SamyGO

[plasticassius]

Hi, I'm interested in poking around in exeDSP a bit, and I've tried the demo version of IDA. At this point, my curiosity doesn't extend far enough to buy the full version. Significant parts of the exeDSP executable are encrypted, so a working debugger would be very useful for disassembling the running code, after it was decrypted.

As a cheaper alternative, does anyone know of other tools that could do the job? My thinking is that something that could extract a core dump from the running exeDSP, and then feed it to a disassembler would be ideal. Later on, I'd like to try making mods to the running process by injecting modules. But for now, I'd just like to explore it.

I have T-VALDEUC_3005.1.exe

I found http://www.freemyipod.org/wiki/Working_with_binaries abount GNU ARM toolchain mentioned in http://forum.samygo.tv/viewtopic.php?f=10&t=998&p=8749&hilit=disassembler+ida#p8712. I'll look into this.

[t6nnx]

I have used "objdump" and "strings" tools from Code Surgery ARM toolchain.
From "arm_v7_vfp_le_20091117.tgz" in "UE32C6500.zip" (downloadable from opensource.samsung.com)

These tools run on 32 bit linux (I am using Ubuntu).
At first copy exeDSP from your TV to your linux box.

Also Windows version "arm-2010.09-50-arm-none-linux-gnueabi.exe" is freely donwnoladable from Code Surgery site.

View import/export strings:

Code: Select all

arm_v7_vfp_le-strings  exeDSP 
arm_v7_vfp_le-objdump -T exeDSP

View assembler source code:

Code: Select all

arm_v7_vfp_le-objdump -S exeDSP

To completely disassemble a binary:

Code: Select all

arm_v7_vfp_le-objdump -Dslx exeDSP

On TV I have used "gdb" binary from: "SamyGO-All-Extensions-v0.03.6-r12-for-T-VALDEUC-20110103184650.zip" in sub dir "SamyGO/opt/privateer/usr/bin"

And Busybox "pmap" command.
Arm binary can be downloaded from http://busybox.net/downloads/binaries/1.18.4/busybox-armv6l;

Code: Select all

./busybox-armv6l pmap 61

61 is exeDSP process number.

[timoo]

none part of exeDSP is not encrypted, ida free simple does not have a power to dissassemble it correctly ,i have ida pro 6.1 and no problem with that .. latest gdb(gdbserver) is enought to debug anything(apps) what running on tv, remote from my desktop with ida debugger
btw:imho you could not buy ida personaly if you not firm or corporation :/

[plasticassius]

Thanks! this is great, I especially want to try out gdb. I've tried working with the exeDSP binary from my TV (with IDA demo), and I could only get so far.

I'm new to linux, just got gcc and make working, so this'll be a good way for me to learn. I also have ubuntu, but 64 bit, i hope that doesn't cause me grief. I still haven't updated to last month's ubuntu, I imagine I'll try that soon.

[plasticassius]

I made a tool to fix up a few things in objdump output. Maybe something similar is already out there, but I thought a few customizations would be nice. This tool makes the objdump output a bit more readable by dereferencing strings and putting them inline, putting symbols from shared libraries inline, and showing branches in a relative format.

I've been using it to process output from arm-none-linux-gnueabi-objdump -CDfhlpstTwx -W --dwarf. exeDSP is of course interesting, there's also some interesting so files like some crypt stuff in libWidevine.so.