interesting finds

[simply2low]

i was just poking around firmware 1.1 in an hex editor.. here is what i found -

filename - Eboot.bin

Ethernet MAC Address:

Code:

000031d6h: 00 4E 00 4F 00 4E 00 45 00 00 00 00 00 41 00 43 ; .N.O.N.E.....A.C
000031e6h: 00 43 00 45 00 53 00 53 00 4F 00 52 00 59 00 00 ; .C.E.S.S.O.R.Y..
000031f6h: 00 42 00 42 00 55 00 61 00 72 00 74 00 54 00 6F ; .B.B.U.a.r.t.T.o
00003206h: 00 70 00 00 00 45 00 54 00 48 00 45 00 52 00 4E ; .p...E.T.H.E.R.N
00003216h: 00 45 00 54 00 00 00 00 00 00 00 00 00 33 40 00 ; .E.T.........3@.
00003226h: 00 01 41 44 00 50 10 40 09 05 40 00 00 01 4C 53 ; ..AD.P.@..@...LS
00003236h: 00 50 10 40 09 78 20 00 00 01 4C 53 00 EC 10 29 ; .P.@.x ...LS.ì.)
00003246h: 80 F0 C0 00 00 01 4B 53 00 EC 10 29 81 00 00 00 ; €ðÀ...KS.ì.)...
00003256h: 00 04 52 54 00 EC 10 39 81 0B 90 00 00 04 52 54 ; ..RT.ì.9....RT
00003266h: 00 EC 10 39 81 C9 D0 00 00 04 52 54 00 EC 10 39 ; .ì.9ÉÐ...RT.ì.9
00003276h: 81 4C E0 00 00 04 52 54 00 86 11 00 13 BA 50 00 ; LÃ*...RT.â€*...ºP.
00003286h: 00 04 44 4C 00 0B 10 20 00 CC A0 00 00 05 4E 47 ; ..DL... .ÌÂ*...NG
00003296h: 00 B7 10 50 90 08 60 00 00 06 33 43 00 B7 10 00 ; .·.P.`...3C.·..
000032a6h: 92 76 04 00 00 06 33 43 00 49 6E 69 74 45 74 68 ; ’v....3C.InitEth
000032b6h: 44 65 76 69 63 65 3A 20 4F 41 4C 4B 69 74 6C 46 ; Device: OALKitlF
000032c6h: 69 6E 64 44 65 76 69 63 65 20 66 61 69 6C 65 64 ; indDevice failed
000032d6h: 0D 0A 00 00 00 49 6E 69 74 45 74 68 44 65 76 69 ; .....InitEthDevi
000032e6h: 63 65 3A 20 45 74 68 65 72 6E 65 74 20 64 65 62 ; ce: Ethernet deb
000032f6h: 75 67 67 69 6E 67 20 64 69 73 61 62 6C 65 64 20 ; ugging disabled 
00003306h: 62 79 20 42 53 50 5F 41 52 47 53 0D 0A 00 00 00 ; by BSP_ARGS.....
00003316h: 00 49 6E 69 74 45 74 68 44 65 76 69 63 65 3A 20 ; .InitEthDevice: 
00003326h: 42 61 73 65 20 61 64 64 72 20 3D 20 25 78 2C 20 ; Base addr = %x, 
00003336h: 25 78 0D 0A 00 49 6E 69 74 45 74 68 44 65 76 69 ; %x...InitEthDevi
00003346h: 63 65 3A 20 4D 41 43 20 61 64 64 72 65 73 73 3A ; ce: MAC address:
00003356h: 20 25 78 2D 25 78 2D 25 78 2D 25 78 2D 25 78 2D ;Â*Â*%x-%x-%x-%x-%x-
00003366h: 25 78 0D 0A 00 00 00 00 00 00Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â*Â* ; %x........

