyas what you want to say....
Ok