shadoxi has released an ELF Dumper, here i his original post:
Hi ,
I release my ELF dumper, it work with any firmware > 3.56.
Tested on:
- Original 355 -> ok
- True Blue CFW v2 -> ok
- …There are some bugs (size of dump …) but it work.
Here is a quote from the readme:
It’s ELF dumper from memory and it work with True blue cfw v2 and any 3.55 firmware because it doesn’t use lv2 peek/poke.
Warning:
It will not brick your ps3. But i am not responsible for any damage.HOWTO:
- Enable dev_blind with multiman
- copy libsysutil_np_trophy.sprx from /dev_blind/sys/external/external to dev_hdd0/ and rename it “orignal_libsysutil_np_trophy.sprx”
- copy my modified “libsysutil_np_trophy.sprx” to /dev_blind/sys/external/
- load a True blue game from multiman
- exit multiman
- run your game
- wait few minutes (if you get black screen after 3 minutes reboot ps3)
- exit game
- go to ftp
- in dev_hdd0/ there are your decrypted DUMPEDBOOT.bin
- copy and rename it with another name.Howto uninstall patch :
Two ways:- You could uninstall this patch by replacing modified libsysutil_np_trophy.sprx by orginal libsysutil_np_trophy.sprx
- Or uptade in recovery mode
Thanks to: Ps3dev
Mirror:Â http://www.mediafire.com/?p2o498r20ep5vic
Mirror2:Â http://cvfzpr.1fichier.com/en/
Thanks to everyone who provided mirrors 
08-24-2012
10:09 AM
ReadMe:
It's ELF dumper from memory and it work with True blue cfw v2 and any 3.55 firmware because it doesn't use lv2 peek/poke.
Warning:
It will not brick your ps3. But i am not responsible for any damage.
HOWTO:
- Enable dev_blind with multiman
- copy libsysutil_np_trophy.sprx from /dev_blind/sys/external/external to dev_hdd0/ and rename it "orignal_libsysutil_np_trophy.sprx"
- copy my modified "libsysutil_np_trophy.sprx" to /dev_blind/sys/external/
- load a True blue game from multiman
- exit multiman
- run your game
- wait few minutes (if you get black screen after 3 minutes reboot ps3)
- exit game
- go to ftp
- in dev_hdd0/ there are your decrypted DUMPEDBOOT.bin
- copy and rename it with another name.
Howto uninstall patch :
Two ways:
- You could uninstall this patch by replacing modified libsysutil_np_trophy.sprx by orginal libsysutil_np_trophy.sprx
- Or uptade in recovery mode
Thanks to: Ps3dev
08-24-2012
10:12 AM
This is awesome win
08-24-2012
10:14 AM
Tried it with SSX...but it bugs alot...but maybe I did it wrong
TB Eboot = 26MB ...my Dump = 1.5MB...
Maybe some others have more luck^^
08-24-2012
10:19 AM
Oh wow...This is really amazing stuff.
08-24-2012
10:19 AM
so is this how duplex cracked TB eboots?
08-24-2012
10:20 AM
Crazy month
08-24-2012
10:21 AM
all we need now is for some clever dev to make this work on dex 4.20 & the eboots r ours.
08-24-2012
10:22 AM
08-24-2012
10:23 AM
08-24-2012
10:25 AM
The issue with incorrect sizes is going to be a problem. IIRC the code for this was posted in the [MENTION=194415]harryoke[/MENTION] Core Dump thread so it could possibly be improved.
************* [ - Post Merged - ] *************
08-24-2012
10:26 AM
08-24-2012
10:26 AM
08-24-2012
10:32 AM
shadoxi quote from the source
"I release it, because someone leaked my work and i hate True blue team.
I will may be release my ftp, Eboot loader ...(from Ingame or vsh)
Moreover, I do not support piracy.So i will not release my self rebuild, ...
Currently, it work for any 3.55 firmware. I don't try it in 3.56+ but if you can run it for 3.56+ dex , yes it will work because all decrypted EBOOT are located at offset 0x10000ULL and this memory area can be access in user mode.
08-24-2012
10:35 AM
if we copy the modified "libsysutil_np_trophy.sprx" to /dev_blind/sys/external/ on DEX 3.55 then update to DEX 4.20 will this file still be modified or will the original one replace it? ...if it dosnt ...then we could update use DEX bdemu to play lastest games & get eboot dump....just thinking out loud..
08-24-2012
10:35 AM
08-24-2012
10:38 AM
Though im not sure what this has t do with piracy and if he is anti-piracy, why does he have a self build
08-24-2012
10:44 AM
But still props to him for releasing this dumper and the rest of things he said he will.
08-24-2012
10:45 AM
he prob has a self build for his own personal use of original games he owns
08-24-2012
10:49 AM
08-24-2012
10:50 AM
can someone please mirror the link??? the dl site sucks
08-24-2012
10:51 AM
08-24-2012
10:52 AM
DAT piracy excuse! "everyone but me is a pirate!"