Orginal Device Name -notice the mention of GIGEBEAT

Code:

0002df10h: 03 00 00 21 03 00 00 FF FF FF FF 01 00 00 00 00 ; ...!...ÿÿÿÿ.....
0002df20h: 4D 00 6F 00 64 00 65 00 6C 00 00 2B 06 01 04 01 ; M.o.d.e.l..+....
0002df30h: 82 37 0C 02 01 00 00 00 4D 00 61 00 6E 00 75 00 ; ‚7......M.a.n.u.
0002df40h: 66 00 61 00 63 00 74 00 75 00 72 00 65 00 72 50 ; f.a.c.t.u.r.e.rP
0002df50h: 51 08 88 30 31 32 33 34 35 36 37 38 39 41 42 43 ; Q.ˆ0123456789ABC
0002df60h: 44 45 46 00 00 00 00 D3 07 01 00 03 00 01 00 00 ; DEF....Ó........
0002df70h: 00 00 00 00 00 00 00 00 00 00 00 9C 16 09 88 47 ; ...........œ..ˆG
0002df80h: 49 47 41 42 45 41 54 00 00 00 00 50 00 79 00 78 ; IGABEAT....P.y.x
0002df90h: 00 69 00 73 00 00 00 4D 00 69 00 63 00 72 00 6F ; .i.s...M.i.c.r.o
0002dfa0h: 00 73 00 6F 00 66 00 74 00 00 00 55 1D 25 00 54 ; .s.o.f.t...U.%.T
0002dfb0h: 97 04 88 40 97 04 88 68 97 04 88 7C 97 04 88 6C ; —.ˆ@—.ˆh—.ˆ|—.ˆl
0002dfc0h: 97 04 88 68 97 04 88 01 00 00 00 FF FF FF FF FF ; —.ˆh—.ˆ....ÿÿÿÿÿ
0002dfd0h: FF FF FF FF FF 00 43 03 00 00 00 30 00 31 00 32 ; ÿÿÿÿÿ.C....0.1.2
0002dfe0h: 00 33 00 34 00 35 00 36 00 37 00 38 00 39 00 61 ; .3.4.5.6.7.8.9.a
0002dff0h: 00 62 00 63 00 64 00 65 00 66 00 00 00 00 00 30 ; .b.c.d.e.f.....0
0002e000h: 00 31 00 32 00 33 00 34 00 35 00 36 00 37 00 38 ; .1.2.3.4.5.6.7.8
0002e010h: 00 39 00 41 00 42 00 43 00 44 00 45 00 46 00 EC ; .9.A.B.C.D.E.F.ì
0002e020h: B3 02 00 00 10 00 00 00 B4 02 00 00 10 04 88 00 ; ³.......´.....ˆ.
0002e030h: 10 04 88 20 00 00 60 70 98 01 00 00 D0 02 00 1F ; ..ˆ ..`p˜...Ð...
0002e040h: 06 00 00 78 D9 06 88 00 00 08 88 40 00 00 C0 78 ; ...xÙ.ˆ...ˆ@..Àx
0002e050h: 09 00 00 00 D0 02 00 00 0A 00 00 00 D0 06 88 00 ; ....Ð.......Ð.ˆ.
0002e060h: 70 08 88 40 00 00 40 6E 6B 2E 65 78 65 00 00 78 ; p.ˆ@..@nk.exe..x
0002e070h: D9 06 88 00 00 08 88 1F 06 00 00 70 98 01 00 F8 ; Ù.ˆ...ˆ....p˜..ø
0002e080h: DF 02 80 08 10 01 00 00 00 00 00 00 00 00 00Â*Â*Â*Â*; ß.€............

TFTP Usage and DHCP use -

Code:

