[cfwprpht]

With all my respect I am not as idiot as you to name you idiot !!! This is one, second thing, you're just a liar just like your friend nabnab on ******* & we could read your bull****s on that forum, one saying the other is lying & the second saying the same !! You're just like every liar we've see on this PS3 scene since more than one year !! this a reality too, all the news this days are fakes !! we all knew that So, if you could release you fake CFW allowing reading fselfs, TB eboots, original 3.6+ games or I don't knew what too, do it, I don't care about & I don't need it & I wan't use-it because it's just a fake, nothing more nothing less. You did nothing to this scene & you won't do anything !! I knew what I am talking about because your just a "fake" . Than making promess/theorys like so....isn't too good believe me !!! One day people will knew you on your reality & every one will call you & your supposed team "fakers" !! that day you'll knew that I wasn't wrong. With all my respect, regards. ************* [ - Post Merged - ] ************* Originally Posted by Pockets69 View Post In fact i do! so what?! Nothing you're free, I am just saying what I think about those stories of reverse-engeneering & TB hater's Originally Posted by Pockets69 View Post you are quite wrong... You have right in one thing, there is team Duplex who did it many times ago free to the scene, Chawnpax, the chinese guy did-it twice too, the anonymous guy who released Uncharted 3 eboot did-it once...I've to thanck them because they are releasing something usefull just like team TrueBlue, not just taliking & launching promess on the fly like so, & like did this cfwprpht

Yea sure and in case im fake i have my channel with some of well known dev's and scener's in which following my progress all the time cause i share what im doing and how it works and also the files so they can clearly see that it is working. And one of this persons following all the progress is Pockets69, there for he belive in TeaM AC1D.

But whatever, call me like you want so we have something to lough on my channel and it make's the day more funny. ^^

Oh and by the way Nabnab is not my frind and never was i kicked him out of the team just a few days after i recognized what a retard he is just like you. Screeming out **** and have absolutely no clue what he talking about.

i think they r just getting the decrypted eboots from a ram dump. Likly easier then getting keys

Correct this is exactly what im working on. First i proved that im right with dumping games/apps out of RAM and to find the way how to do. Now the next step is to write a app and find a way to do it with newer games but im sure that it will not take to long to also figuer that out.

[Calliope]

Originally Posted by cfwprpht Yea sure and in case im fake i have my channel with some of well known dev's and scener's in which following my progress all the time cause i share what im doing and how it works and also the files so they can clearly see that it is working. And one of this persons following all the progress is Pockets69, there for he belive in TeaM AC1D. But whatever, call me like you want so we have something to lough on my channel and it make's the day more funny. ^^ Oh and by the way Nabnab is not my frind and never was i kicked him out of the team just a few days after i recognized what a retard he is just like you. Screeming out **** and have absolutely no clue what he talking about. Correct this is exactly what im working on. First i proved that im right with dumping games/apps out of RAM and to find the way how to do. Now the next step is to write a app and find a way to do it with newer games but im sure that it will not take to long to also figuer that out.

Nice to see that we were on the right path already because is indeed the most logical solution right now!

[jarmster]

pullin the cell reset is another issue....its documented on early fats but not on the slims.

One of those 128 pins on the new syscons is the cell reset but you gotta find it. And 90% of the traces are on internal layers. Ive got 2 mobos ive been playin with but its been slow
Even the cell pinout is different on the slims. I even debated on grounding out pins on a running ps3's syscon till she reboot but im not sure if that would even work. Theres likly a risk of frying it.

[svenmullet]

From what I gather from a quick reading of http://www.ps3devwiki.com/wiki/Lv1.self

Write a PPU program to dump ram to USB. You need to extract all the embedded selfs in Lv1.self. (script is on the page I linked) Edit pme_init.conf to load your custom ram-dumper.self. It doesn't matter what it does after that, it can ylod for all you care, because you can just reboot into 4.11 again by swapping NOR. You could probably just rename your self to an existing one in there and replace it. I don't know how to rebuilt it into Lv1.self (I'm sure it's not hard to do)

Replace it in core_os, flash your CFW to the swap NOR, boot into 4.11, load game, pull cell_reset and swap NOR. Success.

