some wierd references in mcore.elf - Page 4 - PS3Hax Network

Pockets69 · 04-02-2012

Originally Posted by mirkie

One question. If I am not wrong, if the Ps vita gets hacked then we can get the keys from there right?

it depends on how it gets hacked, the great hack on the ps3 would be to not rely on any keys, the true reference of running unsigned code! that would be great like the first jailbreak was, it didnt need any keys, it would run unsigned code.
now the 3.55 hack brought the keys back, what if we could get the keys out of the equation?

that would be really great, there has been some attempts to remove the ECDSA Algorithm for signing but they still have failed

zadow28 · 04-02-2012

im trying to set up anargistic on 64 os and ida pro windows

when its turns into debug mode it just go out again

Code:

$ ./anergistic -g 1234 appldr.elf
Waiting for gdb to connect...
Client connected.
Invalid nibble:  (00)
recv failed: Connection reset by peer

and ida crashes

when i do a normal dump its ok.
here is the dump from isoldr.elf

Code:

zadow
@zadow
-PC ~/anergistic
$ ./anergistic isoldr.elf
unknown channel 29
CHANNEL: wrch ch64 r2
UNKNOWN CHANNEL
CHANNEL: rdch ch73 r9
CHANNEL: rdch ch73 r9
####### stop instruction reached: 00000030
emulated() returned, sending SIGSEGV to gdb stub

