Just a quick one (thanks to purputy for pointing this out): the two configuration areas of the flash we dumped in the previous post are compressed with the deflate algorithm, and it’s quite easy to extract them.
I’ve made up a quick’n’dirty script (in php, forgive me, just because the gzinflate function was quicker to use) that you can call from command line with:
php conf_inflate.php <conf_dump> <dest_file>
In <dest_file> you’ll have the configuration in plain text.
You can get the script here.
Categorised as: Hacking