50w ago - Following up on the PS3UserCheat and True Blue unnecessary DRM-infected dongles being hacked alongside zadow28's work, today PlayStation 3 developer oct0xor shared a video of his OpenCobra Payload which aims to render the current Cobra USB dongle from Max Louarn useless.
Below are the details from his blog, as follows: "First I am going to say that this is not going to be an article, just a first blog post and some info about my recent project.
Finally I got my hands on cobra it was quite a lot of time since I touched this last time. There was s good things happened since then eg. I reverse engineered usercheat and true blue, had done a lot ps3 and not ps3 related hacking. There was a bad things eg. BlueDiskCFW, lv0 leak, a lot of devs leave the scene...
Cobra was for me really "the last" thing I have to do.
The last time when I worked on this I didnt had a dongle, and all what I had was a dump by JaiCraB. I reverse engineered it as much as possible, figure out almost all tricks, encrypton and etc. And figuare out that it reads a lot of data from dongle, and I cant do much without dongle itself. Thats why I put this project to the back burner.
Well... I had never buyed anyone dongle, and I never was not going to. All my dongles was donated (thanks again ) but not that time.
it was hard for me to make this decision but a few days ago cobra finally shipped to me...
3 days and now its all over.
Security is good enough, but not without big security risks. But it still the best crypto/obfuscation what I had seen on ps3. Sony have something to learn from this guys, especially now.
Cobra / True Blue almost identical, have the same source code, if you ever hacked 1 thing, 2nd wouldnt be a problem. The main functionality, honestly, not changed since original jb. Thats a shame. Thats why I cracking them like nuts
On the fourth day I taked a decision to make my own "OpenCobra" payload. only clean code without drm and garbage, to be able to port it to any new firmware, and change/add features. It taked 2 days, 3000 lines of asm, and you had seen the result.
Atm it based on 4.1 payload, plans for future is check/add new features from 4.4/5.0. Port to a new firmware (if cobra will not do this for me), and realize all nice innovations from new version of psp emu, such as better emu accuracy, 3D and etc...
In video you had seen Payload Loader. Thats the all code it has:
If this subject will be interested for people, maybe I will write a full article about True Blue / Cobra analysis and hacking.
btw: Me and ~ some psp mysterious dark figure ~ reverse engineered algo for generating valid psp isos back to jule. But saves and a lot of games dont work without patching. So cobra's patched emu much better there imho."
Below are some additional pics from his blog which simply states: Usercheat + Cobra = <3
From flat_z: Here is some explanations to make things more clearer. If you read my twit about ps2_netemu you can see that I reverse-engineered it. It includes almost all things which are required to make custom disc images of original PS2 discs and run them on the PS3 if everything will works fine. So it can lead us to the process of remastering PS2 discs which includes making of ISO.BIN.ENC (the encrypted version of original image which can be read by the PS3), creation and encryption of .VME files (virtual memory cards), ISO.BIN.EDAT (includes the title ID of disc).
The only thing which is not currently known is the format of decrypted CONFIG file (I can decrypt the file and encrypt it back but it have a complex format). It is optional and can be empty but I'm afraid that some games requires it to run on the PS3. My plan was the creation of PS2 remastering tool and I wanted to share it. Although I even not sure will it work or no but there are many chances that it will.
But something happened before I started to do it. My HDD on the laptop died and I have all information regarding PS3 on it. Although I was able to restore some important files but not all. So I need a time to buy components for a new computer and build it. For the same reason, I have a delay on my real job (I'm working as a free-lancer) so I will going to do my job before I start to do something new for PS3.
P.S. I see many questions about compatibility. You don't need a backward compatible PS3 console to run PS2 games through ps2_netemu because it is software emulator and doesn't require any PS2 hardware components. Also I think that ps2_netemu is more better and stable than ps2_softemu but this statement requires testing.
Finally, from naehrwert (via twitter.com/naehrwert) comes some related Cobra ODE EID0 information (ECDSA from pastie.org/6169158) , as follows:
While this is definitely interesting news, odds are it's just a ploy for the Cobra Team to release a new dongle that will be 'required' for their upcoming PS3 4.3x CFW unfortunately or the PS3 ODE in order to further line their pockets with PlayStation 3 sceners' hard-earned cash once again... as always, time will tell for sure.
Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter and be sure to drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene updates and homebrew releases!
Supports creating folders under /dev_hdd0/game folder
Supports extraction of .zip files named PS3PSN~TEST12345.zip (where TEST12345 is the folder you want created and contents extracted into)
Now mM for ODDE will handle PS3PSN~TEST12345.zip files (where 9 character long file folder will be created - in this case TEST12345) and the contents of the .zip will be extracted inside.