Register dump:
 pc:    00025d28
000:    00025b34 00000000 00000000 00000000
001:    0003dd20 0003dd20 0003dd20 0003dd20
002:    00025d28 00025d30 00025d30 00025d30
003:    00000030 00000030 00000030 00000030
004:    00000001 00000000 00000000 00000000
005:    00000000 ffffffff ffffffff ffffffff
006:    00000000 00000000 00000000 00000000
007:    00000000 00000000 00000000 00000000
008:    00000000 00000000 00000000 00000000
009:    00025d30 00025d30 00025d30 00025d28
010:    00025c9c 00025c9c 00025c9c 00025c9c
011:    00000090 00000090 00000090 00000090
012:    00025c0c 00025c0c 00025c0c 00025c0c
013:    00000024 00000024 00000024 00000024
014:    0003ddd0 0003ddd0 0003ddd0 0003ddd0
015:    0003ddc0 0003ddc0 0003ddc0 0003ddc0
016:    0003ddb0 0003ddb0 0003ddb0 0003ddb0
017:    0003de10 0003de10 0003de10 0003de10
018:    0003de20 0003de20 0003de20 0003de20
019:    0003de80 0003de80 0003de80 0003de80
020:    0003de70 0003de70 0003de70 0003de70
021:    0003de60 0003de60 0003de60 0003de60
022:    0003de50 0003de50 0003de50 0003de50
023:    0003de40 0003de40 0003de40 0003de40
024:    0003dd40 0003dd40 0003dd40 0003dd40
025:    0003dd70 0003dd70 0003dd70 0003dd70
026:    00000000 00000000 00000000 00000000
027:    00010203 04050607 18191a1b 1c1d1e1f
028:    00000000 00000000 00000000 00000000
029:    00000000 00000000 00000000 00000000
030:    00000000 00000000 00000000 00000000
031:    00000000 00000000 00000000 00000000
032:    00000000 00000000 00000000 00000000
033:    00000000 00000000 00000000 00000000
034:    00000000 00000000 00000000 00000000
035:    00000000 00000000 00000000 00000000
036:    00000000 00000000 00000000 00000000
037:    00000000 00000000 00000000 00000000
038:    00000000 00000000 00000000 00000000
039:    00000000 00000000 00000000 00000000
040:    00000000 00000000 00000000 00000000
041:    00000000 00000000 00000000 00000000
042:    00000000 00000000 00000000 00000000
043:    00000000 00000000 00000000 00000000
044:    00000000 00000000 00000000 00000000
045:    00000000 00000000 00000000 00000000
046:    00000000 00000000 00000000 00000000
047:    00000000 00000000 00000000 00000000
048:    00000000 00000000 00000000 00000000
049:    00000000 00000000 00000000 00000000
050:    00000000 00000000 00000000 00000000
051:    00000000 00000000 00000000 00000000
052:    00000000 00000000 00000000 00000000
053:    00000000 00000000 00000000 00000000
054:    00000000 00000000 00000000 00000000
055:    00000000 00000000 00000000 00000000
056:    00000000 00000000 00000000 00000000
057:    00000000 00000000 00000000 00000000
058:    00000000 00000000 00000000 00000000
059:    00000000 00000000 00000000 00000000
060:    00000000 00000000 00000000 00000000
061:    00000000 00000000 00000000 00000000
062:    00000000 00000000 00000000 00000000
063:    00000000 00000000 00000000 00000000
064:    00000000 00000000 00000000 00000000
065:    00000000 00000000 00000000 00000000
066:    00000000 00000000 00000000 00000000
067:    00000000 00000000 00000000 00000000
068:    00000000 00000000 00000000 00000000
069:    00000000 00000000 00000000 00000000
070:    00000000 00000000 00000000 00000000
071:    00000000 00000000 00000000 00000000
072:    00000000 00000000 00000000 00000000
073:    00000000 00000000 00000000 00000000
074:    00000000 00000000 00000000 00000000
075:    00000000 00000000 00000000 00000000
076:    00000000 00000000 00000000 00000000
077:    00000000 00000000 00000000 00000000
078:    00000000 00000000 00000000 00000000
079:    00000000 00000000 00000000 00000000
080:    0003742c 0003742c 0003742c 0003742c
081:    00000000 00000000 00000000 00000000
082:    00000000 00000000 00000000 00000000
083:    00000000 00000000 00000000 00000000
084:    00000000 00000000 00000000 00000000
085:    00000000 00000000 00000000 00000000
086:    00000000 00000000 00000000 00000000
087:    00000000 00000000 00000000 00000000
088:    00000000 00000000 00000000 00000000
089:    00000000 00000000 00000000 00000000
090:    00000000 00000000 00000000 00000000
091:    00000000 00000000 00000000 00000000
092:    00000000 00000000 00000000 00000000
093:    00000000 00000000 00000000 00000000
094:    00000000 00000000 00000000 00000000
095:    00000000 00000000 00000000 00000000
096:    00000000 00000000 00000000 00000000
097:    00000000 00000000 00000000 00000000
098:    00000000 00000000 00000000 00000000
099:    00000000 00000000 00000000 00000000
100:    00000000 00000000 00000000 00000000
101:    00000000 00000000 00000000 00000000
102:    00000000 00000000 00000000 00000000
103:    00000000 00000000 00000000 00000000
104:    00000000 00000000 00000000 00000000
105:    00000000 00000000 00000000 00000000
106:    00000000 00000000 00000000 00000000
107:    00000000 00000000 00000000 00000000
108:    00000000 00000000 00000000 00000000
109:    00000000 00000000 00000000 00000000
110:    00000000 00000000 00000000 00000000
111:    00000000 00000000 00000000 00000000
112:    00000000 00000000 00000000 00000000
113:    00000000 00000000 00000000 00000000
114:    00000000 00000000 00000000 00000000
115:    00000000 00000000 00000000 00000000
116:    00000000 00000000 00000000 00000000
117:    00000000 00000000 00000000 00000000
118:    00000000 00000000 00000000 00000000
119:    00000000 00000000 00000000 00000000
120:    00000000 00000000 00000000 00000000
121:    00000000 00000000 00000000 00000000
122:    00000000 00000000 00000000 00000000
123:    00000000 00000000 00000000 00000000
124:    00000000 00000000 00000000 00000000
125:    00000000 00000000 00000000 00000000
126:    00000000 00000000 00000000 00000000
127:    00000000 00000000 00000000 00000000
dumping local store to ls.b
emulate() returned. we're done!
dumping local store to ls.b

Code:

$ ./anergistic appldr.elf
CHANNEL: wrch ch64 r2
UNKNOWN CHANNEL
CHANNEL: rdch ch73 r9
CHANNEL: rdch ch73 r9
####### stop instruction reached: 00000030
emulated() returned, sending SIGSEGV to gdb stub

