Questions tagged [file-format]
File format refers to the way information and data is encoded and stored in a computer file.
244 questions
1
vote
2
answers
68
views
What is this file format? First byte 0x04, found in Macintosh environment circa 2001
Example file: https://imagej.net/nih-image/download/user-macros/Inclusion%20Counter/Inclusion%20Counter%20Manual%20v1.0.html
Needless to say, it is not an HTML file.
First byte is 0x04, which it ...
- 113
0
votes
0
answers
79
views
What is this 2D vector image (file) format?
Context: I'm currently re-engineering an old (2015) E-paper display tag just for the fun of it. For the curious ones, I'm using Ghidra to disassemble and decompile, and trying to make up some sense of ...
- 143
0
votes
0
answers
100
views
Extracting / converting an unknown 1990s graphics file format (.ATR)
For about a month I've been working towards trying to crack the file structure on the graphical assets from the old JumpStart CD-ROM games. A large percentage of these games do not have their sprites ...
0
votes
1
answer
57
views
How to manual copy mp4 file?
I have tried using some popular editors like: sublime text, notepad++ to open mp4 file and after copy content of it. After copy, I added the mp4 extension to the newly copied file. As a result, the ...
- 333
1
vote
0
answers
41
views
How to determine if an ntfs partition (inside VHDX) is dirty?
I have a VHDX file containing a single NTFS partition, when I mount this VHDX using Disk Management it's determined to be "dirty":
I do indeed have some issues reading this disk until I run ...
- 3,283
0
votes
0
answers
75
views
Trying to decode a data structure from a COM structured storage stream
I have a CAD file that is a COM structured storage file. One of the streams in this file contains some configuration data. I can see the ASCII strings that have the descriptions of the data I'm ...
- 1
2
votes
1
answer
81
views
Firmware extraction of U-boot : No filesystem found via binwalk + relation between MTD partitionning and NAND subsystem
I recently extracted the firmware (u-boot system) from an old Sagemcom router and analyzed it using the binwalk utility for a personal reverse engineering project.
Despite identifying a root ...
- 41
1
vote
1
answer
119
views
binwalk guess wrong LZ4 compressed data format
I have a stock Netgear switch firmware file:
https://www.downloads.netgear.com/files/GDC/GS316EP/GS316EP_GS316EPP_V1.0.3.7.zip
When I do binwalk, it gives me at position 0x769BDC a description as &...
- 35
0
votes
0
answers
82
views
How to decrypt and analyse data from desktop application
I have a project where I need to analyse some data from a desktop application (WeChat) on Windows. More specifically, I am looking to extract URLs when I search for articles using a particular keyword....
- 1
1
vote
1
answer
202
views
VxWorks flat binary file
VxWorks has a "flat binary file" format in which the initial 8 byte values are 45 53 54 46 42 49 4E 52 (ESTFBINR if interpreted as ASCII).
I know very little about their content except:
...
- 31
0
votes
0
answers
41
views
Arrays of ascending/descending/repeating integers in proprietary file formats
When looking at a file in a hex editor/viewer in an attempt to "figure it out", I often come across these blocks that are extremely repetitive. They tend to be int8, int16, or int32 (signed ...
- 183
0
votes
0
answers
76
views
Requesting Guidance To Understand SuperScape's .VCA Format: Lego Creator Knights Kingdom
I hope you all are doing well and staying safe.
I am in the process of trying to understand how SuperScape stored data in their .VCA/LCA format, so I can extract the original SHAP and PAL data from ...
- 1
0
votes
0
answers
41
views
How are those time positions values encoded in bytes?
I am reversing a file with no documentation.
I identified chunks of data (8 bytes); on the left is what is expected (hours, minutes, seconds, 1/60 of second) and on the right, the raw bytes.
// 00:00:...
- 123
2
votes
0
answers
87
views
Anyone familiar with this "AceDB" file format?
I'm currently engrossed in penetration testing my Samsung SPH-M330. And to be fair, I have found a couple entry points (WHY ARE YOU PEOPLE USING STRCPY()!?)
Anyway, I'm now taking a look at "/...
- 183
2
votes
0
answers
296
views
Help Needed With Finding Image Data In DOS Game File
I have been analysing, an File called FW190AS.PAC from a 16 Bit Game called Secret Weapons Of The Luftwaffe, in a Hex Editor, the Bytes are displayed in Little Endian format. My aim with this game, is ...
