Author Topic: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method  (Read 7412 times)

0 Members and 1 Guest are viewing this topic.

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« on: April 27, 2024, 06:38:51 pm »
HACKING THE RIGOL MSO5000 - Dr Mefisto's Fully Automatic License Activator

BACKGROUND :
This post exists because of the main rigol MSO5000 Post and specifically because of the python scripting method reverse engineered by Dr Mefisto (This is the VERSION 2 of the script)
https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/2671/

Also because SMAS laid out their path to activation in a very easy to understand way.
https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-series-oscilloscopes/2840/

But also because a few members have stated that there should be one simple place to come to instead of having to dig though almost 60 pages of discussion and then it's a matter of finding the files.
The unavoidable fact of these posts is that they will be long and will have many pages.

THE PROBLEM SUMMARIZED :
- As always it starts with us wanting to unlock all the features of the MSO5000 (or whatever scope it is at the time)

- as the method progressed it was quickly realized that rigol (Unlike the DS2000A) were not using "Symmetrical Encryption" but instead "Asymmetrical Encryption" which meant that since we didn't have Rigol's encryption key, we were not able to approach the solution in the same way. At this stage the "PATCH METHOD" was put into place. And it worked, but it had 1 problem... It would not survive a firmware upgrade. So in the future when the next upgrade came out and you installed it you would lose all your unlocked options.
 Same thing if you downgraded. But don't get me wrong... If you stayed on the same version you were totally fine and everything worked.

- Then in Post #2671 Dr Mefisto had a eureka moment and worked out a python script that would CORRECTLY LICENSE THE SCOPE. (Actually the original script was in an earlier post and Post 2671 is the version 2 / aka The Automated Script.

- However a lot of people found this challenging and difficult to perform. it became the case that faced with "Patch Method" vs "Python Licensing Method" it was seen much easier to do the former.

WE NOW HAVE A FULLY WORKING SOLUTION...

FIRST LET ME THROW SOME FEARS OUT OF THE WAY
It has become obvious also that even though everyone should upgrade to this method as it means.... when further upgrades come out you will have nothing to worry about and you'll just download the official upgrade from the Rigol website (No further hack or patching required). But even though everyone SHOULD, They are not doing it.

Why not ?

- one reason may be you're afraid of change and what may happen, because if it's working now with the patch why change ?
Answer : Because you'll have to anyway

- You've heard rumours of the scope being bricked

- You've heard people having problems with it

- You've heard that the script can damage your scope

LET ME PUT ALL THAT TO REST

- My scope started on V 1.3.0.3  )00.01.03.00.03) , i used the patch method and went up to 1.3.3.0 (Latest Version). All Options Unlocked
  I then Downgraded to 1.3.2.2 (During the downgrade all options are lost). I then used Dr Mefisto's script to license the scope and All Options were unlocked successfully.
  I then upgraded to version 1.3.3.0 ALL OPTIONS SURVIVED,  I then downgraded just to push my luck , to 1.3.0.3 ALL OPTIONS SURVIVED,  i even went as low as 1.1.4.4  ALL OPTIONS SURVIVED.

So Upgrading and downgrading is not a problem , But there's a catch, You can't downgrade via the operating system you have to do it in the Pre Boot Menu

- A Note on the Pre Boot Menu.  There are 2 Options   "Firmware Upgrade", "Restore Defaults" .  FIRMWARE UPGRADE both upgrades and downgrades your scope in a Pre O/S Environment.
  However RESTORE DEFAULTS Just restores your defaults,
IT DOES NOT Lower you to a lower version of firmware
IT DOES NOT take your scope back to it's original version (After you upgraded)
All it does is.. if you changed the settings in your scope, it restores them to stock settings.  This step is NOT necessary in order to upgrading, Nor does it avoid you bricking your scope if you don't do it.
it is a good step to do, but let there be no illusion, it's not a necessary step.

- I have , at the time of writing this post upgraded and downgraded my scope over 30 times just to see if i could brick it and around 3 of those times i used restore defaults, the rest i didn't. Nothing happened.  I have gone between the patch and back to the script method over and over.  THIS METHOD IS A VERY RELIABLE METHOD

- A WORD ON BRICKING YOUR SCOPE
1. You're probably not going to
2. IF YOU LOSE POWER during the FRAM copy process YES.. YOU'LL BRICK YOUR SCOPE
3. IF YOUR LOSE ETHERNET CONNECTION during the FRAM copy process... YES, YOU'LL BRICK YOUR SCOPE
Because the data stream cannot be interrupted until it gets to 100%  (this only applies to the .. maybe 2mins that the FRAM is actually being written to)

If this method doesn't work for you you can always revert back to the Patch Method if you wish.

- I have observed that most of the problems arise either from fear or lack of knowledge how to do this method  so......

HERE IS WHAT YOU NEED TO DO
(This post has been put up so that if you can get through it you won't need to watch the video) but i have included a video that will take you through it step by step.
and you can also ask me for help and i'll be happy to help you


STEP 1.
DOWNLOAD THE FOLLOWING
Rufus
https://rufus.ie/en/

Python
https://www.python.org/downloads/

THEN. GO TO MY MEGA CLOUD SERVER
https://mega.nz/folder/A8cEgQRI#5FSoMrCurJi71T7VkRPgYQ

Here you will find a few things that you'll need

1. Scope Firmware Version 1.3.2.2
2. Scope Firmware Version 1.3.3.0
3. Rigol_kg2.py   (Dr Mefisto's Script Version 2)
4. STEP BY STEP INSTRUCTIONAL PDF FILE (MSO5000 DrMefisto Licensing Method) (Also Attached)

OPTIONAL
- Downgrading to 1.3.2.2  Video (this video shows you how to get into the Pre Boot Menu)
- FULL TUTORIAL VIDEO (Name not established yet and video is still to come, I'll keep you updated)


THE ACTUAL UPGRADE PROCESS

I'm going to give you 3 options

OPTION 1 - I will BRIEFLY detail the steps in this post , You can take a crack at it if you feel competent, However i personally feel if you are competent enough you wouldn't be here in the first place.

OPTION 2 - There will be a DETAILED pdf of the steps at my MEGA cloud location , Download the pdf and follow that

OPTION 3 - You can download the full tutorial video and watch it step by step, it's not short, but it will explain everything.


NOW...
HERE ARE THE BRIEFLY OUTLINED STEPS that you'll have to do

(THESE STEPS ASSUME THAT YOU HAVE A DECENT DEGREE OF NETWORKING EXPERIENCE AND BASIC PROGRAMMING EXPERIENCE - Python is preferred but not necessary, But you MUST have had some experience actually programming from scratch, not just uploading sketches into arduino for example. you must be familiar with C.L.I. if you don't know what C.L.I. is then don't do this method. you must be familiar with flashing EEPROM Basics.)

Now, i'm not saying Dr Mefisto's method is hard, i'm just saying, if you want to take the quick road and just read this post and jump in the deep end, IT DOES REQUIRE TECHNICAL KNOWLEDGE.
The other option is the PDF walkthrough or the video. But the method is easy, it's just very particular.

so...
- Get a USB Stick (up to 16GB)
- Download Rufus and format the USB stick to FAT32 File System (or... You can just use windows format if you like, but SOMETIMES this causes problems) Rufus is more reliable.
- Establish which firmware version your scope is on.

-  To do this upgrade you will need to start on Version 1.3.2.2
You will however be required to download both 1.3.2.2  and 1.3.3.0 for the entire process to be successful.

(NOTE : I AM ASSUMING A WINDOWS 10 PRO ENVIRONMENT - If you have Linux of Mac Make the appropriate Adjustments , Although i will say a few things later regarding Linux that you need to be aware of.)

- if you are on 1.3.3.0 and patched , Put the 1.3.2.2 software version on your USB stick             (First use Step 1 and do your backups) , Then Use the STEP 2 GEL file and put it on your USB stick.
- if you are on 1.3.2.2 with no options installed (You're fine), You just need to download the 1.3.3.0 firmware, Use Step 1, Do your backups , Then use STEP 2 GEL file and put it on USB Stick  (Min. 2GB)

- Now you need to turn off your scope, Insert the USB stick into the scope, and Enter the PRE Boot menu and do the firmware ugprade
 (You can feel free to select RESTORE DEFAULTS if you want, it doesn't hurt anything )

- After that , Regardless of what version you started on, you will now be on Ver. 1.3.2.2

- Now download the rigol_kg2.py script
- Open your command shell  YOU HAVE THE CHOICE TO USE WINDOWS cmd.exe OR  WINDOWS POWERSHELL  (Powershell is recommended), it has had a higher success rate.
Start in Powershell though if not sure.

- now whatever directory your command prompt or Powershell is starting in, Copy your script to that location .

- NOW SET UP YOUR NETWORK
You need a router (Internet is not required) (But the downloaded files are)
You need a PC
The PC needs to be connected to a LAN Port in the back of your router
You need an MSO5000
the MSO5000 needs to be connected to a LAN Port in the back of your router
(This is a basic Star Toplogy Configuration)

MAKE SURE THE POWER IS RELIABLE
MAKE SURE THE ETHERNET CABLES ARE PLUGGED IN PROPERLY
Make sure you don't have a lightning storm going on or power outtages
Make sure you don't have shit power boards and that everything is securely plugged in and can't fall out
 (YOU'VE BEEN WARNED... IF YOU BRICK YOUR SCOPE IT'S BECAUSE YOU IGNORED THIS)

Now that everything is connected

- Download Python
_ Install Python (this is the part where ... if you're not sure... Read the PDF or watch the video)
If you install python and run it and you can't connect to the scope (Uninstall Python and do not proceed with this method, but instead do the PDF or Video method). i'm assuming here you know
how to install python correctly and run it and have basic programming experience.

- Now take that USB stick out of your scope

- Obtain the scopes IP Address and Use Command prompt or powershell to run a ping command to see if your PC is communicating with it.
IF YES... Proceed
IF NO... Troubleshoot the network
Stay on AUTO and DHCP (Try to avoid using STATIC IP)

- TYPE   
Python 
Into the command shell or powershell to see if it connects to the python interpreter
in Linux the command is
$ python
if it does
- TYPE 
exit()
  and press enter   (do not enter the commands directly from the python interpreter) Use cmd or Powershell only to interface with the interpreter
in Linux the command is
$ exit()
Now you want to see what options you have before you   (ASSUME MY RIGOL SCOPE IP ADDRESS IS 10.1.1.666)  :P
TYPE
python rigol_kg2.py -h 10.1.1.666
in Linux the command is
$ python rigol_kg2.py -h 10.1.1.666
Press ENTER
this will bring up the help menu (you can do no harm to your scope by doing this)
The options we are interested in  the SWITCHES that we are interested in are
-h HELP   --------------------------------- (THIS CANNOT HARM YOUR SCOPE)
-i INFORMATION ------------------------ (THIS CANNOT HARM YOUR SCOPE)
-r REGENERATE PRIVATE KEY--------- (THIS GENERATE THE PRIVATE KEY (Priv Prem) needed before activation)
-u UNINSTALL THE OPTIONS--------- (THIS Uninstalls all options and bundles) so if you are on 1.3.2.2 with installed patched options, you use this option to uninstall them

Note the version of the scope
Note if the options are FOREVER or -
if you are on 1.3.2.2 and it says FOREVER because you used the patched version  do this now

TYPE
python rigol_kg2.py -u 10.1.1.666
Press ENTER
Make sure to restart your scope after this


NOW LET'S PULL UP THE SCOPE INFORMATION
TYPE
python rigol_kg2.py -i 10.1.1.666
Press ENTER
in Linux the command is
$ python rigol_kg2.py -i 10.1.1.666

If you now have
- All Options Uninstalled
- and are on 1.3.2.2

WE ARE NOW READY TO GENERATE THE PRIVATE KEY.... 
(Ensure you do not lose network or power connection at this stage)

TYPE
python rigol_kg2.py -r 10.1.1.666
Press ENTER
in Linux the command is
$ python rigol_kg2.py -r 10.1.1.666

EXPECT THIS...

