[Asure]

Originally Posted by DEFAULTDNB http://www.ps3hax.net/showpost.php?p...8&postcount=86 Check it out. Whats even odder is that @Asure posted in the 2008 thread here, and is the one posting in this thread telling us relevant info strange but true :P

Wow, i've been lurking here so long?
To add to the conspiracy, it seems i also edited that 2008 post at some point hehehe.

Anyway, i remember a lot of stuff i read..

For dumping stuff on DEX it seems easiest to simply get the thing to crash and generate a few core dumps so we can inspect what's going on in ram. I'm pretty sure most games won't like it when there are assets missing like backgrounds, specific files, etc. Guess we need SDK for that..(which is illegal to own/discuss i'd think?)

[Gonzakpo]

Originally Posted by Asure Wow, i've been lurking here so long? To add to the conspiracy, it seems i also edited that 2008 post at some point hehehe. Anyway, i remember a lot of stuff i read.. For dumping stuff on DEX it seems easiest to simply get the thing to crash and generate a few core dumps so we can inspect what's going on in ram. I'm pretty sure most games won't like it when there are assets missing like backgrounds, specific files, etc. Guess we need SDK for that..(which is illegal to own/discuss i'd think?)

Well, I don't think it's illegal to discuss it. As far as I know, we could be talking about our "imaginary friend" called Mr. Simon Dean Kennedy (Mr. SDK).

[ryant001]

Originally Posted by Gonzakpo It not easy at all. To dump the RAM your PS3 must be on (obviously!!!!) and that means that the RAM will be running at a pretty high speed (I don't remember the exact frequency but it's on the wiki if somebody wants to check it). If you need to read the memory at that speed you'll need an even faster logic analyzer (according to Nyquist law you need at least to sample at twice the frequency, but in reality it's even much more). That kind of logic analyzer costs thousands of dollars or more. So, that way is not an easy one. Another possibility would be slowing down all the system by messing with the PS3 clock generator. But I can't guarantee your PS3 will even boot. But all in all, dumping the ram using hardware is a very complex task. My advice is to try to get it via software if it's possible (I don't know, I'm a hardware guy, not a software guy).

Fair enough, that was just a guess, it's good to hear from someone with some kind of experience.

@harryoke Too bad that's the sad reality, they will just tell you it's impossible or point you in the wrong direction (or better yet they will tell you something like "we know how to do it but don't ask us because we won't tell you")

[yotsuya]

The DEX have a memory dump option, (core dump) but need an exception (PPU, SPU or RSX) to by created.
If someone create a fself executing the BIN (something like a launcher) and insering the exception after the BIN is in memory to generate the dump, it could have the decripted BIN
Or not .... im not a dev ...

[Gonzakpo]

Originally Posted by yotsuya The DEX have a memory dump option, (core dump) but need an exception (PPU, SPU or RSX) to by created. If someone create a fself executing the BIN (something like a launcher) and insering the exception after the BIN is in memory to generate the dump, it could have the decripted BIN Or not .... im not a dev ...

Are you sure you are not a dev??

[Asure]

I think it's better to just inform yourself and read & learn, it's what the devs want you to do..

Imagine the following dev position for a moment: You have the keys to the city, but Sony will sue you so hard, you wish you never dropped them.

That being said, from the SDK docs 3.60 you can google a bit, and find this:

"The core file is output in the ELF file format of the ET_CORE type. A single core file is created per process. The core file contains memory content that was mapped to the process address space; information of the PPU, SPU register, and synchronization object; the thread state; the content of the SPU local storage; etc. For details on the information included in the core file and its format, refer to the "File Format of the Core File" chapter."

And

"Exceptions for which a Core File Will Be Output - Exceptions occurring outside the game application - Foot switch operation (only on the Reference Tool - excluding DECR-1400J/DECR-1400A) - Trigger feature of the Target Manager

Obviously we don't have a foot switch, but what if we abuse target manager with that 'check' function?

[ryant001]

Originally Posted by Asure I think it's better to just inform yourself and read & learn, it's what the devs want you to do.. Imagine the following dev position for a moment: You have the keys to the city, but Sony will sue you so hard, you wish you never dropped them.

You can read and learn all you want but it could(and will) take you years to reach the same level of knowledge of some of the devs and even if you reach that level you still need to start developing everything from scratch.

So,why should we be forced to invent the wheel all over again when they already have the solution to most of our problems?
And the usual "Sony is scary" excuse doesn't mean anything anymore knowing that they could simply release things anonymously.

[CaptainCPS-X]

The idea to create a launcher that would "crash" to get a dump of the memory sounds pretty good.

As soon as I get my console back to life on DEX I will try to mess with a few things


************* [ - Post Merged - ] *************

If I had the knowledge to get the ps3 keys someway, Im not scared of anyone, I would just release them, there are many ways to do it, maybe I go to a starbuck or BKing and just post it there with a really crappy PSP, that I could just dump in the garbage before going out LOL (just to make sure xD).

Then I just go home and see how the scene comes back to life, FREE, as it should be.

SeeYa!

[yotsuya]

Originally Posted by Asure I think it's better to just inform yourself and read & learn, it's what the devs want you to do.. Imagine the following dev position for a moment: You have the keys to the city, but Sony will sue you so hard, you wish you never dropped them. That being said, from the SDK docs 3.60 you can google a bit, and find this: And Obviously we don't have a foot switch, but what if we abuse target manager with that 'check' function?

I lost 5 days "playing" with TM trying to generate a dump executing the EBOOT in diferent ways (from hhd, app_home, br_dev .....) in diferent modes (debug, release ...) but nothing, the core dump option never get available in TM. With no info or skills ... I can´t do much.

I will continue my "research" as i like to "play" with the ps3 more than play on the ps3

And if the "devs" have and want the keys out, release them anonymously, but i get it, everyone want their 15 minutes of fame.

[hintgiver]

Originally Posted by yotsuya I lost 5 days "playing" with TM trying to generate a dump executing the EBOOT in diferent ways (from hhd, app_home, br_dev .....) in diferent modes (debug, release ...) but nothing, the core dump option never get available in TM. With no info or skills ... I can´t do much. I will continue my "research" as i like to "play" with the ps3 more than play on the ps3 And if the "devs" have and want the keys out, release them anonymously, but i get it, everyone want their 15 minutes of fame.

Maybe you need to run the same DEX firmware version like your TM version. Maybe it is not greyed out then. Also it is possible to issue a core dump over the TM command line tool. Maybe it work that way