08-24-2012
10:54 AM
im all for full disclosure...let people make their own choice.....if he did release the self build just imagine how many people would go out and buy a new game , knowing that they could play it without upgrading and losing homebrew...he could be doing the games industry a great service
08-24-2012
10:54 AM
[MENTION=193374]JonahUK[/MENTION] mirrored it here: http://www.ps3hax.net/showpost.php?p...&postcount=194
EDIT:
Updated first post
08-24-2012
10:58 AM
another mirror http://cvfzpr.1fichier.com/en/
08-24-2012
11:05 AM
08-24-2012
11:09 AM
it say in the readme...the modified sprx file will be removed if you update from recovery mode...will the file remain if we update from xmb...mmmm
08-24-2012
11:10 AM
just did SBK generations on dex355, it dumped some files yes, ofcourse game won't load, back to XMB
and nothing, moving on again cuse no clue here... 
and btw...screw TB
SBK Generation
DUMPEDBOOT.bin -- 953KB
DUMPEDBOOT1.bin -- 1,510KB
DUMPEDBOOT2.bin -- 953KB( some diff bytes in there)
DUMPEDBOOT3.bin -- 1,510KB( identical to dumpedboot1.bin)
files way to small, atleast no tool is taking it ofcourse
renamed to EBOOT.elf and used scetool re-encrypt..crash
08-24-2012
11:11 AM
08-24-2012
11:14 AM
why dont you make a backup of the file...and restore it if you dont want the other SPRX anymore...i did it...easier than reinstalling the CFW again..
08-24-2012
11:18 AM
cant try it now...going to work...lots of people on dex ....come on someone give it a shot
08-24-2012
11:18 AM
Any body can upload/repost the TB Eboot Dumper source code again, i can not find it since it was removed by the poster so if any body have it please post it again so we can start updating/fixing it to have a good dump size.
08-24-2012
11:23 AM
08-24-2012
11:25 AM
08-24-2012
11:28 AM
you know... this kinda explains all the odd EBOOT releases that have been coming out... maybe this method gives a perfect dump in only 1 out of 10 cases... rest of the time it just fails...
thanks to [MENTION=193374]JonahUK[/MENTION] for this mirror..
http://www.mediafire.com/?p2o498r20ep5vic
08-24-2012
11:31 AM
But i hope that anybody here could provide a source code for this release so we could look at it and see if we could fix the dumping size bugs or not.
08-24-2012
11:32 AM
08-24-2012
11:36 AM
shadoxi says that he doesn't promote piracy and therefore won't release his self rebuild and on the other hand has released a method that will enable us to play most of TB games on any 3.55CFW... so, what exactly is his definition of piracy??? paradox anybody...??
08-24-2012
11:43 AM
08-24-2012
11:45 AM
08-24-2012
11:56 AM
08-24-2012
11:58 AM
Oh and don't worry, you don't need to strain your precious little fanny by doing me a small favour.
08-24-2012
12:06 PM
just ran dumper on tb patched Mass Effect 3, the dumped eboot is working in place of the tb one perfectly, with dongle on tbcfw and without the dongle in on rebug...
Wont upload it though, cuz piracy is bad...
08-24-2012
12:08 PM
lol Vaginasville, you are a funny guy
08-24-2012
12:11 PM
08-24-2012
12:22 PM
have tried Start the party 2 with TB V2 and dongle the size is only 1.5 MB, will try Mass effect 3 now
08-24-2012
12:22 PM
08-24-2012
12:23 PM
but when you Hex edit the file the SCE entry is gone
08-24-2012
12:26 PM
Very interesting stuff going on....
08-24-2012
12:36 PM
Ok I have seen in Hexedit the dump is from Multiman and not from the game
08-24-2012
12:45 PM
I've addes the .sprx at the 4.20 DEX PUP with ps3mfw (to install it's needed to be on 3.55), when I run a game i can see the PPU exception in the target manager, but the game quit to XMB and i don't get any dump.
08-24-2012
12:48 PM
why not install the .sprx the normal way ?
08-24-2012
12:57 PM
However you can build a modified PUP of the 4.20 and install it on 3.55.
Of course you can't add peek & poke and other stuff but you can edit the dev_flash.
08-24-2012
12:58 PM
08-24-2012
01:10 PM
Always dumping Multiman and Reload.self
08-24-2012
01:11 PM
08-24-2012
01:12 PM
08-24-2012
01:14 PM
Yes with Dongle
08-24-2012
01:15 PM
Still he is using a dev_flash modified 4.20 dex firmware, so it is a CFW.
08-24-2012
01:15 PM
Already someone dumped Call of Juarez: The Cartel
08-24-2012
01:15 PM
Then its a bug...as stated by shadoxi^^
08-24-2012
01:19 PM
In the readme he said that you need to rename
08-24-2012
01:19 PM
08-24-2012
01:24 PM
Because It will not overwrite it !!!
My howto
Firstly,i run multiman and copy dumpedboot or remove dumpedboot*.bin (from dev_hdd0) then i load my TB eboot from multiman.
-run it from xmb
-exit game when you arrive to game menu
-run multiman
-go to dev_hdd0
dumpedboot.bin is game EBOOT.bin
dumpedboot1.bin is game self
dumpedboot2.bin is multiman
....
Why it dump multiman elf?
because multiman load also libsysutil_np_trophy.sprx
08-24-2012
01:27 PM
i dont mean it bad,but if true-blue dont release other eboots,whats the meaning
of this now??dont you think its little late???