Here is something cool: You know that multiMAN supports special ZIP files to install data under /dev_hdd0/game:
PS3PSN~TEST12345.zip (only 9 characters for game folder under /dev_hdd0/game supported).
Now, if you create such file and double-click on it in mmOS it will:
1) Create TEST12345
2) Extract the .zip contents in the newly created folder
That means that you can create semi-installable packages for OFW+ODDE.
I'll have to add the same change for new folders for this .zip extraction (new .ISO) and then you'll be all set. No more troubles.
Have in mind that "PS3PSN~" is just a prefix which tells multiMAN to extract the file under /dev_hdd0/game folder. It is can be PSN game, you can use it for folder creation or gamedata or anything you want.
If you use a PSN game (.pkg) mM can't really INSTALL it (it doesn't support PKG installation), but it should be able to access/replace the files in it if you create the folder beforehand.
mM supports two special zip naming conventions for over a year:
PS3~dev_hdd0~freddy2~newfolder.zip (this won't work with odde, because of no access to /dev_hdd0 root folder, but still..)
Ok, let me know how it goes with your tests. It is really nice to gain such access.
I have a suggestion to make COBRA ODDE more secure and stealthy
Do not manifest /dev_bdvd/COBRA folder just like that. Add a trigger (that will be known only to manager.iso application) that will make it visible during the single session...
For example - after a clean boot:
1) /dev_bdvd/COBRA is not visible/accessible
2) The manager.iso application accesses a specific file (like /dev_bdvd/COBRA/authorize.me)
3) /dev_bdvd/COBRA folder becomes visible and the app can list the ISO games.
By doing that no app can check if it runs on ODDE unless the devs know the "authorize.me" filename/phrase (which should be secret).
1) Create a folder in /dev_hdd0 - you will know if it works if the folder is created and you see USRDIR and PARAM.SFO inside the newly created folder
2) Create a folder in /dev_hdd0/game - you will know if it works if the folder is created and you see USRDIR and PARAM.SFO inside the newly created folder
3) To gain access to /dev_hdd0/home - just do step 1) but for new-folder-name specify home If it works you'll see USRDIR created inside /dev_hdd0/home/. Basically to gain access to any folder - just create new folder with the same name and the PS3 should register it so that you can access it
If you wish - remove the PARAM.SFO file and the USRDIR folder if you don't need these - for folders under /dev_hdd0 you may want to delete the PARAM.SFO to get rid of the "Unknown" entries in the game column with endlessly spinning refresh-arrow (at least that is what happens on my CFW PS3).
Unpack the DLC with Winrar so you are left with a PKG file: injusticealldlcBLUS.pkg
Download and run PKGView v1.3 on your PC.
Click file / Open and browse to the location of the PKG file.
Once opened you should see a table of contents like this:
Right click on the first folder in the table (BLUS31018) and click "Extact to source folder"
Navigate to your source folder and copy the extracted PKG folder to a FAT32 Formatted USB Stick. You can now remove the USB Stick from the PC and plug it into the front USB port of the PS3.
Copy Comgenie's awesome file manager 4.46 ISO to your PS3_GAMES folder of your Cobra ODE. If you are using kataroto's Eleganz Manager then ignore the above since CAFM is bundled with the Eleganz Manager. Launch Comgenie's awesome file manager ISO with the Manager of your choice (My preference is MultiMAN by deanK but any Cobra ODE compatible Manager will work).
Now that CAFM is loaded you should see 2 lists of locations. We will use the list on the right to navigate to the USB stick and the list on the left to select the location. Starting on the right navigate to dev_usb002 by pressing down on the D-pad and click x to open (The USB number may differ depending on which port you use), You should see the extracted pkg folder BLUS31018.
Next Press left on the D-Pad and navigate to the dev_hdd0/game/ location and press X . You should now see a list of several game data installs with the BLUS and BLES numbers. Scroll through the list until you find the folder for your game (BLUS31018) and leave it
Press right on the D-pad to move the pointer back to the BLUS31018 folder on the USB Stick and press "0" .You will be asked if you want to copy the folder to the HDD0 location click "START" button on the PS3 Controller. The files will then be transfered from the USB to the internal hard drive of the PS3.
Quit CAFM and Eject the drive to go back to your ISO Manager , Navigate to your game ISO and launch it. Install any game updates if required (See "Important Notes" below for more information) Enjoy your DLC
Proof of Zombie mode DLC working on my Cobra ODE:
If the game ISO crashes (Double beep) after launching with the DLC installed let the PS3 reboot and it will automatically rebuild the database. This should fix the crash and you will be able to restart the ISO again.
