×

Discussion Board

Results 1 to 13 of 13
  1. #1
    Registered User
    Join Date
    Feb 2005
    Location
    Belgium (Europe)
    Posts
    1,352

    Cool [announce] hack v1.02 module with peek poke functions !

    hello ,

    Now you can direct access to phone memory (2nd ed) change memory contents(poke) or look at it(peek) !

    There are limitations to direct memory access : you can only peek/poke those memory addresses that are valid for current process !

    Original idea and code from Raul Aguaviva Upgrades by Cyke64

    example :
    Code:
    import miso
    import hack
    
    EDisplayMemoryAddress = 0x4E
    video_mem = miso.get_hal_attr(EDisplayMemoryAddress)
    print hack.peek(video_mem)  # value ...
    hack.poke(video_mem,97) # change it 
    print hack.peek(video_mem) # 97 = 'a' 
    hack.poke(video_mem,ord('b')) # change it 
    print hack.peek(video_mem) # 98 = 'b'
    hack.pyd (2nd)
    hack for 3rd
    hack for 3rd unsigned
    source code for 3rd conversion ...
    Last edited by cyke64; 2006-12-09 at 18:49. Reason: hack for 3rd !
    pys60 1.4.5 and 2.0.0, pygame, PyS60 CE on E90 and 5800 !

    Find my pys60 extension modules on cyke64.googlepages.com

  2. #2
    Registered User
    Join Date
    Sep 2005
    Posts
    30

    Re: [announce] hack v1.02 module with peek poke functions !

    Hey Cyke64, thanks for posting the module and for the credits, hope we'll see some cool hacks coming!

    It would be nice to be able to make some IN and OUTs, that way you could talk directly to the other chips in the phone, for exampe to drive the infra red port or to the MMU.. (just presuming here)

    Anyone knows how to disable the MMU? (this is the chip that prevents peeking and poking to other processes' memory addresses) ... why is this cool? because you could take over the phone with, for example, with a linux kernel.... :-)

  3. #3
    Registered User
    Join Date
    Feb 2005
    Location
    Belgium (Europe)
    Posts
    1,352

    Re: [announce] hack v1.02 module with peek poke functions !

    Quote Originally Posted by xchip
    Hey Cyke64, thanks for posting the module and for the credits, hope we'll see some cool hacks coming!

    It would be nice to be able to make some IN and OUTs, that way you could talk directly to the other chips in the phone, for exampe to drive the infra red port or to the MMU.. (just presuming here)

    Anyone knows how to disable the MMU? (this is the chip that prevents peeking and poking to other processes' memory addresses) ... why is this cool? because you could take over the phone with, for example, with a linux kernel.... :-)
    When poking the value 0 in the all video memory I succeed to change the color skin to light blue
    For using kernel linux and symbian (dual boot ) on symbian SX1 phone you can look at panic code
    It works !
    pys60 1.4.5 and 2.0.0, pygame, PyS60 CE on E90 and 5800 !

    Find my pys60 extension modules on cyke64.googlepages.com

  4. #4
    Registered User
    Join Date
    Sep 2005
    Posts
    30

    Re: [announce] hack v1.02 module with peek poke functions !

    Quote Originally Posted by cyke64
    When poking the value 0 in the all video memory I succeed to change the color skin to light blue
    I guess that is because your phone stores there the color palette, the RGB colours are probably encoded in 16 bit numbers in RGB format (probably 5bits for red,6 for green,5 and for blue) since you zeroed the hi part of the 16 bit number you just left the blue component (plus a bit of green)

    Quote Originally Posted by cyke64
    For using kernel linux and symbian (dual boot ) on symbian SX1 phone you can look at panic code
    It works !
    Yep that project is pretty cool! But having to flash the phone is not easy... The reason why he needs to intall a special bootstrap is because at that point the MMU has not been configured by symbian, the MMU checks whether the process wishing to access a particular memory region has permission to do so. Before the MMu has been configures you can write to any memory position so you can put the kernel in the right place and let it take over the phone and all the memory...


    if we could reconfigure the MMU once symbian has booted we wouldn't need the bootloader, we could have a little icon in the symbian directory that copies a linux kernel to the right memory position and then executes it,

    after that we could have latest version python running on the phone by just recompliling :-)
    Last edited by xchip; 2006-10-03 at 01:29.

  5. #5
    Registered User
    Join Date
    Feb 2005
    Location
    Belgium (Europe)
    Posts
    1,352

    Re: [announce] hack v1.02 module with peek poke functions !

    hello ,

    hack module is now available for 3rd (signed and unsigned for poweruser !)
    pys60 1.4.5 and 2.0.0, pygame, PyS60 CE on E90 and 5800 !

    Find my pys60 extension modules on cyke64.googlepages.com

  6. #6
    Registered User
    Join Date
    Feb 2006
    Location
    Brazil
    Posts
    523

    Re: [announce] hack v1.02 module with peek poke functions !

    Sorry, i didn't understand it very well:

    Is it some kind of "Phone Shark" (like Game Shark for video game consoles), where user can write bytes to some address in the RAM?

    If yes, could someone explain how to use it?

  7. #7
    Registered User
    Join Date
    Feb 2005
    Location
    Belgium (Europe)
    Posts
    1,352

    Re: [announce] hack v1.02 module with peek poke functions !