08-24-2012
01:28 PM
08-24-2012
01:33 PM
Select the 4.20 DEX PUP, unselect all tasks except the last (manual edit a dev_flash file), then write the path (dev_flash/sys/external/libsysutil_np_trophy.sprx) in the text box at the right and click Build. During the process ps3mfw will ask you to replace the file.
Remember that you can't install it on 3.56+.
08-24-2012
01:36 PM
someone tried a 4.20 modified dex and bdemu or original disc with it?
08-24-2012
01:42 PM
08-24-2012
01:42 PM
Can anybody find a solution so we play fifa 12 with latest updates and euro 2012 dlc ?
08-24-2012
01:46 PM
would be funny if trueblu eboots have the erase hdd code inside if not using trueblu.
08-24-2012
01:50 PM
08-24-2012
01:56 PM
......sorry.
08-24-2012
02:00 PM
sorry, which size has your game eboot dump....
************* [ - Post Merged - ] *************
i have never seen the game menu, always black screen
08-24-2012
02:07 PM
08-24-2012
02:21 PM
08-24-2012
02:23 PM
08-24-2012
02:33 PM
Source code
http://pastebin.com/zw6mFauf
08-24-2012
02:38 PM
Please someone help me making my Dragonball z Ultimate Tenkaichi working, i am trying but with no success
08-24-2012
02:39 PM
Removed
EDIT:
godot360 posted it anyway
08-24-2012
02:42 PM
I have downloaded the True Blue fix for ultimate tenkaichi but there is just this pdx-dbze.001 and pdx-dbze.sfv file i see no eboot, or should i just rename pdx-dbze.001 to EBOOT.BIN ?
08-24-2012
02:44 PM
08-24-2012
02:45 PM
08-24-2012
02:48 PM
08-24-2012
02:50 PM
08-24-2012
02:58 PM
08-24-2012
02:59 PM
When i put the tb eboot ingame and do all the steps and run the game first time, it should give me a black screen, but it doesn't it just kicks me back to XMB with an error, is that normal or am i doing something wrong ?
After that it gives me 2 DUMPEDBOOT files the first is the EBOOT.BIN but what should i rename the second one to and where does it belongs ?
08-24-2012
03:01 PM
[MENTION=169585]arnes_king[/MENTION]
Can you upload them somewhere?
The post below explains it:
08-24-2012
03:05 PM
"Moreover, I do not support piracy.So i will not release my self rebuild, ..."
What a truly stupid thing to say. Cracking TB eboots won't cause piracy?
Are we all dirty pirates? NO!
You can not support piracy and still release your self rebuild with the scene.
08-24-2012
03:06 PM
I've seen that post but i still don't know which file should i replace with the second DUMPEDBOOT, param.sfo ?
And please check if the two files are OK or if something went wrong ....
08-24-2012
03:16 PM
[MENTION=169585]arnes_king[/MENTION]
"dumpedboot1.bin" is from Multiman and "dumpedboot.bin" seems incomplete.
08-24-2012
03:20 PM
I will start after this steps because i done this already :
- Enable dev_blind with multiman
- copy libsysutil_np_trophy.sprx from /dev_blind/sys/external/external to dev_hdd0/ and rename it “orignal_libsysutil_np_trophy.sprx”
- copy my modified “libsysutil_np_trophy.sprx” to /dev_blind/sys/external/
After that i copy the True Blue EBOOT.BIN to my game overwriting the original one, and i do the same with the PARAM.sfo
Then i transfer the game to my external HDD, load it on multiman and run it then on XMB on the disc icon, then i get kicked back to XMB with the error and that's when i get that DUMPEDBOOT files, did i anything wrong ?
08-24-2012
03:24 PM
[MENTION=169585]arnes_king[/MENTION]
Do you have a TB and on TB CFW?
You won't get ANY TB game to boot without the dongle, this only works for those who have TB.
The source is available now so it can be modified for non-TB eboots.
08-24-2012
03:28 PM
What is then the purpose of this ?
P.S. i am on rebug CFW
08-24-2012
03:31 PM
[MENTION=169585]arnes_king[/MENTION] You need a tb dongle to dump the eboot of the game that doesn't have the drm,that means the dumped eboots can be used on any 3.55 cfw
08-24-2012
03:34 PM
i have only /dev_blind/sys/external
08-24-2012
03:34 PM
Thank you anyway for the info, i will wait then till someone releases the working dumped eboot .....
08-24-2012
03:35 PM
this is news a GREAT FAKE - i'm tried this tool - with SSX - COD MW3 - Catherine - in all cases me threw out in XMB c a mistake - as at usual start - v3.1 Rogero's insertion - 4.11 Spoof and mmcm - 04.05.00 - if there is no insertion of TB and game TB is started - thus very awfully is buggy мультимен - when I changed files - and on DEV_hdd0 - is created always on 2 files - the first 935 kb the second about 1.5 Mb it is silly - games different and files of the identical size... it is silly - and this program doesn't work....
************* [ - Post Merged - ] *************
i just have only /dev_blind/sys/external /// this man is bull**** !!!!
