Download the firmware from the official TP-Link website. The screenshot is Turkish. I’m sorry for that.
![](http://www.c1n.org/wp-content/uploads/2023/02/image-1.png)
By Frimware Analysis Tool (FAT) its pretty easy to extract and start the fully emulate the system with qemu
![](http://www.c1n.org/wp-content/uploads/2023/02/image-2.png)
It’s successfully booted up
![](http://www.c1n.org/wp-content/uploads/2023/02/image-3.png)
For exit from the qemu CTRL+A and press X.
In order to run particular executables, we need to download qemu’s statically compiled binaries for specific target like mips etc.
sudo apt install qemu-user-static
We need to extract the binary
binwalk --extract --quiet TD-W9960V1_1.4.0_0.8.0_220621.bin
I copied the qemu-mips-static under to squashfs-root and executed the ip binary successfully, which is compiled for MIPS architecture.
sudo chroot . ./qemu-mips-static ./usr/bin/ip
![](http://www.c1n.org/wp-content/uploads/2023/02/image-4-1024x379.png)
Physical analysis
I bought the router
![](http://www.c1n.org/wp-content/uploads/2023/03/image-5-1024x714.png)
Disassembled it
![](http://www.c1n.org/wp-content/uploads/2023/03/image-6-1024x578.png)
It’s obvious that the four pins in the upper right corner are the UART pins. Lets try to connect UART-to-USB cable to those pins.
Bir yanıt yazın