00009cf0h: 04 00 00 06 33 43 00 45 74 68 44 6F 77 6E 3A 3A ; ....3C.EthDown::
00009d00h: 54 46 54 50 44 5F 4F 50 45 4E 3A 3A 25 73 0D 0A ; TFTPD_OPEN::%s..
00009d10h: 00 00 00 45 74 68 44 6F 77 6E 3A 3A 49 6C 6C 65 ; ...EthDown::Ille
00009d20h: 67 61 6C 20 4F 70 65 72 61 74 69 6F 6E 20 43 6F ; gal Operation Co
00009d30h: 64 65 20 25 75 0D 0A 00 00 00 00 53 65 72 76 65 ; de %u......Serve
00009d40h: 72 20 52 65 67 69 73 74 72 61 74 69 6F 6E 20 46 ; r Registration F
00009d50h: 61 69 6C 65 64 0D 0A 00 00 00 00 45 62 6F 6F 74 ; ailed......Eboot
00009d60h: 53 69 6D 70 6C 65 54 46 54 50 20 6E 6F 74 20 69 ; SimpleTFTP not i
00009d70h: 6E 69 74 69 61 6C 69 7A 65 64 0D 0A 00 00 00 45 ; nitialized.....E
00009d80h: 62 6F 6F 74 47 72 61 74 75 69 74 6F 75 73 41 52 ; bootGratuitousAR
00009d90h: 50 20 66 61 69 6C 65 64 0D 0A 00 53 6F 6D 65 20 ; P failed...Some 
00009da0h: 6F 74 68 65 72 20 73 74 61 74 69 6F 6E 20 68 61 ; other station ha
00009db0h: 73 20 49 50 20 41 64 64 72 65 73 73 3A 20 25 73 ; s IP Address: %s
00009dc0h: 20 21 21 21 20 41 62 6F 72 74 69 6E 67 2E 0D 0A ;Â*Â*!!! Aborting...
00009dd0h: 00 00 00 4E 6F 20 41 52 50 20 72 65 73 70 6F 6E ; ...No ARP respon
00009de0h: 73 65 20 69 6E 20 25 64 20 73 65 63 6F 6E 64 73 ; se in %d seconds
00009df0h: 2C 20 61 73 73 75 6D 69 6E 67 20 6F 77 6E 65 72 ; , assuming owner
00009e00h: 73 68 69 70 20 6F 66 20 25 73 0D 0A 00 00 00 45 ; ship of %s.....E
00009e10h: 72 72 6F 72 20 4F 6E 20 49 6E 69 74 44 48 43 50 ; rror On InitDHCP
00009e20h: 28 29 20 43 61 6C 6C 0D 0A 00 00 53 6F 6D 65 20 ; () Call....Some 
00009e30h: 6F 74 68 65 72 20 73 74 61 74 69 6F 6E 20 68 61 ; other station ha
00009e40h: 73 20 49 50 20 41 64 64 72 65 73 73 3A 20 25 73 ; s IP Address: %s
00009e50h: 20 21 21 21 20 52 65 74 72 79 69 6E 67 2E 0D 0A ;Â*Â*!!! Retrying...
00009e60h: 00 00 00 47 6F 74 20 52 65 73 70 6F 6E 73 65 20 ; ...Got Response 
00009e70h: 66 72 6F 6D 20 44 48 43 50 20 73 65 72 76 65 72 ; from DHCP server
00009e80h: 2C 20 49 50 20 61 64 64 72 65 73 73 3A 20 25 73 ; , IP address: %s
00009e90h: 0D 0A 00 2D 45 62 6F 6F 74 53 65 6E 64 42 6F 6F ; ...-EbootSendBoo
00009ea0h: 74 6D 65 41 6E 64 57 61 69 74 46 6F 72 54 66 74 ; tmeAndWaitForTft
00009eb0h: 70 0D 0A 00 00 00 00 2B 45 62 6F 6F 74 53 65 6E ; p......+EbootSen
00009ec0h: 64 42 6F 6F 74 6D 65 41 6E 64 57 61 69 74 46 6F ; dBootmeAndWaitFo
00009ed0h: 72 54 66 74 70 0D 0A 00 00 00 00 62 6F 6F 74 2E ; rTftp......boot.
00009ee0h: 62 69 6E 00 00 00 00 00 00 00 00 33 40 00 00 01 ; bin........3@...
00009ef0h: 41 44 00 50 10 40 09 05 40 00 00 01 4C 53 00 50 ; AD.P.@..@...LS.P
00009f00h: 10 40 09 78 20 00 00 01 4C 53 00 EC 10 29 80 F0 ; .@.x ...LS.ì.)€ð
00009f10h: C0 00 00 01 4B 53 00 EC 10 29 81 00 00 00 00 04 ; À...KS.ì.).....
00009f20h: 52 54 00 EC 10 39 81 0B 90 00 00 04 52 54 00 EC ; RT.ì.9....RT.ì
00009f30h: 10 39 81 C9 D0 00 00 04 52 54 00 EC 10 39 81 4C ; .9ÉÐ...RT.ì.9L
