Friday, February 22, 2013
EMBEDDED HACKING by STUART MCCLURE Man - in - the - Phone (MiTP) iPhone is rooted (baseband modem access exists at/dev/dlci.spi-baseband.*) Motorola C118 or other Calypso Digital Base Band Firmware is patched using modified OsmocomBB layer1.bin with SIMCARD proxy modifications. Connection chain is : Motorola <-> UART Serial <-> Linux PC<-> SSH Tunnel <-> iPhone <-> /dev/dlci.spi-basband<->SIMCARD. Motorola performs GSM login and authentication process and sends the iPhone IMSI.