Apple iPhone Unlocker GeoHot Begins Hacking Sony's PS3


242w ago - Over the weekend geohot, famous for unlocking Apple's iPhone, has posted a few tweets on his Twitter account that he has began looking into hacking Sony's PS3 console.

He has also dropped by our Forums to enquire about the PS3 Hypervisor Decryption Keys, and has been in touch with CJPC via IRC as well.

To date, geohot has reported the following via tweets:

"ooo got access to a couple more pages of ram...still no hypervisor there tho. it's hiding in the top 2 MB.

anyone know if the 360 guys had a pt hypervisor to reverse?

my goal is to break out of the hypervisor... then see what my morals will allow.

gotta flip one little bit to hack the ps3. unfortunately the ps3 doesn't want me to flip it.

so, the hypervisor is in the first 0x1000 pages of RAM...think I could just pull an address line down and dump? not from kernel tho

PS3 memory map http://pastie.org/589218 ... why did I think this would be useful again? i really want these dumps @ bootloader

it'd be nice if that worked, linux accesses sandboxed part of nand... 4mb of uselesses.

hacking the PS3, not hacked in three years how long will it take me?"



Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!

Comments 141 Comments - Go to Forum Thread »

Quick Reply Quick Reply

futurama1100100's Avatar
#126 - futurama1100100 - 239w ago
i hope he can do something with the ps3 Hardware. Nothing is Impossible... and hey... he is a cutie, too xD

cfwprophet's Avatar
#125 - cfwprophet - 239w ago
No becouse we know that the private key is stored in the Cell.And in case to the Wii the common-key,boot0 and boot1 are also stored in the Wii's security chip = the GPU "Starlight".

So i belive that all importend keys (not only the private one) will be stored in the Cell CPU and what i know till yet no one hase managed to dump it out the Cell.

And in case of to obtain the de-/cryption keys from the FW jump back to line 1

mondoparalelo's Avatar
#124 - mondoparalelo - 239w ago
What I meant is that even if you were able to retrieve the keys from hardware they would be the public keys usable for decrypting the binaries or verifying digital signatures. These keys cannot be used for encrypting/signing binaries (yours - i.e. patched/hacked/...) in a way that would allow you to run them.

Thanks for the reply, but I still have a few other questions:

What about the keys used by the PS3 to encrypt data, like the HDD? I assume this keys must be stored somewhere inside the PS3, am I right? Isn`t it possible to retrieve them?

And the keys used by Sony to encrypt and sign their software, can`t them be retrieved from files such as a firmware update? That is, if we could read them.

Sorry if I`m being annoying with all those questions, I`m just trying to learn something about encryption/decryption.

livpool's Avatar
#123 - livpool - 239w ago
i think he was talking about the PS3. i hope he was..

Rob777's Avatar
#122 - Rob777 - 239w ago
what you reckon he is talking about iPhone or ps3

"geohot: i just realized like all cell phone basebands run microkernel OSes. i am now enjoying this project more"

maybe nothing to do with either, always good when a hacker says they are enjoying something though I think













Affiliates - Contact Us - PS3 Downloads - Privacy Statement - Site Rules - Top - © 2014 PlayStation 3 News