00009f40h: E0 00 00 04 52 54 00 86 11 00 13 BA 50 00 00 04 ; Ã*...RT.â€*...ºP...
00009f50h: 44 4C 00 0B 10 20 00 CC A0 00 00 05 4E 47 00 B7 ; DL... .ÌÂ*...NG.·
00009f60h: 10 50 90 08 60 00 00 06 33 43 00 B7 10 00 92 76 ; .P.`...3C.·..’v
00009f70h: 04 00 00 06 33 43 00 49 6C 6C 65 67 61 6C 20 54 ; ....3C.Illegal T
00009f80h: 46 54 50 20 4F 70 65 72 61 74 69 6F 6E 20 2D 20 ; FTP Operation - 
00009f90h: 52 65 61 64 2F 57 72 69 74 65 20 52 65 71 20 45 ; Read/Write Req E
00009fa0h: 78 70 65 63 74 65 64 00 00 00 00 59 6F 75 20 6D ; xpected....You m
00009fb0h: 75 73 74 20 61 63 63 65 73 73 20 66 69 6C 65 73 ; ust access files
00009fc0h: 20 69 6E 20 62 69 6E 61 72 79 20 6D 6F 64 65 2E ;Â*Â*in binary mode.
00009fd0h: 00 00 00 6F 63 74 65 74 00 00 00 4C 6F 63 6B 65 ; ...octet...Locke
00009fe0h: 64 20 44 6F 77 6E 20 4C 69 6E 6B 20 25 64 0D 0A ; d Down Link %d..
00009ff0h: 00 00 00 53 72 63 20 49 50 20 25 73 20 50 6F 72 ; ...Src IP %s Por
0000a000h: 74 20 25 48 20 20 20 00 00 00 00 44 65 73 74 20 ; t %HÂ*Â* ....Dest 
0000a010h: 49 50 20 25 73 20 50 6F 72 74 20 25 48 0D 0A 00 ; IP %s Port %H...
0000a020h: 00 00 00 4E 6F 20 53 65 72 76 65 72 20 50 72 6F ; ...No Server Pro
0000a030h: 63 65 73 73 20 41 73 73 6F 63 69 61 74 65 64 20 ; cess Associated 
0000a040h: 57 69 74 68 20 46 69 6C 65 20 4E 61 6D 65 20 25 ; With File Name %
0000a050h: 73 0D 0A 00 00 00 00 00 00 00 00 33 40 00 00 01 ; s..........3@...
0000a060h: 41 44 00 50 10 40 09 05 40 00 00 01 4C 53 00 50 ; AD.P.@..@...LS.P
0000a070h: 10 40 09 78 20 00 00 01 4C 53 00 EC 10 29 80 F0 ; .@.x ...LS.ì.)€ð
0000a080h: C0 00 00 01 4B 53 00 EC 10 29 81 00 00 00 00 04 ; À...KS.ì.).....
0000a090h: 52 54 00 EC 10 39 81 0B 90 00 00 04 52 54 00 EC ; RT.ì.9....RT.ì
0000a0a0h: 10 39 81 C9 D0 00 00 04 52 54 00 EC 10 39 81 4C ; .9ÉÐ...RT.ì.9L
0000a0b0h: E0 00 00 04 52 54 00 86 11 00 13 BA 50 00 00 04 ; Ã*...RT.â€*...ºP...
0000a0c0h: 44 4C 00 0B 10 20 00 CC A0 00 00 05 4E 47 00 B7 ; DL... .ÌÂ*...NG.·
0000a0d0h: 10 50 90 08 60 00 00 06 33 43 00 B7 10 00 92 76 ; .P.`...3C.·..’v
0000a0e0h: 04 00 00 06 33 43 00 54 46 54 50 3A 20 44 65 73 ; ....3C.TFTP: Des
0000a0f0h: 6B 74 6F 70 20 6C 6F 73 69 6E 67 20 41 43 4B 2C ; ktop losing ACK,
0000a100h: 20 62 6C 6F 63 6B 20 6E 75 6D 62 65 72 20 3D 20 ;Â*Â*block number = 
0000a110h: 25 64 2C 20 41 63 6B 20 61 67 61 69 6E 0D 0A 00 ; %d, Ack again...
0000a120h: 00 00 00 54 46 74 70 53 74 61 74 65 4D 61 63 68 ; ...TFtpStateMach
0000a130h: 69 6E 65 3A 3A 54 46 54 50 5F 53 54 41 54 45 5F ; ine::TFTP_STATE_
0000a140h: 43 4C 4F 53 45 20 4C 69 6E 6B 20 44 65 6C 65 74 ; CLOSE Link Delet
0000a150h: 65 64 0D 0A 00 00 00 54 46 54 50 20 45 72 72 6F ; ed.....TFTP Erro
0000a160h: 72 20 52 65 63 65 69 76 65 64 20 46 72 6F 6D 20 ; r Received From 
0000a170h: 48 6F 73 74 20 25 58 20 2D 20 25 73 0A 00 00 54 ; Host %X - %s...T
0000a180h: 66 74 70 52 65 63 65 69 76 65 72 2C 20 70 6F 72 ; ftpReceiver, por
