Esteemed PSP/PS3 reverse engineer Mathieulh, has stated via his twitter that a member of his team has successfully cloned the PS3 Jailbreak device:
Someone from our group just successfully cloned the psjailbreak dongle. Going to improve the shell code soon.
Mathieulh also stated this too:
We are not releasing anything, we didn’t just rip things off, we know how it works ,the clone is just a POC, we plan on documenting
08-30-2010
12:26 PM
hmm but from what I heard using PSjailbreak isn't possible without special usb ? Am I wrong ?
08-30-2010
12:30 PM
Awesome news!
Things can only go from strength to strength now.
I can almost hear the big guys at Sony weeping!
08-30-2010
12:51 PM
AHA so that means what?
08-30-2010
12:51 PM
i think before pskailbreak release with this sony delay, we might see the whole clone all over internet.... Sony u rock....
08-30-2010
01:02 PM
i dont expect it to be simple though for a lot of people. (myself included)
08-30-2010
01:30 PM
Is anybody who hasnt clone the dongle ??
p.s. Sorry for any grammar mistakes. English is not mine first language
08-30-2010
01:35 PM
but allot of people clame to have clones
08-30-2010
01:51 PM
Speaking my mind, i think that those special JB-sticks don't rely on special hardware other than normal USB-sticks. The "magic" or call it "feature" everybody talking about, only add LED-status to it. This LED-status will notify the user when the device is enabled correctly or not function properly (as seen on the JB-video).
As mentioned on various screenshots token of the original JB-stick, the capacitor soldered over the main chip, will sustain capacity over the chip and will trigger some switches (AND/NAND/XOR/NOR) to activate the status LED's.
Probably the "original" JB-stick will be or can be cloned on a normal USB-stick, without the status LED's. Yes, it will be hard to decypher or reverse engineer the JB-code, but in my opinion it is possible.
Overall, it's strange to see many people to manage to clone those JB-sticks so quickly and distribute those clones on various website against huge prices. Probably the code wasn't that hard to break.
After some searching on my archive disks, I suppose the SDK of 160 will also do fine, not needing the full 192. Maybe this could be an answer why those JB-clones will appear rapidly after eachother.
All coders out there, keep up the good work.
08-30-2010
01:55 PM
This is what i have feared! when i saw this news i was about to say, if we get lucky and he releases his stuff, math is known not to share much of his work, which is ok its his work he doesn't have to do it anyway it was his work.
Still its some good news, release some documentation mathieulh please
08-30-2010
02:08 PM
what is the point of telling people you did it and then not showing how? just to say you did it? i think he is some kind of bad word! the funny part is that he was not even the one who did it. it was someone from "his team". so that person showed him and yet he won't show us. good work!!!
08-30-2010
02:10 PM
He is doing it for educational purposes.
08-30-2010
02:12 PM
then he should keep it to himself if all he wants is an education! just my opinion. especially since he knows the devices are ridiculously overpriced and knows people are waiting for a cheaper solution.
08-30-2010
02:14 PM
He posted it on his personal twitter, on that he can put whatever he wants, it was me that made it public.
08-30-2010
02:19 PM
oh i see, but even still. he knows he was followers on there so it is not like it is private. therefore he understands that it will become public knowledge. so in fact he is still announcing it to the public and saying, "ha ha i did it and you can't!" just like a little kid. i am not trying to bump heads with you greg every time i have an opinion or a comment but it seems that no matter what i say you jump on me. damn!!!
08-30-2010
02:22 PM
Its a forum, its for discussion, it works by people making threads and posts, me having my own opinion, is not jumping on you.
08-30-2010
02:36 PM
without people like matthieu and his team we would be nowhere.
it was a team effort as he himself says, but your not having a go at the other members of the team! they have most likely put similar things in their tweets.
also he says he will release documentation of the exploit. maybe not a tutorial but others can take it from there. its a proof of concept also which means that it may not be completely worked out.
look at geo with the iphone, he did awesome work but was bombarded with questions and hassle.
maybe matthieu doesnt want to be put in the same situation where people get at him demanding answers/updates etc.
the point is that it HAS been done and from a diy perspective it WILL be done again.
just relax, were on our way
08-30-2010
02:38 PM
08-30-2010
02:39 PM
thanks for that post. it made me calm down so much!! i could not take it anymore all these clones here and there and no answeres. but you are a life saver. my heart was about to explode until you made me realize it is not so serious after all. thank you japsander.
