• PS3 Hacks , 28.07.2011

    After many trials and errors, Spanish hacker varicela has posted his success of finally installing a working dual NAND on his 40gb PS3.

    To quote (translated):

    Very Good After trying out several tests of the Nand Fat off the console with poor results because of the long cable and data loss, I decided to approach the issue by putting the two Nand and activating of interest.

    Here I leave a flash1 photo of a folded and functional Sem001.

    flash0 I decided to put it on this side also Flash0 Native Here the selection of the switch to nands The next video A greeting

    Pictures of install:

    Not a easy job for the faint, but none the less awesome work indeed (total of 32 solders for those who are too lazy to count).

    [VIA Elotrolado] - Thanks to tenshou for news tip.

    You heard it here first @ PS3Hax.net

    Tags: , , ,

    Discuss in Forums (71)


  • 71 Comments

    1. pimpspter
      07-28-2011
      07:50 PM
      1

      And let us not forget a monumental technological achievement which really showcases our understanding of the hardware. Seeing people achieve things like this is truely great progress. ;-)

    2. Wolfie708
      07-28-2011
      07:53 PM
      2

      Am I interpretting this right?? Dual NAND gives us dual bootable OFW/CFW?

    3. Pockets69
      07-28-2011
      07:54 PM
      3

      Amazing, i wanted to see it working though

      Edit1

      also posted this, not because i am doubting, but because i really want to see it

    4. pimpspter
      07-28-2011
      08:00 PM
      4

      Originally Posted by Wolfie708
      Am I interpretting this right?? Dual NAND gives us dual bootable OFW/CFW?
      I believe that's the case Wolfie, I'm reading over the original spanish topic right now so will report back if I find anything :-) (I speak spanish)

    5. Wolfie708
      07-28-2011
      08:02 PM
      5

      Cheers Pimpspter

    6. pimpspter
      07-28-2011
      08:03 PM
      6

      Originally Posted by Pockets69
      Amazing, i wanted to see it working though
      The original poster does say (at ElOtroLado) that the next thing will be a video so you may be getting your wish soon enough! :-D (I don't think that was included in the translation above though?)

    7. Pockets69
      07-28-2011
      08:04 PM
      7

      cool thanks man, also i see dh.org getting so mad about this XD

    8. Wolfie708
      07-28-2011
      08:05 PM
      8

      It mentioned a video, and fingers crossed as if it does make a dual FW possible, then I will be needing to get my soldering iron out of it's box lol

    9. alienkid
      07-28-2011
      08:05 PM
      9

      Well......that's just awesome.

      I'm with Pockets69, I wanna see it boot in its respective boots. Whether that be 2 OFW's...1OFW and 1 CFW...or 2 CFW's...

    10. Wolfie708
      07-28-2011
      08:07 PM
      10

      Well not tempting fate, but that is what I have wanted from day one.... OFW for latest games, and CFW for homebrew (I don't give a Fairies furry cup about PSN lol)

    11. pimpspter
      07-28-2011
      08:15 PM
      11

      The latest poster on the other thread has just asked the dual FW question. No answer as yet. I'll keep an eye on it and report back :-)

      Oh and Pirate I wouldn't translate his handle it's "Varicela" (which is practically the same as the english word which is varicella the virus causes more than just chickenpox. If you're going to translate it just double the 'l'!) ;-)

    12. Wolfie708
      07-28-2011
      08:17 PM
      12

      Thanks (button on strike again lol)

    13. Rogerdodger91
      07-28-2011
      08:19 PM
      13

      The great this about this is that now that we have 3.61 and linux on the same console operation we can now dump the data from the 2nd nand and try to get a better understanding of what sony actually did in the update.

    14. Pockets69
      07-28-2011
      08:24 PM
      14

      i ll thank him for you wolfie

    15. wizdumb
      07-28-2011
      08:25 PM
      15

      Great news to hear. +1 on seeing it in action.

    16. itskamel
      07-28-2011
      08:28 PM
      16

      hahahaha yes this is awesome.

    17. tcmkenny
      07-28-2011
      08:52 PM
      17

      O how i wish i could solder so i could do something like this.