0000a190h: 74 3A 20 30 78 25 58 2C 20 77 6B 70 3A 20 30 78 ; t: 0x%X, wkp: 0x
0000a1a0h: 25 58 0A 0D 00 00 00 54 46 54 50 20 6C 69 6E 6B ; %X.....TFTP link
0000a1b0h: 5B 25 75 5D 3A 20 53 74 61 74 65 3A 25 75 2C 20 ; [%u]: State:%u, 
0000a1c0h: 44 65 73 74 41 64 64 72 2E 77 50 6F 72 74 3A 20 ; DestAddr.wPort: 
0000a1d0h: 25 75 2C 20 53 72 63 41 64 64 72 2E 77 50 6F 72 ; %u, SrcAddr.wPor
0000a1e0h: 74 3A 20 25 75 0A 00 00 00 00 00 33 40 00 00 01 ; t: %u......3@...
0000a1f0h: 41 44 00 50 10 40 09 05 40 00 00 01 4C 53 00 50 ; AD.P.@..@...LS.P
0000a200h: 10 40 09 78 20 00 00 01 4C 53 00 EC 10 29 80 F0 ; .@.x ...LS.ì.)€ð
0000a210h: C0 00 00 01 4B 53 00 EC 10 29 81 00 00 00 00 04 ; À...KS.ì.).....
0000a220h: 52 54 00 EC 10 39 81 0B 90 00 00 04 52 54 00 EC ; RT.ì.9....RT.ì
0000a230h: 10 39 81 C9 D0 00 00 04 52 54 00 EC 10 39 81 4C ; .9ÉÐ...RT.ì.9L
0000a240h: E0 00 00 04 52 54 00 86 11 00 13 BA 50 00 00 04 ; Ã*...RT.â€*...ºP...
0000a250h: 44 4C 00 0B 10 20 00 CC A0 00 00 05 4E 47 00 B7 ; DL... .ÌÂ*...NG.·
0000a260h: 10 50 90 08 60 00 00 06 33 43 00 B7 10 00 92 76 ; .P.`...3C.·..’v
0000a270h: 04 00 00 06 33 43 00 44 75 70 6C 69 63 61 74 65 ; ....3C.Duplicate
0000a280h: 20 49 50 20 41 64 64 72 65 73 73 20 44 65 74 65 ;Â*Â*IP Address Dete
0000a290h: 63 74 65 64 3A 0A 2D 49 50 20 61 64 64 72 65 73 ; cted:.-IP addres
0000a2a0h: 73 20 25 73 20 69 6E 20 75 73 65 20 62 79 20 64 ; s %s in use by d
0000a2b0h: 65 76 69 63 65 20 77 69 74 68 20 4D 41 43 20 61 ; evice with MAC a
0000a2c0h: 64 64 72 65 73 73 20 25 42 3A 25 42 3A 25 42 3A ; ddress %B:%B:%B:
0000a2d0h: 25 42 3A 25 42 3A 25 42 2E 0A 2D 52 65 71 75 65 ; %B:%B:%B..-Reque
0000a2e0h: 73 74 69 6E 67 20 6E 65 77 20 49 50 20 61 64 64 ; sting new IP add
0000a2f0h: 72 65 73 73 20 76 69 61 20 44 48 43 50 2E 2E 2E ; ress via DHCP...
0000a300h: 0A 00 00 21 43 68 65 63 6B 55 44 50 3A 20 55 44 ; ...!CheckUDP: UD
0000a310h: 50 20 68 65 61 64 65 72 20 63 68 65 63 6B 73 75 ; P header checksu
0000a320h: 6D 20 66 61 69 6C 75 72 65 0A 00 21 43 68 65 63 ; m failure..!Chec
0000a330h: 6B 55 44 50 3A 20 49 50 20 68 65 61 64 65 72 20 ; kUDP: IP header 
0000a340h: 63 68 65 63 6B 73 75 6D 20 66 61 69 6C 75 72 65 ; checksum failure
0000a350h: 0A 00 00 21 43 68 65 63 6B 55 44 50 3A 20 4E 6F ; ...!CheckUDP: No
0000a360h: 74 20 55 44 50 20 28 70 72 6F 74 6F 20 3D 20 30 ; t UDP (proto = 0
0000a370h: 78 25 58 29 0A 00 00 00 00 00 00 33 40 00 00 01 ; x%X).......3@...
0000a380h: 41 44 00 50 10 40 09 05 40 00 00 01 4C 53 00 50 ; AD.P.@..@...LS.P
0000a390h: 10 40 09 78 20 00 00 01 4C 53 00 EC 10 29 80 F0 ; .@.x ...LS.ì.)€ð
0000a3a0h: C0 00 00 01 4B 53 00 EC 10 29 81 00 00 00 00 04 ; À...KS.ì.).....
0000a3b0h: 52 54 00 EC 10 39 81 0B 90 00 00 04 52 54 00 EC ; RT.ì.9....RT.ì
0000a3c0h: 10 39 81 C9 D0 00 00 04 52 54 00 EC 10 39 81 4C ; .9ÉÐ...RT.ì.9L
0000a3d0h: E0 00 00 04 52 54 00 86 11 00 13 BA 50 00 00 04 ; Ã*...RT.â€*...ºP...
0000a3e0h: 44 4C 00 0B 10 20 00 CC A0 00 00 05 4E 47 00 B7 ; DL... .ÌÂ*...NG.·