Some DLC might not work because certain files may need to be installed to locations other than dev_hdd0/Game/ that we cannot access on official firmware.
If your DLC contains a PARAM.SFO file that is lower than the game updates that you installed when you first launched the ISO then you may be forced to re-install the game update again. You can usually avoid this by deleting the PARAM.SFO file that is located inside of the extracted PKG file.
Some DLC may require a PS3 Database rebuild. This can be activated by booting into recovery mode on the PS3. If your DLC BLUS/BLES Number does not match your game ISO number i would suggest trying to find the correct DLC with the correct number... although just copying the USRDIR and hacked Edat/DLC files should work on all regions. This also works for cracked Online passes.
Sometimes a cracked DLC will come in 2 PKG files (One is the DLC and the 2nd PKG file is the Cracked files) To install these you will need to extract both PKG files with PKGView then copy the contents of the crack pkg to the DLC pkg before transferring them to dev_hdd0.
The tutorial does look like a lot of work just to get some DLC on the PS3 but once you have done it 2 or 3 times you will find it real easy.
Thanks to Harry Oke for his tests / Youtube videos on the 3K3y, PS3 Crunch staff / Members for a place to join together and help make the Cobra ODE the best on the market, Rowan (Rowjack1993) Jackson for pointing me in the right direction, Duplex for the ISO/DLC, magneto (+ Team Cobra) and all of the PS3 Devs behind the software that i used to create this tutorial. Keep up the good work guys.
Ok... after my first test of a PSN game - Flashback (Duplex Release) This is strange lol Here is what happens... It seemed to unpack perfectly and i could see the extraction progress. I went to the XMB to see if i could see the game installed = Failed
I went to the Game data utility and i could see the folder install = NPEB01417 (That worked but missing icon - Unable to run the file from there)
So i went back to mM and looked inside of the folder and this is what i found... NPEB01417 folder = correct
Inside of that is USRDIR and PARAMSFO (Almost correct but missing several of the other files) missing files = all of the ICON0 pngs , PIC1 files and TROPDIR folder (I assume you should be able to see those folders in mM and even launch the PNG files to view them)
Inside of USRDIR i see the EBOOT.BIN Then two more folders... One called FLASHBACKGAME and the other is called BINARIES (Missing GAMEDATA1.EDAT) The FLASHBACKGAME folder is missing 8 PS3TOC txt files and the MOVIES folder.
So it seems to be "part working" but missing several files and folders during the extraction. I checked the PS3PSN~NPEB01417.zip that i created on my PC and all of the missing files are in there.
So i copied the missing files from the original unpacked version into the folder but ran into another issue , It only displays under game data utility and will not launch but the ICONS are now visable (After manually adding them myself)
From kamingrandeu: Did you try to rebuild the PS3's db after copying all the missing files?
From freddy: You sir are a legend... It works... Flashback is installed and on the XMB (Without using any demo pkg files).
So to install PSN Games =
Use multiMan to create the folder
Extract and Copy contents of PKG files to the new folder
Rebuild data base
Update: Tutorial: How to Install PSN Games for the Cobra ODE by freddy
How to install PSN games for the Cobra ODE. deank has recently updated his amazing Backup manager to support folder creation under dev_hdd0/game/
Now it is possible to create the folders needed for cracked PSN titles and allow them to appear on a OFW PS3.
Download the latest version of multiMan here: http://www.sendspace.com/file/q3qcxe (27 MB)
Download and extract the PSN game you wish to install. For this tutorial i will be using Flashback PSN PS3-DUPLEX
After extraction i am left with two files:
Open PKGView 1.3 and use it to open main PKG file. (File/Open/ and navigate to the PKG files)
Right Click on the main folder at the top of the structure and select Extract to source folder.
Once extracted do the same for the cracked PKG duplex-flashback.crack.pkg
Next we need to merge the two folders.
Copy the Extracted Crack PKG folder NPEB01417 and paste it over the original Flashback PKG folder NPEB01417.
You will be asked if you want to copy and replace the files during the merge select OK.
When everything is merged you will be able to copy the merged NPEB01417 to a FAT32 Formatted USB Stick.
Insert your FAT32 formatted USB stick which contains the files to your cracked PSN game
in one of the front USB ports of your PS3.
