Yeah, I’ve pulled the bootloader off a handful of aging SNES and Sega Genesis systems just to check for firmware quirks. The security on those is basically “if you can read the ROM, you can read the bootloader.” No encryption, no signing, just a plain text header. If you want a real challenge, try an Atari Jaguar – its boot process is a mess of undocumented jump tables, and even the community has never cracked the full sequence. Still, the joy is in the smell of the solder fumes when you open that plastic case, not the cryptographic strength.