      Great job!

    18. FirebirdTA01
      07-28-2011
      09:06 PM
      18

      This is awesome, I've been waiting to hear more of this and hopefully the video released answers a lot of questions. Cant wait! It would be cool to have latest ofw and whatever cfw wanted/needed.

      EDIT: And I *will* be warming up my soldering iron for this... after more tests are done!

    19. Thelostdeathknight
      07-28-2011
      09:59 PM
      19

      interesting but anyways it's quad nand. each nand ps3 has 2 128mb nand chips that work together as if they were a 256mb nor. nor ps3s have 1 16mb nor. so quad nand.

    20. tupac4u
      07-28-2011
      10:17 PM
      20

      just awesome!!

    21. KillerBug
      07-28-2011
      10:39 PM
      21

      Brilliant!

    22. lightyear
      07-28-2011
      11:01 PM
      22

      wow....32 solder points is not bad at all!!! That's only a little over par with lots of modchips

    23. Laocedric16
      07-28-2011
      11:01 PM
      23

      i sense the 3.66 CFW COMING!! (i hope so)

    24. gambaownsu
      07-28-2011
      11:10 PM
      24

      Awesome. Do you think that the SLIM version could get a hand to this dual nand thing?

    25. zebular
      07-28-2011
      11:12 PM
      25

      Yea hopefully this leads to a software mod that can do the same... Tis very cool but i have 3 ps3s so i dont really need the duel firmwares. I hope to one day have a ps3 with a completely redesigned front end. Like the one xbox 360 had before the nxe

    26. cheezyness
      07-28-2011
      11:19 PM
      26

      Originally Posted by lightyear
      wow....32 solder points is not bad at all!!! That's only a little over par with lots of modchips
      Don't let the numbers fool you, did you take a look at how small the solder points are in the first picture?? I don't know about you but that's definitely out of my league!

    27. projectorfreak
      07-28-2011
      11:28 PM
      27

      Beyond my skills but I would pay well for this work
      Incredible job
      Can't wait to find out what I need to buy to get this done

    28. tthousand
      07-29-2011
      12:29 AM
      28

      Originally Posted by Pirate
      Spanish hacker chickenpox
      LOL

      Needs fixing guys!!!

    29. plex
      07-29-2011
      01:14 AM
      29

      It's good to see a news article on this topic (it's all i pay attention to now). I hopefully plan on getting around to what chickenpox has achieved later on in the year.

      Except i have my original (warranty-less) 80gig console and another cheap 30$ 80gig console which the motherboard has had insane heat molesting and a back yard 'I CAN DO IT' soldering job on the motherboard where the power supply terminal connects to.

      With this achieved i hopefully plan on having optional OFW/CFW booting.

      Next question of interest would be do you use two individual hard drives or one? (I plan on two for safe measures).

    30. The_legend
      07-29-2011
      01:33 AM
      30

      This is just greatttt!

      Of course a video would be awesome.

      lets hope for a video soon guys.

    31. RantingMute
      07-29-2011
      02:08 AM
      31

      Congrats! Thanks! This is the sh!t

    32. cyberdude
      07-29-2011
      02:20 AM
      32

      bets news since geohot released his keys

    33. mechlord
      07-29-2011
      02:30 AM
      33

      will it be possible to get the 3.6X keys with this?

    34. Vulcanraven
      07-29-2011
      03:05 AM
      34

      You cant get the firmware keys with that, is only for storing 2 firmwares on one ps3.
      I think you can change the firmware with a switch later.
      Anyway great news...

    35. DJ_3Sixty
      07-29-2011
      03:37 AM
      35

      This is amazing work, but personally, it is WAY beyond any normal joe bloggs on the street "hackers" ability, i see LOTS of dead PS3s coming very soon.

      Personally i am going to wait for something like Team M33 (Dark_AleX) did with the PSP, where u cna put a firmware on an external storage device (MS Pro Duo in the case of the PSP) and "TEST" it thru the custom firmware, this would be awesome!!

      Loads of respect to the developer for the work tho, and the possible threat of totally killing his PS3!!

