SKFU and Demonhades thoughts on PSJailbreak - PS3Hax Network

Pirate · 08-20-2010

Unless you have been sleeping under the rock for the last 24 hours, you most likely heard about PSJailbreak modchip which allows backups to be booted on PS3. Demonhades and SKFU provide their thoughts on PSJailbreak below:

SKFU (via Blog)

I just tested the software they uploaded and can confirm it works so far.

I can tell a bit about the backup manager. It seems the software uses bd_emu features to manage the backups. The HDD to use, should have a modified bd emu format, which sets all backups on first position, so the PS3 detects 'em all. Then you can choose the image to boot via the manager.

To directly copy and boot a game, the software would need to decrypt all layers on the fly. Meaning it decrypts all executables somehow, else it won't run. Even on a debug unit.

The hardware look like a copy of the original PS3 jigstick, used in SONY service centers to repair broken PlayStation3 SKU's. Someone internal leaked or sold a stick, so they had the chance to reverse and clone the hardware.

The stick should boot before the normal firmware does, so it's hard to patch it. Maybe SONY could update the bootcode to prevent it, set it to a revoke list.

By the way, in all videos they use debug PS3's to run the software. There is no video showing the actual process booting on a retail PS3 afaik. So I do not confirm that this is true, yet!

If it's as true as it looks this time, good job guys!

Demonhades(via Blog)

Well I see that recently raised a stir is mounted by a chip of course to load backups from a pendrive, at first glance one might say it's fake if we did not know of studies conducted years ago and let us see many more hidden things that not all users can understand, in this case we speak of the card jig, the jig is used by the card sony sat for maintenance and restoration in ps3.

In short, this jig card has been removed from the payment sony sat.. so now try to expand the money spent only and once recovered the money spent in obtaining this device the reproduction and cloning of the device will be imminent.

When I saw the body of the above, first I noticed that the sample vsh known and used parts of a debug.. and of course if one is launching retail which does not make much sense, could only think one way quickly- THE CONVERTER RETAIL TO DEBUG.

This converter is thought to sony and service for devs have this jig card (aka USB dongle), allowing this USB is that:

Releasing the boot ini dev_usb0 and a sequence of buttons that change the state of syscon as we launch the initial boot usb dongle, then interprets the bootstrap and load the necessary files from the dongle itself temporarily leaving the ram doing a false reboot.

According to the store have told the seller, no residue on the PS3.. so it fits the above description.

The idea is quite clear gentlemen, emulates the fw of trm syscon and we have a debug interprets loading the kernel debug and providing all the features to debug vshmain time, this results in loading unsigned code.

This allows us as I mentioned months ago to launch pkgs from ubs, since it has a browser for managing them.

The official BDEMU disk loading before you activate the mediatype BD and then run the loader to the channel of communication with the real reader would be closed and only would use the BD-emu, emu and the bd can not share the same channel communication.

In this case to remove the layer is used to extract cellftp to an external source of filesystems without pre-decoded and converted to debug layer.

Executables can be created with the sdk, and generated their own loader which removes the layer of encryption (this if it will extract the discs, not linux), then the PS3Gen (published as a matter of 1 month) can be create iso patched with valid soft.esto itself mean that everything is made in the PS3 SDK (emulators, applications, etc) will be loaded without problems, as we are doing the same as the 360 with jtag hack it uses a core debug.

The loader is loaded by the execution path that recognizes the actual application manager, loaded via app.

TRUE GENTLEMEN OF THE NEWS WOULD BE A GREAT TIME AND NEWS bad news... Let me explain:

1. NO SERIOUS WORK DONE BY HACKERS OR RESEARCHERS.

2. MATERIAL IS MADE LIKE THE MAGIC BATTERY FOR PSP WITH SONY TOOLS.

In short, PS3 has fallen to the very tools you use in your SAT Sony... that if Sony can plug it into the next update.. just have to cancel the initial boot usb to close the bar, because the boss is syscon.

devil hunter · 08-20-2010

thats what i was looking for , thanx pirate. However , they mentioned that once you patch it

you cant roll back to the default status , but there is no write process ,it is just some data run

from the dongle ? can you explain that please ?

