Originally posted by polaco ps: I have downloaded
GitHub - i-am-shodan/PentaxFirmwareTool: Pentax Firmware tool for the K30
I compiled it and tried it to decrypt the K3II firmware that is in the zip provided by pentax, however the process fails as the XOR.key provided in PentaxFirmwareTool does not match firmware size.
I wonder were did they got that xor.key and how could i get the one for k3II. If the non encrypted version is available then calculating the xor file would be easy, providing they are still using same xor approach.
pps: well after reading a bit, it seems efforts on hacking pentax firmware has been abandoned, and if it is pure assembly i guess i would be dead.
It's pure ARM assembly.
Anyway, if you or anyone else want to try, here's a hint.
To decrypt K-3II firmware, you'll need to use
pfwtool. If you have a trouble compiling the tool, contact me, and I'll send you the compiled binary.
After the firmware is decrypted, you'll need to open the file in IDA Pro disassembler. Change processor to ARM Little-endian, set the ROM starting address to 0x02000000 (if I correctly guessed the offset), and set the input file loading address to the same 0x02000000. See the attached screenshots.
Last edited by ABel; 02-14-2018 at 08:23 AM.