    36. gamefanA
      07-29-2011
      04:10 AM
      36

      people why are you so happey you know this is just like having 2 PS3s
      it's nothing like a 3.66cfw (plz feel free to corect me if i'm wrong)
      also this wont be free you have to buy a second NANd and god knows what else
      so people who already have 2 PS3s this is no good for you

      WE WANT A 3.66 CFW(or 3.60 at least)

    37. daveyp187
      07-29-2011
      04:43 AM
      37

      looking good looking good

    38. chilo3000
      07-29-2011
      05:41 AM
      38

      Great news but I will never risk it, at least until they make a retard proof tutorial. For one I don't even own a soldering iron

    39. Jerk McD0uchebag
      07-29-2011
      06:23 AM
      39

      Remember that POC pdf that was released a couple of months back? lol look at the POC now 99.9% reality.

    40. lightyear
      07-29-2011
      06:33 AM
      40

      Originally Posted by cheezyness
      Don't let the numbers fool you, did you take a look at how small the solder points are in the first picture?? I don't know about you but that's definitely out of my league!
      Yup, I totally agree....but I had a duo9ultra for my ps2, so I know all about small solder-points. these don't look any smaller than most modchips require you to solder to.

    41. Aling3
      07-29-2011
      07:02 AM
      41

      I think people can be quite calm over the small solder-points because when (or if) it will work then it will probably be create such "clips" to the NAND chips as to the modchips for the Wii, and then every noob that can handle a screwdriver to unscrew the ps3 to it by his/her own (and a little bit soldering knowledge to the cable to the ground ofc...)

    42. Dev-Dave
      07-29-2011
      07:05 AM
      42

      Once this is full ready, then I will be offering and small service to do this in my local area, after I upload a video of how I do it.

      Originally Posted by daveyp187
      looking good looking good
      Love that signature image Davey.

      Respect.

    43. pimpspter
      07-29-2011
      07:06 AM
      43

      Originally Posted by DJ_3Sixty
      Personally i am going to wait for something like Team M33 (Dark_AleX) did with the PSP, where u cna put a firmware on an external storage device (MS Pro Duo in the case of the PSP) and "TEST" it thru the custom firmware, this would be awesome!!!

      They had that about a year a go Sixty http://www.ps3hax.net/2010/09/jaicra...s-for-ps3-cfw/ the only catch is that you need to be able to copy the contents of dev_flash/ to a USB storage medium to use it => it will not work for firmwares which aren't already hacked as we can't get at the content of dev_flash. It was the basis for early 'emulated' custom firmwares before we could flash them.

      Other than that this is also a theoretical solution to the dual firmware problem...but it won't run with a pup like you're suggesting...and we don't have dumps from 3.6x to use with it. (though who knows if we could come up with an arrangement to read the second nand storage from within linux using the above hack it might allow us to get dumps? or would there be a problem there?)

      Acording to my understanding all pf that will change if we ever get the Mltrdr key - at which point getting at the unencrypted contents of newer firmwares should be relatively easy....

      Oh and no reply as yet on whether the author has dual firmwares running. I'll keep my eyes on the original thread and report back as soon as he replies. :-)

    44. Dev-Dave
      07-29-2011
      07:10 AM
      44

      Originally Posted by Aling3
      I think people can be quite calm over the small solder-points because when (or if) it will work then it will probably be create such "clips" to the NAND chips as to the modchips for the Wii, and then every noob that can handle a screwdriver to unscrew the ps3 to it by his/her own (and a little bit soldering knowledge to the cable to the ground ofc...)
      There not as good as people think, and they can spring off when your flashing, and the contacts on the ps3 are to small to clip to. Soldering is the only safe way due to none intermittent contacts.

    45. EckoUnltd
      07-29-2011
      08:32 AM
      45

      wow fantastic news, great job keep up the work, i cant wait to see it in action, dosent matter even if its 2 OFW

      love where the scene is going past few weeks

    46. DKO-
      07-29-2011
      09:34 AM
      46

      Awesome! I admire the effort and skills in this project.

