Re: Answer: How to analyze methods of the firmware ROM
Posted: Wed Jul 01, 2015 6:42 pm
I've been using the 'ScratchABit' tool by @pfalcon a bit to analyze the RTOS binary libraries.
EDIT: What I wrote here before was _not_ the right way to add plugins to scratchabit. Here's what I now understand to be the correct way:
... then you can run
EDIT: What I wrote here before was _not_ the right way to add plugins to scratchabit. Here's what I now understand to be the correct way:
- Clone or download the repo from https://github.com/pfalcon/ScratchABit/
- Get the ida-xtensa plugin from https://github.com/pfalcon/ida-xtensa (this fork has some additions to themadinventor's version.)
- Place the xtensa.py file from ida-xtensa into the plugins/cpu subdirectory of ScratchABit (I did this by symlinking).
- Create an esp8266.def file like this one: https://gist.github.com/projectgus/f898d5798e3e44240796
... then you can run
Code: Select all
to run an interactive disassembler session, annotate symbols, etc. It's not the most full featured dissassembler (at least not yet) but it's 100x better than using objdump and text editors.scratchabit.py esp8266.def