Page 2 of 20 FirstFirst 123456789101112 ... LastLast
Results 11 to 20 of 196
Discuss [NCK] validation algorithm public at the iPhone "2G" (Rev. 1) - Hackint0sh.org; Originally Posted by geohot__ Okay, THIS IS NOT AN UNLOCK. Don't try to brute force ...
  1. #11
    Senior Professional Array Nikolas.A's Avatar

    Join Date
    Oct 2007
    Posts
    183
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    16

    Default

    Quote Originally Posted by geohot__ View Post
    Okay, THIS IS NOT AN UNLOCK. Don't try to brute force your phones seczone, it won't succeed. This brute force needs to be optimized 100x before it can even be attempted on a *distributed* system.

    Also if you want to see the program work, run it on ltoken_test included in the rar file. I encrypted that seczone with the nck "123456". It successfully unlocked the phone when I uploaded it so I know the tool works.

    Someone should h/w dump a French/German phone then order the unlock for it. That'll really test the brute forcer with an Apple NCK.

    WE STILL REALLY NEED THOSE PLISTS
    If we try this on a phone, wouldn't the phone get locked?for good that is!5 failed unlock attempts = 1 bricked iphone?

    i made some fast calculations and it would take 35 years for an average dual core computer to crack this.
    If its improved 100x then it would take 0.35 years ~ 4 months.
    If 100 join the effort then it would take (4months * 30 days) 120/100=1.2 days for each phone!

    So all-in-all, its a possible solution given that people with contribute with their machine power.

    But does this require to get a hardware dump of the nck?
    If people have the tools and knowledge to open the phone and get the dump, wouldn't be simpler to hardware flash their BB?
    Or is there a way to get the dump with software?


  2. #12
    Amazingly Knowledgeable Array Locked's Avatar

    Join Date
    Aug 2007
    Location
    127.0.0.1
    Posts
    900
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    53

    Default

    If I am not mistaken, this means that all people with 3.9 bootloader can now use this tool to obtain NCK and have a properly unlocked iPhone.

  3. #13
    Senior Professional Array Nikolas.A's Avatar

    Join Date
    Oct 2007
    Posts
    183
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    16

    Default

    Yes people with 3.9 can extract their NCK and attempt to find their unlock code.
    Best case senario, phone will unlock after 1 attempt.
    Worst case senario, it would take 35 to get your code

    On the other hand it might be possible to run the tool starting with all zeros and working the way up, and find lets say that code X unlocks NCK Y and publish that list?
    So in a contributed effort of 100 machines with a 100x improved algorithm, we could have a complete list of all unlock codes for all phones in 1.2 days

    Even if we just improve the algo 10x or only 10 machines contribute or apple decides to add another digit to the lock codes it would take 12 days to create the new list.

    Just speculation based on the assumption that we can work the way up on unlock codes and figure out the NCK they unlock!
    Last edited by Nikolas.A; 12-17-2007 at 10:34 AM.

  4. #14
    Rookie Array

    Join Date
    Dec 2007
    Location
    italy
    Posts
    13
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    hi all,
    i've 6 imac core 2 duo 2,16 Ghz ready for the challenge....

    let us know when you are ready
    go on guys, good work!!

  5. #15
    Amazingly Knowledgeable Array Locked's Avatar

    Join Date
    Aug 2007
    Location
    127.0.0.1
    Posts
    900
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    53

    Default

    Quote Originally Posted by Nikolas.A View Post
    Yes people with 3.9 can extract their NCK and attempt to find their unlock code.
    The NCK is the unlock code.


  6. #16
    Senior Professional Array Nikolas.A's Avatar

    Join Date
    Oct 2007
    Posts
    183
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    16

    Default

    Quote Originally Posted by Locked View Post
    The NCK is the unlock code.
    Ok i got a little bit confused here!
    Is it possible to extract the NCK?
    If yes why is the bruteforce needed?Or do we have to pass codes to the phone through an algorithm that's gonna generate the NCK?

    Nad if the code is generated, can't people with pre4.06 bootloader load a hacked BB that's gonna pass the NCK directly without the generation part.

  7. #17
    Senior Professional Array

    Join Date
    Nov 2007
    Posts
    155
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    15

    Default

    Quote Originally Posted by Nikolas.A View Post
    Ok i got a little bit confused here!
    Is it possible to extract the NCK?
    If yes why is the bruteforce needed?Or do we have to pass codes to the phone through an algorithm that's gonna generate the NCK?

    Nad if the code is generated, can't people with pre4.06 bootloader load a hacked BB that's gonna pass the NCK directly without the generation part.
    NCK is the code you give to the modem in your iPhone, which then does a bunch of operations to it to validate the code. If it is validated the phone unlocks itself. However the algorithm is not reversible to get the NCK from your phone, hence the BF attempt...
    iPhone 3G 16GB white. Official on contract. Used to have a w48 iPhone (OTB 1.1.2) all the way to 2.0.1 when I went legit.

    Current FW: 2.0.2
    Carrier: EMT (Estonia)
    All functions working

  8. #18
    Senior Professional Array Nikolas.A's Avatar

    Join Date
    Oct 2007
    Posts
    183
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    16

    Default

    so is it possible to do the list in my post #13?

  9. #19
    Amazingly Knowledgeable Array Locked's Avatar

    Join Date
    Aug 2007
    Location
    127.0.0.1
    Posts
    900
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    53

    Lightbulb

    Quote Originally Posted by Nikolas.A View Post
    Ok i got a little bit confused here!
    Is it possible to extract the NCK?
    If yes why is the bruteforce needed?Or do we have to pass codes to the phone through an algorithm that's gonna generate the NCK?
    The NCK is the code used to illegitimately unlock a GSM phone. This source code posted by geohot attempts to find this NCK using brute force.

    Due to miserably security on Apple's part this NCK can be found by trying out different keys (i.e NCK) to decrypt the RSA token that is stored in the seczone. Only one generated key (i.e NCK) will result in properly decrypting the token.

  10. #20
    Advanced Array

    Join Date
    Oct 2007
    Posts
    37
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    maybe dummy Q, but, can we provide those CPU power on a same way as SETI@Home work, over the network?, if we just leave our screensaver runs, or maybe, overnight leave our computers runs "something"


 

 

Similar Threads

  1. Looking for Volunteers for Product Validation
    By mafili in forum iPhone Developer Exchange
    Replies: 0
    Last Post: 06-01-2011, 04:39 AM
  2. Help with Multiple Text Field Validation
    By zacharyrs in forum iPhone Developer Exchange
    Replies: 0
    Last Post: 01-12-2010, 08:02 PM
  3. MacNN: Cheetah3D 5.1 intros new automatic skinning algorithm
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 12-01-2009, 07:50 PM
  4. MacNN: AKVIS Sketch 9.0 provides new conversion algorithm
    By hackint0sh in forum Latest Headlines
    Replies: 0
    Last Post: 08-17-2009, 09:20 PM
  5. [Update] iPod touch $20 validation on reload
    By juliangall in forum iPod Touch 1G
    Replies: 8
    Last Post: 01-21-2008, 03:53 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 01:09 PM.
twitter, follow us!