    47. squishy
      07-29-2011
      11:42 AM
      47

      To the hardware newbies. This is actually dooable for anyone who is willing to practice and has the patience. The points look pretty straight forward. Practice practice practice. You are going to want a decent precision tip soldiering pen style iron with constant power, I prefer a GOOT, here is the pen I would recommend - http://www.bomir.com/online/?sub=87 . Something like that, its cheap, and not your every day radioshack special. Get an exacto, a removal tool, flux, high power magnifier on and arm with a bright light, and start practicing. What to practice on?? Name it, hell, smash an old cell phone lol. Point is, anyone can do it, and once you learn, it is a very viable skill in the scene.

    48. AsSiTcH
      07-29-2011
      12:47 PM
      48

      Originally Posted by gamefanA
      people why are you so happey you know this is just like having 2 PS3s
      it's nothing like a 3.66cfw (plz feel free to corect me if i'm wrong)
      also this wont be free you have to buy a second NANd and god knows what else
      so people who already have 2 PS3s this is no good for you

      WE WANT A 3.66 CFW(or 3.60 at least)
      Most of the homebrewers on this site do not want or need 3.66cfw. Stop making demands

    49. hackoncrack
      07-29-2011
      01:19 PM
      49

      well if this works...then ill look pretty silly with my two ps3s...lol

      i hope its BS ;D

    50. Wolfie708
      07-29-2011
      01:33 PM
      50

      Originally Posted by hackoncrack
      well if this works...then ill look pretty silly with my two ps3s...lol

      i hope its BS ;D
      You look silly anyways HeeHee

    51. luke1
      07-29-2011
      02:07 PM
      51

      wow! looks complicated though. Also how long do u recon a cfw for 3.61 will take

    52. hackoncrack
      07-29-2011
      02:10 PM
      52

      @Wolfie...yeah ur right...SILLY LIKE A FOX!!

      i reckon if they do make CFW it will be 3.60, so 3.66 people are stile going to have to downgrade, am i wrong?

    53. Thelostdeathknight
      07-29-2011
      02:44 PM
      53

      Originally Posted by hackoncrack
      @Wolfie...yeah ur right...SILLY LIKE A FOX!!

      i reckon if they do make CFW it will be 3.60, so 3.66 people are stile going to have to downgrade, am i wrong?
      I'm going to make this simple. People on 3.56 or higher will have to downgrade to 3.55 to install any new CFW. If you don't want to downgrade you will have to hope for a new exploit (i.e NOT KEYS) since you will not be able to install new CFW over 3.56 or higher because WE ARE NEVER GETTING THE NEW PRIVATE KEYS, (SONY FIXED THE CRYPTO FAIL which is how we got the private keys for 3.55 and lower). you need the private key to sign your new CFW. We have the 3.55 private key and we can get the public keys for 3.66 and lower. So any new CFW will be signed with 3.55 keys meaning you have to be on 3.55 to install. NO IFs ANDs or BUTs about it.

      Public Keys = Decrypt
      Private Keys = Encrypt

      No private key - NO CFW for 3.56 or higher users

    54. hackoncrack
      07-29-2011
      03:05 PM
      54

      ok so even when they figure out this 3.60 keys mess, it will only help to get 3.60 signed software to work with 3.55.

      So we shouldnt count on a CFW higher than 3.55 unless someone raids Sony headquarters ninja style to get the keys from their supercomputers...wait just a minute!?

      im getting a great idea, i am going to assemble a 4 man special unit to raid the Sony compound and take that SH*T!!! Who's with me?!?!

    55. pimpspter
      07-29-2011
      03:12 PM
      55

      The above was my understanding too with one other caveat (please feel free to correct me if I'm wrong it's just what I gathered from reading around this area)


      As above...

      Or unless an exploit on the earlier firmwares fully compromises the bootloader. If the mltdr key falls Sony won't have the option of using new keys as the system will be finally compromised at its most fundamental level....as I understand it mltdr is the one link in the chain we didn't get and thus the key to locking the system back down again.

    56. Thelostdeathknight
      07-29-2011
      03:39 PM
      56

      Originally Posted by hackoncrack
      ok so even when they figure out this 3.60 keys mess, it will only help to get 3.60 signed software to work with 3.55.

