I recompiled the kernel with better Netfilter support and even more wifi drivers – I recompiled the NVIDIA 310 driver and compat-drivers. I added FreeRADIUS WPE, hostapd, hashcat, more scripts, and even on screen display scripts. (the WiFi one was m33b0′s idea). Also, I added more Hardware hacking utilities, Android hacking utilities, and changed the Grub screen resolution and configuration for faster booting.

Download it now! (hr.weaknetlabs.com) Thank you HaxRadio for hosting! :D

~Douglas

This is not a how-to, it’s just how I did it.

Recently, our rabbit Penelope decided to slice my xbox controller in half with her little teeth. I spliced it almost immediately so I can continue playing Metro 2033 and just used electrical tape instead of solder. A few days ago I bought a shiny new Nexus 7 from Google to replace the horrible Kindle Fire HD 8.9″ that I had to return after have two bad screens. The Kindle market for applications is very immature and none of the “made for Kindle” applications you spend loads of your hard earned money on can be ported to any other Android device. I figured “made for Kindle” meant that the application was remade for a higher resolution screen. Guess not. I mean, why would Java code be portable when the Walmart of the internet can profit from it? But I digress. The Nexus 7 is great. It is powered with a Tegra 3 by NVIDIA and is powerful enough to be considered a gaming device. unfortunately, the on screen keyboard makes for a smudgy screen and is clunky. I love using the touch screen for simple games, but for Games such as Call of Duty Zombies or Shadow Gun, I would much prefer an actual controller. After a friend of mine informed me about the On-The-Go adapter, I decided to do some research on the cable and make my own. What is an On-The-Go cable?

USB On-The-Go, often abbreviated USB OTG, is a specification that allows USB devices such as digital audio players or mobile phones to act as a host, allowing other USB devices like a USB flash drive, mouse, or keyboard to be attached to them. Unlike conventional USB systems, USB OTG systems can drop the hosting role and act as normal USB devices when attached to another host.
~Wikipedia

How this works is simple; one pin is shorted in the cable to ground. That’s right, short-to-ground. Also, the Android kernel you are using needs to have host mode enabled for this to work. You may want to Google your device to see if so before cutting up your USB cables. In a USB cable, black is ground, so i figured why not undo the black tape and see if I can make one. I first mangled a USB cable as you see in the picture above to get to the pin I needed to short. I used a large slicing knife from my kitchen and pushed down on it at an angle while it was pointed down at the table. On the flat side of the Micro USB cable, with the cable pointed upwards, its the pin on the right side.

This is “pin 4″ as labeled in the smallest font ever on the tiny board inside of the USB cable you see above. I soldered a small piece of wire to that pin after carefully tinning the tip of the soldering iron with the smallest pointed tip I could find.

In the picture above, I simply “spliced” (with tape) into the same wire, just higher up closer to the controller. I ended up just doing this permanently but for now I was testing. If you plug the XBOX controller in with the Android device is not in standby and don’t see the controller light up, then the pin is not sorted correctly and not in “host mode.”

I loaded up ShadowGun THD and it recognized the controller instantly.

Tested working Games/Emulators for this hack

Working

If you have a Tegra Device – Like the Nexus 7, there is a list of controller capable games on the NVIDIA website
FPse Playstation Emulator Requires Configuration
DEAD TRIGGER
SHADOWGUN Requires Configuration
AndroGens Genesis Emulator Requires Configuration
VGBA Game Boy Advance Emulator Requires Configuration
Grand Theft Auto Vice City
MAME4Droid/MAME4All Multiple Arcade Machine Emulator Requires Configuration
Sleepy Jack – Barrel-roll is “RB”
Cordy
Zenonia
Riptide GP Requires Configuration

Non Working

MASS EFFECT
Call of DUTY Zombies
Horn (THD)
Anything from $quare Enix
Eternity Warriors II

~Douglas

I have updated the code and images for the Android application or Gears of War 3 Countdown to reflect the new People Can Fly / EPIC version of Gears of War Judgment – due out March 2013. These changes should take effect soon, here is the link to my Google Developer for Android page.

~Douglas.

Disclaimer: This has been tested for Sprint’s FF18 ICS update for the Epic 4g Touch model ONLY. We are Not responsible for ToS’s, damages or warranties voided by anyone, anywhere, ever. EVAR.

Using Ad-Hoc mode for tethering is garbage. You can’t save any profiles for automatic connection on your supplicants, you need to fiddle with the Tether application when it randomly responds with “…started with errors..check error log!” and it’s an all around pain in the ass when you have multiple supplicants that don’t even support ad-hoc – like the PSP, 3DS, LINUX Drivers for popular WiFi adapters, etc.

So Sprint finally gave us Ice Cream Sandwich huh? Yay! WE CAN NOW REBOOT OUR PHONES FROM THE POWER MENU! Well, you may notice, if your phone was previously rooted that it no longer tethers and, obviously, got unrooted after the update. Phones always unroot after an Android update because of the kernel updates, etc. Anyways, If you follow this video and re-root your Galaxy SII Epic 4g Touch:

Basically:
1. Make sure you install Samsung Kies and allow it to install drivers for your device.
2. Download the EXE file and extract the contents
3. Run the application within the directory labeled Odin-OC called “SPH-D710.FF18_CL663858_ROOTED_NODATA-OneClick.EXE” and plug in your phone.
4. hold the power button and the volume down button on your phone until you see a screen asking you to press “Volume Up” to continue.
5. Press “Start” button in application once your phone is visible (yellow highlight and SERIAL ID in black font).
6. Done.