08-30-2010
02:44 PM
The psjailbreak comes with an AtMega 164PA which is an standalone uc.
An usbstick already has an written uc which handles the flow of data.
If you would want to use an usbstick like psjailbreak you would need to change the behavior of the usbsticks memory controller.
I think it would be much easier just to simulate the behavior of the psjailbreak on an psp or cellphone.
In order to clone the dongle Mathieulh needed the code/behavior which is written on the AtMega. And this is what we need to develop an jailbreak that everybody can do without spending much bucks.
Here i got an circuit diagram of psjailbreak. I dont know if it's real, but for me it looks:
http://www.youup.info/files/56ZALLQV/typhon.pdf_links
08-30-2010
02:52 PM
i know for me that diagram looks way out of my league lol (took me 3 hrs to solder my wii)
i am hoping for a way to use my ipod or a simplified way.
ive already ordered a psjb but WILL be trying to make my own as well simply proving to myself that i can.
08-30-2010
04:32 PM
ok i have a serious question that i do not recall being asked anywhere else, if i am mistaken i apologize. but with all these clones can they run the backup manager from psjailbreak or are they all making their own programs? the reason i ask is because they are releasing backup manager 1.1 and was wondering if the clones will be able to run that as well.
08-30-2010
04:39 PM
Well, yea, it kinda sucks that its not publicly released but, this does show that it can be done and I'm sure some things will be shared and someone else will do it and more information will be shared....I don't really have an idea of how long it will be before its released to the public as to how to do it yourself but my guess is, it will be about a week after the official device is released...give others time to hack it, test it and upload it...then the official price will plummet for those that want the real thing versus a home-made one
08-30-2010
05:27 PM
08-30-2010
06:11 PM
I asked him this on twitter:
08-30-2010
06:37 PM
would we need the dongle in at all times, to access the games, or is it a one time affair? From my understanding, we would only need it to install the PKG's. I'm pretty sure we could emulate the dongle on any android phone as they all run linux
08-30-2010
06:46 PM
What is the problem with Mathieulh! He said he will document everything and, in fact, in one of his tweets he states:
08-30-2010
06:47 PM
08-30-2010
06:49 PM
we need it in all times. if you disconnect the dongle, your ps3 will freeze. The reason i asked it for the n900 is because the phone is disigned to be a mini linux pc that runs maemo, therefore easy to program. i guess android should work to if you know how to code in android. The only difrens is its not a fully open platform like maemo so there may be some difficulties.
08-30-2010
07:05 PM
awesome news ^_^
release a PSP Homebrew that emulates the PSJailBreak
use this name: "PSJailBrew" LOL
cheers
08-30-2010
07:23 PM
I'm sure someone will do it for the android phones :D Cant wait to see what this week brings. Finally, i get to put my games in a safeish place XD. Now that Math's team have done this successfully, i wonder if he could tell us where and if the games gets stored when you do a backup? Thanks for the reply Devinger
Im pretty sure the Nexus One can do the same -(phone i have) connect via usb while on the phone, i have a bluetooth headset which i use for phone calls, so having the phone attached to the ps3 shouldn't really be a problem
08-30-2010
08:19 PM
About Android/Maemo/PSP etc. ideas: i am not sure weither a high level platform is possible to imulate the PSJailBreak. This is not about sharing files, you need to work on a protocol level and i am not sure if it's possible to do so with those platforms.
08-30-2010
09:13 PM
this is starting to become very interesting, with people now seeing how the PSJailbreak works they can now set out on improving the device. I am keen to get one right now, but with my 60Gb ps3 due for a repair from sony, i will hold off until things settle down with improvements and the new items on the market are put out there.
08-30-2010
09:51 PM
I just hope that someone ports it to the Arduino Pro Mini 328...that would put the price under $25 shipped!
08-30-2010
10:20 PM
Mathieulh tweeted that it should be your best bet to buy an AT90USBKEY or Teensy/Teensy++ board, since they will release shellcode that should work out of the box on those boards.
