This github is an attempt to give a basis to hack into the MGM210L Zigbee module found in some IKEA Tradfri accessories. Those devices contain a fairly powerful MCU with embedded Zigbee/WiFi/Bluetooth 5 support that can be used as a basis for many DIY projects.
The subject has already been partly covered by several people like basilfx, zw or also MattWestb, however they mainly focus on ICC-1 and ICC-A-1 versions and don't give much details about the MGM210.
We'll focus on this one here as it is slightly different in many regards (different memory regions for different purposes) and following instructions intended for those different chips will actually lead you to corrupt data in your chip. We'll also try to give detailed step by step guides during all the process so that it's also accessible to people who are not familiar with the tools and devices involved. This github is a WIP so bear with me if you find mistakes, and don't hesitate to correct me, require clarifications or give suggestions.
For the sake of clarity this github is divided in 5 subsections :
Guide to non-destructively dismantle a light bulb, remove the MGM210 chip and reassemble it.
Generalities about the chip and review of various available physical interfaces to interact with the chip
Guide to install the software that will allow you to communicate with the chip
Explanation of the basic operations you can do with the chip using telnet and GDB
Informations related to firmware modding, extracting usable firmware images from OTA updates and various firmware related tools
Doom on a lightbulb
You can see this amazing project to run Doom game on the MGM210
Here you'll find a github with all the resources : lets-port-doom-to-an-ikea-tradfri-lamp