SniperSnake · 08-20-2010

the part about how all the videos are made with debug consoles is wrong, the dongle is adding a few debug menu options to the xmb....geez if they were all playing on true debug consoles then how did they do it befor richdevx patched the manager.pkg to run on true debug consoles? ****ing common sense people

also i have never heard of a slim ps3 debug unit and there is a vid of a ps3 slim running teh jail break

GregoryRasputin · 08-20-2010

Originally Posted by SniperSnake

the part about how all the videos are made with debug consoles is wrong

SKFU stated that not long after the news broke, i think his views will be different now.

martin-c · 08-20-2010

Originally Posted by SniperSnake

the part about how all the videos are made with debug consoles is wrong, the dongle is adding a few debug menu options to the xmb....geez if they were all playing on true debug consoles then how did they do it befor richdevx patched the manager.pkg to run on true debug consoles? ****ing common sense people

also i have never heard of a slim ps3 debug unit and there is a vid of a ps3 slim running teh jail break

No^^ There are 2 vid's of ps3 slim running the Jailbreak
Here: http://www.dailymotion.com/video/xei...eak_videogames
and
Here: YouTube - PS Jailbreak PS3 Modchip Video Guide HD :: Checkout PS Jailbreak Here!

konangrit · 08-20-2010

By the way, in all videos they use debug PS3's to run the software. There is no video showing the actual process booting on a retail PS3 afaik. So I do not confirm that this is true, yet!

Maybe this quote is old, but the latest video from Ozmodchips shows it on a slim, AFAIK debug PS3s don't come in that form factor.

Edit: a bit late with that lol

Pockets69 · 08-20-2010

Originally Posted by SniperSnake

the part about how all the videos are made with debug consoles is wrong, the dongle is adding a few debug menu options to the xmb....geez if they were all playing on true debug consoles then how did they do it befor richdevx patched the manager.pkg to run on true debug consoles? ****ing common sense people

also i have never heard of a slim ps3 debug unit and there is a vid of a ps3 slim running teh jail break

Finally someone that says something that makes sense this is not being played on debugs!

don't know if you have seen it or not but some of you are asking for game play here it is.

http://www.dailymotion.com/video/xei...t=1#from=embed

FantmN0de · 08-20-2010

yes ther are slim debug units as one has been sold on ******* in thepast month

illogic · 08-20-2010

Yeah ps3 slim test units do exist.

Based on what Demonhades stated this is actually pretty lame. Nothing was hacked, someone simply leaked the dongle and it is now being cloned. Making the manager.pkg was the only real work that was done.

gersrt · 08-20-2010

I think it was established long before now, that nothing was hacked.