I for one, will wait for a confirmation of the functionality of such a DIY solution before I buy one.
(those boards are priced 25-35$ in case someone was wondering)
08-31-2010
02:43 AM
Mathieulh also mentions on his twitter that these boards can be programed via usb so this solution should be capable of being updated
08-31-2010
03:12 AM
Okay guys hear me out here, since joining these forums, I am trying to get a hold of all the terms hackers and stuff use.
MCU = micro controller
dump = Either backing up unix or Dump database
jig = ??????
There is more i am sure, could guys please help me out?
08-31-2010
03:25 AM
Dump = Copying the entire contents of the jailbreak device to pc so we can view/edit it
jig = the name of the usb device sony apparently uses for servicing ps3 consoles
08-31-2010
04:41 AM
Well this is great news much rather have a DIY solution rather than rely on
outside businesses that can cut and run at any time.
Just ordered myself a Teensy++, thought I should get in before the rush.
Couldn't find a UK supplier so had to order from the states.
Now just need to rig up a nice enclosure for it and bring on the homebrew.
Also need to check out the best way to connect non 2.5" drives internally.
This is a nice moment, like the first time I got my PSP cracked with GTA.
Good times ahead.
08-31-2010
04:45 AM
Plenty of reference to that in a few of the PS Jailbreak thread, the best looking ways are the xecutor HDXT Harddrive Extender or this http://cgi.ebay.co.uk/PS3-HD-Hard-Di...pt=Video_Games
08-31-2010
05:39 AM
Ugh took me forever to post this reply dumb internal pop ups... well anyways i just thought of this i think any usb device can clone it even a thumbdrive. remember SKFU's Dynamic Theme POC hack he can clone the PSJailbreak with that .fu file.
08-31-2010
08:17 AM
Top tip on the PHE-02, picked one up along with a 1TB drive (note: PHE-02 needs certain drives according to the ebay page).
Just need to wait for the parcels to come in and i'm good to go for homebrew
All in all, for under the price of a jailbreak I got everything I need plus 1TB storage. result!
Sorry if all this was off topic btw.
08-31-2010
08:21 AM
theme hack is quite different. it's a xmb hack, an probably exploits some theme parsing vulnerability.
ps jailbreak exploits a usb vulnerability, on entirely different end of the system.
this hack involves simulating a usb hub, and a jig connection. you cannot program a generic usb storage device to do this.
usb storage devices can be programmed to alter their capacity or usb id, depending on the chip inside of them (that's how many of those fake 64GB pendrives are made, you might see them on e.g. ebay). you just cannot do much more than this with a typical usb storage device.
i think psp could be programmed to do this, assuming its usb stack is programmable.
08-31-2010
08:54 AM
08-31-2010
08:59 AM
Because finding a hole in a system is not something easy like taking advantage of it!!!
finding a hole in the system might take years (ps3) of course we know where to look cause we know well... they are usually here and there, but if they aren't (like the ps3) if we find its because we stumbled upon it, not because we knew it was there, this was probably the same, that is why it took so long.
08-31-2010
09:16 AM
If anyone's counting on using the hack from Mathieulhs team, don't plan on running game backups or connecting to PSN (at least for awhile until someone else patches it).
08-31-2010
09:21 AM
I sincerely hope so Sniper (that no one patches it i mean)
08-31-2010
09:31 AM
08-31-2010
11:53 AM
it's just too bad that the ps3sdk is not really ready yet. but there is a chance that its development will pick up quickly, if we get an affordable DIY softmod solution.
obviously people are bound to use it for piracy. and that should bring game prices a bit down - xbox360 games are almost twice as cheap on second-hand market than their ps3 versions. not sure about the first hand discs.
08-31-2010
04:46 PM
ive had a look but cant seem to find any good uk supplier for the teensy++ boards, does anyone know of one?
the AT90USBKEY seems easy enough to find though, and at around £25 a very nice price (good for relations xmas presents)
i would be interested in modding a ps3 to have it internal and still keep my ports free. should be simple enough i think.
08-31-2010
06:35 PM
in the uk for a teensy++ i don't know, but why don't you get the AT90USBKEY
http://search.digikey.com/scripts/Dk...AT90USBKEY2-ND
its a uk website i guess