[Costis] managed to dump a copy of the boot ROM for the Nintendo Super Game Boy. This small piece of code (256 bytes) writes a graphic to the display at boot time as it loads the ROM on the game cartridge. He was able to dump the code by finding the exact point at which the device locks down the boot ROM. Just as that point approached he overclocked the device causing it operate so fast it couldn’t write the lockout bits into the register. Once past that single point of security, he executes a code that writes the boot rom out to a different address that he is able to read from. He’s got a copy of the dump along with the explanation up for your enjoyment.
[Thanks Anthony]
You know that red button you’re not supposed to press? Press it.
There was great news in the GB scene a short while ago, when Neviksti from CherryRom forums announced that he had been able to extract the BIOS image from the original GameBoy by decapping the chip, staining the ROM, and using a really powerful microscope to individually resolve and read out each bit one by one.
Damn..
I guess this would be useful for more perfectly emulating the GB? In any case, nice hack.
A nice hack for a change. Getting tired of all the useless email-notifier-Arduino-crappies.
But did they get it to twitter via Zigbee?
it’s not a hack unless it’s twittering with a zigbee!
This is an awesome. I likely think this because its out of my league at the present time. And reading bits manually on a stained rom? That is just hardcore (or maybe over the top?).
so he spoonfed clocks to the cpu until the crucial point, then superclocked it so that the write cycles got choked and then went on. this is brilliantly clever! i hope there will be a de1 port of fpgaboy, too :D
The best hacks are the most useless, why he would want to do this i don’t know, but full marks for effort, i agree with Entropia, it makes a nice change to see a real hack, still don’t know why a SGB though, but well done
‘Grats hack a day. This is worthy!
i am very impressed!
I think this is very cool as well, anybody mind answering why however? Like why would somebody want to extract the GB bios or the super game boy boot rom? Aren’t these retro emulators (especially GB ones) more then excellent as it is?
Thanks!
this is indeed a hack
Sometimes a hack is cool, not because it’s useful in itself, but because of what it inspires.
We all know there are good GB emulators out there, but seeing this has got me wondering what other systems can be broken with a well-timed race condition?
I’m thinking phones with a useful amount of processing power and a few in/out connections etc.
For me, the joy of a hack is often that wonderful feeling of being someplace you shouldn’t be. ;-)
Surely I can’t be the only one whose greatest pleasures are the guilty ones?
Maybe this could somehow assist with a tv display for the DS.
@WeblionX
seriosly i had something like that but it was a switch. i was takeing the place of a formor admin and he had labled a box “DO NOT USE” and its critical to it functioning…
useless
This guy knows his stuff but man I wish he used something better then like a iphone camera to document the project.
There must be many ways to get in without such a silly thing as using a microscope, and this is just one of them, clever though this one.
!, thats allot of wires! but still awesome.
using a microscope to read bits under a microscope = obsessed
Finding a JTAG, DMA injection, and RAM bus tapping are pretty common now days with embedded reversing.
If you reverse, and you can’t do that and manually analyze machine code, AND unpack mutating and virtualized protectors/packers you’re pretty much out of the scene unless you’re cracking PE with poor protectors in batches.
@tjhooker: hack a day isn’t really about the scene
I’m amazed this works. I mean, when you overclock it, one of any number of things could go wrong, and he was very lucky that the processor state was kept/recovered to a working state, and that the PC was successfully incremented while the flags register wasn’t.
Very impressive hack! Do that to some satellite dishes and you will be rolling in the dough. :)
Fuck yeah! That is what hacking is all about! Mad propz to that guy!
Also, to anyone who ever does die-staining to reverse engineer anything. You have my utmost respect!
Hack the planet!
Useless hacks are the best hacks; practicality is boring, leave that for the engineers.
First off: Nice, we finally have something worth reading again.
Second: I’m surprised this works. All of the wires that are in that bunch are bound to cause signal integrity issues. Regardless, kudos.
This is the true essence of classical hacking: wondering if you can do something difficult, then satisfying your curiosity with hard work and cleverness! If all human activity was based around solving an immediate practical problem, humankind would never have developed beyond perfecting the bow and arrow. After you do the “useless” interesting thing, some other guy who has a related problem adapts it and advances us all forward.
The people asking “why aren’t current Game Boy emulators good enough” and calling this hack useless are broadcasting their ignorance for all to see.
Current Game Boy emulators support SGB games through kludgy hacks that trick the games into thinking they’re running on a real SGB. You can’t use any of the features that were available on the original SGB. Having an actual boot ROM opens the door for properly emulating a Super Game Boy *and* the SNES to which it’s connected.
WHO ARE YOU AND WHAT HAVE YOU DONE WITH THE HACKADAY CREW!? My god, leave them where ever you have them, and keep doing these kinds of things!
Besides being a rat nest of wires, this is what hacking is. Well even the rat nest of wires is too. Props my friend, keep it up and ignore the bad writes. You are indeed a hacker.
He’s one of my heroes. I already wondered what he was up to lately.
Great Modification. GameBoy ROM Dumping Devices are already being sold, but great use of time!
You have inspired me to make my own… :)