    Quote Originally Posted by alb3530
    Sorry, i didn't understand it very well:

    Is it some kind of "Phone Shark" (like Game Shark for video game consoles), where user can write bytes to some address in the RAM?

    If yes, could someone explain how to use it?
    It's not an application ! It's only a module which allow you to write bytes and read byte at some address (not all only these which are unprotected)

    Some examples can be found here !
    pys60 1.4.5 and 2.0.0, pygame, PyS60 CE on E90 and 5800 !

    Find my pys60 extension modules on cyke64.googlepages.com

  8. #8
    Registered User
    Join Date
    Feb 2006
    Location
    Brazil
    Posts
    523

    Re: [announce] hack v1.02 module with peek poke functions !

    If it allows writing bytes to certain addresses, then it's some kind of "game shark" for phones?

    For example, suppose i want to write
    3C to 0x5a152001
    50 to 0x5a152002
    and 2B to 0x5a152003

    Can i do such thing using this module?
    If yes, how?

  9. #9
    Registered User
    Join Date
    Feb 2005
    Location
    Belgium (Europe)
    Posts
    1,352

    Re: [announce] hack v1.02 module with peek poke functions !

    Quote Originally Posted by alb3530
    If it allows writing bytes to certain addresses, then it's some kind of "game shark" for phones?

    For example, suppose i want to write
    3C to 0x5a152001
    50 to 0x5a152002
    and 2B to 0x5a152003

    Can i do such thing using this module?
    If yes, how?
    Here's THE answer !

    Code:
    import miso
    import hack
    
    EDisplayMemoryAddress = 0x4E
    video_mem = miso.get_hal_attributes(EDisplayMemoryAddress)
    # First adress video mem  = 0x5a152000
    
    print hack.peek(video_mem)
    
    hack.poke(video_mem+1,0x3c) 
    hack.poke(video_mem+2,0x50) 
    hack.poke(video_mem+3,0x2b) 
    
    print hack.peek(video_mem+1) 
    print hack.peek(video_mem+2)
    print hack.peek(video_mem+3)
    pys60 1.4.5 and 2.0.0, pygame, PyS60 CE on E90 and 5800 !

    Find my pys60 extension modules on cyke64.googlepages.com

  10. #10
    Registered User
    Join Date
    Feb 2006
    Location
    Brazil
    Posts
    523

    Re: [announce] hack v1.02 module with peek poke functions !

    It's "get_hal_attr" instead "get_hal_attributes", right?

    I've tested and it worked.


    I took a look at your script and i've seen there's no address expressed clearly on it.It's just mentioned it's video memory, then it'll be 0x5a152000

    But isn't it possible to have a global script where users could specify manually the address inside the script?For example, i want to write FF to 0x517157d0 (It's not video memory)
    Do we need different scripts for each memory?

    I'm asking this cause i'm thinking of creating some interface to allow user to enter address and byte to be written to it rather than modify the whole script every try.

    Finally, i want to say i'm happy with the possibilities "hack" module offers.
    I'd already thought about the possibility of such thing to be created for phones.
    Another superb thing i think would be great is a RAM explorer, allowing users to see RAM content (with a hex viewer) and edit it (with a hex editor).But honestly i think no one will be interested in creating such thing (although for me and maybe 7 or 8 other people it would be fantastic)

    As i'm happy, at the same time i'm wondering how can it be we've come to this far, where there's no c++ application that allows to write bytes to memory addresses, and a Python module is the only thing that can do it.

  11. #11
    Registered User
    Join Date
    Jan 2010
    Posts
    1

    Re: [announce] hack v1.02 module with peek poke functions !

    Please update module for Python 2.0.0.
    Thanks

  12. #12
    Registered User
    Join Date
    May 2012
    Location
    Slovakia
    Posts
    1

    Re: [announce] hack v1.02 module with peek poke functions !

    OK guys so who is gonna to solve the issue with video memory for Belle FP1?
    or who is goona to make Android / MeeGo bootable for Symbian phones?

  13. #13
    Nokia Developer Moderator
    Join Date
    Feb 2006
    Location
    Oslo, Norway
    Posts
    28,752

    Re: [announce] hack v1.02 module with peek poke functions !

    Apart from #11, this discussion in 5.5 years old. So probably no one is addressing the Python-related part of the topic now.
    Replacing of the OS is not supported by Nokia, and as Nokia Developer is an official discussion site operated by Nokia, such attempts are not to be discussed here. Check sites like All About Symbian and Symbian Freak, but do not expect too much.

Similar Threads

  1. Issue when trying to generate .sis file
    By rmulam in forum Symbian Tools & SDKs
    Replies: 9
    Last Post: 2009-08-13, 14:10
  2. [announce] sysagent module
    By cyke64 in forum Symbian
    Replies: 7
    Last Post: 2009-01-28, 12:52
  3. [announce] Call status and key press module
    By agrauballe in forum Symbian
    Replies: 21
    Last Post: 2007-09-19, 01:45
  4. Carbide.j 1.5 and Netbeans 5.5 beta 2
    By ovjo12 in forum Mobile Java Tools & SDKs
    Replies: 5
    Last Post: 2007-06-11, 05:43
  5. Replies: 0
    Last Post: 2006-06-11, 12:13

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
×