![[-]](https://www.bios-mods.com/forum/images/black/collapse.png "[-]")
01-18-2023, 05:16 PM
(This post was last modified: 01-23-2023, 05:57 PM by SlayerProof32.)
Hello guys,
I recently picked up a Dell L321x from a e-waste recycler and powered it on. Immediately seeing that the firmware was the Phoenix Tiano securecore bios, I was pretty sure this device was EFI boot compatible. As it turns out, it is and Dell for some inexplicable reason disabled the EFi boot functionality entirely. I successfully brought this back!
Quick unmodded bios details:
Version: Phoenix Securecore Tiano (UEFI disabled) A08
Initial issues:
1: Uefitool ReconstructRegion size error
Solution: Use PhoenixTool instead
Issue #2: Phoenix Winflash will not flash bios image
Solution: Use Phoenix SCT flash or Winflash provided by manufacturer
Quick How to:
1. Download Update EXE
2. Run the updater but disconnect the AC adapter so it doesn't flash. DO NOT CLOSE THE APPLICATION ON ERROR
3. Go to your temp folder (Run (Win+R) --> %temp%)
4. Find your bios file (either BIOS1.WPH or Spyder.cap)
5. Rename your modded bios to the name of the BIOS in the folder and REPLACE the file
6. Run the EXE from the temp folder and flash away with no SHA1 error
----------------------------------------------------------------------------------------------------------------------------------------------------------------
!!Disclaimer!! This bios and guide is provided for experimenters only. Flashing modded Bioses can brick your perfectly working computer.
You have been warned.
And now to the good stuff.
-------------------Setup---------------------
0. Required tools:
- Your system manufacturer's bios executable
- UEFItool (for Exploring Uefi files)
- HXD (For modding your bios) (or any other good hex editor)
- PhoenixTool (for rebuilding your modded bios)
- Universal IFR extractor
- RWeverything
1. Launch your bios executable. Don't flash the bios or close the program. Doing so will delete the extracted bios from the EXE.
2. Navigate to your temp folder and find the BIOS.wph or SPYDER.cap bios module
3. Open your bios image with UEFItool and get modding!
-------------------------The Modding begins-----------------------------
This section will briefly explain how to mod a BIOS and bring back the hidden menus. I have no experience with other types of mods.
1. Search for the options you want in UEFItool. In my case I wanted UEFI boot so I searched for "UEFIboot and found the such an option existed in
"SystemSetupMainDxe."
2. Extract the IFR of the BIOS dxe that contains the desired options.
3. Take a look at the IFR. If it looks like what is displayed in your firmware settings and is full of suppress statements, you likely need to modify that part of your bios. If it does not, your computer is likely using a custom form set like the L321x and so you will have to change what options are read by your bios at boot using the GUID patch method (Global Unique Identifier). This is what we will explore today.
4. If your device is using custom form sets, you will have to replace those form sets with the unlocked ones. These unlocked bios form sets exist in our firmware but our bios has been programmed to load custom ones instead. For example, Dell loads DellSetupDXE (locked down) instead of SystemSetupMainDXE (unlocked) so we need to patch the EFI module responsible for loading these forms. To find this, we will have to get the GUID of the forms that are loading right now at boot. Start by searching UEFITool for "setup." This should reveal the custom form sets being used. For example, dell uses "DellSetup," and "DellAdvanced"
5. Now we need to get the GUIDs of these OEM formsets. To do so, open HXD and search for the 16-byte GUID header
Underneath that header should be your GUID. For the DellSetupAdvanced formset, it is
Now verify that you have a valid form GUID by searching UEFItool for the GUID. Use the "hex values" search tool for this. If you were successful, your hex search should return two matches
The second should be the BIOS module responsible for loading system forms. For example in the L321's case, this is SystemFormBrowserCoreDXE Tip if you return only 1 result, try taking 4 bytes off each side of your search just to verify your GUID is correct. If that still doesn't work, you may not have the correct form.
If you return many results with a GUID search, try moving 16 bytes ahead in the DXE file in HXD and copy that GUID instead.
7. Once you get a GUID that only includes the formset you are trying to replace and the form parser, extract the form parser in HXD and search for your GUID again. This is what you will be replacing.
8. Extract the replacement formset, find the GUID header and overwite the old (locked down) formset's GUID in the formset parsing UEFI module.
9. Save the modded parser, then open PhoenixTool. Tell it to extract the bios you got from your System Manufacturer's website
10. Provide the Manufacturer of your bios, then select the appropriate SLIC and SLP files (I used Dell.rom and Dell.txt for the L321x)
11. Click the "structure" button then browse your efi volume for the formset parser you replaced the GUIDs in. For the L321x, this would be SystemFormBrowserCoreDXE. Click on PE32+ image section, then replace. Add the modified parser efi file you edited in HXD. Click ok to save the BIOS.
12. Last step: Create a RWeverything report/dump, add it the phoenixtool then hit GO to regenerate your bios image. This new (modded) bios is now flashable! Cross your fingers, flash, and enjoy the mod!
---------But what if I don't want to do the mods myself? Can you provide images for me?----------
Yes. The modified SystemFormBrowserCORE.efi and L321xModded.cap are provided! Have fun!
Spyder.cap is the original BIOS.
Dell XPS L321X Bios Mod EfiBoot+ Advanced bios settings.zip (Size: 1.6 MB / Downloads: 50)
Credits for this mod go to @Maxinator500 for his advice and @CodeRush for his awesome insights
I recently picked up a Dell L321x from a e-waste recycler and powered it on. Immediately seeing that the firmware was the Phoenix Tiano securecore bios, I was pretty sure this device was EFI boot compatible. As it turns out, it is and Dell for some inexplicable reason disabled the EFi boot functionality entirely. I successfully brought this back!