- 79
0
votes
0
answers
51
views
Which tools can I use to extract texts from ebc files in Nintendo Switch ROM
I encountered *.ebc files when i was trying to yank the dialog texts from the Nintendo switch game for my research project. The dialogs seems to be in binary ebc files. What kind of file format is ...
- 101
2
votes
0
answers
109
views
Need help extracting AP_Pack .obb files
I'm trying to extract the files for the series of 4 games - Sorcery!, which are in the format .obb.
Thanks to a Hex editor I saw that the .obb was an AP_Pack, and looking for more information on the ...
- 21
2
votes
0
answers
30
views
How is the language of a font glyph determined?
A glyph holds data such as its name and contour points. But how do you determine where the characters of one language end and another begins? Is there a written standard that says language X starts at ...
- 21
2
votes
0
answers
240
views
What Are These Four Bytes In My File Doing
I have a file that I'm trying to reverse engineer that is generated by an application. The file itself is fairly simple, but there are 4 bytes whose purpose I can't determine. The file consists of a ...
- 121
4
votes
0
answers
68
views
Decyphering 8kbps audio file format used in Solar Chanting Lotus
I'm trying to reverse engineer a solar powered chanting lotus flower so that I might replace the built in audio with something more interesting. The main chip (JL16B-083A - haven't been able to find ...
1
vote
0
answers
103
views
How do I reverse engineer a file uploading api?
The API is pretty old and is written in C#, I tried debugging the API calls with mitmproxy.
This is the successful API call (manually uploading file)
but when I tried curling it, it gave me this error ...
- 11
9
votes
1
answer
457
views
Compression algorithm from very old tape backup?
I'm recovering data from old tape cartridges from circa 1994, where the user had forgotten what software was used to write them, and it doesn't seem to be any format I recognize. Fortunately the file ...
- 221
2
votes
2
answers
98
views
Decoding a list of integer values in unknown format
I'm attempting to reverse engineer a binary file format which is used to encode a list of integer values. I can't work out how this format works, as the number of bytes used to encode each value ...
- 73
2
votes
0
answers
126
views
How to decode this rbf file?
I am trying to decode this file but so far I have no luck. I tried with binwalk and other decoders but still did not see a way of decoding. Any help, more than welcome. The file supposed to have GPS ...
2
votes
0
answers
57
views
PDF file have two trailers?
If I analyse multiple PDF files with a hex editor, I see that all of them have two trailers.
That's possible if an object has changed or renewed (https://blog.idrsolutions.com/multiple-trailers-in-a-...
- 21
1
vote
0
answers
152
views
Extracting contents of unknown file format
I would love some help on working with this file format.
I have this archived file from this abandonware game that I like to mess around with, and I have tried all sorts to try and expand it to ...
- 19
2
votes
0
answers
51
views
LZ4N file format - file decoding
I'm trying to decode a file that is part of device firmware. Unfortunately it comes RIFF<...>WAV format wrapped / packed with strange LZ4-like format.
Non of linux available lz4 tools do ...
- 21
0
votes
1
answer
151
views
3
votes
0
answers
586
views
Reverse-engineering the Sony Camset (Camera Settings) file format
Context
Newer Sony cameras have functionality that allows them to:
save the current camera settings (shooting mode, auto-focus mode, etc.) to a file
load the camera settings from a file into the ...
- 161
1
vote
1
answer
435
views
Decrypting .toc file
So I have a few files from a game on my pc, most of which are .toc files
I believe this means they are a "table of contents" as the ending suggests, but my attempts to read them have been ...
- 11
3
votes
0
answers
249
views
Reverse-engineering the S-Note (.spd) file format?
Context
Samsung phones have an application called 'S Note' that let you use the stylus/keyboard to take notes in a free-form format, similar to Microsoft OneNote. These notes are stored in files ...
- 161
2
votes
0
answers
60
views
How do I read/edit a .xuk file extension?
I am trying to reverse engineer a license key for some software, the company that made it went out of business. In doing so, if you didn't already have the key their $50,000 machines become ...
- 21
0
votes
1
answer
174
views
What kind of compressing/encoding is this?
Currently, I am trying to understand .amxd file formats. I firstly tried to open it in VIM to see what this contains. Turns out there is a JSON file and others files also in the file (I can see PNG ...
- 103
0
votes
1
answer
92
views
Floating point number mangled in a proprietary file
I'm reverse engineering a proprietary file format that contains a set of points to construct a curve (FL Studio's .fnv format). What i have trouble with in particular is how the Y-coordinates are ...