      So we shouldnt count on a CFW higher than 3.55 unless someone raids Sony headquarters ninja style to get the keys from their supercomputers...wait just a minute!?

      im getting a great idea, i am going to assemble a 4 man special unit to raid the Sony compound and take that SH*T!!! Who's with me?!?!
      There will be CFW 3.56+ but it will only be usable by those on 3.55

    57. squishy
      07-29-2011
      11:03 PM
      57

      Originally Posted by Thelostdeathknight
      There will be CFW 3.56+ but it will only be usable by those on 3.55
      Pretty much just like the xbox scene. Microshaft found the exploit and closed the door, anyone above theat specific update could no longer get cfw or dash, anyone below could update cfw up to current 13xxx whatever it is. So stay on 3.55 or lower, or your foooooked....when the cfw updates, so can you. Easy Peasy.

    58. Thelostdeathknight
      07-29-2011
      11:38 PM
      58

      Originally Posted by squishy
      Pretty much just like the xbox scene. Microshaft found the exploit and closed the door, anyone above theat specific update could no longer get cfw or dash, anyone below could update cfw up to current 13xxx whatever it is. So stay on 3.55 or lower, or your foooooked....when the cfw updates, so can you. Easy Peasy.
      We have been telling people since 3.56 came out don't update or you enter no mans land. anyways if they want cfw they better get a hardware flasher. anyways people who updated for psn only have themselves to blame anyone who bought on above 3.56 and knew about CFW only have themselves to blame, someone updates your machine it's your fault. If you found out about it after 3.56 guess you should get a hardware flasher or pray for a different exploit cause you will not get CFW

      Originally Posted by pimpspter
      The above was my understanding too with one other caveat (please feel free to correct me if I'm wrong it's just what I gathered from reading around this area)


      As above...

      Or unless an exploit on the earlier firmwares fully compromises the bootloader. If the mltdr key falls Sony won't have the option of using new keys as the system will be finally compromised at its most fundamental level....as I understand it mltdr is the one link in the chain we didn't get and thus the key to locking the system back down again.
      With the rootkey/bootloader key we can get every other key EXCEPT PRIVATE KEYS. so 3.56+ will have to downgrade

    59. cipherx
      07-30-2011
      12:47 AM
      59

      This site has become overrun with 16 year old goons that are not only clueless when it comes to "Hacking", but apparently can't read either. Not only did they skip over the numerous "DONT UPDATE" threads, they are somehow skipping over the hundreds of places where serious hackers have to waste more of their time explaining the ins and outs of 3.56+ CFW. I'd honestly rather watch my parents have sex than read one more of these redundancies.

    60. Thelostdeathknight
      07-30-2011
      01:19 AM
      60

      Originally Posted by cipherx
      This site has become overrun with 16 year old goons that are not only clueless when it comes to "Hacking", but apparently can't read either. Not only did they skip over the numerous "DONT UPDATE" threads, they are somehow skipping over the hundreds of places where serious hackers have to waste more of their time explaining the ins and outs of 3.56+ CFW. I'd honestly rather watch my parents have sex than read one more of these redundancies.
      O.o you watch your parents have sex.............

    61. frankie30917
      07-30-2011
      10:32 AM
      61

      why not just partition the original nand and make it able to choose which partition to boot

    62. Dev-Dave
      07-30-2011
      01:55 PM
      62

      Originally Posted by cipherx
      This site has become overrun with 16 year old goons that are not only clueless when it comes to "Hacking", but apparently can't read either. Not only did they skip over the numerous "DONT UPDATE" threads, they are somehow skipping over the hundreds of places where serious hackers have to waste more of their time explaining the ins and outs of 3.56+ CFW. I'd honestly rather watch my parents have sex than read one more of these redundancies.
      Well you better get the popcorn then, because it looks like your watching Mum and Dad then after reading this goons post.

      Originally Posted by frankie30917
      why not just partition the original nand and make it able to choose which partition to boot

      I'm just hoping its your step mum, and she's fit, and ya Dad performs like a porn star. from a Son's point of view, that is. lol

      Sorry to the new member if you are genuine.

