How to Hack an Expensive Camera

Aside | Posted on by

How to Hack an Expensive Camera

Maybe not, because Leica used to put pretty weak CPUs in their cameras and XOR encryption was very popular at that time in consumer electronics, so I decided to write a simple XOR manipulation tool to compare the firmware with itself and calculate some statistics along the way. IDA supports this processor type out of the box, so it was a matter of finding the correct image base which was known from the firmware section description – :

I have obviously put it into IDA and recognised all functions, but didn’t really dig into it much since I was lot more curious about the main processor firmware. Reality was not that bright though, because when I put the firmware file into IDA and chose FR processor I discovered that this module is barely usable due to missing instructions, absence of xrefs etc.

Source: alexhude.github.io