- the information table will appear
- A progress bar will appear that says "READING CFRAM"  ... Let it get to 100%
- Then "APPLYING NEW CFRAM"  Let it get to 100%
(if it seems to stall for longer than 1 min, it means you clicked on the screen,   RIGHT CLICK to un pause, then leave it alone)

- Then you will see multiple lines of ACTIVATING
- at the end of it you'll get an information window.   The options will still NOT BE ACTIVATED (that's normal)

NOW WE RUN THE SCRIPT
TYPE
python rigol_kg2.py 10.1.1.666
in Linux the command is
$ python rigol_kg2.py 10.1.1.666
Press ENTER

After this you will expect all options to be activated (They won't be), That's also normal

- Now REINSTALL 1.3.2.2    even though the current version is 1.3.2.2  DO IT AGAIN,  put the USB in the scope with that firmware version on it and run Firmware upgrade again.
(Sounds stupid.. Just do it)

- Then follow the steps again
Get the python INFORMATION up again
NO NEED TO REGENERATE THE KEY THIS TIME
Then just run the script again
TYPE
python rigol_kg2.py 10.1.1.666
in Linux the command is
$ python rigol_kg2.py 10.1.1.666
Press ENTER

THIS TIME YOU WILL BE ACTIVATED

BUT WAIT , YOU'RE NOT DONE JUST YET

- Now erase the USB stick and load 1.3.3.0 onto it

- do the Pre Boot Menu UPGRADE FIRMWARE to 1.3.3.0
or you can do this straight from the operating system

NOW YOU WILL NOTICE A FEW THINGS

1. You're now on 1.3.3.0
2. ALL YOUR OPTIONS HAVE SURVIVED A FIRMWARE UPGRADE
3. You're now good to go

REMEMBER THOUGH

1. Do a self check (3 tests)
2. Do a self calibration
3. RUN YOUR BACKUPS AGAIN (Always remember to backup)

NOW YOU'RE ALL DONE , that's it


Lastly, if you have any further concerns, Let me know and i'll test it and post the results.
My goal here is to get everyone comfortable with Dr Mefisto's script, and to upgrade their scopes confidently.



EDIT : New pdf uploaded to include the step that shows you how to install the modules.
« Last Edit: May 02, 2024, 06:13:42 am by BTO »
QUESTION EVERYTHING!!!
 
The following users thanked this post: apulanta, Kean, coromonadalix, tcottle, oldjackbob

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #1 on: April 28, 2024, 01:42:28 pm »
UPDATE : The Step by Step Instructional PDF is now available (it's detailed)

Also if possible (Because i'm interested to know) could you please leave comments if this worked for you or if it didn't , i think this will start working for everyone.
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #2 on: April 30, 2024, 03:28:20 pm »
Hello!
I ran into a problem, perhaps this is due to the fact that some of the options are already activated (I bought it together with the oscilloscope). Is it possible to do anything?
« Last Edit: April 30, 2024, 08:19:11 pm by Sergey_21 »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #3 on: April 30, 2024, 03:43:02 pm »
Hello!
I ran into a problem, perhaps this is due to the fact that some of the options are already activated (I bought it together with the oscilloscope). Is it possible to do anything?
(Attachment Link)

Definitely.....

DO THIS FIRST

Code: [Select]
python d:/rigol_kg2.py -i 192.168.1.37
THEN THIS..
Code: [Select]
python d:/rigol_kg2.py -u 192.168.1.37RESTART YOUR SCOPE.

THEN THIS...
DELETE THE PRIV PREM FILE from it's current location
(it should be on the d Drive where you put your python script
then
Code: [Select]
python d:/rigol_kg2.py -r 192.168.1.37RESTART YOUR SCOPE.

then..
Code: [Select]
python d:/rigol_kg2.py 192.168.1.37RESTART YOUR SCOPE

Do you now have all options unlocked "FOREVER" ?
You might, but i don't think so..
IF NOT
DO THIS

 - Put the 1.3.2.2  Firmware GEL File on the USB Stick and even though you are already on 1.3.2.2 ...... DO THE UPGRADE AGAIN
- Go into the PRE BOOT menu by pressing Power button then repeatedly the SINGLE button and Select  FIRMWARE UPGRADE
(Whether you select Defaults, is completely up to you,  some people feel more comfortable doing this... Your call)

After the upgrade
Code: [Select]
python d:/rigol_kg2.py -i 192.168.1.37
then..  You don't need to do -r anymore, Just jump straight into
Code: [Select]
python d:/rigol_kg2.py 192.168.1.37
AND VOILA... 
RESTART YOUR SCOPE

THEN YOU NEED TO UPGRADE TO 1.3.3.0
Grab the GEL file for 1.3.3.0  and you can now do this from the PRE Boot Menu or from the scope in Local Upgrade, it's up to you.

then Restart your scope
Check if it's all good,  IF IT IS...

GET THE 1.3.3.0 BACKUP FILES AND DO YOUR BACKUPS
Do a Self Check
Do Self Cal
and there you go

If you need help, i'm still up, Let me know
« Last Edit: April 30, 2024, 03:51:36 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #4 on: April 30, 2024, 03:47:55 pm »
Hello!
I ran into a problem, perhaps this is due to the fact that some of the options are already activated (I bought it together with the oscilloscope). Is it possible to do anything?
(Attachment Link)

NOTE TO EVERYONE RE THE UPGRADE PATH
Code: [Select]
python d:/rigol_kg2.py -i 192.168.1.37
Notice the d:/

LET'S TRY TO AVOID USING USB STICKS WHEN DOING THE UPGRADE

WARNING : if the USB Stick fails (as they tend to do ) and it happens during the write process of
Code: [Select]
python d:/rigol_kg2.py 192.168.1.37YOU.... WILL...... BRICK YOUR SCOPE

I only advised you to go ahead with it because you already had the python path installed and i didn't want to mess with it (to keep things simple)
but in the future, i do not advise that you keep your python scripts on a USB, I WOULD ADVISE

1. Open your shell   Probably go for Powershell first
2. Whatever directory location it starts with..   
3. Copy your script to that location  (IT'S MUCH EASIER THAT WAY)
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #5 on: April 30, 2024, 03:54:31 pm »
Hello!
I ran into a problem, perhaps this is due to the fact that some of the options are already activated (I bought it together with the oscilloscope). Is it possible to do anything?
(Attachment Link)

Also, Re The Assertion Error, 
if it fails to do it again

TAKE YOUR SCRIPT OFF D DRIVE AND PUT IT IN YOUR C DRIVE AT THE LOCATION THAT THE COMMAND SHELL OPENS IN
Usually it will be
C:\Users\User
and retry all the steps
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #6 on: April 30, 2024, 05:19:23 pm »
Hello!
I ran into a problem, perhaps this is due to the fact that some of the options are already activated (I bought it together with the oscilloscope). Is it possible to do anything?
(Attachment Link)
So.. How did you go ?
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #7 on: April 30, 2024, 06:51:51 pm »
So:
1) command python d:/rigol_kg2.py -u 192.168.1.37 worked and reset all options and then the oscilloscope rebooted;
2) the PRIV PREM file could not be deleted, because there is nothing to delete (there is no file);
3) the command python d:/rigol_kg2.py -r 192.168.1.37did not give anything, the result is the same;
4) then, following your advice, I reset the settings and updated the firmware, but this did not solve the problem;
5) drive "D" is a local drive;
6) moving the file to C:\Users\User did not bring any results;

 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #8 on: April 30, 2024, 07:18:37 pm »
So:
1) command python d:/rigol_kg2.py -u 192.168.1.37 worked and reset all options and then the oscilloscope rebooted;
2) the PRIV.PEM file could not be deleted, because there is nothing to delete (there is no file);
3) the command python d:/rigol_kg2.py -r 192.168.1.37did not give anything, the result is the same;
4) then, following your advice, I reset the settings and updated the firmware, but this did not solve the problem;
5) drive "D" is a local drive;
6) moving the file to C:\Users\User did not bring any results;

ok

LET'S DO THIS STEP BY STEP
Quote
1) command python d:/rigol_kg2.py -u 192.168.1.37 worked and reset all options and then the oscilloscope rebooted;
The Command -u doesn't RESET all Options, it UNINSTALLS All options , Please confirm it uninstalled all options.

Quote
2) the PRIV PREM file could not be deleted, because there is nothing to delete (there is no file);
EXCELLENT, So in the location where you have the rigol_kg2.py script there is no PRIV.PEM file.......GREAT !!!

Quote
3) the command python d:/rigol_kg2.py -r 192.168.1.37did not give anything, the result is the same;
OK, SO THIS IS WHERE YOU ARE STUCK

Before you can run
Code: [Select]
python d:/rigol_kg2.py 192.168.1.37and expect it to work, The PRIV.PEM file with the key needs to be generated.  Your attempts are failing because that file is not there

WATCH....
After -r  To REGENERATE the key
You do this (To Run the Script)
Code: [Select]
python d:/rigol_kg2.py -u 192.168.1.37IT FAILS - Because there is no PRIV.PEM File to read from (The Script requires the PRIV.PEM File)

then..
Quote
4) then, following your advice, I reset the settings and updated the firmware, but this did not solve the problem;
EXCELLENT - But this will still lead you to a point where NO PRIV.PEM file is generated thus resulting in a fail to upgrade  (DON'T WORRY, I'LL GET YOU THERE)  Just follow me on this . Don't stress

Quote
5) drive "D" is a local drive;
WHY IS D DRIVE THE LOCAL DRIVE ?
I have installed and repaired computers for 35 years or more, I have NEVER seen a Primary Hard drive with Operating system on it (Assuming no Dual Boot configuration) that did not call
the Main Hard drive C:\
Ever since computers started,   A and B Are for floppy drives, C is the first primary Drive, D was used for Optical drives. Now  OF COURSE we can re assign them, But
C IS ALWAYS THE PRIMARY DRIVE
the point being (For many reasons)  DO NOT USE OTHER VOLUMES AND DRIVES WHEN DOING THIS, Use the Primary C Hard drive

Quote
6) moving the file to C:\Users\User did not bring any results;

OK, I WANT YOU TO DO THIS

1. Go in your computer to windows Explorer and select  THIS PC and give me a screenshot of the window

2. Open Powershell and give me a screenshot of Powershell (Close enough so i can see the directory in use)

3. Give me a screenshot of the location where you have the rigol_kg2.py script

do that ...
« Last Edit: April 30, 2024, 07:41:45 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #9 on: April 30, 2024, 08:05:12 pm »
The Command -u doesn't RESET all Options, it UNINSTALLS All options , Please confirm it uninstalled all options. - Yes it is, I confirm.

After the last attempt, the file priv.pem appeared, but the result remained the same.


« Last Edit: April 30, 2024, 08:28:25 pm by Sergey_21 »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #10 on: April 30, 2024, 08:30:26 pm »
The Command -u doesn't RESET all Options, it UNINSTALLS All options , Please confirm it uninstalled all options. - Yes it is, I confirm.
Good, Well done

so your primary drive is C and the D Drive is a secondary drive.
so LET'S USE THE  C Drive

You've obviously copied the script to the C:\User\Admin Location   
that's good

Now

to check you have communication with the scope
Code: [Select]
python rigol_kg2.py -i 192.168.1.37
followed by

REGENERATE THE PRIV.PEM file
Code: [Select]
python rigol_kg2.py -r 192.168.1.37
CONFIRM THAT YOU NOW HAVE AN ADDITIONAL FILE IN THE C:\Users\Admin   folder  called priv.pem
IF YOU DO

then..
Code: [Select]
python rigol_kg2.py 192.168.1.37
RESTART THE SCOPE
at this point it's normal to not have it activated.... no problem

then
Relaod the 1.3.2.2 GEL FILE and do the FIRMWARE UPGARDE process via PRE BOOT menu

After that's done

again

Code: [Select]
python rigol_kg2.py -i 192.168.1.37
then RUN THE SCRIPT
Code: [Select]
python rigol_kg2.py 192.168.1.37
and now you should be activated with all options unlocked

then
Update to 1.3.3.0

LET ME KNOW IF THAT WORKS

You're almost there, once that priv.pem file generates , it's gonna work
« Last Edit: April 30, 2024, 08:33:33 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #11 on: April 30, 2024, 08:47:33 pm »
The Command -u doesn't RESET all Options, it UNINSTALLS All options , Please confirm it uninstalled all options. - Yes it is, I confirm.