[edit] Okay, did not know cell_reset isn't documented on later models. Plus, I think a NAND setup would be better anyway (does E3 make a dual NAND board?) because it doesn't rely on anything being on the HDD.

[Calliope]

Originally Posted by jarmster pullin the cell reset is another issue....its documented on early fats but not on the slims. One of those 128 pins on the new syscons is the cell reset but you gotta find it. And 90% of the traces are on internal layers. Ive got 2 mobos ive been playin with but its been slow Even the cell pinout is different on the slims. I even debated on grounding out pins on a running ps3's syscon till she reboot but im not sure if that would even work. Theres likly a risk of frying it.

Maybe we can get a hardware specialist in here to give their take on the situation? Good job!
************* [ - Post Merged - ] *************

Originally Posted by svenmullet From what I gather from a quick reading of http://www.ps3devwiki.com/wiki/Lv1.self Write a PPU program to dump ram to USB. You need to extract all the embedded selfs in Lv1.self. (script is on the page I linked) Edit pme_init.conf to load your custom ram-dumper.self. It doesn't matter what it does after that, it can ylod for all you care, because you can just reboot into 4.11 again by swapping NOR. You could probably just rename your self to an existing one in there and replace it. I don't know how to rebuilt it into Lv1.self (I'm sure it's not hard to do) Replace it in core_os, flash your CFW to the swap NOR, boot into 4.11, load game, pull cell_reset and swap NOR. Success. [edit] Okay, did not know cell_reset isn't documented on later models. Plus, I think a NAND setup would be better anyway (does E3 make a dual NAND board?) because it doesn't rely on anything being on the HDD.

I would suggest we start on the early phat PS3 as they would be easier to run these mods on, but I hope that there is a hardware specialist in PS3 that can give some input on these things Good job!

[jarmster]

you need to run the code too. loading your custom code to ram is one thing but then you need to execute it. So what? metldr runs the lvl1ldr, loads your custom lvl1 to ram. then what? its the lvl1ldr with control which in turns returns to the metldr which loads lvl2ldr....
Im just speculating but you see what i mean,you need to understand the loaders and how they work in order to get your code to run....

[Calliope]

Originally Posted by jarmster you need to run the code too. loading your custom code to ram is one thing but then you need to execute it. So what? metldr runs the lvl1ldr, loads your custom lvl1 to ram. then what? its the lvl1ldr with control which in turns returns to the metldr which loads lvl2ldr.... Im just speculating but you see what i mean,you need to understand the loaders and how they work in order to get your code to run....

We need to inject the right code, at the right time for it to infect the system to give us the data that we wish to acquire.
************* [ - Post Merged - ] *************

Originally Posted by OoZic Or must be a dev/hacker team too, like (my personal guess !!!) Team Rebug....

I dont think Team Rebug is involved (at this stage), but how knows maybe in the future.

[jarmster]

Originally Posted by Calliope We need to inject the right code, at the right time for it to infect the system to give us the data that we wish to acquire. .

we need metldr and lvl1ldr disassemblies then.........

[hellsing9]

Games that can help achieve in some kind of way with that objective = Skyrim and Fallout.
Memory issues all over the place.

[Calliope]

Originally Posted by jarmster we need metldr and lvl1ldr disassemblies then.........

We need an exploit, which enables us to inject the code... Like the one mentioned below.
************* [ - Post Merged - ] *************

Originally Posted by hellsing9 Games that can help achieve in some kind of way with that objective = Skyrim and Fallout. Memory issues all over the place.

This could maybe be an option which we could as an exploit to inject the code we need to infect the systemt with to retrieve the needed data.