Sponsored Links

Sponsored Links

PS3 SCETool v0.2.9 by Naehrwert Updated, Adds NP Fix and More


Sponsored Links
121w ago - Following up on his previous release, today Sony PlayStation 3 hacker Naehrwert has updated SCETool to version 0.2.9 which now includes an NP application types fix and more followed by an unofficial update from Gamma Argon as detailed in the changes below.

Download: [Register or Login to view links] / [Register or Login to view links] (Required) / [Register or Login to view links] (Mirror) / [Register or Login to view links] (no zlib1.dll or data folder required) by ben.ss7 / [Register or Login to view links] by TheUnkn0w / PS3 SCETool v0.2.9 (4.46 keys) by Smhabib and Naewhert / [Register or Login to view links] by Deroad (aka Wargio) / [Register or Login to view links] by SMOKE / [Register or Login to view links] / [Register or Login to view links] by Gamma Argon

Version 0.2.9

  • Plaintext sections will now take less space in metadata header keys array.
  • Added option to specifiy a template SELF to take configuration values from.
  • Added option to override the keyset used for en-/decryption.
  • Fixed NP application types.
  • [Firmware Version] will now be written to control info only.
  • [Application Version] will now be written to application info only.

Finally, from ben.ss7: Here is a scetool v0.2.9 which has zlib1.dll and the data folder embedded within the exe, which means it doesn't require you to have zlib1.dll and the data folder for keys.

The original scetool source code hasn't been touched and it shouldn't have any issues. The keys which have been embedded in to this exe are:

  • NP_tid
  • NP_ci
  • NP_klic_free
  • NP_klic_key
  • NP_sig
  • metldr
  • bootldr(lv0)

If any user wants me to embed all the keys up to 4.31 PM me. Enjoy

Update: From TheUnkn0w via IRC: Updated my sce_encrypt tool, supports drag and drop decryption, added a checkbox for compression and fixed a few bugs Just paste it into your scetool folder and run, makes decrypting/encrypting files far more easier.

Version 0.3.0

  • Added option to specify the data path

From toolboy2012: Hi Guys, So, I decided to make one more nice update to the SCETOOL, so we could seriously clean up that "::makeself{}" routine.....so I added one more command, so that we could dump the specific fields we need to save off from the original SELF header, so we can re-create it with the same data (rather than build these enormous lists of authids, vendorids, etc!)

So now the "SCETOOL -w" command will dump the specific header info we need to PS3MFW, (example is below):

So I dump the following fields:
1) KEY-REV
2) AUTH-ID
3) VENDOR-ID
4) SELF-TYPE
5) VERSION
6) CTRL FLAGS
7) CAPAB FLAGS
8) COMPRESSED

[Register or Login to view code]

So, there are a couple of new routines I had to add in my "ps3mfw_base.tcl", and the updated "scetool.exe"....

so feel free to take what you need... so my new ::makeself routine utilizes these fields, all read into a global array... and the routine is now much simpler/cleaner.

Note: I still want to review the "self-app-version" & the "self-fw-version" fields in the SCETOOL, and see where exactly they actually reside in the SCE headers, as I would like to get them 100% copied over as well, right now I'm setting both to the "version" field (ie 3.55, etc)

SCETool Unofficial Update by Gamma Argon: Unofficial minor update to scetool.

1. in release of official scetool firmware version was not added to control info when re-signing non-NPDRM eboots (functionality was already coded but not used).

[Register or Login to view code]

Please note: you may notice some difference between an original self and a re-encrypted self (header size, key table). These changes are the same for official scetool and the unofficial update.

OS: windows, requires standard windows dll's only (vc).




Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter, Facebook and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene and PlayStation 4 scene updates and fresh homebrew releases!

Comments 275 Comments - Go to Forum Thread »

• Please Register at PS3News.com or Login to make comments on Site News articles.
 
#45 - Tidusnake666 - 118w ago
Tidusnake666's Avatar
stack overflow... so 199X-th.... but still works!! Haha!

I still prefer to use 0xFACEBOOC instead of 0xABADCAFE lol

#44 - technodon - 118w ago
technodon's Avatar
basically a payload like the one used in the 3.41 jailbreak (hermes) is loaded into stack overflow when the ps3 tries to read this the payload is loaded into memory and you get unsigned code execution. but the problem is that ps3 is using the stack and it copies something to it instead of reading first.

so the payload which has been loaded there is being over written before it has been read and is deleted so if you could somehow make the ps3 read from stack or load the payload just before the stack gets read the payload would be loaded and you have a new jailbreak.

#43 - JOshISPoser - 118w ago
JOshISPoser's Avatar
i'm understanding it a bit more. the higher the lvl, the more security breaches needed because it'll allow it to be more open?

#42 - CJPC - 118w ago
CJPC's Avatar
Generally, assuming that there is already a user mode exploit (think an exploit in a game), using this exploit will allow you to elevate permission to kernel level. The simplest way to think about it is the PSP exploits, and how multiple exploits were needed. Generally, of course!

#41 - JOshISPoser - 118w ago
JOshISPoser's Avatar
if that was to me, it doesn't make sense.

eh, whatever. i know it's not exactly for me, i was just wondering the possibilities but i'm guessing it's not something easily explained in a sentence or two in laymen terms.

 

Sponsored Links

Sponsored Links
Sponsored Links

Sponsored Links

Advertising - Affiliates - Contact Us - PS3 Downloads - PS3 Forums - Privacy Statement - Site Rules - Top - © 2015 PlayStation 3 News