After the last attempt, the file priv.pem appeared, but the result remained the same.
sorry didn't see that last photo

NO.. THIS IS OK

Now you just need to get that 1.3.2.2 GEL file
wipe the USB, 
put the GEL file in the root of the USB
and run it again VIA Pre Boot menu

after that restart your scope

run the INFORMATION  -i  command

then run the script
Code: [Select]
python rigol_kg2.py 192.168.1.37
and it'll be activated
then.. Give me the good news
« Last Edit: April 30, 2024, 08:56:08 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #12 on: April 30, 2024, 09:00:46 pm »
I did everything according to your advice, but the options remained unactivated.
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #13 on: April 30, 2024, 09:07:46 pm »
I did everything according to your advice, but the options remained unactivated.

ok and
- After you did the upgrade of 1.3.2.2  FOR THE 2ND TIME
1. Did you make sure it was the correct GEL file

2. When you ran the Script,  did you get 2 progress Bars ? 
or was it just the READING CFRAM

also did you get that error from before again ?
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #14 on: May 01, 2024, 03:13:07 am »
hi mate, how are you going with it , if you need me to do a zoom with you , let me know, Glad to help.
You're really close we just need to figure out what's going on. I'm happy to do a 1 on 1 with you if you like.

EDIT :
I'm free this evening, if you want to jump on
« Last Edit: May 01, 2024, 04:55:17 am by BTO »
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #15 on: May 01, 2024, 06:37:53 am »
1. Did you make sure it was the correct GEL file
I used the file from the folder "Step 2. GEL File - Scope Firmware - 00.01.03.02.02"
2155606-0

2. When you ran the Script,  did you get 2 progress Bars ?
No, the script, as before, did not work to completion, I only had 1 progress bar and an error after that, but the PRIV.PEM file appeared
2155612-1

Probably the problem is that the script reads memory (this is done without errors) and tries to do something with it,
then an error occurs and the data that the script was supposed to generate/rewrite is not generated.

 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #16 on: May 01, 2024, 08:19:49 am »
1. Did you make sure it was the correct GEL file
I used the file from the folder "Step 2. GEL File - Scope Firmware - 00.01.03.02.02"
(Attachment Link)

2. When you ran the Script,  did you get 2 progress Bars ?
No, the script, as before, did not work to completion, I only had 1 progress bar and an error after that, but the PRIV.PEM file appeared
[ Attachment Invalid Or Does Not Exist ]

Probably the problem is that the script reads memory (this is done without errors) and tries to do something with it,
then an error occurs and the data that the script was supposed to generate/rewrite is not generated.

Possibly...
TRY THIS

1. Delete the old script and download another one from the link i supplied in this topic
2. it's good that you used the 1.3.2.2 from the link in this topic

NOW... Just try this, ok

- Download 1.3.3.0  and Upgrade to it (don't worry about the options) Just do an upgrade.

-Then.. Go to PreBoot Menu and hist Restore Defaults

- Then.. Get that 1.3.2.2 and via Pre Boot Menu downgrade the scope to 1.3.2.2

- Then repeat the process
it's important to remember you need to do this TWICE

so....  After your back down on 1.3.2.2

put the script in the location of the command shell
run the -i command

run the -r command

then run the script without the switch

THEN.. (this is now 2nd Time Round)
Power down the scope

Load 1.3.2.2 into it again

Run the -i command

Then just run the script

and then you should be activated

I WOULD ALSO BE CHECKING AND DISABLING ANY ANTIVIRUS OR FIREWALL THAT MAY.. POSSIBLY BE MESSING WITH THIS

so try the upgrade then the downgrade and do it over again.
We are really close mate, we are almost there,

the script is supposed to read the Pri.pem file,  it's as simple as that .
so so far you have not done any damage to your scope, don't worry about that.
it's just about getting those 2 to talk to each other
Let me know how that goes
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #17 on: May 01, 2024, 08:32:48 am »
I ran a little through the main forum thread and had a suspicion that this script does not support my oscilloscope model (MSO5074).
On the forum I found a mention only of MSO5072, but so far this is only an assumption.
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #18 on: May 01, 2024, 08:50:42 am »
I ran a little through the main forum thread and had a suspicion that this script does not support my oscilloscope model (MSO5074).
On the forum I found a mention only of MSO5072, but so far this is only an assumption.
No that's not correct. if anything the script supports Multiple scopes, my suspicion is that it even supports the MSO7000 and possibly the 8000
as the Option Bundle JITTER is there which is not available in the 5000 and 7000

Simply put
The Script Generates the Priv.pem
then uses that file to right to the CFRAM
but before doing so it searches for AVAILABLE OPTIONS
as well as INSTALLED Options
and then the one's that are not installed,.... it installs


it supports all MSO5000 Models,  it has nothing to do with that .  if it didn't support it it would even run and it would spit out an error.
I've seen that post as well

REMEMBER THIS...
A Large part of what i'm doing here is.. TO DISPELL THE MYTHS Because this is a good upgrade, and it does work.
but since the topic started , people have jumped to a lot of conclusions and we need to sort out a few of these incorrect assumptions

like one of them is.. the need to hit that Restore Defaults option
which then morphed to....  RESTORE DEFAULTS takes your scope off the current firmware and back to the firmware version that you bought it with.

As a result of all this a lot of people are scared and freaking out.
I have upgraded my scope over 30 times, i've tried to brick it (with the exception of pulling the power or network cable) i wasn't about to.

I tried to fault the script,  i couldn't,  I've had a look through it, it's a pretty straight forward script.

Mate, do what i requested before and let me know how it goes... Buti  YOUR SCOPE IS COMPATIBLE TO THE SCRIPT.  that's not the issue.
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #19 on: May 01, 2024, 10:02:59 am »
Unfortunately, all these actions did not lead to a positive result.
I think we need to return to the old method of hacking.

Thanks for trying to help.
« Last Edit: May 01, 2024, 10:04:45 am by Sergey_21 »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #20 on: May 01, 2024, 10:28:02 am »
Unfortunately, all these actions did not lead to a positive result.
I think we need to return to the old method of hacking.

I Disagree,
Now we can always revert back to the patched method, There's no problem there.
and it's your scope so it is totally up to you .
But, we are really close to a permanent solution.

1. This is proving unusually difficult, which tells me we just need to find the issue and we'll be good
2. The first problem was that you had the file on a different directory
Sinc then we've made progress

3. Now the issue is that the script is not speaking to the Priv.Prem

Do you want to jump on a 1 on 1 support with you this evening ?
i'm confident we can work it out

Also @DrMeFistO
Mate do you have any ideas...

- He's trying to licence the scope
- He has the script in the same directory that Poweshell opens in
- He is able to regenerate Priv.Prem
- when whe runs the srcript it only get to the READING CFRAM but doesn't write to it

the is currently on 1.3.2.2 (the GEL is a known working file)
the script is a known working file

I'm thinking some software is blocking it or firewall, i see nothing in the script that would not allow his model MSO5000 to not write to FRAM.

we have also tried 2 times
running regenerate -r
running script
then running GEL 1.3.2.2 AGAIN
then ran the script again
should have licenced at this point, but didn't

for some reason the script doesn't seem to proceed to the writing of the CFRAM
in the code, i think he gets to line 127  but doesn't proceed past line 141

ANY IDEAS ...
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #21 on: May 01, 2024, 10:41:13 am »
Unfortunately, all these actions did not lead to a positive result.
I think we need to return to the old method of hacking.

Thanks for trying to help.

Try this for me
Do a SELF CAL

and Uninstall Python for me
then REINSTALL PYTHON  But make sure to do the following

STEP 1 . on the first screen
- SELECT..... CUSTOMIZE INSTALLATION    Not Install Now

- on the same screen CHECK THE BOXES 
- Use Admin Priviledges When Install Py.exe
- Add Python.exe to PATH

STEP 2 - Advanced Options
- Check the top 5 boxes  from Install Python for all users to Precompile Standard Library

STEP 3 -  Install it

STEP 4 - Open command shell  and enter the  -i command and see if it communicates with your scope, if it does
try the process again

QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #22 on: May 01, 2024, 10:43:35 am »
I ran a little through the main forum thread and had a suspicion that this script does not support my oscilloscope model (MSO5074).
On the forum I found a mention only of MSO5072, but so far this is only an assumption.
What Model do you have anyway ?
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #23 on: May 01, 2024, 11:48:13 am »
What Model do you have anyway ?
MSO5074
 

Offline Swap_File

  • Newbie
  • Posts: 7
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #24 on: May 01, 2024, 12:52:37 pm »
Directions and script worked perfectly on my MSO5074.  Thanks.

It might be useful to add a reminder to use a USB stick at least 2GB in size when doing the backups.  I have a little old 64MB stick I use for updates, and that was not big enough.
 
The following users thanked this post: BTO

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #25 on: May 01, 2024, 01:04:10 pm »
What Model do you have anyway ?
MSO5074
Oh well then.. it's 100% compatible with your scope as i also have a MSO5074.

Mate, my gut is saying things like....

something blocking the script from reading the Priv.pem file

This could include things like this

- Folder Permissions
THIS TOOL CAN HELP YOU
https://www.majorgeeks.com/mg/getmirror/take_full_ownership_of_files_folders_registry_hack,1.html
After you extract the file you'll have 2 registry files. click on the one that says
"Add Take Ownership to Context menu" and run it, Accept both options

then go over to the folder that the script is in and right click ON THE FOLDER and select TAKE OWNERSHIP.
You'll see a command shell open and do some stuff, don't worry about it, it's just setting permissions globally so you own the folder.

- You're not using an account that is Admin
(i imagine you likely are Admin but it's good to check)

- Your PC MIGHT be having a problem
this can be weeded out by opening cmd.exe and running
Code: [Select]
sfc/scannowThis takes a while

- Perhaps Python is having trouble with the folder or you selected INSTALL when you installed it instead of CUSTOMIZE INSTALLATION.

- it's unlikely the folder itself is having issues as the script was able to write to the folder and that same folder has both the script
and Priv.pem, the problem is about or has something to do with python reading the Priv.pem file

this isn't a scope issue, this is a computer software issue, permissions or firewall related

Run the Takeownership registry patch on the file and try it again.




QUESTION EVERYTHING!!!
 
The following users thanked this post: RemB

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #26 on: May 01, 2024, 01:11:39 pm »
Directions and script worked perfectly on my MSO5074.  Thanks.

It might be useful to add a reminder to use a USB stick at least 2GB in size when doing the backups.  I have a little old 64MB stick I use for updates, and that was not big enough.

1 GREAT TO HEAR - I'm curious  which directions did you use
- The one's in this topic
- The PDF
???

2. Now.. A quick check
YOU LICENCED SUCCESSFULLY -  CHECK

Did you
- Upgrade after the licensing to 1.3.3.0   (you can do this from the operating system or from PRE BOOT menu)

- DO YOUR BACKUPS (by going into STEP 1. of the 1.3.3.0 file that i attached)     Do not forget to do your backups.
  in all the excitement of activation you can be forgiven for forgetting.. but don't !

- DO SELF CHECK - 3 Tests

- DO SELF CAL

Lastly Re the USB STICK.... Interesting.
I was telling people not to exceed 16GB as it's what i used and it is a reasonable size to use.  But You reckon 2GB min huh,  OK
I'll add that step.

WELL DONE CONGRATULATIONS
« Last Edit: May 01, 2024, 01:24:12 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #27 on: May 01, 2024, 01:50:01 pm »
I think firewall, access, etc. things have nothing to do with it. The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
I have unlocked some debugging information, but it may only be useful to the developer of this script.
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created, access is not needed here.
« Last Edit: May 01, 2024, 01:55:05 pm by Sergey_21 »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #28 on: May 01, 2024, 02:11:14 pm »
I think firewall, access, etc. things have nothing to do with it. The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
I have unlocked some debugging information, but it may only be useful to the developer of this script.
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created, access is not needed here.

HOLD ON.. !!
1. So are you still getting the Assertion Error ?

2. Why are you using the regenerate command , My understanding is, you already generated the key
Now, you need to run the sript at
Code: [Select]
python rigo_kg2.py [Your I.P. Address here]there is no switch here.

if you keep running the script as
Code: [Select]
python rigo_kg2.py -r [Your I.P. Address here]it's never going to activate, You need to delete the -r

so what's the last thing that you tried , Did you try the Take Ownership thing that i suggested ?

Also, do you want me to jump on zoom with you or something, i feel we are really close to getting it.
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #29 on: May 01, 2024, 02:16:52 pm »
I think firewall, access, etc. things have nothing to do with it. The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
I have unlocked some debugging information, but it may only be useful to the developer of this script.
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created, access is not needed here.

Quote
I think firewall, access, etc. things have nothing to do with it.
But.. Given the situation you are in, WE NEED TO TEST IT AND PROVE IT
Something is stopping it from reading the Priv.pem file,   Now if you were running the command each time with the -r in there.
THAT WOULD BE THE CAUSE.

