Hacking a 2014 tablet... in 2024!

Posted on Sun 21 July 2024 in writeup

Yes, you heard that right, 10 years after its release, I managed to hack and unlock the first MediaTek based Amazon tablet that went on sale, the Amazon Fire HD6 / HD7 2014 (codenamed ariel).

In this article, I'll explain my journey in detail without …


Continue reading

Unsigned code execution on LK bootloaders

Posted on Wed 06 December 2023 in writeup

In this article, I will explain how I successfully managed to gain code execution within the Little Kernel (LK) context of (unsecure) MediaTek devices.

As an important note, similar to what was discussed in my first article, this method is only applicable to devices that are capable of booting unsigned …


Continue reading

Patch MediaTek bootloader images (LK)

Posted on Mon 04 December 2023 in tools

This post introduces a tool to patch MediaTek bootloader images (LK) and a guide to create custom patches for your device.

The tool was originally developed for BBK (Vivo, Oppo, Realme) devices in order to unlock fastboot access but it can be used for any MediaTek device.

The tool is …


Continue reading