Quick unmodded bios details:
Version: Phoenix Securecore Tiano (UEFI disabled) A08
Initial issues:
1: Uefitool ReconstructRegion size error
Code:
reconstructRegion: reconstructed region size 390448h (3736648) is smaller then original 421000h (4329472)Solution: Use PhoenixTool instead
Issue #2: Phoenix Winflash will not flash bios image
Code:
Sha1 Value in capsule in incorrect. Please get correct capsule.Solution: Use Phoenix SCT flash or Winflash provided by manufacturer
Quick How to:
1. Download Update EXE
2. Run the updater but disconnect the AC adapter so it doesn't flash. DO NOT CLOSE THE APPLICATION ON ERROR
3. Go to your temp folder (Run (Win+R) --> %temp%)
4. Find your bios file (either BIOS1.WPH or Spyder.cap)
5. Rename your modded bios to the name of the BIOS in the folder and REPLACE the file
6. Run the EXE from the temp folder and flash away with no SHA1 error
----------------------------------------------------------------------------------------------------------------------------------------------------------------
!!Disclaimer!! This bios and guide is provided for experimenters only. Flashing modded Bioses can brick your perfectly working computer.
You have been warned.
And now to the good stuff.
-------------------Setup---------------------
0. Required tools:
- Your system manufacturer's bios executable
- UEFItool (for Exploring Uefi files)
- HXD (For modding your bios) (or any other good hex editor)
- PhoenixTool (for rebuilding your modded bios)
- Universal IFR extractor
- RWeverything
1. Launch your bios executable. Don't flash the bios or close the program. Doing so will delete the extracted bios from the EXE.
2. Navigate to your temp folder and find the BIOS.wph or SPYDER.cap bios module
3. Open your bios image with UEFItool and get modding!
-------------------------The Modding begins-----------------------------
This section will briefly explain how to mod a BIOS and bring back the hidden menus. I have no experience with other types of mods.
1. Search for the options you want in UEFItool. In my case I wanted UEFI boot so I searched for "UEFIboot and found the such an option existed in
"SystemSetupMainDxe."
2. Extract the IFR of the BIOS dxe that contains the desired options.
3. Take a look at the IFR. If it looks like what is displayed in your firmware settings and is full of suppress statements, you likely need to modify that part of your bios. If it does not, your computer is likely using a custom form set like the L321x and so you will have to change what options are read by your bios at boot using the GUID patch method (Global Unique Identifier). This is what we will explore today.
4. If your device is using custom form sets, you will have to replace those form sets with the unlocked ones. These unlocked bios form sets exist in our firmware but our bios has been programmed to load custom ones instead. For example, Dell loads DellSetupDXE (locked down) instead of SystemSetupMainDXE (unlocked) so we need to patch the EFI module responsible for loading these forms. To find this, we will have to get the GUID of the forms that are loading right now at boot. Start by searching UEFITool for "setup." This should reveal the custom form sets being used. For example, dell uses "DellSetup," and "DellAdvanced"
5. Now we need to get the GUIDs of these OEM formsets. To do so, open HXD and search for the 16-byte GUID header
Code:
A1 31 1B 5B 62 95 D2 11 8E 3F 00 A0 C9 69 72 3BCode:
9D BA 58 21 4F C1 78 40 96 48 FA EC A0 34 CA 67Code:
Hex pattern "9DBA58214FC178409648FAECA034CA67" found as "9DBA58214FC178409648FAECA034CA67" in EfiCrc32GuidedSectionExtractionGuid/PE32 image section at header-offset 2A4h ---> DellSetupAdvancedDxe
Hex pattern "9DBA58214FC178409648FAECA034CA67" found as "9DBA58214FC178409648FAECA034CA67" in EfiCrc32GuidedSectionExtractionGuid/PE32 image section at header-offset 2A4h ---> SystemFormBrowserCoreDxeIf you return many results with a GUID search, try moving 16 bytes ahead in the DXE file in HXD and copy that GUID instead.
7. Once you get a GUID that only includes the formset you are trying to replace and the form parser, extract the form parser in HXD and search for your GUID again. This is what you will be replacing.
8. Extract the replacement formset, find the GUID header and overwite the old (locked down) formset's GUID in the formset parsing UEFI module.
9. Save the modded parser, then open PhoenixTool. Tell it to extract the bios you got from your System Manufacturer's website
10. Provide the Manufacturer of your bios, then select the appropriate SLIC and SLP files (I used Dell.rom and Dell.txt for the L321x)
11. Click the "structure" button then browse your efi volume for the formset parser you replaced the GUIDs in. For the L321x, this would be SystemFormBrowserCoreDXE. Click on PE32+ image section, then replace. Add the modified parser efi file you edited in HXD. Click ok to save the BIOS.
12. Last step: Create a RWeverything report/dump, add it the phoenixtool then hit GO to regenerate your bios image. This new (modded) bios is now flashable! Cross your fingers, flash, and enjoy the mod!
---------But what if I don't want to do the mods myself? Can you provide images for me?----------
Yes. The modified SystemFormBrowserCORE.efi and L321xModded.cap are provided! Have fun!
Spyder.cap is the original BIOS.
Dell XPS L321X Bios Mod EfiBoot+ Advanced bios settings.zip (Size: 1.6 MB / Downloads: 50)
Credits for this mod go to @Maxinator500 for his advice and @CodeRush for his awesome insights
![[Image: example.jpg]](https://i.ibb.co/k6fGjyK/example.jpg)
![[Valid RSS]](valid-rss.png "Validate my RSS feed")