Presentation on Hacking the MegaTouch Force 2011 to bypass security key

I couldn't find the correct motherboard a few years back so I used ida to step through and patch so that the application selected the correct branch to function. Not perfect and definitely an amatuer fix, but it got me up and running. Definitely easier once I found the tmp directory file... :)
 
Presentation on Hacking the MegaTouch Force 2011 to bypass security key

that's a perfect patch when trying to get a non merit megatouch mb to run.

I don't want to go there in info as my purpose it to allow megatouch owners run when their keys die which is guaranteed to happen and soon. but that's a perfect fix for megatouch owners that lose their motherboard. Which certainly is something that will occur more and more. I know I already had one of the ecs force boards go bad. I mean I think I accidentally shocked it but it will occur naturally eventually.
 
Last edited:
I haven't had a chance to sit down and watch this all the way through yet, but I saw the first few minutes, and just wanted to say thanks for 1) doing this and 2) going into the details and theory. Very cool, very helpful.
 
No problem glad people are finding it helpful. Part 2 should be lots of fun.
 
thanks for the feedback!.

Not sure when I'll put video 2 up, I recorded it already but want to do some edits on i, and not sure when I will have time to do that. I was hoping to get it up this weekend and if I get enough time that might happen, otherwise probably sometime in the next 2-3 weeks depending on how much editing I do and how much time I have in the next few weeks.

-brian
 
You have a license for IDA Pro?
"Luckyyyyyyy!"- Napoleon Dynamite

I took a look the other day at the licensing fees and shed a tear. :(
Would love to have that tool in my arsenal.
 
You have a license for IDA Pro?
"Luckyyyyyyy!"- Napoleon Dynamite

I took a look the other day at the licensing fees and shed a tear. :(
Would love to have that tool in my arsenal.

lol, not only do I have a license for Ida Pro, I also have a license for Hex Rays... lol :)
But yeah Ida (and hex rays) are both great tools.
On the good note for arcade stuff all you need is Ida Standard, you don't need the Pro version. standard is still expensive but only like 1/3 of Pro and it's worth every penny!

I hear Binary Ninja from vector35 is also pretty good, last time I tried it did not support structures, but I hear support for structures is coming.
 
Last edited:
Thanks for the videos. If I remember correctly, hooking up a keyboard and pressing escape dumps you to a shell from the game program so you don't need to edit startup to get there. /tmp/dstart was present on my system when I was poking around without any code edits. Maybe an error, or I just got lucky. :)
 
I don't think esc should work though honestly I never tried it it would be interesting if it did. /top/dstart definitely should be deleted immediately after game start from /usr/local/bin/start. I wonder if you had a version that someone modified that would be interesting.
 
Thanks for the videos. If I remember correctly, hooking up a keyboard and pressing escape dumps you to a shell from the game program so you don't need to edit startup to get there. /tmp/dstart was present on my system when I was poking around without any code edits. Maybe an error, or I just got lucky. :)

It will take you to the bootloader where you can type linux init=/bin/bash

that will dump you to shell. From there you can gain root access.
 
That's good I did not try during grub boot that would definitely make my step by step instructions easier, thx
 
Back
Top Bottom