- 103
2
votes
1
answer
362
views
Figuring out WhatsApp's receipt info storage format
I am trying to figure out and document the structure of WhatsApp's database (iOS version). Most data is easily readable, but the table ZWAMESSAGEINFO has a BLOB-column ZRECEIPTINFO. I am guessing this ...
- 25
1
vote
1
answer
223
views
Making sense of an encoded JSON string
I extracted a game file, which is in JSON format, it's a bit too long, so I'll omit parts of it:
{name: "\xEE\xB5k~u\u03D7\x80\xF8\xE0\xE2\xC5\xCA\xEE\u04CF\x90\xBE\xD8Cs\xFE\xA5Ec\u007F\u0006\...
- 13
0
votes
0
answers
102
views
How to determine file system or open unknown .img file
I have a .img file which will not mount, open, extract or anything within Windows using either the tools built into Windows 10, WinRAR or 7-Zip, they all return errors.
I'm trying to look at data ...
- 11
4
votes
1
answer
1k
views
Deciphering the format of an unknown file
I am attempting to discover the exact format/encoding of a file. These files stem from closed-source analysis software we use on a daily basis. I would like to obtain the format in order to create an ...
- 41
0
votes
0
answers
294
views
What is .pb file format?
TL;DR: What file format is this (if it's not a private file format) and how do I parse it?
Before I say anything, I want to say that I am new to reverse engineering and StackExchange.
I am trying to ...
0
votes
1
answer
134
views
determine proprietary 16-bit floating-point format
Background / Introducion
CAN message Mercedes-Benz, cannot determine 16-bit data type for temperature.
7E 00 32 01 37 00
According to @rnd-ash (who has reverse engineered ACTIA Basic XS Monitor ...
- 113
2
votes
1
answer
429
views
Proprietary 3D Format Reverse Engineering: What Could These Numbers And Matrices Represent?
I'm trying to reverse engineer a model format from an older Russian game (Pathologic) with limited success. It is a proprietary model format not recognized by any converters/editing tools (believe me, ...
- 21
0
votes
1
answer
21
views
Issue in opening a file type after unzipping
I downloaded a file from this link https://storage.cloud.google.com/gresearch/smallcnnzoo-dataset/cifar10.tar.xz, and I successfully downloaded the archive file.I unzipped it using 7-Zip. After ...
3
votes
1
answer
385
views
Reverse engineering Roland TR-8S kit file format .t8k
I'm trying to figure out the file format that the Roland TR-8S drum machine uses for importing/exporting drum kits. My goal is to replace the sample (PCM) data within a kit. It's a proprietary binary ...
- 133
0
votes
2
answers
665
views
Open unknown image format (probably a RAW image)
I copy image files here from a linux based system which ends with .bin.
Unfortunately I don't know how to open it. The goal is to convert images to this format later.
What I have already tried:
Open ...
- 83
1
vote
0
answers
82
views
reversing an HDL file [closed]
I was given an HDL file with the following content:
i was asked to reverse it and retrieve the value of in , how can i do it please knowing that i have the value of out? thanks
- 11
0
votes
0
answers
154
views
Cannot find audio file type
I'm trying to find the audio file type of this file (extension wtj) around 8 minutes). I extracted it from a music box.
I've tried many things:
Open in Winamp and VLC => no luck
Open with ...
- 101
1
vote
0
answers
152
views
What type of file has the file signature 'BOOT'?
I have a .bin file which I am trying to disassemble into something that I can edit. Given that binary files can contain just about any binary data, I found it difficult to assess what file data is ...
- 61
0
votes
2
answers
84
views
how do i use the text like in pe files?
I extracted pe file from another pe file and I saved it.
I want it execute but when I saved file computer sees it like text file. Altough my actual file starting with "4d 5a" computer sees ...
2
votes
1
answer
2k
views
Reverse engineering a .byte file format
I've dug into files of a game that was made in Unity (which uses C# language)... and i was interested in extracting 3D models and textures etc. I understand that data and obb are separate, BUT! In my ...
- 21
0
votes
0
answers
2k
views
Need help learning to extract and modify PS1 ISO files
I was wanting to make a randomizer for a playstation game, Parasite Eve 2.
I've spent a ton of time trying to figure this out just googling around and eventually wound up here.
Does anyone have an ...
