[Isleofdoom]

Neat little tool comes in handy did try a game with it but got an error

[Candyhax]

I think this is a great projekt. Cloud calculation would be really cool, more of that please. Dyere can we donate?

[KDSBest]

Originally Posted by hellsing9 SAPs.? xD Besides that, yeah i agree with you in so many points and we know and even was a research done by military on certain cripto methods, that was posted here about the private keys (i don't find the article). This article and tool was NOT meant to bring hope to 3K users, is just if you can call it in some way *Do some research and share*. Fact is 3.55 = the king of the hill as highest of hackable firmware but another thing i think to myself when i post in here that 3.55 will not last forever. In some part even with so much progress *we* are getting limited if we see the whole as a *civilization* has to be a break-point in all of this. In all of this leaks, etc. If we keep on 3.55 were is *secure* to stay (for how many years?) we are not *evolving* quite the contrary we are still researching, collecting bricks and making some nice modificactions or constantly repairing and discovering awesome data from ONE piramid only, when you have two more to explore. Get my point?. I don't know what will happen in the future, since the leaks seems to appear out of the blue and we have many RAW facts to research if someone is willing to do so. Long story short..more piramids to discover how were built, where they are from if exists any chance of crack it open. Human nature = Curiosity. Also that any new user that lurks or register on any scene site will ask the same, is inevitable. Sometimes for some people is so hard to see what it's in front on them that they need someone to tell them what is and what will happen if he open his/her eyes to that reality.

The lv0 private key suffered the same failure like 3.55 stuff. So you can patch lv0 which basicly breaks any Chain of Trust member below. Since you got the private key you can make the ps3 eat your lv0. The priv key IMHO is on ever console generation the same. So 3k Consoles should be hackable. Just noone is interested in it noone works on it.

And to get back to this tool. In my opinion it sounds like complete garbage. Yet another brute force/aes keys are crackable bla bla.

The problem is that none of us own a super computer okay. Sad but okay.
We can lower the problem easily in key entropy. No key has a repeatable "value". For example no key ever has AA AA or BC BC in it.
If we skip such "keys" it might go faster. Now back to reality checking keys against a big ruleset might be even slower than doing the AES calculation that is why any idea in that direction is not given the wanted results.

It is hard to understand for many people that if you lower the key count to test and lose performance anyway than the win is nothing. So you still need ages if you don't lucky guess. So why in every ****in' earth can he predict keys? And why can he predict keys now where every ****in' key is available to us. What a ****in' hoax. Got no more interesting news hax?

There are less human interested in hackin' their ps3 than you guys belive and more importantly there are even less people who will install any aes cracking tool and let it run all day long. You really waste your time mate. If you want to create some more interesting really good stuff. I can give you plenty I just lack in interested and time, but if you have fun with such stuff I can give you things that really would help the community instead of such things. If it were for your fun to develope and so or for learning purposes *thumb up* but if you really belive that you can crack an aes key with brute force or any of your mathematic genius stuff. Than you did something one of the biggest mathematic professors of this earth failed. Cracking a often used military crypto algorithm is paid badass belive it or not. Alot genius people tried such stuff and if it really is just dumb brute forcing we have thousands of such tools. If you managed to outsmart the best crypto maniacs "I'll lift my hat" but for now it's big talk and nothing behind it.

Let's face the numbers since i am bored as hell atm:

32 bytes key = 256 bit key
16 byte IV = 128 bit IV

We ignore the IV atm. Let's face the key:
A 256 bit key has 1,15792089 * 10^77 possibilities.
In optimistical guesses 1000 FLOPS are used as 1 key test in AES.
Around 17 Penta FLOPS by a this monster IBM BlueGene/Q, 98.304 Power BQC-Prozessoren (16 Kerne, 1,60 GHz), 1,6 PB RAM.
17 * 1000 * 1000 * 1000 * 1000 * 1000 = 17 * 10 ^ 15 FLOPS one test = 1000 FLOPS means 17 * 10 ^ 12 Key tests per second.
An average Year has 31536000 seconds.