0000a3f0h: 10 50 90 08 60 00 00 06 33 43 00 B7 10 00 92 76 ; .P.`...3C.·..’v
0000a400h: 04 00 00 06 33 43 00 6E 65 74 6D 61 73 6B 3A 20 ; ....3C.netmask: 
0000a410h: 25 73 0D 0A 00 00 00 50 72 6F 63 65 73 73 44 48 ; %s.....ProcessDH
0000a420h: 43 50 28 29 3A 3A 44 48 43 50 5F 49 4E 49 54 3A ; CP()::DHCP_INIT:
0000a430h: 3A 53 65 6E 64 44 48 43 50 28 44 48 43 50 5F 44 ; :SendDHCP(DHCP_D
0000a440h: 49 53 43 4F 56 45 52 29 20 45 72 72 6F 72 0D 0A ; ISCOVER) Error..
0000a450h: 00 00 00 50 72 6F 63 65 73 73 44 48 43 50 28 29 ; ...ProcessDHCP()
0000a460h: 3A 3A 44 48 43 50 5F 49 4E 49 54 0D 0A 00 00 50 ; ::DHCP_INIT....P
0000a470h: 72 6F 63 65 73 73 44 48 43 50 28 29 3A 3A 44 48 ; rocessDHCP()::DH
0000a480h: 43 50 5F 53 45 4C 45 43 54 49 4E 47 3A 3A 53 65 ; CP_SELECTING::Se
0000a490h: 6E 64 44 48 43 50 28 29 20 45 72 72 6F 72 0D 0A ; ndDHCP() Error..
0000a4a0h: 00 00 00 00 00 00 00 50 72 6F 63 65 73 73 44 48 ; .......ProcessDH
0000a4b0h: 43 50 28 29 3A 3A 44 48 43 50 5F 53 45 4C 45 43 ; CP()::DHCP_SELEC
0000a4c0h: 54 49 4E 47 3A 3A 44 48 43 50 46 69 6E 64 4F 70 ; TING::DHCPFindOp
0000a4d0h: 74 69 6F 6E 28 29 20 47 6F 74 20 44 48 43 50 5F ; tion() Got DHCP_
0000a4e0h: 4F 46 46 45 52 20 77 69 74 68 6F 75 74 20 44 48 ; OFFER without DH
0000a4f0h: 43 50 5F 53 55 42 4E 45 54 5F 4D 41 53 4B 0D 0A ; CP_SUBNET_MASK..
0000a500h: 00 00 00 00 00 00 00 50 72 6F 63 65 73 73 44 48 ; .......ProcessDH
0000a510h: 43 50 28 29 3A 3A 44 48 43 50 5F 53 45 4C 45 43 ; CP()::DHCP_SELEC
0000a520h: 54 49 4E 47 3A 3A 44 48 43 50 46 69 6E 64 4F 70 ; TING::DHCPFindOp
0000a530h: 74 69 6F 6E 28 29 20 47 6F 74 20 44 48 43 50 5F ; tion() Got DHCP_
0000a540h: 4F 46 46 45 52 20 77 69 74 68 6F 75 74 20 44 48 ; OFFER without DH
0000a550h: 43 50 5F 53 45 52 56 45 52 5F 49 44 0D 0A 00 0D ; CP_SERVER_ID....
0000a560h: 0A 50 72 6F 63 65 73 73 44 48 43 50 28 29 3A 3A ; .ProcessDHCP()::
0000a570h: 44 48 43 50 20 49 50 20 41 64 64 72 65 73 73 20 ; DHCP IP Address 
0000a580h: 52 65 73 6F 6C 76 65 64 20 61 73 20 25 73 2C 20 ; Resolved as %s, 
0000a590h: 00 00 00 4C 65 61 73 65 20 74 69 6D 65 3A 20 25 ; ...Lease time: %
0000a5a0h: 64 20 73 65 63 6F 6E 64 73 0D 0A 00 00 00 00 50 ; d seconds......P
0000a5b0h: 72 6F 63 65 73 73 44 48 43 50 28 29 3A 3A 44 48 ; rocessDHCP()::DH
0000a5c0h: 43 50 5F 52 45 51 55 45 53 54 49 4E 47 3A 3A 44 ; CP_REQUESTING::D
0000a5d0h: 48 43 50 46 69 6E 64 4F 70 74 69 6F 6E 28 29 20 ; HCPFindOption() 
0000a5e0h: 47 6F 74 20 44 48 43 50 5F 41 43 4B 20 77 69 74 ; Got DHCP_ACK wit
0000a5f0h: 68 6F 75 74 20 44 48 43 50 5F 4C 45 41 53 45 5F ; hout DHCP_LEASE_
0000a600h: 54 49 4D 45 0D 0A 00 50 72 6F 63 65 73 73 44 48 ; TIME...ProcessDH
0000a610h: 43 50 28 29 20 45 72 72 6F 72 20 2D 20 4E 6F 20 ; CP() Error - No 
0000a620h: 44 48 43 50 20 4D 65 73 73 61 67 65 20 54 79 70 ; DHCP Message Typ
0000a630h: 65 20 4F 70 74 69 6F 6E 0D 0A 00 49 6E 69 74 44 ; e Option...InitD