08-24-2012
03:41 PM
08-24-2012
03:42 PM
EDIT - See comment below this one by [MENTION=193374]JonahUK[/MENTION] , looks like that's your problem. You're not using a TB dongle
08-24-2012
03:48 PM
I think people are getting confused about this. From what I understand, this is for TB users to dump their eboots, not for non-TB owners.
08-24-2012
03:51 PM
CEO of Ubisoft said that PC piracy was at 93/95%.
So i imagine that on the PS3 (the hardest of consoles so far to fully crack) it will be at 98% (minimum...because i personally believe that the number is 99%...only the developers buy their own games, and maybe the families too...lol)
08-24-2012
03:53 PM
08-24-2012
03:53 PM
I do not worry - I just do not like it when some impostors produce programs that do not work - they do about such news on the front page ps3hax - and still no one has written that it works ... but many who unsubscribed this fake
08-24-2012
03:56 PM
08-24-2012
03:58 PM
08-24-2012
03:59 PM
08-24-2012
03:59 PM
08-24-2012
04:00 PM
it doesn´t work the size is not a bug it is always the same. We dump always something in the MM folder
08-24-2012
04:01 PM
I think people are getting confused about this. From what I understand, this is for TB users to dump their eboots, not for non-TB owners.
Well, actually, not all TB releases were made under 3.55 - if it all worked - we would have been able to play all the games from TB
Do a compare in hexworkshop type program or similar on the alleged game eboot (not the mm one)...if different, at least it's a reasonably good fake or would more likely point to it just being a set memory range being dumped...or something, I'm no programmer.
Firstly they are the same - in the second - in any case they must be of the same or almost the same size as the original Eboot.BIN - there any two stupid file weighing 539 KB and 1.5 MB - This is ridiculous
08-24-2012
04:04 PM
Also, learn to quote posts.
08-24-2012
04:04 PM
08-24-2012
04:06 PM
it does not work!! not only I wrote it! are many more - remove it from the home page - it's just spread fakes --- SHAME!!
08-24-2012
04:07 PM
The dev himself stated himself that it worked but it still had a few bugs to deal with. So let's see what's coming the next days ...
08-24-2012
04:09 PM
08-24-2012
04:10 PM
on-site admin site, I would first checked the news and then would write. and if tomorrow I come up with some stuff that I've cracked the 4.21 CFW - and want to get the news on the front page PS3HAX - I also put on the main news?
OK ... I can not multi-quote - and then what? not me talking - and blunt about this news is not working ....
08-24-2012
04:13 PM
[MENTION=140774]Dogertyboy[/MENTION]
You are only dumping multiman, that's why you don't get a match. Is that so hard to understand??
I stated that fact a few posts ago. Now stop ******ing about it and move along.
08-24-2012
04:15 PM
************* [ - Post Merged - ] *************
I just dump multimen? WTF ? why then this instruction as to dump the game from TB -? I did all the instructions ....
08-24-2012
04:26 PM
08-24-2012
04:33 PM
I said it doesn't use peek&poke because this action could possible be done on a higher firmware such as dex fw
08-24-2012
04:34 PM
ps3crunch has the source code of it.
why not check it ? come on guys let's not get so lazy :P!
************* [ - Post Merged - ] *************
08-24-2012
04:44 PM
[MENTION=235963]hintgiver[/MENTION]
Source has already been posted in the thread.
Here
08-24-2012
04:46 PM
What's the difference that it uses? just tell me how it all works ...
08-24-2012
04:46 PM
if [MENTION=140774]Dogertyboy[/MENTION] says it dont work for him, then it cant work for the whole peeps on the interwebs.
lets do a mass delete cos [MENTION=140774]Dogertyboy[/MENTION] says so !!!
all hail [MENTION=140774]Dogertyboy[/MENTION]
08-24-2012
04:48 PM
08-24-2012
04:53 PM
08-24-2012
04:54 PM
08-24-2012
04:55 PM
To clarify
Currently this release isn't (ready to use) for user but for developper.
Because there are bugs: like size of dump , name of dump, when to trigger dump, rebuild self ...
what do you need ?
- a dongle Tb
- a brain
- shadoxi patch
Install shadoxi patch in dev_blind/sys/external with multiman,and load your tb game (delete all previous dump from dev_hdd0)...
run your game from xmb
go to dev_hdd0 here is your dump (some of them is multiman eboot and reload.self)
My result with fifa 12:
I get a decrypted eboot and self but little part is missing, that's why you need his self rebuilder to fix it.
For me is POC .
08-24-2012
04:58 PM
[MENTION=140774]Dogertyboy[/MENTION] its obvious now that either 1 or 2 things
1. Your Trolling
2. A Crybaby ass that wants instant gratification
either way GTFO!
08-24-2012
04:58 PM
************* [ - Post Merged - ] *************
void loader_sprx(const char* PATH_PRX)
{
sys_prx_id_t prx_id ;
write_message ("Loading a prx ... ");
prx_id = sys_prx_load_module(PATH_PRX,0, NULL);
if (prx_id < CELL_OK) {
write_message ("Failed LOADING\n");
return;
}
08-24-2012
05:04 PM
08-24-2012
05:08 PM
^^^ roughly translated..... **** off u Buthole
08-24-2012
05:10 PM
More good stuff 4 the scene! It's been a great two months!
