Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - chris_overseas

Pages: [1]
Reverse Engineering / Glasgow - reverse engineering tool
« on: August 10, 2020, 12:44:47 PM »
For those who are interested, this looks like it will be a pretty powerful tool for reverse engineering hardware:

I don't think the hardware is available yet but you can sign up at the link above, or make your own if you're feeling especially adventurous and don't want to wait...

Share Your Photos / Son Doong - the world's biggest cave
« on: May 12, 2014, 10:06:09 AM »
I recently had the privilege of going on a week long trip to see the biggest cave in the world, Son Doong Cave in Vietnam. ML was invaluable for photography there - dual ISO, auto ETTR, advanced bracketing, RAW histogram, bulb timer and a bunch of other features all had a heavy workout. Here are some of the results:

More photos here:
and here:

Reverse Engineering / [DONE] How do I dump 5D3 firmware 1.2.3?
« on: January 05, 2014, 06:18:47 PM »
I would like to try and update ML so it runs with firmware 1.2.3 on the 5D Mark III. My understanding is that I need to do the following:
  • Obtain a ROM dump of the 1.1.3 and 1.2.3 firmwares.
  • Load these dumps into ARMu.exe.
  • For each address is platform/5D3.113/stubs.S, find the equivalent address in the 1.2.3 firmware by comparing the disassemblies.
  • Create a new platform/5D3.123/stubs.S file using these newly discovered addresses.
  • Update various build/compile scripts as required.
I'm new to this however and I've hit a wall at the very first step. How do I get a dump of 1.2.3? I tried updating my 5D3 to 1.2.3 and then flashing 5D3-113-bootflag.fir. Perhaps not surprisingly, this dies with the following error: "Update file error. Please check the memory card and reload the battery and try again". I've also tried to run both the scripts here: but nothing is produced. I'm not convinced the scripts even run. As instructed I set the "SCRIPT" string in the boot sector (using EOScard) and created the appropriate script.req and extend.m files - is there something else I need to do too or does Canon Basic scripting not work on DSLRs, just the point'n'shoots? Can I perhaps extract and decrypt the dump from Canon's 5D300123.FIR file instead? If I need to create my own .fir file for 1.2.3 to dump the ROM, how would I go about doing that - presumably it needs signing? Can I make an autoexec.bin to dump it? Is there another trick I can try?

Obviously various developers here know how to get a ROM dump but I haven't been able to find this process documented in detail anywhere. Any hints would be greatly appreciated!

Appealing to Pelican, coutts, 1%, a1ex, g3gg0, or anyone else who can help me learn more about this.

A couple of relvant threads:

Pages: [1]