Originally Posted by aldostools
Is there a thread where the found disc_hash_key and the bruteforced secure_file_id should be posted?
|
Not yet but will be nice to see a database of game keys to be able to not to invent a wheel.
Originally Posted by aldostools
TIP: Regarding the offset to bruteforce the "secure_file_id", it seems they are usually stored in the same section where the klicensee is found (typically near the 2/3 or 3/4 of the file). So scetool.exe -i can be helpful to identify the offset of the sections 
Maybe this is not a general rule and it can be different for each game, but it is a good start to save some time finding the "secure_file_id".
In Uncharted 3, the secure_file_id is found at offset 0xDE33D0 of the EBOOT.elf. In AC Brotherhood, it is found at offset 0x1B9AFB8 of scimitar_final.elf
|
Yeah, aldostools, you are right! I mentioned it before saying about how to improve the speed of bruteforcing. It is a data segment where all static data and other stuff are stored. It is placed directly after a code segment if I remember correctly. But I don't like the bruteforcing method at all. It's very slow because you need to calculate a HMAC hash of the entire file for each byte sequence with the size of 16 bytes so you advance a file offset by 1 byte each time.
