Using Ghidra and Python to reverse engineer Ecco the Dolphin

Original Article ↗ Hacker News Discussion ↗

Reverse Engineering Approach & Tools

  • Commenters discuss using memory snapshots and tools like Cheat Engine to find in-game values: change a value (health, initials, coins), scan memory, then narrow candidates by repeating with new values.
  • This approach is described as the standard method across consoles, flashcarts, and trainers; some emulators have built-in “cheat finder” tools.
  • For Dreamcast games (e.g., Skies of Arcadia), people suggest dumping emulator RAM into Ghidra, which supports the CPU architecture and can auto-discover functions.

Cheat System, CRC32, and Cryptography

  • The article’s hashed values are identified as CRC32 with a specific polynomial; the “decrypted ints” match a standard CRC32 table.
  • Knowing the hash and polynomial allows more efficient inversion than naive brute force by exploiting polynomial arithmetic.
  • Some note that CRC tables are often obfuscated (e.g., XORed) to avoid simple signature searches, but these can still be recognized through patterns and partial constants.
  • There’s curiosity about when something is still “brute force” if it uses smarter math-based shortcuts.

Ecco’s Design, Difficulty, and Horror Elements

  • Many recall Ecco as extremely hard; some used pen-and-paper to decode the original password system or skipped to later levels.
  • Debate arises over what it means to “beat” a game: simply reaching credits vs. playing all levels or story content; parallels are drawn to speedrun categories like any% and 100%.
  • Some classify the game as horror due to deep water, darkness, claustrophobic late levels, and the unsettling final boss.
  • Others emphasize the surreal mix of tranquil ocean, time travel, aliens, and isolation as the main appeal.

Linguistics, Naming, and Influences

  • Discussion of cheat codes and names (e.g., QQRIQ, Popely, Gyugyu) links them to Hungarian onomatopoeia and culture; various languages’ rooster sounds are compared.
  • The game’s title is connected to both dolphin echolocation and a speculative reference to “ECCO” (Earth Coincidence Control Office) from John C. Lilly’s ideas, mentioned as a possible inspiration.

Tools, Learning RE, and Ghidra Licensing

  • Several recommend learning reverse engineering via games, crackmes, and sites like Microcorruption, plus experimenting with Cheat Engine and Ghidra.
  • Some wish the article had gone deeper into the exact “how” of buffer and function discovery.
  • Brief disagreement over whether using Ghidra this way conflicts with its EULA; one side cites Apache 2.0 on GitHub, another points to an in-app EULA, but no clear resolution emerges.