How do you setup Ida Pro for the extracted nand

[sentinel0]

I am totaly clueless on how to setup ida for viewing of any of the files I got from dumping the 360.  Not that I know any ppc asm but, I would like to try to learn some of it.

[TheSpecialist]

Drag the file to IDA, change CPU into 'ppc', then click 'ok' a few times, that's it. It won't disasm some instructions (Takires is working on a plugin for that) and it won't know the entrypoint, therefore you have to disasm instructions manually by pressing 'C'. Keep in mind that instructions on PPC are ALWAYS 4 bytes long, so you have to press 'C' on a 4th byte (i mean an offset ending with 0, 4, 8 or c). So scroll a bit through the file and try to find code.

Program entry point for the Cx sections is in the header, normally at offset 0x8 if I remember correctly

*EDIT* Ah, the plugin from Takires just got released, great work: http://www.xboxhacker.net/index.php?topic=7921.0

[sentinel0]

Thank you I will deffinently play with this some when I get home from work.

[ForSwitch]

Forgive the tiny necro here...

TheSpecialists' instructions are correct if you want to take a look at the ASM (and spend a great deal of time making sections code and whatnot), but I've found two bigger problems with it:

1.  Lots and lots of sections to mark as code/data.  Overwhelming task.
2.  By default, that will load everything into starting address 0x00010000.  Some of the non-code portions of the binary are pointers into the binary.  They use a starting address of 0x0, so they don't end up meaning a whole lot.  If you chose to load it into 0x0 instead of 0x00010000, IDA will be able to chart xrefs to these pointers (which, by the way, is awesome.)

So, if you're looking at digging in, I would highly suggest that after you load the binary, and select the processor, you change the information at the "Disassembly memory organization" window.  Specifically, I set the ROM start address and Input File Loading address to 0x00000000.

Yay for Xrefs.  As far as disassembly goes, after it loads up, I would suggest going to Options->General.  Click on the analysis tab, and click "Kernel Analysis Options 1."  The bottom-most checkbox should say "Make final analysis pass."  Check it, and click ok.  Then, click the "Reanalyze program" button.  In about 30 seconds, most of the identification of the code will be done.  The one section I noticed that wasn't was the entry point.  However, as TheSpecialist said, that address is at offset 8 into the binary.  Find the address, go to it, hit C, and you should have the entire disassembly complete.

Make sure you also grab the plugin from Takires, as well.

Best of luck in your disassembly.

[cjack]

Thank's to Dr.Spec and ForSwitch for help with IDA!! Now the disassembly shows up correct opcodes :-)
I've never disassembled other things than x86 executables so with x360 disassembly I've got some problems to show correct opcodes!!!
Greetings!