Hört bitte auf mit diesem Hin und Her Wechsel zwischen Speaker fullscreen und Präsi. Lasst doch einfach den Speaker unten rechts und die Präsi groß oben links. Manchmal sieht man ganze Folien deswegen gar nicht.
I watch this guy's RUclips and I really like your content. It's really cool to see these hacks out in the wild, and not kept for select groups of hackers.
00:51 📱 Thomas Roth, aka Stack Smashing, discusses hardware hacking on the iPhone 15, focusing on the USBC port. 02:28 🚫 No jailbreaking or exploits discussed, but the talk centers on hardware exploration, comparing iPhone generations, and the pursuit of root access. 04:36 📲 Lightning connectors in past iPhones had unique uses, such as accessing a serial port or utilizing a specialized cable for debugging. 05:16 💡 Developing their own cable named Tamarind, Stack Smashing and team created a hardware solution for accessing JTAG and SWD on iPhones. 11:49 🔗 Tamarind cable is open source, providing a serial console, probe, reset, DFU support, costing around $10 to build. 13:01 🆕 iPhone 15 introduces USBC, rendering Tamarind cable obsolete; Stack Smashing explores the potential of USBC for hardware hacking. 18:37 🛠 Using the Mac VDM Tool and a breakout board, Stack Smashing demonstrates reconfiguring USBC on iPhone 15 for serial output, showing potential for hardware exploration. 20:27 📱 Modified "central scrutinizer" with USB switch for power, enabling access to iPhone pins for reboot and serial output. 21:40 🧩 Discovered SWD (Serial Wire Debug) on iPhone 15, allowing connection with debug probe, but faced limitations due to production device. 25:06 ⚙ Developed "Tamarind C" hardware with USB-C cable, providing access to iPhone pins and integrating SWD probe, enabling exploration of various buses. 27:14 🛠 Explored different buses using logic analyzer and Tamarind C, identifying a 6 MHz B rate UART and SPMI (System Power Management Interface). 32:45 🕵 Implemented SPMI sniffer support on Tamarind C, decoding ACE3 communication on iPhone, potentially discovering vulnerabilities. 33:54 💾 Announced release of Tamarind C hardware and firmware, SPMI analyzer, sniffer, and i2C Trans Receiver for experimentation with USB-C on iPhone and MacBooks. 35:42 🔌 Shared that iPhone 15 is not the first iPhone with USBC capabilities; using USBC to Lightning cable allows USBC power delivery over Lightning connector.
Interesting! I've been watching stacksmashing channel, but I had never seen his face, it's nice to put a face to those hands, probes and ghidra images 😂
Great talk. But the manufacturer should be forced to publish documentation about this by themselves, instead of people having to spend so much time to reverse engineer it.
They did back in 90’s for example TESLA Czechoslovakia there were whole documentations but now we don’t have anything it’s so sad and disgusting how people fight between each other
Hört bitte auf mit diesem Hin und Her Wechsel zwischen Speaker fullscreen und Präsi.
Lasst doch einfach den Speaker unten rechts und die Präsi groß oben links. Manchmal sieht man ganze Folien deswegen gar nicht.
Ja, was soll das?!
I watch this guy's RUclips and I really like your content. It's really cool to see these hacks out in the wild, and not kept for select groups of hackers.
Great presenter, cool research ánd brings giveaway boards. Amazing!
So much work compressed into 36 minutes, damn!
00:51 📱 Thomas Roth, aka Stack Smashing, discusses hardware hacking on the iPhone 15, focusing on the USBC port.
02:28 🚫 No jailbreaking or exploits discussed, but the talk centers on hardware exploration, comparing iPhone generations, and the pursuit of root access.
04:36 📲 Lightning connectors in past iPhones had unique uses, such as accessing a serial port or utilizing a specialized cable for debugging.
05:16 💡 Developing their own cable named Tamarind, Stack Smashing and team created a hardware solution for accessing JTAG and SWD on iPhones.
11:49 🔗 Tamarind cable is open source, providing a serial console, probe, reset, DFU support, costing around $10 to build.
13:01 🆕 iPhone 15 introduces USBC, rendering Tamarind cable obsolete; Stack Smashing explores the potential of USBC for hardware hacking.
18:37 🛠 Using the Mac VDM Tool and a breakout board, Stack Smashing demonstrates reconfiguring USBC on iPhone 15 for serial output, showing potential for hardware exploration.
20:27 📱 Modified "central scrutinizer" with USB switch for power, enabling access to iPhone pins for reboot and serial output.
21:40 🧩 Discovered SWD (Serial Wire Debug) on iPhone 15, allowing connection with debug probe, but faced limitations due to production device.
25:06 ⚙ Developed "Tamarind C" hardware with USB-C cable, providing access to iPhone pins and integrating SWD probe, enabling exploration of various buses.
27:14 🛠 Explored different buses using logic analyzer and Tamarind C, identifying a 6 MHz B rate UART and SPMI (System Power Management Interface).
32:45 🕵 Implemented SPMI sniffer support on Tamarind C, decoding ACE3 communication on iPhone, potentially discovering vulnerabilities.
33:54 💾 Announced release of Tamarind C hardware and firmware, SPMI analyzer, sniffer, and i2C Trans Receiver for experimentation with USB-C on iPhone and MacBooks.
35:42 🔌 Shared that iPhone 15 is not the first iPhone with USBC capabilities; using USBC to Lightning cable allows USBC power delivery over Lightning connector.
At least label your AI garbage
man, i wish this was a whole series... great talk
Interesting! I've been watching stacksmashing channel, but I had never seen his face, it's nice to put a face to those hands, probes and ghidra images 😂
Ich check halt absolut nichts, aber trotzem ein gutes Video.
Absolutely love this talk! This is the reason I keep looking for CCC!
The SPMIAnalyzer was taken down or not yet made public?
Great talk. But the manufacturer should be forced to publish documentation about this by themselves, instead of people having to spend so much time to reverse engineer it.
They did back in 90’s for example TESLA Czechoslovakia there were whole documentations but now we don’t have anything it’s so sad and disgusting how people fight between each other
i'm not done watching but why does he talk about lightning on an iphone 15 ? it's usb C
12:56 : nvm :)
Was watching like it's a thriller!
Nice work, I hope understanding enough 😅❤
can u explain a little bit what happened here
Great talk
Loved this!
Very very cool! I loved it.Thanks for your work.
i dont know how this doesnt have more views already
*schnalz* Nice!
Very interesting 🙃
What extensions are those at 24:36 to the left of the address bar?
yes please. how to purchase?