Sponsored Links

Sponsored Links

Page 1 of 2 12 LastLast
Results 1 to 10 of 17



  1. #1
    Senior Member Preceptor's Avatar
    Join Date
    Apr 2008
    Posts
    146
    Sponsored Links

    PSGroove Payload Update: Decrypt PKGs from PUP Files Possible

    Sponsored Links
    As a follow-up to his PS3 Hypervisor Reverse Engineering Progress report, today graf_chokolo has published on xorloser's blog (linked above) his updated PSGroove payload which now allows for decrypting PKGs from PS3 PUP files.

    Download: Grafchokolo PSGroove Payload / [Register or Login to view links]

    To quote: "So guys, I promised to you that I will made my PSGroove payload public.

    I just uploaded it to github. Let me first explain how it works. I do not have much free time, so please do not expect me to explain every detail to you. The target group of this release are advanced programmers among you. The source code is not commented but it's clean, well structured and self-explaining.

    My payload has 2 stages. The 1st stage is actually a PSGroove payload. It initializes the gelic device and allocates memory needed for the 2nd stage. Just compile the 1st stage binary, convert it to C hex array and replace the PSGroove payload.

    The 2nd stage does the real job, e.g. decrypts a CORE_OS_PACKAGE.pkg from a PUP file, runs some isolated SPU module or dumps FLASH. The 2nd stage binary is sent to PS3 over Ethernet with "sendfile" which I also provided.

    The 1st stage code receives this data and stores it in a memory region of size 64 kb. After the upload is complete, the 1st stage code jumps to the 2nd stage code and executes it. So, you have to program PSGroove only once and can just change the 2nd stage binary to execute different code.

    In order to be able to run isolated SPUs, you first need to dump your FLASH memory.

    Then extract these files from dump and after that you can use it e.g. to decrypt packages I described how to extract files from FLASH dump on my Hypervisor Reverse Engineering page.

    To be able to decrypt packages from PUP file, first you need to extract a revoke list for packages from PUP file 3.41 e.g. (RL_FOR_PACKAGE.pkg).

    Just extract it, convert it to C hex array and paste it into rvk_pkg_341.c. You have to do it yourself because i don't want any legal problems with SONY.

    I didn't use any GameOS functions in my code because my goal is to reverse Hypervisor and I wanted to learn how to do it without GameOS. I don't plan to release any GameOS tools, so feel free to create new cool and helpful programs for GameOS using my code.

    I'm using ppu toolchain for Linux provided by IBM to compile the source code.

    I will try to answer any of your questions here. But please do not ask me questions like how to install ppu compiler or something like that. You will find everything on the Internet.

    I don't have much time, so try to do as much as you can by yourself, you will benefit from it yourself. So, have fun guys"

    PSGroove Payload Update: Decrypt PKGs from PUP Files Possible

    More PlayStation 3 News...
    Attached Files Attached Files

  2. #2
    Member tonyqc's Avatar
    Join Date
    Jan 2010
    Posts
    124
    Sponsored Links
    Sponsored Links
    BIG news. Thank you for the payload, and your work!

  3. #3
    Senior Member BwE's Avatar
    Join Date
    Apr 2010
    Posts
    709
    Sponsored Links
    Sponsored Links
    i see how this can be useful

    we can start by seeing what the psdowngrader is up to for one.

  4. #4
    Forum Moderator PS3 News's Avatar
    Join Date
    Apr 2005
    Posts
    28,377

    Arrow

    Here are some more updates from graf_chokolo in the xorloser blog: [Register or Login to view links]
    graf_chokolo says:

    Here is my email for contacts, guys But no spam please

    grafchokolo@googlemail.com
    graf_chokolo says:

    And yes i live in europe
    graf_chokolo says:

    Here another useful information for guys who want to run isolated SPUs but not use HV calls directly. Look at LV2 syscall 230 and higher

    Have fun

  5. #5
    Member tonyqc's Avatar
    Join Date
    Jan 2010
    Posts
    124
    Quote Originally Posted by sk group View Post
    i see how this can be useful

    we can start by seeing what the psdowngrader is up to for one.
    yeah this new payload + leaked psdowngrade file can help for sure!

    can't wait for the public downgrader!

  6. #6
    Contributor moeiscool's Avatar
    Join Date
    Jun 2008
    Posts
    15
    wow man this is awsome good job and good job to all who help the scene.

  7. #7
    Junior Member solrac1974's Avatar
    Join Date
    Aug 2010
    Posts
    203
    Great news, we are headed in the right direction for a free downgrader and maybe a CFW soon! Thanks to all Devs working hard on the scene to open the PS3.

  8. #8
    Registered User zacca96's Avatar
    Join Date
    Nov 2010
    Posts
    1
    could not directly download the CFW, why do not you understand nothing.
    Last edited by zacca96; 11-18-2010 at 12:23 PM Reason: Automerged Doublepost

  9. #9
    Contributor trashchris's Avatar
    Join Date
    Sep 2010
    Posts
    46
    nice progress!

    i'm liking this a lot..

  10. #10
    Contributor thedevilsdj's Avatar
    Join Date
    Nov 2010
    Posts
    17
    Awsome! without people like you we would be stuck with a boring stock ps3...

    keep up the good work! and lets get this thing wide open!

 

Sponsored Links
Page 1 of 2 12 LastLast
Advertising - Affiliates - Contact Us - PS3 Downloads - Privacy Statement - Site Rules - Top - © 2014 PlayStation 3 News