Now Reading
Reverse Engineering Samsung SBOOT

Reverse Engineering Samsung SBOOT

by Igor Mikhaylov2017-03-17

Recently, Fernand Lone SangCategories began digging into more realizations of TE. Various smartphones based on Samsung Exynos use their own bootloader with the name SBOOT. This is the case for the smartphones listed on the Samsung Exynos Showcase. Fernand redesigned the parts of this loader when evaluating various TEE implementations.


In his article, Fernand described how to determine the basic SBOOT address in the Samsung Galaxy S6 and how to load it into IDA Pro. This method should be applicable to other Samsung smartphones, and, possibly, to other products using Exynos SoC.
This article is the first of a series of articles on SBOOT, the second part will tell you how to get to the triple OS.



Leave a Response

Please enter the result of the calculation above.