No. of Years to crack AES with 256-bit Key = (1,15792089 * 10^77) / [(17 * 10^12) * 31536000]
= 2,15984886 × 10^56 YEARS

so and that is just the key.
The IV:
Around (3,4 * 10^38) / ((17 * 10^12) * 31536000) = 6,3419584 × 10^17

So let's face it. The fastest super computer of current time can't calculate it in under 1 year = don't even try it at home.

So Conclusion why cloud computing doesn't solve everything and key count reduction is not a win in all situations:

1. Try is to reduce the keys to test. Problem is that generating and reading a key list is slow as hell so a faster key check than aes need to pretest the key. Problem most keys have to get tested and they are tested twice now. Let's say you have well rules and removes 40% of all AES keys but needs 50% of the aes calculation time to test against.
This means that you have for 60% of keys 150% time calc and for the other 40% of keys only 50% time calc means you lost. all keys * 60% * 50% time lost - (all keys * 40% * 50% time win) = all keys * 20% * 50% time lost

Seems complicated hard to explain without pictures.

2. Cloud computing. When I was young and ask my father why we don't just connect or put any number of CPUs on a computer and we have super power performance. He laught at me and said there will be a time where managing the units and synchronizing them needs more time than an additional unit will bring. Wise man my old man and now that I'm a professional software engineer I know that this is true.

Did you ever try on a chat server with 100000 Computers send an A. 1 byte and it will take some time...
And you need 100000+ PCs to beat the super computer I calculated for you which was several billion years or more to compute anything.

I could endless bla bla and rage about this bull**** but I have to make a cut now really.

[hellsing9]

Originally Posted by KDSBest The lv0 private key suffered the same failure like 3.55 stuff. So you can patch lv0 which basicly breaks any Chain of Trust member below. Since you got the private key you can make the ps3 eat your lv0. The priv key IMHO is on ever console generation the same. So 3k Consoles should be hackable. Just noone is interested in it noone works on it. And to get back to this tool. In my opinion it sounds like complete garbage. Yet another brute force/aes keys are crackable bla bla. The problem is that none of us own a super computer okay. Sad but okay. We can lower the problem easily in key entropy. No key has a repeatable "value". For example no key ever has AA AA or BC BC in it. If we skip such "keys" it might go faster. Now back to reality checking keys against a big ruleset might be even slower than doing the AES calculation that is why any idea in that direction is not given the wanted results. It is hard to understand for many people that if you lower the key count to test and lose performance anyway than the win is nothing. So you still need ages if you don't lucky guess. So why in every ****in' earth can he predict keys? And why can he predict keys now where every ****in' key is available to us. What a ****in' hoax. Got no more interesting news hax? There are less human interested in hackin' their ps3 than you guys belive and more importantly there are even less people who will install any aes cracking tool and let it run all day long. You really waste your time mate. If you want to create some more interesting really good stuff. I can give you plenty I just lack in interested and time, but if you have fun with such stuff I can give you things that really would help the community instead of such things. If it were for your fun to develope and so or for learning purposes *thumb up* but if you really belive that you can crack an aes key with brute force or any of your mathematic genius stuff. Than you did something one of the biggest mathematic professors of this earth failed. Cracking a often used military crypto algorithm is paid badass belive it or not. Alot genius people tried such stuff and if it really is just dumb brute forcing we have thousands of such tools. If you managed to outsmart the best crypto maniacs "I'll lift my hat" but for now it's big talk and nothing behind it. Let's face the numbers since i am bored as hell atm: 32 bytes key = 256 bit key 16 byte IV = 128 bit IV We ignore the IV atm. Let's face the key: A 256 bit key has 1,15792089 * 10^77 possibilities. In optimistical guesses 1000 FLOPS are used as 1 key test in AES. Around 17 Penta FLOPS by a this monster IBM BlueGene/Q, 98.304 Power BQC-Prozessoren (16 Kerne, 1,60 GHz), 1,6 PB RAM. 17 * 1000 * 1000 * 1000 * 1000 * 1000 = 17 * 10 ^ 15 FLOPS one test = 1000 FLOPS means 17 * 10 ^ 12 Key tests per second. An average Year has 31536000 seconds. No. of Years to crack AES with 256-bit Key = (1,15792089 * 10^77) / [(17 * 10^12) * 31536000] = 2,15984886 × 10^56 YEARS so and that is just the key. The IV: Around (3,4 * 10^38) / ((17 * 10^12) * 31536000) = 6,3419584 × 10^17 So let's face it. The fastest super computer of current time can't calculate it in under 1 year = don't even try it at home. So Conclusion why cloud computing doesn't solve everything and key count reduction is not a win in all situations: 1. Try is to reduce the keys to test. Problem is that generating and reading a key list is slow as hell so a faster key check than aes need to pretest the key. Problem most keys have to get tested and they are tested twice now. Let's say you have well rules and removes 40% of all AES keys but needs 50% of the aes calculation time to test against. This means that you have for 60% of keys 150% time calc and for the other 40% of keys only 50% time calc means you lost. all keys * 60% * 50% time lost - (all keys * 40% * 50% time win) = all keys * 20% * 50% time lost Seems complicated hard to explain without pictures. 2. Cloud computing. When I was young and ask my father why we don't just connect or put any number of CPUs on a computer and we have super power performance. He laught at me and said there will be a time where managing the units and synchronizing them needs more time than an additional unit will bring. Wise man my old man and now that I'm a professional software engineer I know that this is true. Did you ever try on a chat server with 100000 Computers send an A. 1 byte and it will take some time... And you need 100000+ PCs to beat the super computer I calculated for you which was several billion years or more to compute anything. I could endless bla bla and rage about this bull**** but I have to make a cut now really.