Quote
The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
Correct , it does read the FRAM and it does then write to it,  but re "it doesn't receive what it expects" , The script asks the scope to provide
it the information, Now there are commands like "len" for example where the Hex key needs to be the exact length that is expected (this is true)
but.. THAT WOULD MEAN THAT YOUR SCOPE IS DIFFERENT TO ALL OF OUR SCOPES in some foundational way,  I can't see that happening
if you have an MSO5074

Quote
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created,
but... By running the regenerate command, You did create it .

and after that, You run the script (without switches)

DO THIS...
RUN THE SCRIPT without switches, and shoot me a screenshot if you could
or........ZOOM
QUESTION EVERYTHING!!!
 

Offline RemB

  • Newbie
  • Posts: 1
  • Country: ru
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #30 on: May 01, 2024, 03:14:06 pm »
Hi! I have an MSO5074 and had installed options (MSO5000-BND). I did everything according to the instructions and now I have all installed licenses. The method is working. I suggest adding a description of installing modules for python. Thanks!
« Last Edit: May 01, 2024, 03:23:28 pm by RemB »
 
The following users thanked this post: BTO

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #31 on: May 01, 2024, 03:47:36 pm »
Hi! I have an MSO5074 and had installed options (MSO5000-BND). I did everything according to the instructions and now I have all installed licenses. The method is working. I suggest adding a description of installing modules for python. Thanks!

THAT'S AWESOME.. GOOD WORK

Now,
1. Don't forget to upgrade to 1.3.3.0

2. DON'T FORGET TO DO YOUR BACKUPS (By going to STEP1 ) of the 1.3.3.0 download and running the 2 backups

3. Then Do your SELF TEST

4. Then do your SELF CAL

then you're good to go.


RE THE MODULES....
Ahhh Yes, You are correct, i meant to do that, My wife interrupted me to give me dinner and when i returned it slipped my mind.
it is in the video that i have not finished editing, but i will edit the PDF
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #32 on: May 01, 2024, 03:57:36 pm »
ModuleNotFoundError

Hi Guys, a bit of an oversight on my part but keep this in mind

1. After you install Python

2. The first thing you want to do is INSTALL THE REQUIRED MODULES, if you don't have them you will get an error like   
Code: [Select]
ModuleNotFoundErrorand it will have something on the end... Like this
Code: [Select]
ModuleNotFoundError: No Module named 'requests'This means that you do not have the "REQUESTS" Module installed,   to install the module you do this...

Quote
pip intstall requests
Press ENTER
I personally had to install the following modules but if you get any others , just go ahead and install them, Just alter the name between the parenthesis.

Quote
pip intstall tqdm

Quote
pip intstall tabulate

Quote
pip intstall xxtea

Quote
pip intstall ecdsa

When you have all options installed and you run
Quote
python rigol_kg2.py -i 00.00.00.00
[/color]
where 00.00.00.00  is your I.P. Address, You will a table of installed options
« Last Edit: May 01, 2024, 04:59:21 pm by BTO »
QUESTION EVERYTHING!!!
 
The following users thanked this post: RemB

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #33 on: May 01, 2024, 04:04:20 pm »
I think firewall, access, etc. things have nothing to do with it. The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
I have unlocked some debugging information, but it may only be useful to the developer of this script.
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created, access is not needed here.

Hey Sergey, Read my recent post on MODULE ERRORS, Perhaps this is as simple as you didn't install all the modules.

The entire list of modules is

Code: [Select]
pip intstall argparse
Code: [Select]
pip intstall base64
Code: [Select]
pip intstall binascii
Code: [Select]
pip intstall os.path
Code: [Select]
pip intstall re
Code: [Select]
pip intstall socket
Code: [Select]
pip intstall struct
Code: [Select]
pip intstall time
Code: [Select]
pip intstall zlib
Code: [Select]
pip intstall requests
Code: [Select]
pip intstall tqdm
Code: [Select]
pip intstall hashlib
Code: [Select]
pip intstall tabulate
Code: [Select]
pip intstall xxtea
Code: [Select]
pip intstall struct import pack
Code: [Select]
pip intstall ecdsa
YOU CAN RUN THIS COMMAND TO SEE THE INSTALLED MODULES

Code: [Select]
pip list
« Last Edit: May 01, 2024, 04:18:51 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #34 on: May 01, 2024, 04:42:05 pm »
Hi! I have an MSO5074 and had installed options (MSO5000-BND). I did everything according to the instructions and now I have all installed licenses. The method is working. I suggest adding a description of installing modules for python. Thanks!

PDF has been updated, thanks for letting me know that,  That was KINDA An important step huh ?  :P
QUESTION EVERYTHING!!!
 
The following users thanked this post: RemB

Offline Michal Mytnik

  • Newbie
  • Posts: 8
  • Country: pl
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #35 on: May 01, 2024, 09:30:31 pm »
Hi,

for me all have worked very well. Job well done with PDF @BTO :-+
The only small misalignment I have had was at point 16, where it says that script without parameters will run same way, meaning two progress bar should appear. In my case I have just got info that CFRAM is OK and then got the activation list screen, no progress bars. I have just went down the PDF file and at the end all worked super good.

But it's true that I have had to import some libraries via pip

All in all it works, and excelent work with providing all the details @BTO
 
The following users thanked this post: BTO

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #36 on: May 02, 2024, 04:00:12 am »
Hi,

for me all have worked very well. Job well done with PDF @BTO :-+
The only small misalignment I have had was at point 16, where it says that script without parameters will run same way, meaning two progress bar should appear. In my case I have just got info that CFRAM is OK and then got the activation list screen, no progress bars. I have just went down the PDF file and at the end all worked super good.

But it's true that I have had to import some libraries via pip

All in all it works, and excelent work with providing all the details @BTO

Quote
for me all have worked very well. Job well done with PDF @BTO :-+
Thankyou and Excellent work WELL DONE

Quote
The only small misalignment I have had was at point 16, where it says that script without parameters will run same way, meaning two progress bar should appear. In my case I have just got info that CFRAM is OK and then got the activation list screen, no progress bars. I have just went down the PDF file and at the end all worked super good.

Hmmm???  well what i would say to that is...
1. At step 16 THERE ARE PARAMETERS, Step 16 is where you REGENERATE THE PRIVATE KEY and use the -r switch .
This is where the progress bars should happen

2. STEP 17 is where you take away the switch (aka Parameters) and you run the script

3. I would say .. if you were at Step 16 and the progress bars didn't start,  it means you already had the Priv.pem file generated
and as such it didn't generate it anymore.
then when you got to Step 17, without the switch, it just worked.
Well , it wouldn't have worked if you didn't have the priv.pem file in place so you must have had it there and attempted to regenerated again.

but all in all Good work.

Now.. .GO AND READ POST #31  (So i don't have to keep retyping it) :P
and follow those steps and then you're all good
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #37 on: May 02, 2024, 04:10:32 am »
I think firewall, access, etc. things have nothing to do with it. The script reads the contents of memory and tries to change it. But the script cannot do this, since it does not receive what it expects.
I have unlocked some debugging information, but it may only be useful to the developer of this script.
That is, the stage of transferring the changed information (key) to the oscilloscope does not occur, since a new key has not been created, access is not needed here.

Surgey, Just so i know, What's the deal with you mate ?
- I'm happy to get on a zoom chat with you and get you over the line, But
- Are you still proceeding with this ?
- have you given up
- have you reverted to just patching the scope,

Where are you at ?
QUESTION EVERYTHING!!!
 

Offline Sergey_21

  • Contributor
  • Posts: 12
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #38 on: May 02, 2024, 04:13:12 pm »
Surgey, Just so i know, What's the deal with you mate ?
- I'm happy to get on a zoom chat with you and get you over the line, But
- Are you still proceeding with this ?
- have you given up
- have you reverted to just patching the scope,

Hello!
I tried it, but the result is the same.
2158966-0

As I said earlier, or rather wrote, my script gives an error (and I tried to continue as you advised, but it didn’t give anything) and until I can sort this out, I don’t think anything will work out.
I think it’s worth writing to the script developer or to the main forum thread.
« Last Edit: May 02, 2024, 04:15:00 pm by Sergey_21 »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #39 on: May 03, 2024, 05:51:24 pm »
Surgey, Just so i know, What's the deal with you mate ?
- I'm happy to get on a zoom chat with you and get you over the line, But
- Are you still proceeding with this ?
- have you given up
- have you reverted to just patching the scope,

Hello!
I tried it, but the result is the same.
(Attachment Link)

As I said earlier, or rather wrote, my script gives an error (and I tried to continue as you advised, but it didn’t give anything) and until I can sort this out, I don’t think anything will work out.
I think it’s worth writing to the script developer or to the main forum thread.

ATTENTION SERGEY
THIS POST IS DUPLICATED HERE FROM THE MAIN THREAD FOR THE BENEFIT OF THOSE THAT DON'T SEE THE MAIN THREAD

Mate, You may be in some luck here.
Recently i had a member who had your exact same problem

- After following the standard procedure and then re applying the update and then running the script, it still didn't work.
- We did a bit of troubleshooting and we got there and activated and licensed

CREDIT GOES TO SEPPLETRONICS

I have attached  A NEW PYTHON SCRIPT

I would like you to do the following (No need for screenshots, Just do this)

STEP 1- Download the script called
Code: [Select]
rigol_kg2_3_000 in the attachment

Ensure your scope is on 1.3.2.2

STEP 1 - Delete your priv.pem key from it's location
STEP 2 - Delete the old script from it's location
STEP 3 - Open your command prompt or Powershell and copy the NEW SCRIPT into the location of the directory that the shell opens in
             (I'm assuming here that you still have python correctly installed with all the modules)

STEP 4 - Run the -i command like this
Code: [Select]
python rigol_kg2_3_000 -i 10.1.1.666   replace 10.1.1.666 for your I.P. Address

STEP 5 - Run the -r command
Code: [Select]
python rigol_kg2_3_000 -r 10.1.1.666

STEP 6 - CONFIRM THAT YOU DON'T HAVE ANY ERRORS
             CONFIRM THAT THE priv.pem FILE IS IN THE SAME LOCATION AS THE SCRIPT
             CONFIRM THAT YOU GOT 2 PROGRESS BARS INSTEAD OF ONE
STEP 7 - Run the script without the switch
Code: [Select]
python rigol_kg2_3_000 10.1.1.666
             CONFIRM THAT YOU GOT 2 PROGRESS BARS INSTEAD OF ONE
When this completes, it will NOT have activated Options

STEP 8 - SHUTDOWN YOUR SCOPE

STEP 9 - Put the 1.3.2.2 GEL File on USB and as before , go to PRE BOOT and select Upgrade Firmware , to load over 1.3.2.2 again
Take the USB Stick out and Restart your Scope

STEP 10 -  Run the -i command like this
Code: [Select]
python rigol_kg2_3_000 -i 10.1.1.666 

STEP 11 - Run the script without the switch
Code: [Select]
python rigol_kg2_3_000 10.1.1.666

NOW ..... PLEASE TELL ME THAT YOU ARE SUCCESSFULLY ACTIVATED AND LICENCED WITH "FOREVER"


Give that a go.

If it works.... Do not forget

Step 12 - Upgrade to 1.3.3.0
Step 13 - DO YOUR BACKUP from the 1.3.3.0 Backup files
then..
Step 14- Do Self Check - 3 Tests
Step 15 - Do Self Cal

Mate if this works,  Also do me a favour, can you please send me a list of WHICH OPTIONS YOU HAD INSTALLED AT THE TIME OF PURCHASE.
« Last Edit: May 03, 2024, 05:56:59 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #40 on: May 03, 2024, 06:57:52 pm »
Directions and script worked perfectly on my MSO5074.  Thanks.

It might be useful to add a reminder to use a USB stick at least 2GB in size when doing the backups.  I have a little old 64MB stick I use for updates, and that was not big enough.

Hi mate,
First, Hope your scope is going well for you .

Secondly, Want to ask you a favour about your scope, (i'm gathering some information for the sake of helping others)

Now.. You mentioned your scope was a MSO5074
However... DID YOU BUY IT STANDARD or  DID YOU HAVE OTHER OPTIONS INSTALLED FROM THE TIME OF PURCHASE ?

