Homepage   Forum     WEB     BBS  
Thread List  
ret goes to reset: , not nex...
[OT]: Step up converter coil...
ADC on atmega
One channel takes over while...
megrate from ATiny25 to ATme...
Speed of float/trig maths
AVR circuit design for Dummi...
Sending data from program me...
LCD 128x64 Routines
warning
Forum Guide Map  
avr
Electrical2
Electronics3
Software
Microcontrollers
Analog Circuit Design
RF Microwave
ASIC
Elementary Electronic Questions
Analog IC Design & Layout
PLD, SPLD, GAL, CPLD, FPGA Design
EDA Software
Laser
Elementary Electronic Questions
Electrical
Hardware
Electromagnetic Design and Simulation
Hobby Circuits
PC Programming and Interfacing
Digital Signal Processing
PCB
Digital communication
Service Manuals Requests Repair Tips
Embedded Systems and Real-Time OS
Mathematics
agilent
Mathematics
Industrial Robotics Automatics
Network
Other Design
Other
RF
Thread Content             
 Homepage  >> RFEDA FORUM  >> avr
   
How do I rip code from Microcontrollers?
Author wy830115   Views 3   Posted at 2008/8/31 20:06  [View In Forum]
I was just sort of curious on how this would be done with avrdude and ICSP. If I found an AVR on some random electronics device and I wanted to rip the code off of the chip and onto my computer so that I could analyze it, how would this be done?dowmhjtqc
      

Reply No. Replier Total Replies 20   [View All Replies]  [New Reply] Replied at
1 hgping If the lock bits are not set, you simply read the flash. If the lock bits are set, then they obviously don't want you to see their code.
 2008/8/31 20:06
2 pdang adamjon858 wrote:...I wanted to rip the code off of the chip and onto my computer so that I could analyze it, how would this be done?



You might want to reconsider you words, before you get scolded beyond reproach...



The phrase "rip the code off " will get you a lot of flak!



Unless, of course, that is your primary intent!
 2008/8/31 20:06
3 hualeyan Pulling code out of "locked" devices for educational purposes doesn't offend me. Furthermore, what if the device is part of a terrorist plot and unlocking the code could save innocent lives?



The science of unlocking embedded memories is a fascinating topic, perhaps employing classified technologies. But without a defense department budget the equipment required may be out of reach for us mere mortals.
 2008/8/31 20:06
4 zunwang Some people specialize in that occupation, they strip the outter package of the IC to expose the inside while the IC is still working -- to check for the security of the device etc. They report the atmegas are in fact quite secure !

It's a very interesting article in fact, with nice pictures of arv-p0rn



avr-p0rn
 2008/8/31 20:06
5 ct731 I've heard it is sometimes possible to recover flash/RAM/EEPROM contents even after erasure! That's where the "special" equipment comes in handy, measuring leftover clues to determine prior memory values.
 2008/8/31 20:06
6 hgping Sometimes letting other folks work on your program makes it better... Good thing Linus Torvalds has lots of smart nonmalicious friends. What if you were a company making paintball gun controllers, and some crew from out of town kept coming in and cleaning house... and you discovered they had somehow managed to change the rate of fire tables to give their team that advantage. Cheating. Ruined the game? Like putting a bigger hole in your restrictor plate at a Nascar race? I cant believe all those car tuner guys think they can tweak their fuel and spark tables in complicated 32 bit engine controllers just by poking numbers into the flash rom. Sounds like a surefire way to bollix something up. But they do it. Maintaining an orphaned product is a good reason to reverse engineer or dissassemble a discontinued product.
 2008/8/31 20:06
7 htc2498 As you say - I'm about to embark on ripping the code from my car's ECU - it's thirteen years old and I have my doubts about its longevity. And while I have it, I shall have a sniff about decompiling it. Mind you, that's only 32k (including tables) of 8-bit code - 680x, I think.



Neil
 2008/8/31 20:06
8 z315 Worked with a guy whose dad had an Olds dealership.. he brought in the hot chip for the Olds 442 for the Delco cpu... used a 6802 at the time.... we stuck it in the burner and read it in... we could all enter 6800 instructions straight in hex at the time... I still look at the license plate in front of me "hmmm JSR RTS..... thats 0xbd and 0x39. Why would someone put that on their license plate?!? Oh heck... the lights green...."
 2008/8/31 20:06
9 gao51755775 I drive an 18 year old E32 which has a diagnostic connector. It's on my todo list to use an AVR to download/clear faults, but likely I'll never get around to it.



If I got stumped, decoding the onboard firmware could be a workaround.
 2008/8/31 20:06
10 anuo2008 Wow...I was talking about a little less extreme situations. For example, if I have a tv remote with an AVR and I want to "rip" (yes rip...best term I can think of) the code off of it to use in my own universal remote. I realize that I could easily find the codes online or even get them myself using an IR detector but I don't want to do that.



I'd much rather do it myself. Also, what are these lockbits? I've never seen them in any AVR manuals/product documentation?
 2008/8/31 20:06
 Total Replies 20  Thread Per Page 10
Page 1/2  |<  <<   1 2   >>  >| 
Power by rfeda