Questions tagged [mips]
RISC instruction set architecture (ISA). It is commonly used in embedded devices such as set top boxes and networking gear. Many university-level computer architecture classes use the MIPS ISA due to its relative simplicity.
92 questions
0
votes
0
answers
21
views
Is there a way to determine from an nanoMIPS ELF file whether floating point registers are used in the ABI?
I have a nanoMIPS binary that uses the __adddf3 low-level functions to software-emulate floating point. It's clearly intended to be used on a machine with no floating point hardware. Is there a ...
- 1,084
0
votes
0
answers
26
views
Is there any checksum for *.abs files, if so where is it located?
I am trying to replace an old YouTube API key from my old STB receiver firmware.
I first dumped my receiver firmware to my USB, located the YouTube API key in the firmware file at 4126535 (0x3ef747 in ...
0
votes
0
answers
723
views
Router Firmware Reverse Engineering
I wanted to reverse engineer my router's firmware and potentially modify its functionalities.
I know about opensource firmwares like OpenWRT like softwares but I cant use that.
I started with tracking ...
- 1
1
vote
0
answers
82
views
What factors affect the base address of a shared object?
I'm looking at a CVE for an old thrift shop router that amounts to a stack based buffer overflow with no NULL characters allowed. I can control the instruction pointer register as well as a few less ...
- 105
2
votes
0
answers
87
views
How can I patch out shm in Ghidra?
I've been trying to emulate a Mips binary in qemu, but I kept getting an error for shared memory allocation. I decompiled the function where it happens in Ghidra:
local_18 = dm_shmInit(0);
if (...
- 21
3
votes
1
answer
109
views
Confused about small MIPS disassembly snippet (jalr)
I'm trying to understand this part of a MIPS binary I am reversing using IDA. I have attached screenshots of the decompilation, disassembly, and the offset passed into the jalr instruction.
I am quite ...
- 133
3
votes
0
answers
147
views
debug stripped file
I've system embedded mips big endian with gdb-server and I want debug stripped file of the target, I can run in target gdb server with stripped file (--attach PID), but when I try to connect with gdb-...
- 31
4
votes
0
answers
623
views
Ghidra: Reference to external symbols not resolved in decompile
In main() the references to external functions are not resolved in the decompile window, while they seem correct in the assembly:
The other functions of the same application are fine, and the ...
- 41
6
votes
4
answers
4k
views
Do I have to learn computer architecture for underestanding or doing reverse engineering?
I am completely noob in reverse engineering, and I've just started to learn it.
Now I have this question in my mind, that does a reverse engineer use any computer architecture knowledge for doing his/...
- 63
1
vote
0
answers
112
views
What change to the source code would produce an LT compare rather than an OLT compare in MIPS assembly?
I need some help reverse engineering a function in MIPS assembly. It was compiled for the PlayStation 2's EmotionEngine CPU. My goal is to produce a matching decomp of the function; it is the proof-of-...
- 11
2
votes
2
answers
2k
views
MIPS assembly to C code
I think I'm really brain-dead and am not really sure what to do next, but I am trying to manually convert assembly code to a C program. It's not really working, but I'm not sure what is wrong. I would ...
- 21
1
vote
0
answers
448
views
WRT54GL firmware extraction via JTAG with OpenOCD and Raspberry Pi as interface. Can not dump because the device is not halted
Good day!
Sorry to come up with something very old. Since I am currently teaching myself hardware hacking, I wanted to use my old router for this. I soldered pins to the JTAG interface and connected ...
- 11
-1
votes
1
answer
270
views
Why is is ghidra representing mips move instruction as _or?
Now of course I keep trying to change it but once I get to the end of patching it says its invalid and wont let me change it. So if you have a way to do that let me know.
1
vote
1
answer
745
views
IDA Pro, How to forcefully disassemble "mips 32" instead of "mips 16"?
While disassembling a mips binary, IDA Pro attempts to disassemble into mips 16 mode, even though It's mips 32 ISA.
Below is that code snippet.
.text:XXXXXXXX .set nomips16 # <= ??
.text:...
- 153
0
votes
0
answers
57
views
Can you strip a mips64 object file?
-strip doesn’t know what this file is but read elf and objdump recognize it read elf gives entry and all the headers. I’m trying to find main() or the start function. Can I strip the file? Do I need ...