FYI - This is a new script file called rigol_kg2_3_00.py 
For the record, this file will not apply to you , you just keep the one that you activated with if you need to do anything.
But the original file has been modified and other users have successfully activated that couldn't before, so now i need to gather
some information to see which models are effected by this change and to find the common factor between them and this will
help me understand if i need to modify the script further.

thanks mate
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #41 on: May 04, 2024, 08:51:25 am »
Hi,

for me all have worked very well. Job well done with PDF @BTO :-+
The only small misalignment I have had was at point 16, where it says that script without parameters will run same way, meaning two progress bar should appear. In my case I have just got info that CFRAM is OK and then got the activation list screen, no progress bars. I have just went down the PDF file and at the end all worked super good.

But it's true that I have had to import some libraries via pip

All in all it works, and excelent work with providing all the details @BTO
Hi Michal, Hope your scope is going well.
Can i ask something  PRIOR TO FULL ACTIVATION
What Model was your scope ?
Did it have any installed options from the factory ?

I'm making a record of who activated and the specifics of the meters, i'm trying to find a correlation between a few things
in the script as i feel i can edit the script to activate more scopes
QUESTION EVERYTHING!!!
 

Offline dxl

  • Regular Contributor
  • *
  • Posts: 190
  • Country: de
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #42 on: May 13, 2024, 07:57:56 pm »
Thanks BTO,

that worked like a charm. I had an old Firmware version several years old on my MSO5072, i disassembled the scope binary at that time and patched the option code to get all the options. Now i thought it's time to update the Firmware. All what's required was:

- flash DS5000Update.GEL via USB (from MSO5000(ARM)Update_v00.01.03.03.00.zip)
- python rigol_kg2_3_000.py -r 192.168.0.158
- powercycle DSO
- python rigol_kg2_3_000.py 192.168.0.158

voila, all options there - awesome, thanks!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #43 on: May 14, 2024, 01:16:32 am »
Thanks BTO,

that worked like a charm. I had an old Firmware version several years old on my MSO5072, i disassembled the scope binary at that time and patched the option code to get all the options. Now i thought it's time to update the Firmware. All what's required was:

- flash DS5000Update.GEL via USB (from MSO5000(ARM)Update_v00.01.03.03.00.zip)
- python rigol_kg2_3_000.py -r 192.168.0.158
- powercycle DSO
- python rigol_kg2_3_000.py 192.168.0.158

voila, all options there - awesome, thanks!
THAT'S AWESOME.. Well Done
You're Welcome

it is interesting however that , You have an MSO5074 and yet you used the
Code: [Select]
python rigol_kg2_3_000.py script
and it worked. Generally this is used only if you have a MS5100 series or.. in rare cases when you have a MSO5074 with MSO5000BND Options.

I haven't worked out why yet, but when they load options into a MSO5074 it seems to somehow recognize it as an MSO5100.

Oh Well.. NOTED,
In any case, You're all good, so well done
QUESTION EVERYTHING!!!
 

Offline SuperD

  • Newbie
  • Posts: 4
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #44 on: May 16, 2024, 02:05:08 am »
Hi all, I have been reading and gathering all the details. First, thank you for all of the instructions and hard work!

Now, I was a lucky one to get the Rigol Bundle free when I got my 5104. I found the patch well after installing that. I used the scope & patch with everything unlocked for a couple of years and was on 1.3.0.3. I updated the scope to 1.3.3.0 today and lost the bandwidth, back at 100 mhz (expected).

I downgraded to 1.3.2.2 to hopefully to lose all that (per instructions "If your scope is on Version 1.3.2.2 and has upgraded software on it you will need to uninstall those options") but nothing uninstalled. I still have the bundle options saying "Forever", and still on 100 mhz.

My ask is, how important is it to get everything removed? Is the concern only to remove the patch? If not, and all options need to be removed, how would I uninstall licensed options? ( I did GTS quickly and could not find a way to uninstall options)

I know the "Patch" is probably gone as the options I see, I would expect to remain. Just wondering how important it is to make those disappear. I have my back ups and holding off for now. I can always go back to the patch method, but I would like to get this perminent if possible, like the other options.

Thanks for any help you can give.
« Last Edit: May 16, 2024, 02:07:53 am by SuperD »
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #45 on: May 16, 2024, 02:29:42 am »
Hi all, I have been reading and gathering all the details. First, thank you for all of the instructions and hard work!

Now, I was a lucky one to get the Rigol Bundle free when I got my 5104. I found the patch well after installing that. I used the scope & patch with everything unlocked for a couple of years and was on 1.3.0.3. I updated the scope to 1.3.3.0 today and lost the bandwidth, back at 100 mhz (expected).

I downgraded to 1.3.2.2 to hopefully to lose all that (per instructions "If your scope is on Version 1.3.2.2 and has upgraded software on it you will need to uninstall those options") but nothing uninstalled. I still have the bundle options saying "Forever", and still on 100 mhz.

My ask is, how important is it to get everything removed? Is the concern only to remove the patch? If not, and all options need to be removed, how would I uninstall licensed options? ( I did GTS quickly and could not find a way to uninstall options)

I know the "Patch" is probably gone as the options I see, I would expect to remain. Just wondering how important it is to make those disappear. I have my back ups and holding off for now. I can always go back to the patch method, but I would like to get this perminent if possible, like the other options.

Thanks for any help you can give.

Quote
First, thank you for all of the instructions and hard work!
You're Welcome

Quote
I used the scope & patch with everything unlocked for a couple of years and was on 1.3.0.3. I updated the scope to 1.3.3.0 today and lost the bandwidth, back at 100 mhz
Yep THAT'S NOT A PROBLEM

Quote
I downgraded to 1.3.2.2 to hopefully to lose all that (per instructions "If your scope is on Version 1.3.2.2 and has upgraded software on it you will need to uninstall those options") but nothing uninstalled. I still have the bundle options saying "Forever", and still on 100 mhz.
Not a problem, You just go into Python and use the -u command to uninstall the options

Quote
My ask is, how important is it to get everything removed?
Not Highly Important, We are just following a protocol that works
You are free to try the python licensing method as is if you like, by all means,  it can't hurt,
worst case, we start over and uninstall it

Quote
Is the concern only to remove the patch?
yes, the main concern is to remove the patch

If not, and all options need to be removed, how would I uninstall licensed options?
OK, in the same way that would run the information switch with -i
Example
Code: [Select]
python rigol_kg2_3_000.py -i 192.168.0.158TO UNINSTALL YOU RUN
Code: [Select]
python rigol_kg2_3_000.py -u 192.168.0.158
Quote
I know the "Patch" is probably gone
it likely is, it's likely the installed options as you bought it are still there
i would just try upgrading without uninstalling personally

Use the rigol_kg2_3_000.py  script because you have an MSO5100 series
other than that

just follow
Code: [Select]
python rigol_kg2_3_000.py -i 192.168.0.158
Code: [Select]
python rigol_kg2_3_000.py -r 192.168.0.158
Code: [Select]
python rigol_kg2_3_000.py 192.168.0.158
then load 1.3.2.2 again via pre boot menu

then -i again
then
Code: [Select]
python rigol_kg2_3_000.py 192.168.0.158
with your IP of course
and you should be good.
Let me know how it goes

EDIT : then of course after that update to 1.3.3.0
follow the procedure on the pdf

sorry, had to run out to get the phone

so.. After you active on 1.3.2.2
Upgrade to 1.3.3.0 as per the pdf you can do this via Pre Boot Menu or from the O/S

Lastly before you celebrate

Follow the PDF to do
Backup again
Self Check
Self Cal

then to set your scope up (this is optional)
Visit this link
https://www.eevblog.com/forum/testgear/post-hacking-rigol-mso5000-post-hacking-tutorial-deep-dive/

You have instructions (Video) on how to setup your scope
as well as around 13 videos to teach you how to use every part of your scope in depth.

after that.. ENJOY

Let me know if you activated and let me know if you did so by uninstalling everything first or did you just activate
with bundle options installed ?
« Last Edit: May 16, 2024, 06:53:48 am by BTO »
QUESTION EVERYTHING!!!
 

Offline dinosaur_rob

  • Newbie
  • Posts: 2
  • Country: au
BTO

Your summary of the diverse posts re the methods made it all so clear.  Great work.  Would these methods work on other Rigol instruments? I have an old Rigol DS1104B.  I understand it may have the same board. It has Firmware 012.01.00.04.01.00.01 HW DB53 build 00.59.  Is this upgradeable to 200mzh by any of the described methods.   I also have a SA - DSA815 TG with Firmware 00.01.19 Boot 00.01.04.  Despite searching I could not see any clear method to get either of these units upgraded.  BTW I wanted to order (pay for) the DS1104B upgrade and was told by Rigol further licences are not available for that model.

I am also having difficulty locating earlier versions of software.  Is there a repository for these?

« Last Edit: May 18, 2024, 07:08:50 am by dinosaur_rob »
 

Offline SuperD

  • Newbie
  • Posts: 4
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #47 on: May 16, 2024, 01:34:41 pm »
We have success! Here is what I saw (for reference). I trusted the process and didn't uninstall the bundle. I did the -i then the -r, then the full command. All the way though, the OEM bundle lasted (just bandwidth was still OEM 100 mhz)

When I did the 1.3.2.2 reload through pre-boot, then booted up the scope after, now all options were uninstalled. Without me doing the -u at all.

Instructions went according to plan otherwise. The scope is now on 1.3.3.0 and fully licensed. Thank you again for the help, all who contributed!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #48 on: May 16, 2024, 01:47:21 pm »
We have success! Here is what I saw (for reference). I trusted the process and didn't uninstall the bundle. I did the -i then the -r, then the full command. All the way though, the OEM bundle lasted (just bandwidth was still OEM 100 mhz)

When I did the 1.3.2.2 reload through pre-boot, then booted up the scope after, now all options were uninstalled. Without me doing the -u at all.

Instructions went according to plan otherwise. The scope is now on 1.3.3.0 and fully licensed. Thank you again for the help, all who contributed!
THERE YOU GO, that's Awesome

Now don't forget to follow those last few steps in my last post in the EDIT section
the are important,  but.. WELL DONE
« Last Edit: May 16, 2024, 07:21:10 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Dear BTO

I am new to this forum (and a newbie).  I am in awe of the work you do. The world would be a much better place if there were more Dave and BTOs in the world.

Your summary of the diverse posts re the methods made it all so clear.  Great work.  Would these methods work on other Rigol instruments? I have an old Rigol DS1104B.  I understand it may have the same board. It has Firmware 012.01.00.04.01.00.01 HW DB53 build 00.59.  Is this upgradeable to 200mzh by any of the described methods.   I also have a SA - DSA815 TG with Firmware 00.01.19 Boot 00.01.04.  Despite searching I could not see any clear method to get either of these units upgraded.  BTW I wanted to order (pay for) the DS1104B upgrade and was told by Rigol further licences are not available for that model.

I am also having difficulty locating earlier versions of software.  Is there a repository for these?

Cheers dinosaur_rob
Hi mate
firstly
Quote
I am new to this forum (and a newbie).
That's ok, no problem

Quote
I am in awe of the work you do. The world would be a much better place if there were more Dave and BTOs in the world.
Thanks a a lot i really appreciate that
Dave however is  THE LEGEND, Without Dave none of us are here

i have put in my contribution here , but I THINK A FEW OTHER DESERVE CREDIT

As the title states, DRMEFIST0
this is the guy that created the python script (at least finalized the first version)
there were others at the beginning i don't know all their names
and then finally me and SEPPLETRONICS work out the version _3_00 thing of the script to allow the other models to be activated.
so credit goes to SEPPLETRONICS for that one

As for me (and if you're a beginner) this will be good for you,
1. I'm helping people get off the patch method and activated properly and simplifying the process

2. GO TO THIS LINK
https://www.eevblog.com/forum/testgear/post-hacking-rigol-mso5000-post-hacking-tutorial-deep-dive

THERE IS A VIDEO SERIES THAT WILL SHOW YOU HOW TO USE EVERY FEATURE OF YOUR SCOPE.

now as for this


Quote
Your summary of the diverse posts re the methods made it all so clear.  Great work.
THANKS i appreciate that.

 
Quote
Would these methods work on other Rigol instruments?
NO, THIS PYTHON SCRIPT IS ONLY SPECIFICALLY FOR MSO5000 scopes

Now, You being a newbie, this is the part where someone would say to you
- See that search bar up the top
- USE IT !!
 :-DD

DON'T WORRY , I'LL HELP YOU OUT

but for the sake of continuity of this post let's not get other scopes mixed up into it as it will confuse future people reading this.

I'm going to PM You with some instructions. but for now just to finish this.


