I'm looking into hacking a GBA game, (Konjiki no Gash Bell: Makai no Bookmark) but I'm running into some issues trying to do a few things. Namely:
-Finding the decompression routine for text/graphics
-Finding the location of graphics such as fonts
I've been using NO$GBA's built in debugger to do my reverse engineering, and it's allowed me to figure out where text is loaded in RAM. However, I thought it would be as simple as setting a write breakpoint on the text when it is loaded, and tracing backwards to figure out where in the ROM it's loaded from. From there, I'd have the address that the text is at in the ROM, and could work on cracking the decompression algorithm.
THe issue is that the write breakpoint never breaks when the text is loaded. It breaks several times before it is loaded, but never as text is loaded into RAM.
Because of this, I am at a loss how to figure out where the text is in the ROM.
Does anyone with any experience in this area have any suggestions? I've been looking at this for a few hours but no results have come of it.
If anyone wanted to see what I'm describing, the text loads into RAM at 0x02003FA8, and I had a write breakpoint set at that location.
-Finding the decompression routine for text/graphics
-Finding the location of graphics such as fonts
I've been using NO$GBA's built in debugger to do my reverse engineering, and it's allowed me to figure out where text is loaded in RAM. However, I thought it would be as simple as setting a write breakpoint on the text when it is loaded, and tracing backwards to figure out where in the ROM it's loaded from. From there, I'd have the address that the text is at in the ROM, and could work on cracking the decompression algorithm.
THe issue is that the write breakpoint never breaks when the text is loaded. It breaks several times before it is loaded, but never as text is loaded into RAM.
Because of this, I am at a loss how to figure out where the text is in the ROM.
Does anyone with any experience in this area have any suggestions? I've been looking at this for a few hours but no results have come of it.
If anyone wanted to see what I'm describing, the text loads into RAM at 0x02003FA8, and I had a write breakpoint set at that location.