[harryoke]

since we are now on DEX & it can run unsigned code...can a dev please compile a unsigned pkg that will dump a decrypted eboot from memory on DEX4.11 ...we could then simply sign with 3.55 keys and everyones a winner....a dycrypted eboot has already been dumped from memory on 3.55..the only thing stopping us before is we couldnt run pkg on any firmware higher than 3.55 now we can....its worth a go

[carldenning]

Originally Posted by harryoke since we are now on DEX & it can run unsigned code...can a dev please compile a unsigned pkg that will dump a decrypted eboot from memory on DEX4.11 ...we could then simply sign with 3.55 keys and everyones a winner....a dycrypted eboot has already been dumped from memory on 3.55..the only thing stopping us before is we couldnt run pkg on any firmware higher than 3.55 now we can....its worth a go

what was the app called that was used to decrypt on 3.55

[cookie42]

Isn't peek/poke needed for that?

[DEFAULTDNB]

05-02-12
cfwprophet:

Project: POC of PS3 RAM Dump and Decrypting 3.6+ Games It was a long run to get the right peoples involved and set up a new team but finally it's up and we already do some nice progress. This time i want to share a litle POC of a RAM dump of the PS3. At this stage i don't want to say too much but we haven't used any hardware or software modifications and also already have done a dump on OFW 3.74. I used BlackBox a small app for the start to get a better understanding and to prove that i'm right. The attached files are from a 3.55 dump and i also have included some parts of my write down. Especially the offset and bytes of the diff between the orig and the dumped elf. I'll need to work more on the project to find a way to also dump and decrypt 3.6+ EBOOT's but it's only a matter of time.

POC_PS3_RAMD.rar‎ (1.44 MB, 198 views)

EDIT:

I couldn't find a working link for POC_PS3_RAMD.rar so I uploaded my copy here:
http://www.mediafire.com/?oas0zmcmmbjb4d8

[harryoke]

found this
http://www.ps3hax.net/showthread.php?t=2822

POC_PS3_RAMD.rar is in .elf format .... needs compiling to a pkg ....i know there is a dev out there who maybe can shed somemore light on this subject...please help..even if it is to tell us we are wrong in our asumptions.

[DEFAULTDNB]

Originally Posted by harryoke found this http://www.ps3hax.net/showthread.php?t=2822

hmm its from 2008 and a 5 post wonder.... I dunno....

[ALDONUM1]

Sounds good actually. Too good. Bet this is how TB works. Actually no I don't because I have no idea what I'm talking about.

[DEFAULTDNB]

Originally Posted by harryoke POC_PS3_RAMD.rar is in .elf format .... needs compiling to a pkg ....i know there is a dev out there who maybe can shed somemore light on this subject...please help..even if it is to tell us we are wrong in our asumptions.

http://www.ps3hax.net/showpost.php?p...8&postcount=86

Check it out. Whats even odder is that @Asure posted in the 2008 thread here, and is the one posting in this thread telling us relevant info strange but true :P

[carldenning]

Originally Posted by harryoke found this http://www.ps3hax.net/showthread.php?t=2822 POC_PS3_RAMD.rar is in .elf format .... needs compiling to a pkg ....i know there is a dev out there who maybe can shed somemore light on this subject...please help..even if it is to tell us we are wrong in our asumptions.

i thought they are elf from the dump, not the app that made the dumps

[DEFAULTDNB]

QuickDumpR v0.1 for PS3: What is it? QuickDumpR is a tiny app that will dump the ram to the hdd in 15 seconds from launch to xmb. It uses the same code as the Awesome Peek Poker, but takes up less space in the ram, thus a less messy dump! Instructions: Just download it, install it and run it. Then either use Comgenie's Awesome File Manager or an FTP app to copy it off for analysis on yout PC. It dumps the ram to the same place as Awesome Peek Poker ("/dev_hdd0/dump.bin") so thats were to look. Oh, and be sure to delete a previous dump before you dump again, it will increment to the file. Changelog: V0.1 • Initial release

Would this be any use? Anyone got a working link/copy?