API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 16th, 2018
3,335
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.62 KB | None | 0 0
raw download clone embed print report
  1. [from http://www.neo-arcadia.com/forum/viewtopic.php?f=14&t=62415&p=1162692#p1162692]
  2.  
  3. You need at least a keyboard plugged into the RingEdge, and as it states I think a special USB hub to use said keyboard.
  4.  
  5. You also need the SSD and the matching keychip.
  6. All ringedge SSDs are ATA password protected with a hex code:
  7.  
  8. 7242525ABA526A5AEA726278CA42DA4A2A223A2A0A221A2A6A027A0A5CCE4A0A
  9. [you can use a converter site to get ascii, but it's probably recommended to use:
  10. hdparm --security-unlock $(printf [password here in hex]) /dev/sdX]
  11.  
  12. Use Linux or any derivative to remove the password protect using the command above
  13. OR
  14. Boot the SSD in the RingEdge and then disconnect SATA (while leaving power in)
  15. and connect it to another PC)
  16.  
  17. There should be 3 NTFS partitions on the SSD.
  18.  
  19. The RingEdge executes C:\System\Execute\mxprestartup.exe -> rename it or remove it.
  20.  
  21. Then remove the password from SystemUser in the SAM file @ C:\Windows\System32\Config.
  22.  
  23. Additionally: you will have to attach the registry hive to *your* machine and edit
  24.  
  25. "HKLM\ControlSet001\Services\kbfilter\Parameters\FilterEnable from 1 to 0 (now you can use the keyboard).
  26.  
  27. On RingEdge SSD there are 7 partitions: partitions 4 (update) and 7 (game) are encrypted with TrueCrypt 4.3a.
  28.  
  29. For this, you need to dump the password inside the keychip.
  30.  
  31. To do this, boot the SSD with the password removed from SystemUser.
  32. After booting, you will see a Windows screen with a white background (?), press CTRL+ALT+DEL
  33. and switch user to SystemUser.
  34.  
  35. After that, another normal Windows screen, *but no mouse*. You should only need a keyboard for this though.
  36.  
  37. Disable the Enhanced Write Filter with this command:
  38. efwmgr C: -commitanddisable -live
  39. and you can choose to restart or not.
  40.  
  41. To dump the keychip:
  42. You need to open a protected file through a command window.
  43. TrueCrypt /p segahardpassword /k X:\SystemKeyFile /v C:\System\Execute\System /l S: /w /s /q
  44.  
  45. Now there will be a new drive mounted, S:\ Inside is a file called mxmaster.exe.
  46. Open another window in Explorer at the location: C:\Windows\temp\
  47.  
  48. Start mxmaster.exe and during booting the RingEdge security you can press the Windows key until you see a 16 byte long file,
  49. that begins with ma and 4 digits in the temp folder. Copy this file to another location or USB drive.
  50.  
  51. Now you have successfully dumped the keychip. With this file you can now unlock partitions 4 and 7.
  52. To do this:
  53. open a command window and type: truecrypt
  54. Choose the partition you wish to unlock.
  55. Under keyfile, specify the file you saved earlier during security startup.
  56.  
  57. That is all I was able to get from the blog post.
  58. -eduardog
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!