Quote
I have an old Rigol DS1104B.
WOW... Not that is old
GOOD NEWS THOUGH, i have been monitoring this hardware hacking thing since Rigol DS1052E , then all the way through the
DS2000A and onwards, at the time your scope came out i had an option DS2000A or DS1052E,    I chose the former, Never regretted it.
 But lucky for you i do remember this stuff and there are posts on it.
I'll email you with instructions


Quote
I understand it may have the same board.
No, the MSO5000 and the DS1100B have different boards, i'ts not even the same process.


Quote
It has Firmware 012.01.00.04.01.00.01 HW DB53 build 00.59.  Is this upgradeable to 200mzh by any of the described methods. 
Not by the methods on this post, BUT IT IS UPGRADEABLE... YES


Quote
I also have a SA - DSA815 TG with Firmware 00.01.19 Boot 00.01.04.

hmm Interesting , A Spectrum Analyzer,   I LIke challenges,
Let me look that up for you, Again i'll PM you with this as we don't go into all that on this forum, But again, i will help you so don't worry.


Quote
Despite searching I could not see any clear method to get either of these units upgraded.
Don't worry, we'll get at least the scope upgraded

Quote
BTW I wanted to order (pay for) the DS1104B upgrade and was told by Rigol further licences are not available for that model.
EXACTLY,   that scope is DISCONTINUED
it's interesting that rigol recommends the MSO5104 as the closest scope,   I'd say this is an upsell.
I would say at this time if someone wanted an entry level cheapy, you're better going for the DHO1074, 12BIT SCOPES.
the specs are basically on par with what the DS1052E Was,  now this recommendation is a 70MHz option,but again.. Upgradeable
to 200MHz

Quote
I am also having difficulty locating earlier versions of software.  Is there a repository for these?
I'll PM you and explain everything, Let's do everything with PM from here on in or email



« Last Edit: May 16, 2024, 02:21:22 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline SuperD

  • Newbie
  • Posts: 4
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #50 on: May 16, 2024, 10:28:51 pm »
Thank you again for the guidance and putting it all in one place! I did do the 1.3.3.0 update, all 3 self-tests & the self-cal. As well as the new backups too. Ready for Scope-a-geddon!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #51 on: May 17, 2024, 02:48:09 am »
Thank you again for the guidance and putting it all in one place! I did do the 1.3.3.0 update, all 3 self-tests & the self-cal. As well as the new backups too. Ready for Scope-a-geddon!

Ohh yeah....
Now before the chalice of power is passed unto you , YOU HAVE 1 MORE TASK
before unleashing SCOPE-A-GEDDON


YOU MUST LISTEN TO THIS

 :-DD

and remember

THERE CAN BE ONLY ONE

« Last Edit: May 17, 2024, 02:52:36 am by BTO »
QUESTION EVERYTHING!!!
 

Offline strahd_von_zarovich

  • Contributor
  • Posts: 17
  • Country: tr
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #52 on: May 17, 2024, 07:35:18 am »
Has anyone tried it with MSO8000 series.  :)

I have MSO8064 with all the options but, upgrading 600MHz to 2Ghz would be wonderful.  ;D
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #53 on: May 17, 2024, 08:01:34 am »
Has anyone tried it with MSO8000 series.  :)

I have MSO8064 with all the options but, upgrading 600MHz to 2Ghz would be wonderful.  ;D

LOL... Man i love it when this happens
You don't get many (Actually there have been NONE) LOL that own an MSO8000 to put up their hand and say i want this unlocked.

but yeah i'm pretty sure we can most definitely do it.
I think it's best we tee up a time to get on a zoom session so it all goes properly, there's a few changes that need to be made in the script,
but i'm pretty sure i can get you to 2GHz because it's plain to see in the script that the option is there.

Quote
Has anyone tried it with MSO8000 series.
well on the MSO8000 post there is only 1 guy, and i reached out to him and he has not responded.

But as i said, this script should be good for
MSO5000
MSO7000
MSO8000

and also, No one has approached me for MSO7000 either, You just don't get a lot of that, it's not popular
But my confidence level on this working is very high, I reckon we give it a go
« Last Edit: May 17, 2024, 09:13:52 am by BTO »
QUESTION EVERYTHING!!!
 

Online tv84

  • Super Contributor
  • ***
  • Posts: 3251
  • Country: pt
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #54 on: May 17, 2024, 09:33:41 am »
This method works for all MSO 5000, 7000 and 8000 series. Nonetheless, given how this script works, it's not risk-free because of how the different FRAM areas are addressed.

I advise all to do a FRAM backup before doing it, as a last option to fully restore the scope.

FWIW, all this was tested when the 8000 came out. Here. Months earlier it had been done with the 7000.

 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #55 on: May 17, 2024, 09:33:58 am »
This method works for all MSO 5000, 7000 and 8000 series. Nonetheless, given how this script works, it's not risk-free because of how the different FRAM areas are addressed.

I advise all to do a FRAM backup before doing it, as a last option to fully restore the scope.

Quote
given how this script works, it's not risk-free because of how the different FRAM areas are addressed.
No mate, Most definitely. I wasn't just going to run the script as is.
Even though it's not risk free, I've done extensive research on the Software Items that are included and they all seem to span across the 3 Models.

I was actually going to reach out to you or DrMefist0 LOL, I suppose it's good timing that you chimed in.. Thanks.

Quote
I advise all to do a FRAM backup before doing it, as a last option to fully restore the scope.
No.. by all means , THAT WOULD BE NON NEGOTIABLE.

I would of course go through and change the parts of the script that label the scope or require the name MSO5074 to the model of the MSO8000  that we are targeting

Now.. I did actually look at Line 19
Code: [Select]
FRAM_MD5 = 'aadc292fe4063a7ac392e3c3dde51e84'and was wondering will this still work and if not, How to obtain a checksum that would
as for Line 20
Code: [Select]
FRAM_OFFSETS = [3120, 3204, 3206, 3207]I do understand what these do, however i have not opened and interrogated the scope to the degree where i would understand which values needed to be insert to accommodate the offsets for
MSO7000 and MSO8000

I'm planning over the weekend to go through the script with a fine tooth comb and see what's what.
also.. IF YOU KNOW   things like lines 39 - 42 (as an example) they are commented out which leads me to sort of think that DrMefist0 kept this as an ace up his sleeve to enable
should we require it. Or... it could just be stuff that he tried then didn't work so he commented it out, Not sure to be honest.

I do understand what all the modules do.
I am going to go through the script carefully
and we are DEFINITELY going to do a full backup

Personally i think with a bit of tweaking and a bit of help from you perhaps and DrMefist0 (Since he wrote the thing) we should be able to pull it off.
it definitely shouldn't work as it is, Although i was going to try it that way just to be sure it didn't (What are you thoughts, do you think it'll work as is ?)

Also Line 421
Code: [Select]
    model = model[:-2] + '00'
is going to be interesting as to what the value should be.
so far we've got
2  00  for MSO5000
3 000 for MSO5100
i haven't gone to MSO5200 but i assume 4  0000   and not that it'll be relevant but MSO5300 i assume 5  00000

anyway, i think it's worth a crack, even though the MSO7000 and MSO8000 community are not a big one, why should they miss out ?

ANY THOUGHTS MATE ?
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #56 on: May 17, 2024, 09:35:50 am »
This method works for all MSO 5000, 7000 and 8000 series. Nonetheless, given how this script works, it's not risk-free because of how the different FRAM areas are addressed.

I advise all to do a FRAM backup before doing it, as a last option to fully restore the scope.

FWIW, all this was tested when the 8000 came out. Here. Months earlier it had been done with the 7000.

Thanks for that, I'll check that out VERY CAREFULLY
I would try this on my own scope, however i don't have an MSO7000 or 8000, don't have a need for one.
anyway, thanks for the update, saves me looking for it,
I have gone through all the hacking posts and each page, Hundreds of pages,  but it's easier if i don't have to look for it, thanks mate
QUESTION EVERYTHING!!!
 

Online tv84

  • Super Contributor
  • ***
  • Posts: 3251
  • Country: pt
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #57 on: May 17, 2024, 10:31:01 am »
If there is no evolution meanwhile, by year's end I'll release the SCPI command that does all the magic of writing to the FRAM.

What started at Xmas 2018 will end then, and afterwards someone will be able to update Mefisto's script making it bullet proof.

Until then the whole community still has time to solve the quest.

No more replies for now...
 

Offline dinosaur_rob

  • Newbie
  • Posts: 2
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #58 on: May 17, 2024, 11:20:26 am »
BTO
Images as requested. 
Cheers
dinosaur_rob
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #59 on: May 17, 2024, 01:32:51 pm »
If there is no evolution meanwhile, by year's end I'll release the SCPI command that does all the magic of writing to the FRAM.

What started at Xmas 2018 will end then, and afterwards someone will be able to update Mefisto's script making it bullet proof.

Until then the whole community still has time to solve the quest.

No more replies for now...

Quote
If there is no evolution meanwhile, by year's end I'll release the SCPI command that does all the magic of writing to the FRAM.
Sounds good, I'll see if i can beat you to the punch. :P

Quote
What started at Xmas 2018 will end then,
AND IT SHALL RESTORE BALANCE TO THE UNIVERSE....... ONCE AND FOR ALL    :-DD

Quote
Until then the whole community still has time to solve the quest.
...... AND WIN......
THE MEDAL OF HEROES
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #60 on: May 17, 2024, 01:35:02 pm »
Thanks for the pictures.
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #61 on: May 17, 2024, 07:29:23 pm »
Has anyone tried it with MSO8000 series.  :)

I have MSO8064 with all the options but, upgrading 600MHz to 2Ghz would be wonderful.  ;D

Hi mate, just touching base,
1. I now realize that you are in fact the guy from the other post, I was hoping you'd see my comment.

2. I just had a really really good look through the Python Script.
hmmm 
I SUSPECT THIS MAY BE ... A LOT EASIER THAN I ORIGINALLY THOUGHT
I also think a certain someone (Who shall remain nameless) is playing games with us  LOL
Not necessarily bad games , but more like....   Let's force the lower life forms to learn something.

However... I also think this conversation needs to take place on this thread
https://www.eevblog.com/forum/testgear/rigol-mso8000-series-hack/
THE MSO8000 HACKING THREAD

So.. Let's jump back onto that shall we
Also, Even though i understand Python to a good degree, i think it may be helpful if you round up some others
that are more experienced at python as well , if you can manage it.
I do believe i can get through this on my own, but.... JUST IN CASE.. Ya Know.
sometimes it's good to get another point of view.

Anyway, I'll repost this on the other thread and we'll continue testing it there.
Also get some people who have MSO8000 and even MSO7000  as i reckon i can make both of them happen.
QUESTION EVERYTHING!!!
 

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #62 on: May 21, 2024, 07:50:51 pm »
My scope has old firmware. Can I use this process to upgrade it to the latest version while adding all options?
2231080-0
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #63 on: May 21, 2024, 11:59:22 pm »
My scope has old firmware. Can I use this process to upgrade it to the latest version while adding all options?
(Attachment Link)
yeah, Absolutely. it's not even a problem.
you are on 1.1.4..8, the lowest version that i went to
to test it was 1.1.4.4

SO, YOU'LL DO IT LIKE THIS

- From version 1.1.4.8

- UPGRADE AS NORMAL TO 1.3.2.2

- After that, Follow the pdf using the python script method,
  Since your scope is MSO5074  You're going to use the script called
 
Code: [Select]
rigol_kg2.py
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #64 on: May 22, 2024, 12:58:02 am »
I have the options shown in the image. They came bundled with the scope. Is there anything special I need to do during the process of hacking to get all of the options? I thought I saw something about if you have the bundled options you'll have to delete them first prior to doing the hacking process.

2232406-0
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #65 on: May 22, 2024, 01:12:18 am »
I have the options shown in the image. They came bundled with the scope. Is there anything special I need to do during the process of hacking to get all of the options? I thought I saw something about if you have the bundled options you'll have to delete them first prior to doing the hacking process.

(Attachment Link)

That's fine, don't worry too much about it.

1. Just follow the PDF, it outlines the process of Uninstalling as well.

2. Now, as for the options,   The script actually checks what you have installed and what you don't.
   Since your options are correctly licenced from Rigol, Chances are they'll survive the upgrade.
   I would suggest you just do the process without uninstalling BECAUSE WE CAN KILL 2 BIRDS WITH 1 STONE HERE

3. Then after doing it WITHOUT UNINSTALLING, Let me know if it all went through properly, My gut feeling is.. it will.
    Now if it doesn't, it doesn't matter, it'll just fail and then you go back and uninstall the options and do it again.

but i reckon it'll go through just fine.

