lv0 talk *NO FLAMING* CONCEPT - Page 9 - PS3Hax Network

zadow28 · 03-26-2012

It even find the function sub private key

Need some reversing though

H3avyRa1n · 03-26-2012

it's refreshing to see that someone is still trying to defeat the thing. thanks @zadow28

DjKlown · 03-26-2012

good work zadow, keep it up, ill be here all day if you need anything?

TheEvolution_PT · 03-26-2012

Thanks zadow, thanks for your great work

Hannibal1471 · 03-26-2012

@zadow28 keep up the good work!

willemse21 · 03-26-2012

fingers crossed

JaoPMA · 03-26-2012

I liked this post, I learned several things in 15 minutes. Continue with your work @ zadow28 is good to know that someone is working on it.

nzie · 03-26-2012

niceee work @zadow28

etertay · 03-26-2012

Originally Posted by oPolo

I have been considering that myself. The keys are(atleast at some point) unencrypted in the RAM. However, you will need someone skilled with hardware hacking. I believe most hackers/devs in the ps3 scene is skilled with software hacking aspects Besides... You will need to know at what time they are loaded into the ram... and we are speaking nanoseconds here

I thought.. without much knowledge whatsoever of the cell architecture(and without time to understand it Bachelorproject in software development atm :/) that, if you could send a lower clockhertz to the processor on its clockpin, slowing it down, and dump the RAM for perhaps.. the first miliseconds, then you would get a quite finite amount of data that could be the key.. OK, I guess slowing the clock would not be necessary, however, I believe it would make the process easier...

Now even if that would work, however, it's just... the hardwaretools cost $_$, and there is a potential brick chance, and nothing of that can be afforded while on state education grant

couldent we find out what time they are being loaded into ram by analyzing 3.55 and then using the same time on 3.56+?

or does everything being stored in lv0 change the timing?

fuRh7 · 03-26-2012

In fact the starting process hasn't changed. I believe. The only thing that got changed is how data is encrypted. Before it was the metldr that decrypted Appldr, lv2ldr, lv1ldr ... now everything is encapsulated in lv0 which is decrypted by bootldr. We never knew the key of the bootldr, because we didn't have to. It wasn't necessary for CFW, now it is.

03-26-2012	#81
zadow28 Member Join Date: Dec 2011 Posts: 360 Likes: 235 Liked 857 Times in 185 Posts Mentioned: 188 Post(s) Tagged: 0 Thread(s)	It even find the function sub private key Need some reversing though __________________ Last edited by zadow28; 03-26-2012 at 08:50 AM.

03-26-2012	#84
TheEvolution_PT Member Join Date: Oct 2011 Posts: 400 Likes: 455 Liked 190 Times in 113 Posts Mentioned: 19 Post(s) Tagged: 0 Thread(s)	Thanks zadow, thanks for your great work __________________ PS3 Slim Black with 160gb+320 hardrive(2) PS2 slim silver with freemcboot, PSP 2000 RED with PRO-C. Retro Consoles: Sega Mega Drive 2, Gameboy Color and the great Poly Station xD

03-26-2012	#85
Hannibal1471 Senior Member Join Date: Dec 2011 Location: Belgium Posts: 1,071 Likes: 435 Liked 282 Times in 206 Posts Mentioned: 63 Post(s) Tagged: 0 Thread(s)	@zadow28 keep up the good work! __________________ LINKS : Can I use CFW or downgrade?/ Are you dutch and want help? Join the downloadtutorial.nl community and ask for help!

03-26-2012	#87
JaoPMA Apprentice Join Date: Mar 2012 Location: Brazil Posts: 13 Likes: 5 Liked 3 Times in 3 Posts Mentioned: 0 Post(s) Tagged: 0 Thread(s)	I liked this post, I learned several things in 15 minutes. Continue with your work @ zadow28 is good to know that someone is working on it. __________________ Follow me on Twitter @JaoPMA

		PS3Hax Network - Playstation 3 Hacks and Mods > PS3Hax > PS3 \| General Discussion
lv0 talk NO FLAMING CONCEPT

03-26-2012	#82
H3avyRa1n Senior Member Join Date: Aug 2011 Posts: 1,269 Likes: 178 Liked 839 Times in 391 Posts Mentioned: 61 Post(s) Tagged: 0 Thread(s)	it's refreshing to see that someone is still trying to defeat the thing. thanks @zadow28

03-26-2012	#83
DjKlown Member Join Date: Feb 2011 Posts: 176 Likes: 10 Liked 38 Times in 29 Posts Mentioned: 8 Post(s) Tagged: 0 Thread(s)	good work zadow, keep it up, ill be here all day if you need anything?

03-26-2012	#86
willemse21 Member Join Date: Nov 2011 Posts: 280 Likes: 766 Liked 215 Times in 79 Posts Mentioned: 21 Post(s) Tagged: 0 Thread(s)	fingers crossed

03-26-2012	#88
nzie Member Join Date: Oct 2011 Posts: 428 Likes: 1,246 Liked 42 Times in 38 Posts Mentioned: 22 Post(s) Tagged: 0 Thread(s)	niceee work @zadow28

03-26-2012	#90
fuRh7 Apprentice Join Date: Jan 2012 Posts: 28 Likes: 0 Liked 6 Times in 4 Posts Mentioned: 0 Post(s) Tagged: 0 Thread(s)	In fact the starting process hasn't changed. I believe. The only thing that got changed is how data is encrypted. Before it was the metldr that decrypted Appldr, lv2ldr, lv1ldr ... now everything is encapsulated in lv0 which is decrypted by bootldr. We never knew the key of the bootldr, because we didn't have to. It wasn't necessary for CFW, now it is.

User Name		Remember Me?
Password