0000a640h: 48 43 50 28 29 20 45 72 72 6F 72 20 2D 20 46 69 ; HCP() Error - Fi
0000a650h: 72 73 74 20 44 48 43 50 20 4F 70 74 69 6F 6E 20 ; rst DHCP Option 
0000a660h: 69 73 6E 27 74 20 74 68 65 20 6D 65 73 73 61 67 ; isn't the messag
0000a670h: 65 20 74 79 70 65 0D 0A 00 00 00 49 6E 69 74 44 ; e type.....InitD
0000a680h: 48 43 50 28 29 3A 3A 20 43 61 6C 6C 69 6E 67 20 ; HCP():: Calling 
0000a690h: 50 72 6F 63 65 73 73 44 48 43 50 28 29 0D 0A 00 ; ProcessDHCP()...
0000a6a0h: 00 00 00 45 62 6F 6F 74 44 48 43 50 52 65 74 72 ; ...EbootDHCPRetr
0000a6b0h: 61 6E 73 6D 69 74 28 29 3A 3A 45 72 72 6F 72 20 ; ansmit()::Error 
0000a6c0h: 4F 6E 20 53 65 6E 64 55 44 50 28 29 20 43 61 6C ; On SendUDP() Cal
0000a6d0h: 6C 0D 0A 00 00 00 00 53 65 6E 64 44 48 43 50 28 ; l......SendDHCP(
0000a6e0h: 29 3A 3A 45 72 72 6F 72 20 4F 6E 20 44 48 43 50 ; )::Error On DHCP
0000a6f0h: 52 65 74 72 61 6E 73 6D 69 74 28 29 20 43 61 6C ; Retransmit() Cal
0000a700h: 6C 0D 0A 00 00 00 00 53 65 6E 64 44 48 43 50 28 ; l......SendDHCP(
0000a710h: 29 3A 3A 45 72 72 6F 72 20 4F 6E 20 53 65 6E 64 ; )::Error On Send
0000a720h: 55 44 50 28 29 20 43 61 6C 6C 0D 0A 00 00 00 00 ; UDP() Call......
0000a730h: 00 00 00 33 40 00 00 01 41 44 00 50 10 40 09 05 ; ...3@...AD.P.@..
0000a740h: 40 00 00 01 4C 53 00 50 10 40 09 78 20 00 00 01 ; @...LS.P.@.x ...
0000a750h: 4C 53 00 EC 10 29 80 F0 C0 00 00 01 4B 53 00 EC ; LS.ì.)€ðÀ...KS.ì
0000a760h: 10 29 81 00 00 00 00 04 52 54 00 EC 10 39 81 0B ; .).....RT.ì.9.
0000a770h: 90 00 00 04 52 54 00 EC 10 39 81 C9 D0 00 00 04 ; ...RT.ì.9ÉÐ...
0000a780h: 52 54 00 EC 10 39 81 4C E0 00 00 04 52 54 00 86 ; RT.ì.9LÃ*...RT.â€*
0000a790h: 11 00 13 BA 50 00 00 04 44 4C 00 0B 10 20 00 CC ; ...ºP...DL... .Ì
0000a7a0h: A0 00 00 05 4E 47 00 B7 10 50 90 08 60 00 00 06 ; Â*...NG.·.P.`...
0000a7b0h: 33 43 00 B7 10 00 92 76 04 00 00 06 33 43 00 45 ; 3C.·..’v....3C.E
0000a7c0h: 72 72 6F 72 20 69 6E 20 53 65 6E 64 55 44 50 0D ; rror in SendUDP.
0000a7d0h: 0A 00 00 47 6F 74 20 45 44 42 47 5F 43 4D 44 5F ; ...Got EDBG_CMD_
0000a7e0h: 43 4F 4E 46 49 47 2C 20 66 6C 61 67 73 3A 30 78 ; CONFIG, flags:0x
0000a7f0h: 25 58 0D 0A 00 00 00 47 6F 74 20 45 44 42 47 5F ; %X.....Got EDBG_
0000a800h: 43 4D 44 5F 4A 55 4D 50 49 4D 47 0D 0A 00 00 54 ; CMD_JUMPIMG....T
0000a810h: 46 54 50 20 64 6F 77 6E 6C 6F 61 64 20 73 74 61 ; FTP download sta
0000a820h: 72 74 65 64 20 70 72 65 76 69 6F 75 73 6C 79 20 ; rted previously 
0000a830h: 62 79 20 68 6F 73 74 20 25 73 2C 20 69 67 6E 6F ; by host %s, igno
0000a840h: 72 69 6E 67 20 63 6D 64 20 66 72 6F 6D 20 25 73 ; ring cmd from %s
0000a850h: 0D 0A 00 53 65 6E 74 20 42 4F 4F 54 4D 45 20 74 ; ...Sent BOOTME t
0000a860h: 6F 20 25 73 0D 0A 00 53 65 6E 64 42 6F 6F 74 6D ; o %s...SendBootm
0000a870h: 65 28 29 3A 3A 45 72 72 6F 72 20 6F 6E 20 53 65 ; e()::Error on Se
0000a880h: 6E 64 55 44 50 28 29 20 63 61 6C 6C 0D 0A 00 80 ; ndUDP() call...€