Per developers not releasing everything they make for free so you can pirate games is up to them, but it does not help the 'drama' factor when the developer says "Look what I have, look what it does and I'm not going to release it". Dev's are also nothing special and I fit them into the same category as normal sceners; just because you can code doesn't mean anything until you release something then you get your e-penis enlarged a bit.
08-24-2012
05:11 PM
08-24-2012
05:13 PM
can someone take a look at this line in the source code? I don't get what was intended here:
void loader_sprx(const char* PATH_PRX)
{
sys_prx_id_t prx_id ;
write_message ("Loading a prx ... ");
prx_id = sys_prx_load_module(PATH_PRX,0, NULL);
if (prx_id < CELL_OK) {
write_message ("Failed LOADING\n");
return;
}
I really don't get it.
08-24-2012
05:14 PM
Better translation = f uck off b itch or f uck you b itch
08-24-2012
05:17 PM
Yes piracy does happen, its a fact of internet life, but that does not mean that everyone who downloaded an eBoot or converted one or dumped one is a pirate.
08-24-2012
05:19 PM
08-24-2012
05:20 PM
Just for you - "'tchyo za ga 'lima?"
08-24-2012
05:28 PM
lol another 14 pages of crap
has anyone got this working
couldnt be bothered scrolling thru
14 pages
08-24-2012
05:37 PM
Now, this part: 'prx_id = sys_prx_load_module(PATH_PRX,0, NULL);' will try to load the PRX file and any returned value will be stored in 'prx_id'.
If the returned value into 'prx_id' is lower than 'CELL_OK', that means it is 0, or failed.
SeeYa!
08-24-2012
05:49 PM
sys_prx_id_t * prx_id
08-24-2012
06:10 PM
The thing with structures is that they can be passed by value in ANSI C in function calls, but that is immensely ineffective, pushing all the members of the struct on the stack before the method call is invoked, etc ( ._.)
So normally you end up passing the structure by reference in function calls, and well, then you work on a structure pointer anyway at that point, as you declared.
So, the later line of code:
prx_id = sys_prx_load_module(PATH_PRX,0, NULL);
Actually returns a struct and not an address to one, I guess (another thing of ANSI C, returning structs by value are also allowed).
08-24-2012
06:19 PM
08-24-2012
06:50 PM
08-24-2012
06:55 PM
It works on my 3.55 DEX ... But i can't get dev_blind via pkg or MM working on dex 4.20, any suggestions... ?
08-24-2012
07:19 PM
I tried with fifa 12, and give a error (80010017) back to xmb
08-24-2012
07:25 PM
08-24-2012
07:41 PM
08-24-2012
07:43 PM
08-24-2012
08:06 PM
This may seem like a complete n00b question, and I apologize if it is, but from what I read, it looks like this makes eboots for TB Dongles. So in theory, couldn't this make TB eboots of newer games, and then Duplex can crack them? Or do I have no idea what I'm talking about.
08-24-2012
08:10 PM
But it's not your fault, i was confused too, so i will explain it to you now like others explained it to me
This is for making True Blue eboot fixes working without a True Blue dongle and on any CFW, but the bad part is that this can just work if you have True Blue, so that means that people who have True Blue can use this to make fixes to us people who don't have it so we can play True Blue games too on our CFW-s without the dongle, and the sad part is that i don't believe that anyone who has bought a True Blue dongle will release any eboot for us ....
08-24-2012
08:11 PM
If it work fine and become a bug free then we will not wait for Duplex or any other team to release free boots since we can do it our selfs.
08-24-2012
08:12 PM
This is for someone that have a PS3 with TrueBlue CFWv2 and TrueBlue Dongle inserted.
The purpose of this program is to dump a decrypted eboot from the PS3's RAM based on a currently PATCHED trueblue game while running.
This decrypted eboot can be use to resign with 3.55 keys and THEREFORE creating a eboot that works on other 3.55 CFWs such as Kmeaw.
Is this plain enough simple? Or am I gonna facepalm...
08-24-2012
08:39 PM
Makes more sense now. Thanks for the replys.
08-24-2012
08:42 PM
i dont know if the info is already known, but i think the guy updated his info:
....
Brief Guide:
1 - Install TB ELF Dumper first as stated in its readme file.
2 - Start Multiman, it will make a dump of multiman eboots, so you must delete it first by browsing to dev_hdd0 then delete all DUMPEDEBOOT.BIN files you found there.
3 - Back to multiman game selection then select any TB game then launch it.
4 - Start the game from XMB then wait for some times until game start.
5 - Exit game now then start multiman again then browse to dev_hdd0 and now you must found a decrypted game dump.
08-24-2012
09:22 PM
08-24-2012
09:24 PM
08-24-2012
09:37 PM
Just downloading an eboot is pirating regardless if you own the game, downloaded it or don't even have it. The eboots are copyrighted.
Then again it's not like I don't have every TB eboot that has been released and I have a total of 6 original games. Do the math.
