Extracting and Modifying Firmware with JTAG

Why not just hook up to the SPI NOR flash and dump that way? flashrom, ftw.

Yes the volume is very low on your end,

what microscope do you use for videos?

Your channel is incredible!

The last command is not supported by jlink commander v7.88j, start here^[nmatt@ripper badge]$, ..savebin is only working , I am trying to extract stm32f103r8,,

Do u have epon firmware for Zte

Where is a repository link to PCB files of that badge? Looks like a nice little capacitive keyboard.

I dislike that connector style so much. The cable is expensive and the pins will bend easily.

amazing man, thank you for the cool stuff , hacked by nmat😊

Where I could buy the student version of the j link

I recently came across your channel and I love your videos. If you ever have a project where you gain practical functionality of a device by hacking it, that would make a great video. Like the security camera sending the stream to a self hosted storage server or other ideas you may have.

Man I keep seeing JTAG written on different boards


I'm still a rookie, got a long waaay to go

16 megabits is 2 megabytes, which is 0x200000... Converting 20000000 decimal to hex is not 2 megabytes.

What is the debugger model you are using?

Hi Matt, very Informative video. Is there any way to convert the binary dump to source code or to understand it better ?

Awesome video!! Could you do something with STM chips that are locked sometime soon? My vaguest of vague understanding is that you can sometimes do something with pulling boot select pins low to get it into a debug mode regardless of other configurations, but I don't have the first clue how to actually do that irl. Keep up the great videos m8!

How did you know to use the SI form of Mbit and not the binary form of Mbit?

Very informative, great info! Thank you for making this. BTW your audio is really low.

Your video is flipped.

So cool! What are you going to push to it next, if anything?