Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
stacksmashing Profile picture
stacksmashing
@ghidraninja
Security researcher with a focus on hardware & firmware. I occasionally publish stuff on YouTube. Co-founder of @hextreeio. Contact: contact@stacksmashing.net
Aug 8, 2024 9 tweets 3 min read
Let's talk about some of the security features of the new @Raspberry_Pi RP2350, because they are 🔥🧵 1.) Glitch Detectors

The RP2350 has 4 embedded glitch detectors, with configurable sensitivity. These will respond to voltage & EM fault-injection attempts, and reset the chip.

In our testing we found that they are quite effective at capturing most glitches. Image
Mar 5, 2024 6 tweets 2 min read
One of my neighbours seems to have a smart toilet - and it looks like I can connect to it 👀 Image According to the website I can remote control the bidet functionality 😂 Image
Oct 12, 2023 9 tweets 3 min read
So I was trying to sniff the BitLocker TPM key on an old laptop of mine - it has this great debug port that exposes most of the TPM (Low Pin Count Bus) signals, but it’s missing the clock signal. Image So I could either hunt for the clock signal on the backside - or build a "clockless" LPC analyzer! And after a bit of coding I built a @saleae LA analyzer that doesn't need a clock signal - and was able to decode the whole TPM communication! Image
Sep 23, 2023 16 tweets 5 min read
Let’s gooo Image Off to a good start - let the jankiness begin Image
Jul 13, 2023 5 tweets 2 min read
Ever wondered what makes a secure element secure?

A part of it is this pattern: Image This is a (not-so-great😅) die shot of the upper side of an ATECC608A secure element. As you can see, the upper layer looks like it's all metal - but if we zoom in, we get the above pattern Image
Aug 16, 2021 7 tweets 2 min read
Bought one of those small 7” field monitors for filming…

Turns out it drains its battery with 72mA - while turned off 😐 I’m sure my NP-F550 batteries really like to get discharged to absolute zero 🥲
Aug 4, 2021 6 tweets 2 min read
20 arcade buttons and a Raspberry Pi Pico make for a fun evening project 😀 Total project costs:
- $30 for arcade buttons
- $4 Pico
- $10 Blade receptacles
- Wire + random wooden board I had laying around

Time: Roughly two hours for the build (damn cable crimping). Takes longer if your chordless drill dies in the middle 🥲
May 8, 2021 6 tweets 2 min read
Yesss!!! After hours of trying (and bricking 2 AirTags) I managed to break into the microcontroller of the AirTag! 🥳🥳🥳

/cc @colinoflynn @LennertWo ImageImage Dumped the firmware and some important areas😀(am I missing any other important ones from the nRF52?) Image
May 7, 2021 20 tweets 6 min read
Continuing the tweet-chain of @colinoflynn on AirTag hacking, we will look at the flash contents now! Similar to most Apple embedded devices, the AirTags also seem to run RTKit... And this is where it gets interesting: It's a DEBUG build - debug builds have more functionality, and sometimes more logs & co - this is good news!

/cc @naehrdine Image
Nov 12, 2020 20 tweets 5 min read
My Nintendo Game and Watch arrived a day early! Let’s tear it down and see how it works - and how easy it is to hack it! For opening it up you unfortunately need some Y-style screwdrivers - let’s see what’s underneath!