[no0byme]

Originally Posted by flatz I don't like a name PSID because there are two different PSIDs on the PS3: PSID and OpenPSID. So I call the first one as Console ID (it should contains the Target ID of your console). The second one seems to be random bytes (or encrypted bytes) which widely used on PSN stuff.

Thanks for the reply I was wondering because right now, my PS3 doesn't have a CFW so I can't use PSIDPatch to get my console ID, but I heard I could get it through a proxy server with Wireshark. Correct me if I'm wrong.

[flatz]

Originally Posted by no0byme Thanks for the reply I was wondering because right now, my PS3 doesn't have a CFW so I can't use PSIDPatch to get my console ID, but I heard I could I get it through a proxy server with Wireshark. Correct me if I'm wrong.

There are different ways to get your console ID. If you have a flasher then you can make a dump of your flash, then locate your EID0 there and the first 16 bytes will be your Console ID. The second way is using a proxy server as you mentioned. A PS3 will send your console ID in different queries (for example, when you try to login to PSN, when it fetches your act.dat, etc).

[KitsunePaws]

flatz, Thank you. For years I've favored playing games on the 360 due to the ability to alter the save data. Now I can revisit some RPGs that I gave up on due to grinding <3

[hazy]

Originally Posted by flatz There are different ways to get your console ID. If you have a flasher then you can make a dump of your flash, then locate your EID0 there and the first 16 bytes will be your Console ID. The second way is using a proxy server as you mentioned. A PS3 will send your console ID in different queries (for example, when you try to login to PSN, when it fetches your act.dat, etc).

How is the console ID being used for saves? Tools like Xploder and GameGeniePS3 didn't need it but could edit saves.

[MajorDisaster]

Originally Posted by hazy How is the console ID being used for saves? Tools like Xploder and GameGeniePS3 didn't need it but could edit saves.

Xploder and GameGenie do use it not sure about Xploder but GameGenie mods it server side.

[flatz]

Originally Posted by hazy How is the console ID being used for saves? Tools like Xploder and GameGeniePS3 didn't need it but could edit saves.

It used as a HMAC key to hash a file content along with another keys. I suppose that current firmwares don't check these hashes. That's why Xploder don't need your Console ID. You can check it by yourself making a different console ID and resign your save game and then try to load it. But I want to generate all hashes correctly. That's why I used all real parameters. But you can omit some of them.

[BuC-ShoTz]

Originally Posted by flatz It used as a HMAC key to hash a file content along with another keys. I suppose that current firmwares don't check these hashes. That's why Xploder don't need your Console ID. You can check it by yourself making a different console ID and resign your save game and then try to load it. But I want to generate all hashes correctly. That's why I used all real parameters. But you can omit some of them.

Thanks Flatz, Nice Work.

but im having problems with the brute option,
heres the bat file:

Code:

pfdtool.exe -b F:\PS3\SAVEDATA\BLUS31011-AUTO-\ C:\Users\BuC\Downloads\UP0002-BLUS31011_00-CODBLOPS2PATCH02-A0103-V0100-PE\USRDIR\t6_ps3f.elf 0 F:\PS3\SAVEDATA\BLUS31011-AUTO-\SAVEGAME.SVG
pause

global.conf:

Code:

[global]
console_id=0000000X0082000XXXXXXXXXXXXXXXXX // CENSORED
syscon_manager_key=D413B89663E1FE9F75143D3BB4565274
param_sfo_key=0C08000E090504040D010F000406020209060D03
fallback_disc_hash_key=D1C1E10B9C547E689B805DCD9710CE8D
authentication_id=1010000001000003

and the output

any help would be very much appreciated, and thanks again

[flatz]

Originally Posted by BuC-ShoTz im having problems with the brute option, heres the bat file:

It is because you specify wrong file name. You don't need to specify a full file path, only a file name inside a folder (actually it is an entry name inside .PFD).
************* [ - Post Merged - ] *************
By the way, specifying a zero offset causes a very slow processing. Because .ELF files have a 70-80% of code and not data. And I recommend to use a dumper instead of bruteforcing.

[BuC-ShoTz]

Originally Posted by flatz It is because you specify wrong file name. You don't need to specify a full file path, only a file name inside a folder (actually it is an entry name inside .PFD). ************* [ - Post Merged - ] ************* By the way, specifying a zero offset causes a very slow processing. Because .ELF files have a 70-80% of code and not data. And I recommend to use a dumper instead of bruteforcing.

still same, doesnt do anything with filename changed,
my blueray is broken, so im running game from pc app_home from 4.21 REBUG DEX, so maybe it uses fallback key?
i guess i have no way to get the file ids? either
also i had offset 65% before and same did nothing, so i set it to 0 just to be sure

maybe i can find them in ida and debugger mem view

also one question is your secure id dumper, dumping from ppu mem or ls?

[flatz]

Originally Posted by BuC-ShoTz still same, doesnt do anything with filename changed

Can you try to remove such long paths? For example, place your save folder and pfdtool to C:/tmp and run it from this folder?
************* [ - Post Merged - ] *************

Originally Posted by BuC-ShoTz also one question is your secure id dumper, dumping from ppu mem or ls?

It will dump a key from PPU LV2 memory.