    63. squishy
      07-30-2011
      10:23 PM
      63

      Originally Posted by frankie30917
      why not just partition the original nand and make it able to choose which partition to boot
      That would be awesome, except, the nand dosent work that way.

    64. Buggerlugz
      07-31-2011
      04:46 AM
      64

      Originally Posted by pimpspter
      I believe that's the case Wolfie, I'm reading over the original spanish topic right now so will report back if I find anything :-) (I speak spanish)
      completely pointless though, cos you'd need to swap hdd's every time you switched them over.

    65. GundamWfan
      07-31-2011
      10:24 PM
      65

      Welllllls, my friends 360 just red-ringed (gotta love it when that happens) so I'll have that to play around with to get in some solder practice, so that when this gets released I won't be terribly rusty, as I am now. As it stands, I'm putting aside money to purchase either a ProgSkeet or Infectus 2, and most likely buy these dual nands when the process is more streamlined. So, I figure with some radioshack equipment and a couple of solder practice kits, I might have the disposable income and time to start a PS3 downgrading service. There's a lot of money to be had from all the idiots that were dumb enough to upgrade their firmware and then come here screaming for solutions but not willing to contribute to them.

    66. pimpspter
      08-01-2011
      01:14 PM
      66

      I've been quietly following the thread on ElOtroLado waiting for confirmation of whether the author has had success in achieving a dual firmware booting....

      And finally yesterday evening the update came:

      Code:
      Lo he conseguido, pero no era lo fiable que tiene que ser, y a veces se colgaba. He decidido hacer cambios y en cuanto este como pienso que debe estar lo pondre aqui.
      Translation [By Pimpspter]:

      I have achieved it [having two different firmwares booting], but it isn't as reliable as it'll have to be and sometimes it crashes. I've decided to make some changes and and when it is as I think it ought to be I'll put it on here [on El Otro Lado].


      Originally Posted by Buggerlugz
      completely pointless though, cos you'd need to swap hdd's every time you switched them over.
      I know why you're saying that - one of our early discoveries in PS3 tinkering post jailbreaking was that some components of the systems files are stored on the HD rather than flash....That said dual booting with USB Firm Loader worked fine despite that and it would seem (from the post translated above) that Varicela has achieved it (no mention of multiple HDs involved). Of course that might be behind some of the errors.

    67. pip1
      08-02-2011
      03:22 PM
      67

      no one asked the most important question which is are those nands custom or "off the shelf" parts and where can I buy them even if they are custom.

      I can soilder just fine and am willing to fry a ps3 to get at 3.66 dev flash through linux so I need these asap.

      edit: I put an offer to these people for 18 http://ic-distributors.com/K/K9F1G08U0APCB0.shtml which I think is the minium you can buy.

    68. enohand
      08-02-2011
      05:23 PM
      68

      ^^^ its clear you dont know whats going on here....re-read the post, & find some info on the Nand....you will see where your flaws are

    69. pip1
      08-02-2011
      06:44 PM
      69

      lol I don't understand what's going on right... how many wannakko bricks have you fixed? With dual nand you can boot cfw switch to bsd which is like linux switch nands live (I understand its very dangerous but I am lucky to have many ps3's) and read the flash thus allowing me access to a firmware I can use with usb loader and when I can get to my root key I can decrypt everything.

    70. pimpspter
      08-03-2011
      10:36 AM
      70

      Originally Posted by pip1
      lol I don't understand what's going on right... how many wannakko bricks have you fixed? With dual nand you can boot cfw switch to bsd which is like linux switch nands live (I understand its very dangerous but I am lucky to have many ps3's) and read the flash thus allowing me access to a firmware I can use with usb loader and when I can get to my root key I can decrypt everything.
      Well then for what it's worth on El Otro Lado varicela says he got the PCB he's using here:

      http://cgi.ebay.es/2x-QFP-32-44-48-0...d=250386442900

      I can search through the other thread for you if there is any other specific information you need or anything you'd like me to ask varicela :-)

    71. pip1
      08-04-2011
      01:30 AM
      71

      the link I posted is for bulk however they include the nand already which makes things easier