Just go ahead with it mate,  don't worry,
Follow the PDF and let me now if you have any issues

YOUR BIGGEST CONCERN IS...
DO NOT LOSE POWER DURING THE PYTHON SCRIPT PROCESS
DO NOT UNPLUG OR LOSE NETWORK CONNECTION DURING THE PROCESS

as for the rest of it,  You should be fine.
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #66 on: May 22, 2024, 01:23:01 am »
Thanks, I'll give it a shot tomorrow.  :-+
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #67 on: May 22, 2024, 01:33:29 am »
Thanks, I'll give it a shot tomorrow.  :-+
No worries mate, YOU'LL BE RIGHT, Just follow the PDF.
I'm here if you need me

But since you have an older version 1.1.4.8
- I have no questions or concerns that you'll be able to upgrade to 1.3.2.2 , None at all.
- But since you have 1.1.4.8  WITH OPTIONS, do me a favour and the upgrade first WITHOUT Uninstalling Options

As for what that chatter was about the options.
IN CERTAIN SITUATIONS, Usually on the 100MHz Models, the other script was required the one ending in 3_000.py

Now...there has only been 1 person who had a MSO5074 that needed (what i call, the version 3) of the script.
Now.. it is possible that you'll need it.... Sure,  it's a REMOTE Possibility

but start on the first script that i mentioned and start without uninstalling options.
Nothing bad can happen if it fails

it's either
(Most likely) - Just gonna work and install all the other options you don't have
or
- You uninstall the options then do it again and it then works
or..
(Very unlikely) LOL - it didn't work on the first script so..  You use the 3_000.py  script and then it'll work without options uninstalled
or..
(Extremely Unlikely) - You then also need to uninstall the options and then it'll work

but in any of those cases, your scope isn't in any danger
if it fails you may get an ASSERTION ERROR
that's fine, it just means , use the other script  (i won't go into the detail of it)


BUT IN ALL LIKELIHOOD, IT'S JUST GONNA WORK THE FIRST TIME
Because the rigol_kg2.py is for MSO5074
the one ending in 3_000.py is for the MSO5100 (100MHz Series)
that's how it works,  As you increase to 100MHz, then 200MHz  then 350MHz  , Changes in the script need to be made to accomodate
what the scope is doing, But most people have MSO0574 and only SOME have MSO5100
I am yet to see a MSO5200  and i don't know why a person with a MSO5300 Would be here, since it's all unlocked anyway.

so that's what it's all about

JUST GO AHEAD AND DO IT, YOU'LL BE FINE
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #68 on: May 22, 2024, 02:56:32 am »
Version 1.3.2.2 isn't available on Rigol's web site. Can I just go to 1.3.3.0 and skip 1.3.2.2?
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #69 on: May 22, 2024, 03:10:58 am »
Version 1.3.2.2 isn't available on Rigol's web site. Can I just go to 1.3.3.0 and skip 1.3.2.2?
LOL,,,,   I KNOW THAT

That's why i put everything into this 1 post

GO TO POST 1
GO TO THE LINK
DOWNLOAD WHAT YOU NEED
it's all there

all the versions that you need
the PDF
then a link to the training video's afterwards

but No don't go to 1.3.3.0 off the bat

go from 1.1.4.8    t0  1.3.2.2    then to 1.3.3.0
All the files are in the link
ALL THE FILES ARE ORIGINALS FROM RIGOL 100% Genuine Rigol files (Because, i keep these things when they come out) :P
QUESTION EVERYTHING!!!
 

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #70 on: May 22, 2024, 03:41:37 am »
Sorry, I didn't realize the GEL file was in the zip file in your link. I won't bother you anymore.  :-[
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #71 on: May 22, 2024, 10:57:42 am »
Sorry, I didn't realize the GEL file was in the zip file in your link. I won't bother you anymore.  :-[
LOL, That's ok,
it's not a bother and ... Feel free to bother me anytime, it's not a problem for me.
but, EVERYTHING that you need is in that link, Just follow the PDF and you'll be ok, Everyone else has been so i'm confident you will as well.

Give me the good news when it's done
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #72 on: May 23, 2024, 03:17:30 am »
Good news delivered. All is well with just a few minor hiccups, mostly my fault.
I didn't delete the options and just went on through the PDF document and in the end I've got an upgraded scope. Thanks so much for documenting this process in a manner most can understand.  :-+
 
The following users thanked this post: BTO

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #73 on: May 23, 2024, 10:23:45 am »
Good news delivered. All is well with just a few minor hiccups, mostly my fault.
I didn't delete the options and just went on through the PDF document and in the end I've got an upgraded scope. Thanks so much for documenting this process in a manner most can understand.  :-+

THAT'S COOL...  GOOD WORK  :-+

Also thanks for letting me know that you went from  FOR THE BENEFIT OF FUTURE READERS
From  1.1.4.8 (with Options Installed)
To       1.3.2.2
Then.. Running the script
Successfully Installing the other options
Then up to 1.3.3.0
and everything worked


NOW DON'T FORGET THE POST STUFF

- DO YOUR BACKUP
- SELF CHECK
- SELF CALIBRATION

Then, if you're not totally familiar with the scope, head over to the
https://www.eevblog.com/forum/testgear/post-hacking-rigol-mso5000-post-hacking-tutorial-deep-dive
And you'll have a bunch of videos that will give you tutorial through the entire scope and it's features

You'll get some cool basic electronics troubleshooting

ENJOY YOUR SCOPE
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline electricMN

  • Regular Contributor
  • *
  • Posts: 87
  • Country: us
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #74 on: May 23, 2024, 04:33:04 pm »
Did the post stuff as part of the process so I basically went from page 1 to the end and did it all.  :-+

I'm fairly familiar with using an oscilloscope since I worked in electrical engineering but I'm not all that familiar with the capabilities of the MSO5000 so I'll be going to the thread you linked to and taking a look.
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #75 on: May 23, 2024, 04:47:19 pm »
Did the post stuff as part of the process so I basically went from page 1 to the end and did it all.  :-+

I'm fairly familiar with using an oscilloscope since I worked in electrical engineering but I'm not all that familiar with the capabilities of the MSO5000 so I'll be going to the thread you linked to and taking a look.

Quote
Did the post stuff as part of the process so I basically went from page 1 to the end and did it all.  :-+
That's great, I always make a habit of reminding everyone because the checks, cal and backup are very important.
and peopole generally get caught up in the excitement of finally get all the options that they forget to backup

As for the rest, if you're familiar with scopes and you're an engineer, then you're probably ok.
I just did those videos mainly for the beginners and intermediate who want to understand their scopes and to help them
to understand how to test things properly with the scope

it has things like (if i remember)....    Calculating inductance with a scope by building a simple Tank Circuit , and explaining
how a square wave with a given duty cycle can be used on certain inductors to derive it's value
i think there's some transistor stuff in there . as well as some PWM stuff
there there's a tutorial on cursors',  Pass Fail mask , Etc etc
there's a lot there, chances are you'll find something interesting

Have fun with it
QUESTION EVERYTHING!!!
 
The following users thanked this post: electricMN

Offline Dorian_Kaf

  • Newbie
  • Posts: 1
  • Country: at
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #76 on: May 24, 2024, 08:45:26 pm »
Good evening BTO,

first of all, amazing work you are doing! I have an MSO5104 with all the options activated apart from the Memory and Bandwidth upgrade. Is this constellation possible?

Best regards!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #77 on: May 26, 2024, 05:27:28 am »
Good evening BTO,

first of all, amazing work you are doing! I have an MSO5104 with all the options activated apart from the Memory and Bandwidth upgrade. Is this constellation possible?

Best regards!

Quote
first of all, amazing work you are doing!
Thank you , i appreciate it,  Although i'm not the only one doing the work,  But , thank you in any case.

Quote
I have an MSO5104 with all the options activated apart from the Memory and Bandwidth upgrade.
OK, That's not a problem.

Quote
Is this constellation possible?
CONSTELLATION ?????,  Not sure what you mean .

However if you're asking
"Martin, i have a MSO5104 With all options licensed EXCEPT Sampling Memory and Bandwidth to 350MHz,  is it possible to upgrade
the features that i don't have to licenced status ?"
YES IT IS

Go to Post #1
https://www.eevblog.com/forum/testgear/hacking-the-rigol-mso5000-dr-mefisto-licensing-method/

USE THIS LINK to get to the cloud
https://mega.nz/folder/A8cEgQRI#5FSoMrCurJi71T7VkRPgYQ

When you are there  YOU WANT TO DOWNLOAD THE FOLLOWING

- Downgrading to 1.3.2.2   Video  to show you how to get into the Pre Boot menu
- MSO5000 DrMefisto Licencing Method   PDF WITH DETAILED INSTRUCTIONS (Follow this step by step)
- rigol_kg2_3_000.py   This is the script you will use for MSO5100 SERIES
- Upgrading to 350MHz (1.3.2.2)  You will use this zip file for the 1.3.2.2  GEL FILE to downgrade to 1.3.2.2
- Upgrading to 350MHz (1.3.3.0)  You will use this zip file for the 1.3.3.0  GEL FILE and the backup files

download all that
1. Follow the PDF
2. Use the Script stated above for your particular scope
3. After you do all that, don't forget to backup the scope BEFORE and AFTER (this is all in the PDF)

and then you'll be fine

let me know if you have any issues.
Most people have said it's pretty easy to follow along






QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #78 on: May 27, 2024, 12:46:15 pm »
Good evening BTO,

first of all, amazing work you are doing! I have an MSO5104 with all the options activated apart from the Memory and Bandwidth upgrade. Is this constellation possible?

Best regards!

So.. How are you mate
How did you go with the licensing of your scope,   Any Drama's ?
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #79 on: May 30, 2024, 02:05:39 am »
And i already tried to hardcode the serial number and Model number in the code to get it to run.... It runs trough completely but no matter what i do, the outcome is never ... activated but either unavailable or not activated...

I would be so happy if you could help to get it to work...
Mate, it sounds like you're not doing something correctly Because...

LET'S GO THROUGH YOUR COMMENT STEP BY STEP

Quote
today i got my 5072 and right away i tried to upgrade it
OK with 5072 it's likely you'll need to use the script 
Code: [Select]
rigol_kg2.py
Quote
All the USB - Scripts ran fine and then i started with the Python script
ALL THE SCRIPTS ????  What do you mean "ALL" , There is only 1 script.

DID YOU FOLLOW THE INSTRUCTIONS IN THE PDF THAT I SUPPLIED AND DID YOU DOWNLOAD THE FILES FROM THE LINK THAT I SUPPLIED IN COMMNET 1 OF THIS THREAD ?


Quote
I installed all the modules ran the script with -i and then: (see picture).
the -i Switch DOES NOT INSTALL ANYTHING, the -i Switch just brings up the INFORMATION of the scope

Quote
And i already tried to hardcode the serial number and Model number in the code to get it to run
You did What ???  WHY ?   What exactly did you do ?


before you do this though , because i don't know what you've done, but it sounds really wrong.
I would DEFAULT THE SCOPE TO FACTORY SETTINGS

then..
Roughly stated the process is as follows
(You should really read the PDF as it is details everything)

- You connect your scope to power and network
- You install Python on your computer
- You download the content that you need from the link in Post 1
- You do your backups

- You get yourself on version 1.3.2.2

you run the INFORMATION script

You run the REGEN Script

You then run the script on it's own WITHOUT ANY SWITCH

then, You'll need to  run 1.3.2.2   again

You then run the INFORMATION SCRIPT AGAIN

This time NO NEED to run regen

You just then run the normal script again without the switch
and then it works


There's no need to hardcode or change anything


so..
HAVE YOU DOWNLOADED THE CONTENT FROM THE URL IN POST 1

HAVE YOU FOLLOWED THE INSTRUCTIONS IN THE PDF
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #80 on: May 30, 2024, 02:08:00 am »
And i already tried to hardcode the serial number and Model number in the code to get it to run.... It runs trough completely but no matter what i do, the outcome is never ... activated but either unavailable or not activated...

I would be so happy if you could help to get it to work...
I wouldn't worry too much, at this point it has worked for many people that there isn't much risk.

you should just need to follow the instructions in the pdf

if you can't get it, i'm happy to jump on a zoom with you or something and help you out. but .... it cirrently seems like you are doing some weird and incorrect stuff.
let me know how it goes
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #81 on: May 30, 2024, 02:18:54 am »
Hi BTO,
today i got my 5072 and right away i tried to upgrade it. All the USB - Scripts ran fine and then i started with the Python script. I installed all the modules ran the script with -i and then: (see picture).