08-24-2012
09:43 PM
So by using this we can crack any tru poo eboot nice
One problem now is since this is out dont think true poo will
Release anymore eboots wich will upset alot of true poo owners
On the other hand screws the complete ps3 community that has a cfw ps3
Unless we find out how they make the eboots in the first place
08-24-2012
10:02 PM
the BYTESIZE of TB EBOOT was BIGGER then NODRM EBOOT !
I think,
DUPLEX, N0DRM, others, found NOT DRM TB EBOOT but DRM OFFICIAL EBOOT !!
Cause they cracks with ORIGINAL EBOOT, and the bytesize was the same (some).
08-24-2012
10:29 PM
08-24-2012
10:29 PM
08-24-2012
11:54 PM
btw, I just download MAFIA2 BLES version KMEAW 3.55,
and it was working with TB CFW.
why i can not do with sleeping dogs DEX's eboot?
'cause DEX was a different method to run with KMEAW ...
also DEX is not relesing the key of TB DRM ? or he is NOT SURE, it was TB DRM or OFFICIAL DRM ?? LOL
DEX also input some data into eboot, so it can not play with dongle, I THINK
08-25-2012
01:09 AM
You should'n have released it... now they'll fix the exploit! >.>
08-25-2012
02:22 AM
...Well, the retards have finally arrived it would appear ^
08-25-2012
02:25 AM
08-25-2012
02:31 AM
nvm.......
08-25-2012
03:18 AM
Feel free to test it anyway, I'm happy if this works
08-25-2012
03:42 AM
was REALLY, DUPLEX REMOVE DRM TB ?
I think, NOT NOT and NOT
haven't you try to replace MAYPAYNE 3 TB's EBOOT, PARAM with DUPLEXs EBOOT, PARAM, and PLAY it with DONGLE TB ?
IF Duplex was really removing TB DRM, the game won't run with DONGLE, right ?
but it was working
(somehow the gamedata was corrupt using Duplex's Eboot, it might be common.sdat, and it will install again into hdd, automaticly)
so how will DUPLEX EXPLAIN it, why DUPLEX's EBOOT can play with DONGLE ??
except for Duplex's eboot of sleeping dogs and darksiders2 ...
I think Duplex was using DRM too, so it can not working with TB DONGLE !!
08-25-2012
03:58 AM
08-25-2012
04:04 AM
08-25-2012
04:06 AM
Yeah i don't get it. TB-CFW should run normal 3.55 games right?!? SO why should duplex eboots not work? Does not make sense to me.
08-25-2012
04:23 AM
inside sleeping dogs and darksiders2
08-25-2012
04:29 AM
premise: "because it doesn't use lv2 peek/poke"
08-25-2012
05:27 AM
1/ Just because those 2 games don't work without dongle doesn't mean DUPLEX is at fault. They are a great team and I don't see them doing that.
2/ TB CFW is a piece of crap anyway so I wouldn't be surprised if some things weren't working as they should with regular 3.55 CFW.
3/ You need to read about what DRM is.
08-25-2012
05:45 AM
08-25-2012
05:53 AM
08-25-2012
05:54 AM
08-25-2012
05:56 AM
08-25-2012
06:00 AM
[MENTION=51782]carldenning[/MENTION] I think he is just mad because his dongle no longer has any purpose :D
08-25-2012
06:02 AM
Nah man.. i don't own a dongle...
08-25-2012
06:04 AM
08-25-2012
06:05 AM
08-25-2012
06:07 AM
and it's me derailing threads.. can't we just keep on discussing this new reversing method instead of moving the focus to old tired terms and arguments that have been brought up to sickness?thx
08-25-2012
06:08 AM
08-25-2012
06:09 AM
08-25-2012
06:10 AM
So I will peacefully get back on topic until someone else jumps off topic. You do bring up a very good point
08-25-2012
06:10 AM
anyway.. just do what makes you guys happy
08-25-2012
06:11 AM
Of course it is childish, but it is nowhere near as childish as actually buying a TB Dongle
08-25-2012
06:46 AM
08-25-2012
06:46 AM
if this coredump is working for making tb eboot,
I need some PROOF !
anyone, please try with SLEEPING DOGS and DARKSIDER2 also with TRANSFORMER FALL of CYBERTRON.
thanks :D
08-25-2012
06:48 AM
08-25-2012
06:55 AM
So it seems like, this is'nt working 100% just yet... luckily people have the source code to tinker with
08-25-2012
06:57 AM
08-25-2012
07:02 AM
08-25-2012
07:36 AM
Oh.. Sorry, I missread. sleeping dogs - not ducks of course. I guess I read it wrong, after having read his ****ty posts mentioning sleeping dogs 20 times.
08-25-2012
08:03 AM
well, very very suspiciously, why 2 new games run only in DEX ?
DUPLEX and others said 'found a way to remove TB's DRM, right ?'
but TB was not releasing EBOOT for Sleeping Dogs and Darksiders2, how is possible, Duplex said 'found a way to remove TB's DRM' ??
try to compare both eboot, Duplex's eboot and TB's eboot,
for example maxpayne 3.
I found DUPLEX's signature.
I thought it was the KEYS of TB's DRM,
try to compared it with TB's eboot, and get a result, alot of different from the beginning offset and TEXT
also found, inside DUPLEX's offset 009EE1A8 until below, was the same TEXT, and a different offset with TB's TEXT.
if DUPLEX was REALLY REMOVING TB's DRM, why was not using TB's eboot, but used ORIGINAL EBOOT ?