I was able to get my hands on some enterprise level wireless sniffers and monitoring equipment. I am going to run some tests over the course of the next few days to see if I can find out more.

Let me know what you guys think.

tos.

[Echohammer419]

That is a lot of random stuff I don't understand. Thanks for making me feel like the noobish 15 year old that I am. But if helps hack the wifi way to go!

[apshively]

Brilliant sir! Thank you for trying so hard for us all!

Quote:

Originally Posted by wootmasta

That is a lot of random stuff I don't understand. Thanks for making me feel like the noobish 15 year old that I am. But if helps hack the wifi way to go!

Ha.

Anyways, this is pretty much information we already knew. Thanks anyways.

[PhunkMaster]

That is sexy. I saw a couple things in that hex file that might be VERY useful. GREAT find.

[simply2low]

Quote:

Originally Posted by RYS

Quote:

Ha.

Anyways, this is pretty much information we already knew. Thanks anyways.

Well, is there more information out there similar/related to this that I havent been able to find? I am trying to break/figure out the wireless sharing capability and any information would be great.

[JayK95]

+1 to Imported_TOS!!

Have you made any further developments on the MAC address info?

Jay K.

[lpxxfaintxx]

Yea, I'd like to know as well.

[tos]

guys,
i have not had a chance to work on this. i will post updates as soon as i can.

tos