Hacker's Guide to UART Root Shells

preview_player
Показать описание
Learn tricks and techniques like these, with us, in our amazing training courses!

The UART Protocol and Interface is crucial for hacking IoT devices. We explain how to quickly identify a UART interface and connect to it to get a root shell, as well as a trick on how to re-enable a UART connector that has been disabled by the manufacturer.

00:00 Intro
01:00 What is UART?
04:05 Identifying UART
07:56 Connecting to UART
08:52 The UART Protocol
14:42 Re-enabling broken UART

Did you enjoy this video? Then follow us on Twitter, and subscribe to our channel for more awesome hacking videos.

~ Flashback Team
  1. Flashback Team
  2. UART
  3. UART Protocol
  4. Saleae
  5. IoT
  6. UART hacking
Рекомендации по теме
Hacker's Guide to 0:17:40

Hacker's Guide to UART Root Shells

Fun With HARDWARE 0:31:15

Fun With HARDWARE HACKING!!! - UART ROOT SHELLS and Finding SECRETS!

UART Root Shell 0:14:35

UART Root Shell on Linux Router - Hacking the Totolink WiFi Router

Finding UART and 0:20:11

Finding UART and Getting a Root Shell on a Linux Router

Hardware Hacking - 0:21:57

Hardware Hacking - UART

Rooting My Router 0:13:06

Rooting My Router [Part 1] - Dumping Firmware Through UART

Hacking UART 0:09:59

Hacking UART

Mastering UART Communication: 0:38:07

Mastering UART Communication: Gaining Access & Extracting Firmware on Unknown Boards

Hardware Hacking Through 0:08:27

Hardware Hacking Through UART

Mastering UART Communication: 0:01:01

Mastering UART Communication: Gaining Access & Extracting Firmware on Unknown Boards

UART HACKING: Get 0:00:29

UART HACKING: Get Root Shell | Without Soldering #shorts #cybersecurity #iot

Analizzare Firmware tramite 0:07:04

Analizzare Firmware tramite UART - Hardware Ethical Hacking

Root access to 0:08:40

Root access to a asus AC3200 - UART Hacking ( Erick Junior Perez - LordGuccif3r)

I'M BACK: Firmware 0:10:13

I'M BACK: Firmware Extraction Tips and Tricks

DEF CON 32 0:54:12

DEF CON 32 - Anyone can hack IoT- Beginner’s Guide to Hacking Your First IoT Device - Andrew Bellini...

Extracting Firmware from 0:12:27

Extracting Firmware from Linux Router using the U-Boot Bootloader and UART

The Everything Interface: 0:05:19

The Everything Interface: Desktop to Chip [USB to SPI, I2C, JTAG, UART, SWD...]

Accessing Hidden Serial 0:07:21

Accessing Hidden Serial Consoles - USB-to-TTL Demo 1/2 - Hardware Hacking Series #4

Intro to hardware 0:21:00

Intro to hardware security: UART access and SPI firmware extraction

I HACKED my 0:09:43

I HACKED my Internet Service Provider's router. So I could get rid of it.

Getting root shell 0:02:38

Getting root shell on NEC Aterm WR8165N via UART by extracting HW_RANDOM_KEY

#03 - How 0:27:52

#03 - How To Find The JTAG Interface - Hardware Hacking Tutorial

Extracting Wi-Fi Password 0:13:40

Extracting Wi-Fi Password from Netgear N300 Router over UART

Hacking a Smart 0:01:00

Hacking a Smart Camera: IoT Hacking With Andrew Bellini (Part 4)

Комментарии
Автор

Keep up the videos very awesome! For someone new to hardware hacking what cheap devices could I try my hands on that has an UART interface?

jonathanbouchard
Автор

I'm lazy so I just usually try 9600, 19200 or 115200, works 99% of the time and is faster than reversing the baud rate. Of course for an educational video showing how you can calculate the baud rate is very good. Great video !

dev-debug
Автор

I had never considered before that you could take photos of both sides of the PCB and color traces in a photo editor. That's such a great idea!

Clawthorne
Автор

In 1990, I built from scratch a few micro controllers and communicated with them using a serial interface and a terminal to configure them. This video brings back old memories and makes me glad that people are using the same technique.

untermench
Автор

Hollywood Hacker: "I'm in the mainframe!"
Real world hacker: paperclip bridge

yuri
Автор

Please keep doing these. I’m trying very hard to learn to do stuff like this, I literally have all the gear. But either I’m slogging through textbooks that are too boring to read, just poking around under the microscope and multimeter or with uart to usb, reading tutorials for already wide open -eg dev boards and generally struggling.

altimmons
Автор

Wow, impressive how you tought me serial communication in 17minutes when I have had quite hard to grasp it before.
Very educational approch with practical example, and problem solving.
Subscribed!

PlaceholderforBjorn
Автор

If I wanted to show someone an example of what a well presented, entertaining YouTube video looks like, I would show them this channel.

StarsManny
Автор

This is an example of a perfect tutorial. Great pace, background info, and real-world examples. Thanks so much! Subscribed.

evanlane
Автор

Simply brilliant. Thank you for explaining the concept of calculating the baud rate so beautifully.

harshtiwari
Автор

7:20 - In most cases, which pin is the ground should be readily apparent. Usually all but one of them will have small traces connected. The one that has a large, wide trace is going to be the ground. Some PCBs, however, have a certain degree of protection by making the traces less visible. On those, a multimeter with continuity would be a necessity. This board is not one of those, as you can visibly see the North pin and the 2 South pins have small traces, and the odd one out is connected to the Board Common Ground. This works for simpler PCBs. It is the more complex ones - where the ground is less obvious - where you need to use this method.

seancondon
Автор

You can also use well known 'screen' command instead of 'minicom'. Screen is usually used to create background sessions but also has functionality to support configurable serial connections.

PCMrTrickster
Автор

This was interesting and informative. One small nit. I've always heard this called asynchronous serial protocol, and the UART is the hardware component that emits the protocol.

mheermance
Автор

Very cool video. I just got my first root shell on an old Wi-fi range extender I had lying around.

jonathanlein
Автор

One thing to note about baud rate is that the whole number integer values are not the only values you can use. There are fractional rates that are available, depending on the CLK frequency. Look up any of the older UART ICs and you should find the info.

greywolf
Автор

Never seen anyone teaching something so easily! Love this thank you sir

sauravmodak
Автор

This is the best tutorial i have seen about usb to ttl.
Thank you so much man for the help

GeorgeBoudouris
Автор

This video should be what youtube is all about. GREAT WORK teaching!

ryanreedgibson
Автор

A lot of the times, the manufacturer will have vcc connected to ground on the board which is what locks hart down and makes it read only.
By disconnecting them with a small tear (micro grinder works well for this so you can do repairs later) you open it up to read/write.

This is not for all of them, but it is a cheap and effective way that they do, do it.

Uneke
Автор

Thanks for documenting this. I got a root shell on my Archer C9 back in 2016 with the same simple UART interface.

aazjo