It throws an error and terminates the script. Has it something to do with that the LA modules are limited time activated? I tried deactivating them with the script but it shows the same screen and terminates with same error and at the same point.

I really hope that you or somebody else can help me.

Thanks a lot already.

Best regards!
Sorry i had to run out there for a second.
I was going to say 
RE :
TYPE ERROR : CANNOT UNPLACK NON ITERABLE NON TYPE OBJECT

Basically the script was not able to unpack an object because it encountered incorrect values

CHECK THE FOLLOWING
- Download and read the PDF
- Ensure you have installed ALL THE MODULES
- Use your backup that you created (Please tell me you created a backup before you did this................right ???)  to restore the scope it's original settings

- See.. when you mentioned you hardcoded the serial and the model number,   this error may be happening because you did that .

we need to start your scope from a factory state
all those scripts you say you ran, whatever you did, you need to bring it back to factory again

then download the PDF and just follow it , No need to do anything fancy here, Just follow the PDF
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #82 on: May 30, 2024, 04:09:15 pm »
Good evening BTO,

first of all, amazing work you are doing! I have an MSO5104 with all the options activated apart from the Memory and Bandwidth upgrade. Is this constellation possible?

Best regards!
Hi mate, what happened to your comments ? They disappeared, this you delete them ?

Look
WHAT OPERATING SYSTEM ARE YOU USING ?

so based on the message i got on my phone (that is no longer here on the forum)

- You're on 1.3.2.2 now    GOOD
- You've factory reset it    GOOD


- You said
Quote
I then tried the connection to the scope via pinging it
THEN.... NOTHING ?
so... What happened, When you send the ICMP Request (Communication Test) to the scope, What happened ?
Did the Scope ACK (Acknowledge) the request for more than 4 cycles or did it not ACK ?

then you said
Quote
Then i ran the script (rigol_kg2.py.) with -i
THAT'S INCORRECT !!

it's not
Code: [Select]
rigol_kg2.py.it's
Code: [Select]
rigol_kg2.py

it's very important that you followed PAGES 12 and 13 of the PDF and selected all those stated options during installation

also how are you running python ?
is it from Powershell
Windows Command Prompt
or
Python CLI

Now you're supposed to be doing this....

STEP 1.  (Assuming scope IP is 10.1.1.666)
Bring up INFORMATION
Code: [Select]
python rigol_kg2.py –i 10.1.1.666PRESS ENTER

STEP 2. REGENERATE THE PRIVATE KEY
Code: [Select]
python rigol_kg2.py –r 10.1.1.666PRESS ENTER

STEP 3. RUN THE SCRIPT
Code: [Select]
python rigol_kg2.py 10.1.1.666PRESS ENTER

now, Restart your scope
Reload 1.3.2.2 again via pre boot menu
Startup your scope

STEP 4.  (Assuming scope IP is 10.1.1.666)
Bring up INFORMATION
Code: [Select]
python rigol_kg2.py –i 10.1.1.666PRESS ENTER

STEP 5. RUN THE SCRIPT
Code: [Select]
python rigol_kg2.py 10.1.1.666PRESS ENTER

follow those steps and copy and paste my code in and see what happens
« Last Edit: May 30, 2024, 04:11:03 pm by BTO »
QUESTION EVERYTHING!!!
 

Offline Slats

  • Newbie
  • Posts: 5
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #83 on: May 31, 2024, 12:24:17 pm »
Please help.

I have Rigol MSO5074. I have followed the instructions exactly, but get an "AssertionError" when I do the -r step.
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #84 on: May 31, 2024, 12:32:05 pm »
Please help.

I have Rigol MSO5074. I have followed the instructions exactly, but get an "AssertionError" when I do the -r step.
Sure no problem, it's not the first time it's happened. Usually it happens when it's an MSO5000 with BND Options.
or when it's MSO5100 series.
In any case, instead of using the following script
Code: [Select]
rigol_kg2.pydownload and use this one...

Code: [Select]
rigo_kg2_3_000.pyRun it again, As per the response in my previous comment to Dorian_kaf

Try it again and let me know if it works.
QUESTION EVERYTHING!!!
 

Offline Slats

  • Newbie
  • Posts: 5
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #85 on: May 31, 2024, 12:58:29 pm »
Hey BTO, thanks for the quick responce. No luck, still didn't work. |O

Hardware version: 1.01.000. If that is of any use.

 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #86 on: May 31, 2024, 01:12:02 pm »
Hey BTO, thanks for the quick responce. No luck, still didn't work. |O

Hardware version: 1.01.000. If that is of any use.

Quote
thanks for the quick responce.
No problem

HERE ARE MY THOUGHTS...
1. No, the hardware version isn't relevant,   You're on Version 1.3.2.2 According to the INFORMATION script.

2. Something fundamental isn't correct, Either
 - you got the wrong I.P. address for the scope
 - The Data stream is disconnecting
 - I doubt it's a python based issue
 - could be that there is an issue with your regen file

3. If you like and have some time we can jump on zoom now and sort this out a lot quicker than what it would be to go and forth with typing.
Would you like to do that ?

I feel, Just a few things need to be checked and i'm confident i'll find the issue and we'll have the scope licenced pretty quickly.

What are your thoughts ?

Also, Are you actually following the PDF or just the quick notes in the forum ?
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #87 on: May 31, 2024, 03:48:53 pm »
Hey BTO, thanks for the quick responce. No luck, still didn't work. |O

Hardware version: 1.01.000. If that is of any use.

Here is a bit of a checklist

don't just skip through this and say   yeah yeah... Actually confirm each step, ok

- When you installed Python did you  do a CUSTOM INSTALLATION ?
- Did you also check the box that says  PATH ?
- then after installing python, did you open cmd.exe or  powershell and typed in
Code: [Select]
python
then press ENTER  to get the compiler screen,
Did you successfully get the screen ?
You can then type
Code: [Select]
exit()  and ENTER   to get out of it

- did you connect your scope to your PC Correctly and with Non Faulty Cables ?
- did you go into the scopes LAN settings and confirm DHCP is on and that the I.P. Address range, Matches the I.P. Address range in your router
when you open cmd.exe and type in
Code: [Select]
ipconfig  then ENTER

- then...   Open cmd.exe   or Powershell, (whichever you like)  DID YOU NOTE THE WORKING DIRECTORY ?
Meaning  if you open it and the path is
Code: [Select]
C:\Users\UserDid you place the script in that location ?   IF NOT.......... DO THAT !

- then when you created the regen file
-- was there another regen file or script in that location ?   if there was.. DELETE IT !

both the script and the regen file need to be in the same location as the working directory path that shows up in Python.
You must also use ONLY
cmd.exe    OR
Powershell

Do not use the Python CLI that comes with the installation.

- After that , You are supposed to ensure that you remove the patch method,  this is done by dropping from version 1.3.3.0  to 1.3.2.2 (you've done this)

- it's then just a question of

Load the -i command
Load the -r command
Load the script without any switch
then shutdown and reinstall 1.3.2.2
then restart and again
Load the -i command
DO NOT DO THE -r again
then load the script without any switch again

At this point it will activate

You seem to be falling over at the regen priv.pem stage
Check the folder locations
and also when redoing all this,  i would use the first script again  not the _3_000.py  one

Let me know if you want to jump on zoom
I'm off to bed now
QUESTION EVERYTHING!!!
 

Offline Slats

  • Newbie
  • Posts: 5
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #88 on: May 31, 2024, 11:59:06 pm »
Hey BTO, thank you for trying. However, I have given up and just used the patch method, which worked perfectly.

I went through your checklist again on my and my wifes computers.

Quote
- When you installed Python did you  do a CUSTOM INSTALLATION ?
- Did you also check the box that says  PATH ?
Yes, uninstalled and reinstalled Python.

Quote
- then after installing python, did you open cmd.exe or  powershell and typed in "python"
then press ENTER  to get the compiler screen,
Did you successfully get the screen ?
Yes, the Python interpretor loaded.

Quote
You can then type "Exit()"   and ENTER   to get out of it
Yes.

Quote
- did you connect your scope to your PC Correctly and with Non Faulty Cables ?
Yes. Validated cable was good by coping large files between devices.

Quote
- did you go into the scopes LAN settings and confirm DHCP is on and that the I.P. Address range, Matches the I.P. Address range in your router
when you open cmd.exe and type in "ipconfig" then ENTER
Yes, checked the IP and pinged successfully.

Quote
- then...   Open cmd.exe   or Powershell, (whichever you like)  DID YOU NOTE THE WORKING DIRECTORY ?
Meaning  if you open it and the path is "C:\Users\User"
Did you place the script in that location ?   IF NOT.......... DO THAT !
Yes.

Quote
- then when you created the regen file
-- was there another regen file or script in that location ?   if there was.. DELETE IT !

both the script and the regen file need to be in the same location as the working directory path that shows up in Python.
Yes. Location is corect, with script file in that location. Tried with and without deleting the regen file. Made no difference.

Quote
You must also use ONLY
cmd.exe    OR
Powershell

Do not use the Python CLI that comes with the installation.
Used both CMD and PowerShell. Made no difference.

Quote
- After that , You are supposed to ensure that you remove the patch method,  this is done by dropping from version 1.3.3.0  to 1.3.2.2 (you've done this)
Yes, did that.

Quote
Load the -i command
Load the -r command
Load the script without any switch
then shutdown and reinstall 1.3.2.2
then restart and again
Load the -i command
DO NOT DO THE -r again
then load the script without any switch again

At this point it will activate
Same "AssertionError". Nothing activated.

Thanks for trying, appreciate the effort.

 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #89 on: June 01, 2024, 04:17:03 am »
Hey BTO, thank you for trying. However, I have given up and just used the patch method, which worked perfectly.
Sure no problem, i mean , i'm happy to jump on zoom but if you don't want to , then,  ok
as for the patch method,   Yes it does work, the only thing is you'll have to upgrade and repatch manually when the time comes.

in saying that,  I have a DS2000A that when i bought it was on version 1.1.0.0  or something like that
and i literally didn't upgrade for 11 Firmware versions and EVERYTHING WAS FINE

so i reckon you'll be ok with the patch.
so.. You're Welcome for the effort.
QUESTION EVERYTHING!!!
 

Offline BTOTopic starter

  • Frequent Contributor
  • **
  • Posts: 392
  • Country: au
Re: Hacking the Rigol MSO5000 - Dr Mefisto Licensing Method
« Reply #90 on: Yesterday at 01:48:22 am »
UPDATE
ASSERTION ERROR SOLVED

The first thing i want to say here is this....
If you got this error while activating
- You're probably scared
- You're probably discouraged
- You probably don't want to risk bricking your scope
- You're probably saying "You know... JUST IN CASE"

DO ME A FAVOUR.........FORGET ALL THAT OK
Because it's not relevant

Now that being said
I've created another script , it's at the same location.

https://mega.nz/folder/A8cEgQRI#5FSoMrCurJi71T7VkRPgYQ

The script you need is named :   rigol_kg2_KEY2.py
The PDF File has been updated to include new information relating to the Assertion Error.

Follow the same process as you did before
and you should then find that you get 2 progress bars and no assertion error
and then the scope will be activated with all the options

WE HAVE PROVEN THIS WORKS

Also let me know which scope you have, as this worked on a MSO5072 with no bundles installed.
if you have a MS5100 i do still have another modification i can use on the script, but for now lets' try this one, i reckon it'll work.

NOW ....WHAT IS DIFFERENT IN THIS SCRIPT

An Assertion Error occurs
- When an Assertion is made
- And the Assertion returns FALSE
- Then an ASSERTION ERROR gets put up
- And the entire program HALTS

The reason it returns false is due to a "len" Statement.  which means... The program tested the LENGTH of the HEX Key
in your scope and compared it to the HEX key it was using.
Since the one the script is using is going to replace the one in your scope they need to be the same length.
In your case they were not and as such you get the error

The new script called  KEY2 (as the name suggests) Uses a different key or a different length
and when the challenge assertion is issued it returns  TRUE

SO.. GOOD NEWS GUYS,   WE HAVE A SOLUTION FOR YOU

Do let me know how it goes ok
« Last Edit: Yesterday at 05:15:15 pm by BTO »
QUESTION EVERYTHING!!!
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf