Go Back   PS3Hax Network - Playstation 3 Hacks and Mods > PS3Hax > PS3 | Technical Development and Coding Area
Reload this Page TB Eboot Query
Reply
Page 1 of 2 1 2
 
Thread Tools
Old 06-14-2012   #1
JonahUK
Senior Member
 
Join Date: Jul 2011
Location: Salford, UK
Posts: 1,278
Likes: 590
Liked 794 Times in 499 Posts
Mentioned: 166 Post(s)
Tagged: 0 Thread(s)
TB Eboot Query
Anybody know why there are extra bytes added to the elf header in a TB eboot?

AFAIK, every eboot elf should have a header length of 980, but in a TB eboot, it is 1280 (shown in red) .

The yellow highlighted offset is for the "section_info_offset" which has also changed to 1280 (not shown below)

The elf filesize (shown in blue) stays the same so the elf itself doesn't seem to be touched:

Original GR:FS
Code:
Offset(h) 00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F

00000000  53 43 45 00 00 00 00 02 00 19 00 01 00 00 04 10  SCE.............
00000010  00 00 00 00 00 00 09 80 00 00 00 00 00 F0 E9 D8  .......€.....ðéØ
00000020  00 00 00 00 00 00 00 03 00 00 00 00 00 00 00 70  ...............p
00000030  00 00 00 00 00 00 00 90 00 00 00 00 00 00 00 D0  ...............Ð
00000040  00 00 00 00 00 60 DC E8 00 00 00 00 00 00 02 90  .....`Üè........
00000050  00 00 00 00 00 00 03 90 00 00 00 00 00 00 03 C0  ...............À
00000060  00 00 00 00 00 00 00 70 00 00 00 00 00 00 00 00  .......p........
00000070  10 10 00 00 01 00 00 03 01 00 00 02 00 00 00 04  ................
00000080  00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
TB GR:FS
Code:
Offset(h) 00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F

00000000  53 43 45 00 00 00 00 02 80 00 00 01 00 00 04 10  SCE.....€.......
00000010  00 00 00 00 00 00 12 80 00 00 00 00 00 F0 E9 D8  .......€.....ðéØ
00000020  00 00 00 00 00 00 00 03 00 00 00 00 00 00 00 70  ...............p
00000030  00 00 00 00 00 00 00 90 00 00 00 00 00 00 00 D0  ...............Ð
00000040  00 00 00 00 00 F0 E0 07 00 00 00 00 00 00 02 90  .....ðà.........
00000050  00 00 00 00 00 00 03 90 00 00 00 00 00 00 03 C0  ...............À
00000060  00 00 00 00 00 00 00 70 00 00 00 00 00 00 00 00  .......p........
00000070  10 10 00 00 01 00 00 03 01 00 00 02 00 00 00 04  ................
00000080  00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
I wonder whats in these bytes?

Extra bytes:
Code:
Offset(h) 00 01 02 03 04 05 06 07 08 09 0A 0B 0C 0D 0E 0F

00000980  B4 CF 24 E3 60 DC 55 78 38 46 35 E3 3E D6 50 F2  ´Ï$ã`ÜUx8F5ã>ÖPò
00000990  7B B3 FE 29 53 D8 CE C5 BC B8 3A 35 79 DB C1 76  {³þ)SØÎż¸:5yÛÁv
000009A0  4F 6B B8 57 5E AE 6E D1 6C 63 26 7B DA DA 91 6E  Ok¸W^®nÑlc&{ÚÚ‘n
000009B0  F8 68 A7 50 7C BB ED 1E F3 81 81 6F 3C 44 87 2C  øh§P|»í.ó..o<D‡,
000009C0  80 AF 85 EF 89 64 39 8E 0E 25 F6 73 53 AE 52 93  €¯…ï‰d9Ž.%ösS®R“
000009D0  A6 5E 62 73 1B 09 EB 9C 56 9A BF 0E 3B 41 BE EE  ¦^bs..ëœVš¿.;A¾î
000009E0  53 DF 73 F3 4D 75 2E ED A0 6A E0 95 09 10 6F F5  SßsóMu.í*jà•..oõ
000009F0  E0 1B 8A BB 72 D7 54 86 7A FD 5C 5B 3E EC 4F 05  à.Š»r×T†zý\[>ìO.
00000A00  DA 06 1B 23 C4 8C 50 5D 3C FF 82 14 00 B5 E7 41  Ú..#ÄŒP]<ÿ‚..µçA
00000A10  0D 96 DA B1 BF EF B7 A2 E5 B5 21 7A F4 3A BF 66  .–Ú±¿ï·¢åµ!zô:¿f
00000A20  67 F4 A2 25 56 65 F4 43 AB CB 65 8B 36 71 A0 C1  gô¢%VeôC«Ëe‹6q*Á
00000A30  2C 9B 2E A1 0A 34 00 B6 5A 83 64 53 56 86 E0 6C  ,›.¡.4.¶ZƒdSV†àl
00000A40  FE E6 AE F0 E9 3F 84 38 3B 42 0A 23 85 0F 2C FD  þæ®ðé?„8;B.#….,ý
00000A50  77 1F E7 08 E8 0E ED 83 0D AB 6C 4C 88 AE A7 F3  w.ç.è.íƒ.«lLˆ®§ó
00000A60  A1 06 8E 8C EE 15 BF 75 54 A5 16 33 F9 DA D1 BC  ¡.ŽŒî.¿uT¥.3ùÚѼ
00000A70  97 C7 13 09 5D BA B6 6A 81 44 67 7A 2E 97 43 EC  —Ç..]º¶j.Dgz.—Cì
00000A80  F6 28 C9 8D 80 D8 66 45 CD D7 2D B9 D3 71 98 03  ö(É.€ØfEÍ×-¹Óq˜.
00000A90  BE 71 E2 34 EA E2 9D E0 D2 2A 2F 78 D3 9F 05 5B  ¾qâ4êâ.àÒ*/xÓŸ.[
00000AA0  C9 28 2B 74 6F 54 F2 B5 B9 1C 93 5E E0 1A 55 A0  É(+toTòµ¹.“^à.U*
00000AB0  70 01 2E C5 CD 8D 1D 40 41 3C 76 0C 08 C7 23 55  p..ÅÍ..@A<v..Ç#U
00000AC0  7A 2D B4 73 6C A7 2D A4 90 FE 6B 2C 1A B8 99 02  z-´sl§-¤.þk,.¸™.
00000AD0  12 59 CC 4A 8F 4F 34 31 5E 52 D0 3E 2F 4F BA 03  .YÌJ.O41^RÐ>/Oº.
00000AE0  0A F8 30 42 EB F5 63 78 BF C6 26 14 8D 08 5B 4B  .ø0Bëõcx¿Æ&...[K
00000AF0  B6 DC 0D B3 B9 6B C2 BD FA 17 54 57 43 D5 94 46  ¶Ü.³¹k½ú.TWCÕ”F
00000B00  8A 76 1C E7 A5 E4 B9 B6 B4 08 72 55 44 C7 B0 83  Šv.ç¥ä¹¶´.rUDÇ°ƒ
00000B10  34 8C BD 8D 4B 2F BE 9C C8 71 58 1B 28 CD 4C 06  4Œ½.K/¾œÈqX.(ÍL.
00000B20  0D 32 06 62 2A B0 8B 67 EC C7 34 A8 6E 73 E4 9F  .2.b*°‹gìÇ4¨nsäŸ
00000B30  E2 6C BE 0D 09 B3 04 F1 FE FA 9F 3A 06 8E 25 50  âl¾..³.ñþúŸ:.Ž%P
00000B40  E8 A3 F7 17 2E 8C F3 BE D2 02 14 AE 52 84 D3 41  è£÷..Œó¾Ò..®R„ÓA
00000B50  28 42 65 05 82 9A 45 02 5F BC 31 6D BA 6B 48 DD  (Be.‚šE._¼1mºkHÝ
00000B60  A7 18 9B 73 27 43 52 86 1E 1A 6B A4 E7 C2 08 A5  §.›s'CR†..k¤çÂ.¥
00000B70  C7 2E 2A 24 04 87 16 04 41 AE 23 74 7A E5 09 66  Ç.*$.‡..A®#tzå.f
00000B80  4C 7F 75 3E EE AD 86 97 86 E7 6E A4 88 2E A1 CC  L.u>î.†—†çn¤ˆ.¡Ì
00000B90  88 59 96 CB A0 50 C0 AD D4 DE 92 9A B4 4D EA F4  ˆY–Ë*PÀ.ÔÞ’š´Mêô
00000BA0  51 7C A3 28 39 17 BE 69 B8 CA 9E B0 F0 AE EE D4  Q|£(9.¾i¸Êž°ð®îÔ
00000BB0  9D AB 6F A3 37 87 24 14 D1 1C 08 6C B7 A6 21 DB  .«o£7‡$.Ñ..l·¦!Û
00000BC0  8C 69 18 86 89 C4 F1 F8 C1 05 18 3F C1 EA A0 F7  Œi.†‰ÄñøÁ..?Áê*÷
00000BD0  BE C9 68 18 F4 1B 8D 2C C4 E4 3A C7 63 81 34 FA  ¾Éh.ô..,Ää:Çc.4ú
00000BE0  EA BF BF 8B 9C 18 AB 6E E7 57 AF 1A 8B 34 42 04  ê¿¿‹œ.«nçW¯.‹4B.
00000BF0  1A A5 F5 D1 DF 80 DB DF 1A E0 1F 40 E6 49 75 4B  .¥õÑ߀Ûß.à.@æIuK
00000C00  58 B7 D7 17 CC 64 A0 E4 6A DB 2F 7E 21 24 8E 61  X·×.Ìd*äjÛ/~!$Ža
00000C10  5D A3 A2 35 13 31 8B A2 0D 02 98 82 65 7E 79 50  ]£¢5.1‹¢..˜‚e~yP
00000C20  94 9F EB EE DF 14 43 E6 E4 17 62 F5 D6 1F 25 ED  ”Ÿëîß.Cæä.bõÖ.%í
00000C30  70 CC 4F E9 77 99 FF 73 05 DB DA B1 B9 41 6B D7  pÌOéw™ÿs.ÛÚ±¹Ak×
00000C40  20 15 E0 76 CB CA 65 8D 92 95 2C D8 D9 A4 B7 FC   .àvËÊe.’•,ØÙ¤·ü
00000C50  F2 FC 5F 32 6E 08 C2 3C AE DD FF B4 15 B6 2E 7D  òü_2n.Â<®Ýÿ´.¶.}
00000C60  47 DB 91 70 E5 96 EF 1F ED 6E 5B 03 E8 DC EC A8  GÛ‘på–ï.ín[.èÜì¨
00000C70  70 AD F0 27 DC 55 5A A1 F1 57 F4 40 7E F2 B2 8D  p.ð'ÜUZ¡ñWô@~ò².
00000C80  37 97 7E 48 C0 DF D2 5A 58 BC AF EA 2A A6 AB F1  7—~HÀßÒZX¼¯ê*¦«ñ
00000C90  17 2E 19 18 EA E8 1B 77 19 B8 DE 7E C3 6B BC 13  ....êè.w.¸Þ~Ãk¼.
00000CA0  FA DC C9 C5 8F 90 68 34 F7 0F AB D8 CD 29 33 64  úÜÉÅ..h4÷.«ØÍ)3d
00000CB0  D8 C1 4D 8F E0 C1 BB BF AE 24 5B 1B 8A CB 1F 7A  ØÁM.àÁ»¿®$[.ŠË.z
00000CC0  3C 91 8E 1A 43 F8 F1 C0 37 63 E0 83 2C 9F D8 40  <‘Ž.CøñÀ7càƒ,ŸØ@
00000CD0  B3 83 2B F4 F5 10 5F 26 92 5B 5B 25 0C 61 CC 10  ³ƒ+ôõ._&’[[%.aÌ.
00000CE0  2C 1F 73 33 6C 96 B8 E3 81 3F C1 45 92 59 FA 2E  ,.s3l–¸ã.?ÁE’Yú.
00000CF0  ED F9 1C 78 19 F5 F9 C6 11 A8 E3 DF BE 77 D9 6D  íù.x.õùÆ.¨ãß¾wÙm
00000D00  4B C3 19 F9 69 68 DE BB DC 57 21 16 71 88 2D 34  KÃ.ùihÞ»ÜW!.qˆ-4
00000D10  46 22 3E 94 30 06 24 99 38 37 16 FB 9A 1C 32 C7  F">”0.$™87.ûš.2Ç
00000D20  46 28 5C E8 2D 56 79 DE DB 58 DA E5 75 3D D4 F4  F(\è-VyÞÛXÚåu=Ôô
00000D30  E5 C6 44 7E 8A 00 CA 46 14 EE CA 1B DF 5E DB D0  åÆD~Š.ÊF.îÊ.ß^ÛÐ
00000D40  A8 54 E8 21 5F 0B 9F 43 DF 08 DA 83 18 13 A4 42  ¨Tè!_.ŸCß.Úƒ..¤B
00000D50  2D C5 55 7B AD 9F F9 A2 D2 3C 6F CA FF 39 96 83  -ÅU{.Ÿù¢Ò<oÊÿ9–ƒ
00000D60  61 28 E0 F4 55 F3 D3 C9 D5 31 74 A7 B6 F3 46 72  a(àôUóÓÉÕ1t§¶óFr
00000D70  D4 F0 66 3E D6 01 E8 4F 3F DB B6 72 48 9D 04 7C  Ôðf>Ö.èO?Û¶rH..|
00000D80  7B 52 2F 7A D2 51 36 B0 87 1E 82 54 FA 80 1B 10  {R/zÒQ6°‡.‚Tú€..
00000D90  DE 79 31 17 BB 63 5B C4 A1 FA 3C 31 53 95 DA 8B  Þy1.»c[Ä¡ú<1S•Ú‹
00000DA0  2B 33 FF A2 C1 17 88 FA B8 54 6D 37 BE 77 E0 AB  +3ÿ¢Á.ˆú¸Tm7¾wà«
00000DB0  30 09 9D C9 FF 8E 50 B5 37 99 3B 5B 04 12 99 95  0..ÉÿŽPµ7™;[..™•
00000DC0  C8 11 77 B3 17 0E DF 38 4D 91 B1 22 85 22 68 77  È.w³..ß8M‘±"…"hw
00000DD0  A6 A1 B0 F3 7E 95 CE 07 BB 0B AE DF FF E7 E5 A7  ¦¡°ó~•Î.».®ßÿçå§
00000DE0  06 29 15 0F 24 00 A5 13 6F 82 0B 65 62 89 6B E9  .)..$.¥.o‚.eb‰ké
00000DF0  31 6F 7C 88 6F CD 60 27 1E 70 49 12 44 39 36 68  1o|ˆoÍ`'.pI.D96h
00000E00  11 2B 4A 22 C2 7D 79 D6 E5 CD B1 BA B6 60 05 3C  .+J"Â}yÖåͱº¶`.<
00000E10  3D 57 F0 66 40 CE 3C 0D 09 70 03 06 C8 A7 42 37  =Wðf@Î<..p..ȧB7
00000E20  29 B5 00 DD 50 44 83 CD 13 62 32 A0 AD A7 B8 A5  )µ.ÝPDƒÍ.b2*.§¸¥
00000E30  9A A2 3F 6F E4 A4 BC FB C8 C3 44 BF 5B 58 D3 B2  š¢?o䤼ûÈÃD¿[XÓ²
00000E40  64 7D C5 72 8A 21 C2 5F 30 81 D8 63 BE 08 01 AC  d}ÅrŠ!Â_0.Øc¾..¬
00000E50  18 63 58 A7 EC 20 8D FE B8 5B 8E 60 A2 ED 76 52  .cX§ì .þ¸[Ž`¢ívR
00000E60  4D F0 52 33 38 31 4A 53 A1 31 77 A9 2D 56 D7 5B  MðR381JS¡1w©-V×[
00000E70  69 A5 9A 13 E6 1B 44 03 28 C4 76 AC 9B C3 0C 0F  i¥š.æ.D.(Äv¬›Ã..
00000E80  20 98 AE 4D 8F 63 BF 25 06 66 0D 8D A3 79 4D 98   ˜®M.c¿%.f..£yM˜
00000E90  83 B1 3C E7 D1 99 B2 0C 68 50 10 47 74 60 21 03  ƒ±<çÑ™².hP.Gt`!.
00000EA0  01 18 CC EB 36 56 67 4F EC 06 70 5D FD E8 37 20  ..Ìë6VgOì.p]ýè7 
00000EB0  2B 1B B7 59 8E 54 BF F5 3E 5B 40 12 7E 5A 31 54  +.·YŽT¿õ>[@.~Z1T
00000EC0  7F C5 7D F8 D8 F9 E6 8F 64 45 F0 2E DD D5 8E 12  .Å}øØùæ.dEð.ÝÕŽ.
00000ED0  A6 6F 63 4A 69 8E FF 21 9E EF 41 AA 8F FF F0 3F  ¦ocJiŽÿ!žïAª.ÿð?
00000EE0  C6 BF 26 71 92 58 68 77 5D DC 66 27 27 55 EE 57  Æ¿&q’Xhw]Üf''UîW
00000EF0  14 4D 02 DE 1B 4A E1 0D 31 1A 88 C3 4C 2F C9 A6  .M.Þ.Já.1.ˆÃL/ɦ
00000F00  81 91 3C 26 F6 9E 16 FD 5B 39 CD 75 EE E8 22 CC  .‘<&öž.ý[9Íuîè"Ì
00000F10  6B F4 D4 79 10 FD C5 BC BA AC 2F 42 98 5B F5 8E  kôÔy.ýżº¬/B˜[õŽ
00000F20  B4 13 04 51 D3 EC 61 C4 FD 05 95 42 46 0B 1B 49  ´..QÓìaÄý.•BF..I
00000F30  B7 02 93 C4 4B AE D7 DA FF A0 38 51 7C A4 09 C9  ·.“ÄK®×Úÿ*8Q|¤.É
00000F40  DB F8 DE C8 04 15 9B D1 9F C1 9C 35 8E C9 4E 96  ÛøÞÈ..›ÑŸÁœ5ŽÉN–
00000F50  05 29 73 2E 90 EA 3D A5 A2 1F 48 24 24 9F CE 0E  .)s..ê=¥¢.H$$ŸÎ.
00000F60  44 37 18 5C C0 58 A1 4D 2C 5B 84 39 E9 19 1F AF  D7.\ÀX¡M,[„9é..¯
00000F70  3D 4C 3D 6B 6F E3 60 94 F3 A8 43 17 6C CF 46 43  =L=koã`”ó¨C.lÏFC
00000F80  CC E0 0C 3D E4 A1 87 37 2A 7F DF 79 80 D3 5C 9D  Ìà.=䡇7*.ßy€Ó\.
00000F90  85 D5 62 52 AE 10 6B 2A DC A1 08 18 A0 AE D2 5B  …ÕbR®.k*Ü¡..*®Ò[
00000FA0  B7 3B DB 8B DC 36 7F C3 15 D0 72 46 04 64 92 1F  ·;Û‹Ü6.Ã.ÐrF.d’.
00000FB0  D1 6C DA DC 9D B9 D0 BD 14 64 94 BB 14 4B 06 7C  ÑlÚÜ.¹Ð½.d”».K.|
00000FC0  84 CE 1E 7B E5 C6 8E 64 CA DA 55 4A 40 92 B7 3C  „Î.{åÆŽdÊÚUJ@’·<
00000FD0  A6 B1 7A 09 10 64 F8 50 B7 BB B6 3F 22 2E E7 6D  ¦±z..døP·»¶?".çm
00000FE0  43 5E E0 87 E3 18 18 01 1E AE 70 DA C3 C6 F0 01  C^à‡ã....®pÚÃÆð.
00000FF0  93 17 B5 D5 55 2B 14 61 D4 40 2B 87 42 BA 4E E6  “.µÕU+.aÔ@+‡BºNæ
00001000  2F 0C 57 83 81 74 1E B8 02 8C 4A F4 88 D8 B9 D0  /.Wƒ.t.¸.ŒJôˆØ¹Ð
00001010  AA B3 AF E4 63 4F F7 29 D5 F3 88 25 5D 04 F7 01  ª³¯äcO÷)Õóˆ%].÷.
00001020  83 F5 36 78 7C FE 02 76 C2 5C 5C 68 D9 4F AB 39  ƒõ6x|þ.vÂ\\hÙO«9
00001030  62 02 0A 9C 5A ED 99 5C 09 1D 01 B6 DA F6 AB 1F  b..œZí™\...¶Úö«.
00001040  21 34 ED 72 0C 85 90 C7 18 1D 8C 5D 65 73 BC D9  !4ír.….Ç..Œ]es¼Ù
00001050  2B 01 80 6E D2 BC 04 C7 BF 55 96 EE E2 AC 47 4D  +.€nÒ¼.Ç¿U–îâ¬GM
00001060  C5 40 BB 88 6B B6 18 C5 59 6A 51 EC 85 87 6E 74  Å@»ˆk¶.ÅYjQì…‡nt
00001070  0B C1 85 70 C5 03 99 E6 31 73 1E 5D ED 96 6B 9D  .Á…pÅ.™æ1s.]í–k.
00001080  AD 91 CE 64 04 E0 04 4F 2C 15 6E 3C 81 2F D2 D5  .‘Îd.à.O,.n<./ÒÕ
00001090  D7 63 68 A2 E4 93 DB B8 43 7A 89 E6 A0 D2 AD BB  ×ch¢ä“Û¸Cz‰æ*Ò.»
000010A0  CA D2 AD 24 C9 5B 82 E2 67 64 38 AF 45 AE 2F AB  ÊÒ.$É[‚âgd8¯E®/«
000010B0  8E A6 F4 7A 82 10 09 00 7C EF CC 10 D0 44 54 02  Ž¦ôz‚...|ïÌ.ÐDT.
000010C0  6F B9 44 7A E1 DE 6D B7 24 43 89 B8 2A F2 02 89  o¹DzáÞm·$C‰¸*ò.‰
000010D0  88 1E BA E6 A6 5A 0F 64 F2 D8 BD 64 2B 1C 22 C5  ˆ.ºæ¦Z.dòؽd+."Å
000010E0  DE F2 FA 51 2F 1C B1 86 BD 07 45 A2 B6 D1 06 AA  ÞòúQ/.±†½.E¢¶Ñ.ª
000010F0  0A 15 7A F8 6B 49 95 38 52 59 29 62 B1 59 B0 36  ..zøkI•8RY)b±Y°6
00001100  F3 76 E8 40 73 53 C8 10 F1 34 09 EA BE 4E EB BB  óvè@sSÈ.ñ4.ê¾Në»
00001110  4A 5E 25 53 F8 13 03 11 FB D7 BA 0B 0F 52 EB B6  J^%Sø...û׺..Rë¶
00001120  B6 8A C9 20 B0 28 33 A0 88 55 2A F7 CD 5B 17 77  ¶ŠÉ °(3*ˆU*÷Í[.w
00001130  0F 61 17 B9 FC F1 46 5A 81 36 49 29 E2 E7 0D 03  .a.¹üñFZ.6I)âç..
00001140  0C 87 03 76 6C 80 88 D3 A0 17 08 DA 88 4A 69 BF  .‡.vl€ˆÓ*..ÚˆJi¿
00001150  F8 CA 43 B4 3F 8D 39 A5 EA 59 73 5E 63 A2 6C 8F  øÊC´?.9¥êYs^c¢l.
00001160  FD B9 27 E8 49 FF 6D ED 13 01 7F B8 3F 98 27 34  ý¹'èIÿmí...¸?˜'4
00001170  72 E4 5C C9 AE 55 5F 4B E0 83 62 D9 60 92 08 F1  rä\É®U_KàƒbÙ`’.ñ
00001180  26 EC 7D EF 32 2B 77 F8 17 8D D1 32 92 86 CD E4  &ì}ï2+wø..Ñ2’†Íä
00001190  0A DA 65 97 2B 0D CE 48 F8 2F 73 51 3F 3F DA 84  .Úe—+.ÎHø/sQ??Ú„
000011A0  2C BD 41 BE AD 89 AC FE 6D F5 0C 65 63 57 3F C8  ,½A¾.‰¬þmõ.ecW?È
000011B0  9C CE 4B 50 9E 56 C2 25 B7 FA EA EB 07 0A FD 85  œÎKPžVÂ%·úêë..ý…
000011C0  D8 FD 4C 20 44 95 86 C7 0C BA FA 74 93 3B EA 9B  ØýL D•†Ç.ºút“;ê›
000011D0  65 10 18 48 1B 87 55 3C AD AB 09 15 52 C9 4C DF  e..H.‡U<.«..RÉLß
000011E0  04 93 F7 FB EB DE AB 62 71 C8 B4 17 FD 68 66 A1  .“÷ûëÞ«bqÈ´.ýhf¡
000011F0  1D 5C 25 E2 FF 29 30 EC 2E CF F1 F5 8C A2 D7 D2  .\%âÿ)0ì.ÏñõŒ¢×Ò
00001200  1D 6A 0A 43 00 83 8A 13 DD BA 6D C2 18 FD 9D 05  .j.C.ƒŠ.ݺmÂ.ý..
00001210  F3 A1 DE 3D 39 0B 16 47 56 0E 68 57 3D 6C 05 56  ó¡Þ=9..GV.hW=l.V
00001220  25 0D 1D 9A EC 62 26 00 10 4E AD 2A 53 3B 48 A6  %..šìb&..N.*S;H¦
00001230  21 96 02 1E D6 32 06 EE 92 87 35 C1 D5 E5 FB 7C  !–..Ö2.î’‡5ÁÕåû|
00001240  FE 9B 83 90 0D 4F D0 A0 1E D5 7E E6 3B 28 A2 31  þ›ƒ..OÐ*.Õ~æ;(¢1
00001250  5C 41 DB 19 06 7F C9 37 14 EF 4D 3A 07 CF 6C 75  \AÛ...É7.ïM:.Ïlu
00001260  27 C6 9E 4B E5 E6 90 92 25 C0 2E 34 42 F6 98 44  'ÆžKåæ.’%À.4Bö˜D
00001270  2A 1C 61 C4 80 66 89 1C 01 4F 32 2B D0 3C B6 3D  *.aÄ€f‰..O2+Ð<¶=
What would happen if you cut those bytes and change the 1280 back to 980?

Then again, it's probably completly useless info!

And no, I do not own a TB and I am currently on OFW, this is just an observation.

I wonder if they are using this method:

http://www.ps3devwiki.com/wiki/SPU_LS_Overflow_Exploit

Looking at the wiki, the extra bytes are after the Metadata Section of the eboot (metadata is from offset 410 onwards).

This section is encrypted (obviously) and can't be viewed via a hex editor so I have no idea exactly where these extra bytes are placed.
Last edited by JonahUK; 06-16-2012 at 12:01 PM. Reason: Minor change -> it's 900 bytes not 300
JonahUK is offline   Reply With Quote
Likes: (1)
Old 06-14-2012   #2
H3avyRa1n
Senior Member
 
H3avyRa1n's Avatar
 
Join Date: Aug 2011
Posts: 1,274
Likes: 179
Liked 844 Times in 393 Posts
Mentioned: 61 Post(s)
Tagged: 0 Thread(s)
can you compare to the header of one of the e3 eboots and check the size?
H3avyRa1n is offline   Reply With Quote
Likes: (1)
Old 06-14-2012   #3
JonahUK
Senior Member
 
Join Date: Jul 2011
Location: Salford, UK
Posts: 1,278
Likes: 590
Liked 794 Times in 499 Posts
Mentioned: 166 Post(s)
Tagged: 0 Thread(s)
Just open one with a hex editor and check, the offsets above are set, they won't change. If they are using the same method, I suspect that 980 maybe something else.
JonahUK is offline   Reply With Quote
Old 06-14-2012   #4
aries2k
Member
 