Register dump:
 pc:    00013078
000:    000130a8 00000000 00000000 00000000
001:    0003df80 0003df80 0003df80 0003df80
002:    00013078 00012fe8 00012fe0 00012fd8
003:    00000000 00000000 00000000 00000000
004:    00012f8c 00012f8c 00012f8c 00012f8c
005:    00012ef4 00012ef4 00012ef4 00012ef4
006:    00000098 00000098 00000098 00000098
007:    00000026 00000026 00000026 00000026
008:    ffffffff 00000000 00000000 00000000
009:    00000000 00000000 00000000 00000000
010:    00000000 00000000 00000000 00000000
011:    00000000 ffffffff ffffffff ffffffff
012:    00000000 00000000 00000000 00000000
013:    ffffffff 00000000 00000000 00000000
014:    00000000 00000000 00000000 00000000
015:    00000000 00000000 ffffffff ffffffff
016:    ffffffff ffffffff ffffffff ffffffff
017:    fffffff8 fffffff8 fffffff8 fffffff8
018:    0000ffff 00000000 00000000 00000000
019:    00000000 00000000 00000000 00000000
020:    10111213 14151617 00010203 1c1d1e1f
021:    00000000 00000000 00000000 00000000
022:    0000ffff 00000000 00000000 00000000
023:    10111213 14151617 03191a1b 1c1d1e1f
024:    00000000 00000000 00000000 00000000
025:    10111213 00010203 18191a1b 1c1d1e1f
026:    0000ffff 00000000 00000000 00000000
027:    00000000 00000000 00000000 00000000
028:    00010203 14151617 18191a1b 1c1d1e1f
029:    0000ffff 0000ffff 0000ffff 0000ffff
030:    00000000 00000000 00000000 00000000
031:    00000000 00000000 00000000 00000000
032:    00000000 00000000 00000000 00000000
033:    00000000 00000000 00000000 00000000
034:    00000000 00000000 00000000 00000000
035:    00000000 00000000 00000000 00000000
036:    00000000 00000000 00000000 00000000
037:    00000000 00000000 00000000 00000000
038:    00000000 00000000 00000000 00000000
039:    00000000 00000000 00000000 00000000
040:    00000000 00000000 00000000 00000000
041:    00000000 00000000 00000000 00000000
042:    00000000 00000000 00000000 00000000
043:    00000000 00000000 00000000 00000000
044:    00000000 00000000 00000000 00000000
045:    00000000 00000000 00000000 00000000
046:    00000000 00000000 00000000 00000000
047:    00000000 00000000 00000000 00000000
048:    00000000 00000000 00000000 00000000
049:    00000000 00000000 00000000 00000000
050:    00000000 00000000 00000000 00000000
051:    00000000 00000000 00000000 00000000
052:    00000000 00000000 00000000 00000000
053:    00000000 00000000 00000000 00000000
054:    00000000 00000000 00000000 00000000
055:    00000000 00000000 00000000 00000000
056:    00000000 00000000 00000000 00000000
057:    00000000 00000000 00000000 00000000
058:    00000000 00000000 00000000 00000000
059:    00000000 00000000 00000000 00000000
060:    00000000 00000000 00000000 00000000
061:    00000000 00000000 00000000 00000000
062:    00000000 00000000 00000000 00000000
063:    00000000 00000000 00000000 00000000
064:    00000000 00000000 00000000 00000000
065:    00000000 00000000 00000000 00000000
066:    00000000 00000000 00000000 00000000
067:    00000000 00000000 00000000 00000000
068:    00000000 00000000 00000000 00000000
069:    00000000 00000000 00000000 00000000
070:    00000000 00000000 00000000 00000000
071:    00000000 00000000 00000000 00000000
072:    00000000 00000000 00000000 00000000
073:    00000000 00000000 00000000 00000000
074:    00000000 00000000 00000000 00000000
075:    00000000 00000000 00000000 00000000
076:    00000000 00000000 00000000 00000000
077:    00000000 00000000 00000000 00000000
078:    00000000 00000000 00000000 00000000
079:    00000000 00000000 00000000 00000000
080:    000309bc 000309bc 000309bc 000309bc
081:    00000000 00000000 00000000 00000000
082:    00000000 00000000 00000000 00000000
083:    00000000 00000000 00000000 00000000
084:    00000000 00000000 00000000 00000000
085:    00000000 00000000 00000000 00000000
086:    00000000 00000000 00000000 00000000
087:    00000000 00000000 00000000 00000000
088:    00000000 00000000 00000000 00000000
089:    00000000 00000000 00000000 00000000
090:    00000000 00000000 00000000 00000000
091:    00000000 00000000 00000000 00000000
092:    00000000 00000000 00000000 00000000
093:    00000000 00000000 00000000 00000000
094:    00000000 00000000 00000000 00000000
095:    00000000 00000000 00000000 00000000
096:    00000000 00000000 00000000 00000000
097:    00000000 00000000 00000000 00000000
098:    00000000 00000000 00000000 00000000
099:    00000000 00000000 00000000 00000000
100:    00000000 00000000 00000000 00000000
101:    00000000 00000000 00000000 00000000
102:    00000000 00000000 00000000 00000000
103:    00000000 00000000 00000000 00000000
104:    00000000 00000000 00000000 00000000
105:    00000000 00000000 00000000 00000000
106:    00000000 00000000 00000000 00000000
107:    00000000 00000000 00000000 00000000
108:    00000000 00000000 00000000 00000000
109:    00000000 00000000 00000000 00000000
110:    00000000 00000000 00000000 00000000
111:    00000000 00000000 00000000 00000000
112:    00000000 00000000 00000000 00000000
113:    00000000 00000000 00000000 00000000
114:    00000000 00000000 00000000 00000000
115:    00000000 00000000 00000000 00000000
116:    00000000 00000000 00000000 00000000
117:    00000000 00000000 00000000 00000000
118:    00000000 00000000 00000000 00000000
119:    00000000 00000000 00000000 00000000
120:    00000000 00000000 00000000 00000000
121:    00000000 00000000 00000000 00000000
122:    00000000 00000000 00000000 00000000
123:    00000000 00000000 00000000 00000000
124:    00000000 00000000 00000000 00000000
125:    00000000 00000000 00000000 00000000
126:    00000000 00000000 00000000 00000000
127:    00000000 00000000 00000000 00000000
dumping local store to ls.b
emulate() returned. we're done!
dumping local store to ls.b