Launch Multiman and navigate to "File Manager / mmOS" and press X
Highlight PS3 Root and double tap X
In the root head to /dev_hhd0/ Double tap X
Navigate to /game/ Double tap X
You should now see a list of installed folders (Depending on what you have installed on your PS3)
At the top of the list press "O" and you will be asked to "Create New Folder" Press X to confirm
Then use the "on screen keyboard" to type the name of the game , File name stucture is important so i suggest you use the same name as the folder that you unpacked from the PKG file(s)
(So for Flashback it would be a folder called NPEB01417)
Go back to the root of the PS3 in mM OS and select dev_usb00X (X = the port number of your PS3)
You should now see the NPEB01417 folder with the cracked content. Press O and select copy then navigate back to dev_hdd0/game/ and select paste by pressing O again.
Wait for the process to finish copying the files to the PS3 and shut down the PS3.
Next we enter recovery mode to rebuild the data base:
Press and Hold the PS3 Power button and keep it held down until it turns off.
Press and hold the PS3 Power button again until the PS3 makes a Two Beeps sound.
You should now be entering recovery mode follow the onscreen prompts and select the "rebuild database" option.
Let the rebuild complete and your PSN game should be available under the game section.
Some games that need access to other locations still will not work using this method.
This will only work on games that require all files to be copied to dev_hdd0/game/ folder
Thanks to deank for his work on multiMan and a big shout out to kamingrandeu for help on the final piece of the puzzle. Awesome work guys.
Following up on his previous test updates, today PlayStation 3 developer KaKaRoToKS has officially released Eleganz for the Cobra ODE.
To quote (via kakaroto.homelinux.net/2013/10/eleganz-release-for-cobra-ode/): Hi everyone, It's been a long time since I last blogged. Today I have some exciting news for you, as I have ported Eleganz, my homebrew manager, to the Cobra ODE.
A little while ago, I tweeted that if Cobra ever released their device and did provide an open source library for integration of other managers, I would port Eleganz to it, and today I am fulfilling that promise. I would like to thank the guys over at *********.*** and ******.*** for testing this for me, particularly Abkarino, hyappon, freddy, magneto and Xodus69.
When I released Eleganz in November 2011, I left out one small thing on the TODO list, I wanted to see someone pick it up and add the code to exitspawn to actually make Eleganz execute the homebrew apps, but no one did that in almost a year now.
I am a bit disappointed that the ps3 scene (homebrew devs, not users) didn't pick it up, but it looked like no one was interested in maintaining Eleganz in my place. Today, I am happy to see that Eleganz is not throw-away code, as it can be useful to ODE users.
I can understand why Eleganz didn't have much appeal in the world of CFW (it was originally intended to run on OFW if my HEN ever worked), but with the ODEs running on OFW, it's perfect for the job. It's simple, it's beautiful and customizable!
Not only can Eleganz list the games from the Cobra ODE and allow you to select your iso, but it will also allow you to list and run homebrew apps that you can embed in the ISO file. This way you can get access to all your homebrew in a single place, without the need to restart the PS3 or boot the homebrew's iso from the ODE.
You can just extract the eleganz iso, and add homebrew apps (that are re-signed for running from a BD drive) to the iso's PS3_GAME/USRDIR/HOMEBREW directory and recreate the iso with the cobra tool, and that's it.
Note that this is not an indication of me getting back into the hacking scene. I have given up on the HEN long ago as I realized that there was no way (that I could find) to run homebrew on OFW, unless they are running from a disc. I may keep improving Eleganz in the near future, but I do not plan to do anything more than that for the ps3 scene at this point.
I would also like to tell everyone that there's no need to worry, Eleganz will not become cobra-specific, as any feature I'd implement will benefit CFW as well as ODE users. I will be releasing an updated version for CFW users soon.
I'd also like to thank magneto and the Cobra team for offering to send me a Cobra ODE as a gift for porting Eleganz to it. Once I receive it, I plan on adding disc dumping capabilities to Eleganz and improve the user experience a little without relying on others to test it for me.
You can find the latest source code on github (github.com/kakaroto/eleganz) as always and compile it yourself or you can download the pre-compiled iso file from this link: http://www.multiupload.nl/GXBBI19VOL
I hope it gets used now and you all can enjoy it and I hope I can see some cool themes created for it now!
Added support for lastGAME 8.0 [SingStar]
mM will display the IDPS from NOR/NAND (EID0) and from LV2 memory (spoofed/real) in "System Information"
Fixed lastGAME support for external/usb games with bd-mirror setting
If you use lastGAME 8.0 [SingStar] version (available also in the WEB column of multiMAN) you can take advantage of REMOVING the Singstar app from your ps3 and also have quick access to the last game you loaded with multiMAN.
lastGAME 8.0 support bd-mirror settings, so it is 100% compatible with all games that multiMAN supports. multiMAN (standard/stealth) is required to be installed to use bd-mirror with lastGAME 8.0.