Bruteforce tecniques were uses long along AES appeared to this scene and let's be honest here for the average user is unknown WTF AES is, unless they read what Kakarot's said about this.

Also how many bruteforce tools you have at your disposal if you want to play for a while with facebook/twitter or any other platform. Tons of them 90% of that apps don't work properly. Cain & Abel..to name one. Why? because the user don't know how to use it.

Here with AES the *problem* is 10 times bigger because you need to have a serious background and it's not a program that you can download from the internetZ you need a supercomputer to calculate what you said and im not on the mood to start with more equations.
You need some SERIOUS piece of hardware and not radioshack one.

Think i did not notice about that?, thing is to generate a reaction and you kinda snapped on me, i can understand that.
Seeing many POC's with the same pattern, it's like searching some working bruteforce to use when you really need one.

I am mad?..nah.
Im just shocked that you jump to my neck like that.

Regards.

Little gift:

EnCt270817563ada5434974767289fd94a871ab41307c70817563ada5434974767289Jvx8gVT/twO Bl9XhlVA8TJ4mV+2t3tI6LszV4dgMt4qp5oy4RFQs0mo1ehnqi9WP8IPT6ji8HIIciTz9tiSjmboGxEM AJgI3mE+vef4tgEqT6lK/cBhvD9w+Fp9LEoQN4Hz5EXa8rgC+rm9N6Ytu4yuG0BewIFbX3G25zKhXIwE mS

http://www.eetimes.com/design/embedd...force-attacks-

[YOUSS84]

yes KILL3ER you can do it !
my be after the ps4.

[YOUSS84]

killer is just a noob wich wants to be a famous dev!
hi had release a FAKE pes2012 fix last year in a french forum
dont trust french "devs"!

[KDSBest]

Originally Posted by YOUSS84 killer is just a noob wich wants to be a famous dev! hi had release a FAKE pes2012 fix last year in a french forum dont trust french "devs"!

I already revealed that, a real dev never ever tried such bull**** he did.