anyone knows how it works

H3avyRa1n · 04-02-2012

I wish I could help you out with this one..

zadow28 · 04-02-2012

Close the thread
actuelly good stuff thx folks should be on the wiki. If others shold exploit psn they should read this. Would be hard but,good info

Just close the thread

hellsing9 · 04-02-2012

thread closed until further notice.

04-02-2012	#34
zadow28 Member Join Date: Dec 2011 Posts: 360 Likes: 235 Liked 857 Times in 185 Posts Mentioned: 188 Post(s) Tagged: 0 Thread(s)	Close the thread actuelly good stuff thx folks should be on the wiki. If others shold exploit psn they should read this. Would be hard but,good info Just close the thread __________________

04-02-2012	#35
hellsing9 Hired Gun Join Date: May 2011 Posts: 6,718 Likes: 2,539 Liked 3,268 Times in 1,810 Posts Mentioned: 971 Post(s) Tagged: 1 Thread(s)	thread closed until further notice. __________________ Check Blacklist of FAKE devs Check Whitelist of TRUSTED devs Tutorial : DEX conversion (TEST-DEBUG) One thread with all DEX information published so far. One thread with PS3 LV0 keys, CFW'S and many more. PS3devwiki your number 1 source. Check it. Console ID's Market Warning thread PS3 Ban, CFW, Unban. How to avoid it.

		PS3Hax Network - Playstation 3 Hacks and Mods > PS3Hax > PS3 \| Technical Development and Coding Area
some wierd references in mcore.elf

04-02-2012	#33
H3avyRa1n Senior Member Join Date: Aug 2011 Posts: 1,269 Likes: 178 Liked 838 Times in 391 Posts Mentioned: 59 Post(s) Tagged: 0 Thread(s)	I wish I could help you out with this one..

User Name		Remember Me?
Password