FYI: the Sizebytes of TB's DRM is BIGGER then ORIGINAL's eboot.
I tried with original eboot too, and compare it with Duplex's eboot, and get result a different hex and text too.
here the result and an issue, WHAT I FOUND about DUPLEX's Eboot.
1. Somehow, Duplex and others, found a way to run a game in DEX
(might be finding the keys original DRM ? and blame to TB ?)
2. IF DUPLEX and others, was REALLY REMOVING TB's DRM, WHY is not using the bigger size of TB's Eboot ? so if We could compared both of them, and We got the KEYS DRM TB Encrypt, in the same offset and hex number inside duplex's signature, but not, 'cause alot different hex and text.
was TB writing alot of data inside their DRM ?
I just asked DUPLEX about 2 new games, was not running with TB's DONGLE !
usually it can be run by removing or not removing TB's DRM.
as a proof, MAFIA 2 BLES version for KMEAW, was running on TB's Dongle too.
that's my result about both of them.
getting tired, to think, how to make eboot sleeping dogs running in CEX, got error 800100017 & 80010007,
because my little brother, want to play this game too, at the same time I play it too .
08-25-2012
08:32 AM
Nobody will help you with your adventure on the seven seas......
If you really do have a DEX, and you didn't pirate those three games you keep mentioning, then why dont you just throw the discs into your DEX console and play them? I know why
08-25-2012
08:55 AM
Hi
Please answer, I know these are noob questions but this is really important for me because I'm deciding whether to buy and xbox or a ps3
Thanks
08-25-2012
09:27 AM
MULTIMAN WILL NOT WORK ON 4.20 DEX... Or well, yes it will. You will be able to run it, select eboots and all that giggles, but you WILL NOT be able to use it as a backup manager as we don't have PEEK/POKE access ON 4.20DEX............. So multiman wont be able to mount the game.
Anyway, apologies, hope it helps.
08-25-2012
09:36 AM
Dude, you don't have to say all of this just to answer ! A simple "no" would've done the job. Anyway, that's what I noticed here on the forum, you guys get a bit too nervous sometimes !
Actually I wasn't gonna post in here at all, I did by mistake: I pressed the quote button and deleted the parts I don't need to quote, I wanted to copy the quote and actually PM the guy who wrote about these PUPs, but I just forgot about it. Couldn't deleted it either.
Sorry if I've been such a huge problem for you to be such a prick ! And I did search about 4.20 MultiMan, I think I even made a thread about it, but I thought he was talking about some new way !
08-25-2012
09:37 AM
but we can mount games using bdemu or original disc
08-25-2012
10:40 AM
if you want it so bad, go and buy the ****ing game. or play it on dex (if you can)??
now stfu about it, and let sleeping dogs lay ffs
08-25-2012
10:40 AM
Maybe the TB team will make a vibrating version so lolong can mow his parents lawn without having to leave his beloved pleasure giving dongle in his basement. He can mumble to himself about Sleeping Dogs as his dad tells him he is doing a ****ty job and sperming all over the grass. I bet he types with sticky fingers and the keyboard is encrusted with white stuff and pubic hair and ass hair. And he is still using the same spooge rag since February the 23rd, the day TB released the eboot for Tranny Simulator 4.0: Thai Ladyboy Limited Edition.
08-25-2012
11:00 AM
Honesty, I'm thinking to buy original game, don't worry, about that.
BTW, please anyone DO NOT TRY this method of ELF DUMP.
someone in another forum was said, "it'll freezing your ps3 to start the game (blank screen), and have to reinstall CFW again"
this method only got 1.5MB dumb.
SO DO NOT TRY it !!
08-25-2012
11:04 AM
What time does mommy send you to bed ?
08-25-2012
11:08 AM
mellss :
http://www.uploadmirrors.com/downloa...DUMPEDBOOT.zip
-dumpedboot.bin -> decrypt EBOOT.bin fifa 953 ko ( original eboot 68 ko)
-dumpedboot1.bin -> decrypt fifazf.elf 25 mo (original self 35 mo)
It work fine, just let it to dump all memory (until hdd led is off)
we have to increase size of dump uint64_t sizeelf = 25*1024*1024 ; -> uint64_t sizeelf = 35*1024*1024 ;
08-25-2012
11:48 AM
08-25-2012
12:27 PM
Hrere is the code deank wrote : http://pastebin.com/avcM5iuU
Also the np_trp_prx.rar in mediafire : http://www.mediafire.com/file/i11zaf...np_trp_prx.rar
08-25-2012
03:31 PM
Now that I have the RAMDUMP-00.BIN WHAT DO I NEED TO DO WITH IT?
JUST PLACE IT IN THE USDIR FOLDER FOR THAT GAME HELP ME PLEASE THANKS IN ADVANCE.
08-25-2012
04:13 PM
Tested with Fifa BLUS30809 don't work after encrypt with scetool. (3.55 Kmeaw)
08-25-2012
04:15 PM
good job almost there
08-25-2012
04:17 PM
Tested with Fifa BLUS30809 don't work after encrypt with scetool. (3.55 Kmeaw)
08-25-2012
04:17 PM
The elf must be properly rebuilt(granted that your eboot dump is good enough) before encrypting it in order for it to work.
