Skip to content

Iskuri/PN553-Signature-Bypass

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
functions.bin
functions.bin
 
 
functions.c
functions.c
 
 
functions.o
functions.o
 
 
main.c
main.c
 
 
nq-nci.h
nq-nci.h
 
 
run
run
 
 
run.sh
run.sh
 
 

Repository files navigation

This repository contains an exploit by Christopher Wade for the firmware update mechanism of the PN553 NFC chip that was common in smartphones such as the Pixel 3 XL.

PN547, PN548, PN551 and PN5180 and other chips in the series are likely also vulnerable. The PN544 uses an 8051 core instead of Cortex M, and it is unknown whether it has a similar vulnerability. The SN100 adds support for firmware encryption, and this exploit has never worked there.

This bug was first publicly described in this blog post and at the 25 minute mark of this Defcon 29 Lecture on cracking secure bootloaders.

The bug was reported to NXP in June of 2020, then patched over the next year until the vulnerability was published in August 2021. This exploit was published in August of 2023.

About

A tool that bypasses PN553 signature protection

Resources

Readme

License

GPL-3.0 license
Activity

Stars

46 stars

Watchers

5 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages