[GraVoX959]

@master737373 is always right.. he's a fat chick and I taught him everything he knows

Sent from my GT-I9100 using Tapatalk 2

[erexx]

Isn't the bootldr a 48bit static key stored in e-fuses and burned at the factory?
If so it can be read right off an un-capped / shaved cell using a SEM.

master737373 if you have an unblock-able software method to get that key it means that all future firmware keys are compromised and its truly is game over for PS3 DRM.

[master737373]

Originally Posted by erexx Isn't the bootldr a 48bit static key stored in e-fuses and burned at the factory? If so it can be read right off an un-capped / shaved cell using a SEM. master737373 if you have an unblock-able software method to get that key it means that all future firmware keys are compromised and its truly is game over for PS3 DRM.

The method I know of can be used on any firmware up to 3.55. It uses software to get bootldr. And yes, the bootldr is done at the factory. But if you decap the Cell, you might as well just go for your pck0 using an electron microscope. But it's VERY expensive.

[ryant001]

Originally Posted by master737373 The method I know of can be used on any firmware up to 3.55. It uses software to get bootldr. And yes, the bootldr is done at the factory. But if you decap the Cell, you might as well just go for your pck0 using an electron microscope. But it's VERY expensive.

Well, at least we know that a software method to dump bootldr does exist.
Guess what's gonna be leaked next?

[JustThatDude]

Originally Posted by master737373 The method I know of can be used on any firmware up to 3.55. It uses software to get bootldr. And yes, the bootldr is done at the factory. But if you decap the Cell, you might as well just go for your pck0 using an electron microscope. But it's VERY expensive.

Why hold be hind and tell us your just acting like math right now

[master737373]

Originally Posted by JustThatDude Why hold be hind and tell us your just acting like math right now

You have the keys to decrypt lv0 which is what's in bootldr. The method that I haven't said yet will just lead to the same outcome - the keys to decrypt lv0. That's the whole reason behind getting bootldr.

[JustThatDude]

Originally Posted by master737373 You have the keys to decrypt lv0 which is what's in bootldr. The method that I haven't said yet will just lead to the same outcome - the keys to decrypt lv0. That's the whole reason behind getting bootldr.

Ya but you don't get it Bootldr would be cracked wide open so Sony wouldn't be able to do anything. Homebrew would be coming out the ass. We would have a scene again. And everything would be okay.

[ryant001]

Originally Posted by master737373 You have the keys to decrypt lv0 which is what's in bootldr. The method that I haven't said yet will just lead to the same outcome - the keys to decrypt lv0. That's the whole reason behind getting bootldr.

Then it's not like releasing it would hurt anybody since we already have everything else.
It's just just for completeness sake.

[master737373]

Originally Posted by ryant001 Then it's not like releasing it would hurt anybody since we already have everything else. It's just just for completeness sake.

I get where you're coming from. Honestly, I do.

With bootldr, you won't get anything else important besides the lv0 keys.

[gambaownsu]

Originally Posted by master737373 I get where you're coming from. Honestly, I do. With bootldr, you won't get anything else important besides the lv0 keys.

Well, you could explain in a sort of tutorial on how to get it so others get their hand dirty on it. That would be in the same time a learning experience for other developers who's intrigued into getting the bootldr - especially when there's a SOFTWARE way to get it without using an hardware which is really interesting.