Then you will be able to install “WiFi Tether,” and “Titanium Backup Pro” from the Google Play Market and start tethering! Here are the Application you need on your phone after rooting it:

Titanium Backup Pro
WiFi Tether For Root Users

Once installed, run the Titanium Backup Pro application and freeze the following applications from turning off your hotspot each time your devices display is activated from sleep:

Next, select “reboot phone” from the menu. Next, start up WiFi Tether For Root Users, and go straight into the settings menu. Make the following changes:

** Change the channel (This seems to jump start the 802.11 radio at startup)

** Disable startup checks (This seems to interfere with the application)

** Select Generic ICS

** Turn ON routing fix (This seems to solve a timeout issue for certain domains while tethered)

And finally:

** The Kernel now supports netd for Infrastructure mode!

Now reboot your phone once more for the WiFi Tether for Root Users application settings to refresh (this seems to solve any mem caching issues that I couldn’t solve from force stopping the application and restarting it.) Once done, you will no longer need to use shitty ad-hoc mode again with your hacked ICS/SII E4gT! :)

~Douglas

Abstract

Samsung Galaxy S II Epic 4G (Touch) (US) <-- the phone with the longest name ever. It's a really nice phone, but lacked a few good software features, one being able to create a mobile hotspot from the phone to share my 4G connection without paying an extra (big) monthly fee. So, I had to root the phone by changing it’s kernel to a rooted kernel. This voids my warranty and is easily detectable by any technician at Sprint if I were to take this phone in for a repair. So, after rooting the system, i simply returned it back to the stock kernel. This keeps the phone rooted, but this leaves the “Superuser” application on the phone. The only way I know of how to remove it is by using the ADB shell. Easy enough.

This by no means is a tutorial, WEAKNET LABS is not responsible for damage you may cause to your phone by following along with me.

I switched to Sprint recently and got this phone:

Root it

You need a new kernel to be root on your new machine. I got mine from “Zedomax.” It’s not great at all, in fact it’s poorly designed, but we only use it temporarily. You can download it from his website here. I grabbed the tarball labeled “SPH-D710_Zedomax_EpicTouchKernel-v3.tar” to use with ODIN.
Next, I downloaded ODIN and Samsung Kies. You will need the drivers for the phone for ODIN to recognize it properly. DO NOT rely on Windows to get the drivers for you. And seriously, don’t follow the weird http://epic4gtouchroot.com/ website, it’s convoluted, is missing information and is just wrong sometimes.

Once you have Kies, simply run the application with the phone plugged in and allow it to say it’s completed and the phone is recognized properly. It will look like iTunes, but for your phone. Heh. You can check the Device Manager to see if the device was recognized or not, but that’s kind of overkill. Simply run ODIN. ODIN will show the device with a yellow label under it like so:

Now, you’re ready to go. If not, try unplugging the device and plugging it back in with Kies open. Next, you NEED to exit Kies completely. make sure the tray icon is gone, and no running process of Kies exists. Kies will screw up the flashing process we do with ODIN and could mess up the firmware in the phone. So, once killed, slam the “PDA” button in ODIN and select the tarball of the new kernel. Here is my file list I am using right now:

the file called acs-eg30-stock-pulled.tar is the stock kernel from the phone someone pulled from the phone before rooting it. We will use that after. Now, hit the “Start” button in ODIN. You will see the progress bar turn green and start to fill up. Once done the default setting of “auto reboot” should simply reboot your phone. At this point, I foo bared the shit out of my phone, over and over trying to get it to work properly with ODIN. I tried making the zip files tarballs, I tried all kinds of weird shit, only to realize that Kies was killing my firmware flashes. :( MAKE SURE IT’S CLOSED!! Now, you should check the kernel in the Settings->About Phone->Kernel. You should see something that says “zedomax.” go into your app drawer and look for this icon:

If found, you’re good to go! Now, try an application, like “Better Terminal Emulator.” Here you can type su and should be prompted to allow the application to use Super User (or root) privileges. Click “remember these settings” and click “Okay.” Now each time you use the application, you can just type “su” and you will see something like so:

Put Stock Kernel Back on There!

As I said before, this kernel made my zedomax just sucks. Radio problems seem to be the worst issue, though there is a quick fix for it, that says to update the Master Subsidy Lock Code. This is used when programming the phone with CDMA. It’s not re-programmed or updated and shouldn’t need to be seeing how this is an intermittent issue. So, it still doesn’t properly resolve the issue. Just put the stock kernel back until someone compiles a better working version. Get the acs-eg30-stock-pulled.tar file from the XDA developers and go through the same process of flashing the phone using ODIN. Make sure that Kies is not open!

Now you’re About phone screen should show this:

And you should still have full root access.

Tethering 4G and creating a WiFi Hotspot (AP)

There are many hotspot applications that can be used with a rooted phone in the android market, but not all can be used with this phone. I used this one: 3.1-beta6 WiFi-Tether

Awesome app, doesn’t work at all with the finicky 3DS, as nothing seems to play right with that damned thing, but it works with XBOX 360, and my laptop just fine.

Remove the SuperUser Application

The only way I know of is to grab the ADB shell here and run it. This requires a bit of command line experience, but it’s simple.

Run the shell:

adb shell

Become root:

su

Mount using Yaffs:

mount -o rw,remount -t yaffs2 /dev/block/mtdblock3 /system

Remove the files:

rm /system/xbin/su
rm/system/bin/su
rm /system/app/Superuser.apk

reboot:

reboot


Conclusion

So this is how I rooted the phone and got the WiFi Tethering for free. Rooting the device is the easy part, getting other devices to play well with the software AP is the hard part :)