08-25-2012
04:17 PM
Yep, nearly there... Very very exciting times for the scene these past few weeks !
08-25-2012
05:03 PM
looks like pr0p0sitionJOE knows how to do this right. hes asking for somebody with tb to dump elfs so he can make 3.41-3.55 patches
08-25-2012
05:06 PM
how's that rebuilt, with the two files ?
08-25-2012
05:13 PM
playground in here..
08-25-2012
05:29 PM
thought most of the tb games had been patched, what games ya'll need dumped?
08-25-2012
05:33 PM
08-25-2012
05:36 PM
So at this point you can play any game on 3.55 cfw as long as it has a TB eboot or 3.56 update? And the new games are still off limits without DEX + patched update?
08-25-2012
05:37 PM
[MENTION=164347]Adamsville[/MENTION], how you dumping more than the normal 935KB?
PS Dean's revision doesn't work with dongle in only without dongle, so defeats the purpose currently.
(All apps will blackscreen)
08-25-2012
05:53 PM
EDIT : Just saw the comment above.. Balls!
08-25-2012
05:57 PM
It's work of Kilom what you want say I think :
08-25-2012
07:18 PM
noob question, where to install libsysutil_np_trophy.sprx?
08-25-2012
08:05 PM
EDIT: (or use some other method to enable dev_blind)
08-25-2012
10:02 PM
This is the RAMDUMP I got with the libsysutil_np_trophy of Deank.
I did it with the version BLUS30853 of Mass Effect 3.
But I do not know what to do now ! If anyone can give me a fix 3.55 with this file, I'd be really beholden.
Sorry for my english, I'm french.
Link: http://rghost.net/40005638
08-25-2012
11:27 PM
TOMORROW IS A MONTH for TB's NEWS inside their website,
so if I'm not wrong, TB team will release new firmware and new patch for their dongle and eboot for all new games ????
08-26-2012
05:08 AM
08-26-2012
05:55 AM
08-26-2012
06:39 AM
08-26-2012
06:49 AM
i cant find any "game elf" in this dump. i think you did something wrong:"
08-26-2012
08:26 AM
ill dump as many as i can guys, someone point me in the right direction for projoe so i can give them to him.
could do with a list of tb games that aint done yet. dont just post one game title that you want!
i have two tb dongles so not bothered if one dies as i was actually willing to give it to a dev but no-one came forward.
i have three ps3's one running tbfw v2 with dongle running latest fw, another dex 4.20 and last is official for psn
i have a few tb pressed games too, one of which is resitance 3 and not sure if anyone has this working without a tb dongle.
Cheers
08-26-2012
09:08 AM
post them heare im sure he and some more people will check them out
08-26-2012
09:19 AM
Dont know about contacting Propjoe, how that is done :/
Btw quite a ps3 center you have there :O
08-26-2012
09:20 AM
tried up on efnet however got kicked for talk bout piracy lol.
cheers
08-27-2012
04:39 AM
Quick question. Is this tool used to dump EBOOTs only, or can you get SPRX files as well? FF XIII-2 specifically(TB fix doesn't crash in casino minigames). Thanks.
08-27-2012
04:43 AM
08-27-2012
09:50 AM
[MENTION=171728]oPolo[/MENTION] cheers for the reply.
ive been at it again and just trying to recompile a few eboots now.
i was gutted to see that rayman origins was released lol as that was one of the ones i had also dumped
anyway i rechecked resistance 3 and the 3 dumps it threw out did not match at all. i tried dumping from the tb disk btw.
so atm trying to get portal 2 and Tom Clancy's Ghost Recon: Future Soldier dumps checked and recompiled.
Cheers
08-27-2012
10:46 AM
I know there are 7 games like that, the only ones I remember off the top of my head are FFXIII-2 and Tales of Graces F. So I'd be careful with those.
08-27-2012
12:07 PM
please, delete this post
08-27-2012
04:01 PM
well spent a few hours dumping various tb games.
results:-
resistance 3 - will not dump from tb disk. Always has black screen
rayman origins - dumps an 8mb elf that i resigned and works fine
ssx - always has black screen
kung fu panda - 18mb dump when resigned works
ghost recon future soldier - only dumps 3mb file but is definatley incomplete
dead rising 2 off the record - dumps but when resigned wont work
more to come guys and please like my post if im helping you guys without a tb dongle out.
cheers
EDIT: ive noticed that the ones that are actually dumping the decrypted elfs have the hdd light blinking every 15-25 seconds.
08-27-2012
04:11 PM
please, delete this post
08-27-2012
04:14 PM
if your only getting multiman then its because of the above.
cheers
EDIT:
MORE TB GAMES
Sonic generations - had hdd light flashing for about 2 minutes but then stopped and no dump file
Sniper elite v2 - black screen 3 times - no dump
ratchet and clank all41 - black screen twice
ghost recon future soldier - black screens every time
ADD:
Saints Row 3rd - Always black screens
Portal 2 - Always Black screens
08-27-2012
04:36 PM
please, delete this post