Join Date: Aug 2007
Location: Portugal
Posts: 588
Likes: 527
Liked 210 Times in 136 Posts
Mentioned: 19 Post(s)
Tagged: 0 Thread(s)
I just checked NG3 and Fifa Street, both are 09 80.
__________________
PS3 EU 60gb CFW DEX 4.30, PS3 EU 60gb 4.30 Rebug
Last edited by aries2k; 06-14-2012 at 06:45 PM.
aries2k is offline   Reply With Quote
Old 06-14-2012   #5
screwhead
Senior Member
 
screwhead's Avatar
 
Join Date: Sep 2011
Location: Ipanema
Posts: 1,234
Likes: 575
Liked 266 Times in 191 Posts
Mentioned: 43 Post(s)
Tagged: 0 Thread(s)
Originally Posted by H3avyRa1n View Post
can you compare to the header of one of the e3 eboots and check the size?
I like the way you think
************* [ - Post Merged - ] *************
Originally Posted by aries2k View Post
I just checked NG3 and Fifa Street, both are 09 80.
I guess E3 uses different method? TB eboots may have the extra due to there method or some security??? What does everyone think? @euss where you at LOL
__________________
I pray to die in space. So cover me in snow.
Last edited by screwhead; 06-14-2012 at 08:10 PM.
screwhead is offline   Reply With Quote
Old 06-15-2012   #6
Egg 'n' chips
Member
 
Egg 'n' chips's Avatar
 
Join Date: May 2012
Posts: 80
Likes: 69
Liked 13 Times in 11 Posts
Mentioned: 8 Post(s)
Tagged: 0 Thread(s)
the extra data could be that code that eats at your HDD.
Egg 'n' chips is offline   Reply With Quote
Likes: (1)
Old 06-15-2012   #7
JonahUK
Senior Member
 
Join Date: Jul 2011
Location: Salford, UK
Posts: 1,278
Likes: 590
Liked 794 Times in 499 Posts
Mentioned: 166 Post(s)
Tagged: 0 Thread(s)
Max Payne 3 also has the header set at 1280 so E3 may not use the same method as theirs are set to 980.

We know the TB eboots are signed for 3.55 so it may be worth somebody who knows about selfs removing these 300 extra bytes and adjusting the necessary offsets to see what happens.
JonahUK is offline   Reply With Quote
Likes: (1)
Old 06-15-2012   #8
japsander
 
japsander's Avatar
 
Join Date: Jun 2009
Location: up sh*t creek without a paddle
Posts: 7,674
Likes: 2,771
Liked 5,292 Times in 2,530 Posts
Mentioned: 360 Post(s)
Tagged: 1 Thread(s)
im suprised myself that a ps3devwiki guru hasnt chipped in any insight yet.
japsander is online now   Reply With Quote
Likes: (1)
Old 06-15-2012   #9
H3avyRa1n
Senior Member
 
H3avyRa1n's Avatar
 
Join Date: Aug 2011
Posts: 1,274
Likes: 179
Liked 844 Times in 393 Posts
Mentioned: 61 Post(s)
Tagged: 0 Thread(s)
Originally Posted by screwhead View Post
TB eboots may have the extra due to there method or some security??? What does everyone think? @euss where you at LOL
it makes sense because the security part mainly goes in the header, this is done in webservices for instance.
H3avyRa1n is offline   Reply With Quote
Likes: (1)
Old 06-15-2012   #10
screwhead
Senior Member
 
screwhead's Avatar
 
Join Date: Sep 2011
Location: Ipanema
Posts: 1,234
Likes: 575
Liked 266 Times in 191 Posts
Mentioned: 43 Post(s)
Tagged: 0 Thread(s)
Alot of good ideas. Now to find out how to do some of things mentioned. I don't know little to nothing about how to go about it.

It's very nice to see everyone sharing theories and working together.
__________________
I pray to die in space. So cover me in snow.
screwhead is offline   Reply With Quote
Reply
Page 1 of 2 1 2

Bookmarks

« Previous Thread | Next Thread »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump



PS3Hax.net is Copyright © 2010-2013.
Use of this site is governed by our Terms of Use and Privacy Policy. All Trademarks and images are owned by their respected owners.
Posts and links are subject to each author on this forum and are no way affiliated with the operations and/or opinions of ps3hax.net
All times are GMT -5. The time now is 03:58 PM.
Powered by vBulletin. Copyright ©2000 - 2007, Jelsoft Enterprises Ltd.