08-20-2010	#1
Pirate Join Date: Feb 2007 Posts: 6,942 Likes: 370 Liked 8,002 Times in 1,239 Posts Mentioned: 575 Post(s) Tagged: 0 Thread(s)	SKFU and Demonhades thoughts on PSJailbreak Unless you have been sleeping under the rock for the last 24 hours, you most likely heard about PSJailbreak modchip which allows backups to be booted on PS3. Demonhades and SKFU provide their thoughts on PSJailbreak below: SKFU (via Blog) I just tested the software they uploaded and can confirm it works so far. I can tell a bit about the backup manager. It seems the software uses bd_emu features to manage the backups. The HDD to use, should have a modified bd emu format, which sets all backups on first position, so the PS3 detects 'em all. Then you can choose the image to boot via the manager. To directly copy and boot a game, the software would need to decrypt all layers on the fly. Meaning it decrypts all executables somehow, else it won't run. Even on a debug unit. The hardware look like a copy of the original PS3 jigstick, used in SONY service centers to repair broken PlayStation3 SKU's. Someone internal leaked or sold a stick, so they had the chance to reverse and clone the hardware. The stick should boot before the normal firmware does, so it's hard to patch it. Maybe SONY could update the bootcode to prevent it, set it to a revoke list. By the way, in all videos they use debug PS3's to run the software. There is no video showing the actual process booting on a retail PS3 afaik. So I do not confirm that this is true, yet! If it's as true as it looks this time, good job guys! Demonhades(via Blog) Well I see that recently raised a stir is mounted by a chip of course to load backups from a pendrive, at first glance one might say it's fake if we did not know of studies conducted years ago and let us see many more hidden things that not all users can understand, in this case we speak of the card jig, the jig is used by the card sony sat for maintenance and restoration in ps3. In short, this jig card has been removed from the payment sony sat.. so now try to expand the money spent only and once recovered the money spent in obtaining this device the reproduction and cloning of the device will be imminent. When I saw the body of the above, first I noticed that the sample vsh known and used parts of a debug.. and of course if one is launching retail which does not make much sense, could only think one way quickly- THE CONVERTER RETAIL TO DEBUG. This converter is thought to sony and service for devs have this jig card (aka USB dongle), allowing this USB is that: Releasing the boot ini dev_usb0 and a sequence of buttons that change the state of syscon as we launch the initial boot usb dongle, then interprets the bootstrap and load the necessary files from the dongle itself temporarily leaving the ram doing a false reboot. According to the store have told the seller, no residue on the PS3.. so it fits the above description. The idea is quite clear gentlemen, emulates the fw of trm syscon and we have a debug interprets loading the kernel debug and providing all the features to debug vshmain time, this results in loading unsigned code. This allows us as I mentioned months ago to launch pkgs from ubs, since it has a browser for managing them. The official BDEMU disk loading before you activate the mediatype BD and then run the loader to the channel of communication with the real reader would be closed and only would use the BD-emu, emu and the bd can not share the same channel communication. In this case to remove the layer is used to extract cellftp to an external source of filesystems without pre-decoded and converted to debug layer. Executables can be created with the sdk, and generated their own loader which removes the layer of encryption (this if it will extract the discs, not linux), then the PS3Gen (published as a matter of 1 month) can be create iso patched with valid soft.esto itself mean that everything is made in the PS3 SDK (emulators, applications, etc) will be loaded without problems, as we are doing the same as the 360 with jtag hack it uses a core debug. The loader is loaded by the execution path that recognizes the actual application manager, loaded via app. TRUE GENTLEMEN OF THE NEWS WOULD BE A GREAT TIME AND NEWS bad news... Let me explain: 1. NO SERIOUS WORK DONE BY HACKERS OR RESEARCHERS. 2. MATERIAL IS MADE LIKE THE MAGIC BATTERY FOR PSP WITH SONY TOOLS. In short, PS3 has fallen to the very tools you use in your SAT Sony... that if Sony can plug it into the next update.. just have to cancel the initial boot usb to close the bar, because the boss is syscon.

08-20-2010	#2
devil hunter Member Join Date: Aug 2008 Posts: 86 Likes: 22 Liked 10 Times in 6 Posts Mentioned: 0 Post(s) Tagged: 0 Thread(s)	thats what i was looking for , thanx pirate. However , they mentioned that once you patch it you cant roll back to the default status , but there is no write process ,it is just some data run from the dongle ? can you explain that please ? Last edited by devil hunter; 08-20-2010 at 12:13 PM.

		PS3Hax Network - Playstation 3 Hacks and Mods > News > PS3Hax News
SKFU and Demonhades thoughts on PSJailbreak

08-20-2010	#3
SniperSnake Member Join Date: Feb 2008 Posts: 763 Likes: 62 Liked 120 Times in 75 Posts Mentioned: 32 Post(s) Tagged: 0 Thread(s)	the part about how all the videos are made with debug consoles is wrong, the dongle is adding a few debug menu options to the xmb....geez if they were all playing on true debug consoles then how did they do it befor richdevx patched the manager.pkg to run on true debug consoles? ****ing common sense people also i have never heard of a slim ps3 debug unit and there is a vid of a ps3 slim running teh jail break

08-20-2010	#8
FantmN0de Apprentice Join Date: Feb 2008 Posts: 19 Likes: 2 Liked 1 Time in 1 Post Mentioned: 0 Post(s) Tagged: 0 Thread(s)	yes ther are slim debug units as one has been sold on ******* in thepast month

08-20-2010	#9
illogic Apprentice Join Date: Mar 2009 Posts: 12 Likes: 0 Liked 1 Time in 1 Post Mentioned: 0 Post(s) Tagged: 0 Thread(s)	Yeah ps3 slim test units do exist. Based on what Demonhades stated this is actually pretty lame. Nothing was hacked, someone simply leaked the dongle and it is now being cloned. Making the manager.pkg was the only real work that was done.

08-20-2010	#10
gersrt Apprentice Join Date: Jan 2008 Posts: 29 Likes: 1 Liked 2 Times in 2 Posts Mentioned: 0 Post(s) Tagged: 0 Thread(s)	I think it was established long before now, that nothing was hacked.

User Name		Remember Me?
Password