Sponsored Links

Sponsored Links

Video: PSP Game ISOs Running on PS3 4.41 OFW Demo Surfaces


Sponsored Links
92w ago - Following up on the previous updates, today [Register or Login to view links] shared a video demonstrating PSP game ISOs running on Sony PS3 Firmware 4.41 with details below.

To quote (via Wololo): You might remember the psp2ps3 tools, and all the excitement a few weeks ago around a recent hack breakthrough that allows people to run psp isos (and, potentially, homebrews) on a hacked PS3, by “camouflaging” the game inside a PSP Mini.

Although people believed this trick was reserved to PS3s running a Custom Firmware, this might become an incorrect statement very soon…

I was contacted by scene member CapetLeVrai who apparently found a way to run those PSP ISOs on a non hacked PS3 running the latest official firmware 4.41.

The current technique will probably not blow your mind for now, as it requires you to own both a hacked and a non hacked PS3, but it could open huge opportunities in the near future if the right people decide to look into that. The basic idea is that after being installed on a CFW PS3, the ISO can be transferred to the OFW PS3 through the integrated Data Transfer Utility, and will still run perfectly fine.

How It Works

The PS3 allows you to copy data from one PS3 to another, usually when you want to transfer all your existing content in the case you bought a new PS3. This is done by connecting your two PS3s with an ethernet cable. What CapetLeVrai did, which sounds simple enough but appears to work, was to install the game on his hacked PS3, then copy the entire content of his hacked PS3 to the OFW one with the Data Transfer Utility, and the hacked iso then simply accepted to run on the OFW PS3.

Please note I haven’t confirmed myself because I’m beyond lazy and don’t want to lose my OFW PS3′s content (copying from your hacked PS3 to your unhacked PS3 will erase the previous content!) but from what I can tell this is legit.

Now, why would it be interesting if this requires a hacked PS3 in the first place? Well, it shows that once installed, the game seems to be able to bypass the standard DRM security checks on OFW that should prevent it from running in the first place. Or, rather, that the hack perfectly tricked the OFW PS3 into believing the game was legally acquired. Which means that if people had a way to run a package installer on official firmware PS3s, there could be a way to install and run psp isos (and, who knows, PSP homebrews) on the latest PS3 Official firmware.

Is it far fetched? Probably. But exciting? Definitely. Enjoy the video, in French. If you are able to confirm this and post a video on your own, please do credit CapetLeVrai for this discovery, as, as far as I know, nobody else had found that (at least publicly) before him.





From the video's caption: This vulnerability requires a PS3 CFW at least able to install the file. Pkg

I am not a hacker, at least I do not code and I do not claim to be a pirate, I am interested in this field and I put it gradually but I'm still far from finding and exploiting real flaws, this video aims to acquaint developers much more qualified than I am to try to find a solution for users who want to enjoy their PSP games on PS3 OFW (Official FirmWare) or via a possible HEN CFW (as I know KaKaRoToKs found a flaw like this...

For console users DEX (formal or via CFW whatever) who want to transfer data on a console OFW:

System mode: Normal
XMB Operation Mode: CEX
Debug Menu Type: CEX QA
LV2 Kernel: CEX
Target Type: CEX

Hello World PSPHomebrew on PS3 By Harryoke



PSP Homebrew on PS3 By Xerpi (YA2D with Controls) Tested by Harryoke



Download: [Register or Login to view links] / [Register or Login to view links]

Homebrew By Xerpi (YA2D PSP Library) Tested by Harryoke




Squares By Xerpi - The First Playable PSP Homebrew Game on PS3. Tested by Harryoke



Download: [Register or Login to view links]

This thank you very much for watching the video, if you are interested in PlayStation hack let me know in the comments I will make a small series of video to tell you all this technical vocabulary that ultimately is not that complicated!

Finally, from samson: Also i found the kurok source files (bladebattles.com/kurok/files/), harryoke you was asking for sources Wavegen pspsdk sample:

Download: [Register or Login to view links]

No screen output (because its suffers the same problem as gta games) but audio and controller work, X to change wave form, push joystick up for higher frequency and down for lower frequency. do not have volume too high before starting, enjoy.

Update: From xxmcvapourxx: KIRK 13 ECDSA

Guys, After months of researching and alot of studying on security this might help other devs.

Let me explain: LV2_kernal.elf hold's the public key underneath holds the ECDSA curve.

[Register or Login to view code]


GIT: github.com/uofw/upspd/wiki/KIRK-13---ECDSA-point-multiplication

KIRK 13 ECDSA point multiplication

[Register or Login to view code]

This has been updated in wiki euss had kindly confirmed and helped me. This does not lead getting private keys but its usefully for other devs.

From zecoxao: Some keys stuff (kirk/psp related)

Download: [Register or Login to view links]

That is a decrypted self found inside emulator_drm.sprx in pspemu. You can look at the keys starting at offset 0x19EA0 from there until 0x19F80 you have kirk cmd 4/7 keys (already documented in libkirk) On offset 0x1A060 you have the section 0x6 keyseed and below it, some ecdsa stuff (the seed is already documented in seeds page, the ecdsa stuff however, isn't) This is for filling up the keys page. it's also good to have a look at.

PS: You can only find the seed on later firmwares. 3.55 and below firmwares do not have that seed.




Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene and PlayStation 4 scene updates and fresh homebrew PS3 Downloads. Enjoy!

Comments 109 Comments - Go to Forum Thread »

• Please Register at PS3News.com or Login to make comments on Site News articles.
 
#59 - JOHNBOI - 94w ago
JOHNBOI's Avatar
You don't extract the iso... do step 1 ...then OPEN ugen go to file...OPEN the iso find the eboot in sys directory extract to the folder... run sign eboot if it says its a elf just exit and run iso2eboot ..if it says completed and doesn't say elf drag the modified eboot back into ugen and overwrite.. next run iso2eboot then step go to step 2... pretty much self explanatory from there on in.

i'm using v1.71 of sz's tool

#58 - Twizzlle - 94w ago
Twizzlle's Avatar
pedro8000 3rd Birthday is currently not compatible.

sczuru I have been following the updates and just tried the newest version. Brilliant work. I hardly have to do anything. I really like how it pulls the Game ID now. Anyways keep up the great work it is much appreciated.

#57 - pedro800 - 94w ago
pedro800's Avatar
I got psp game in .iso format, and the content is like this:

ULUS10567.iso/UMD_DATA.BIN
ULUS10567.iso/PSP_GAME/SYSDIR/UPDATE/DATA.BIN
ULUS10567.iso/PSP_GAME/SYSDIR/UPDATE/EBOOT.BIN
ULUS10567.iso/PSP_GAME/SYSDIR/UPDATE/PARAM.SFO
ULUS10567.iso/PSP_GAME/SYSDIR/BOOT.BIN
ULUS10567.iso/PSP_GAME/SYSDIR/EBOOT.BIN
ULUS10567.iso/PSP_GAME/SYSDIR/OPNSSMP.BIN
ULUS10567.iso/PSP_GAME/USRDIR/3rd.fsd
ULUS10567.iso/PSP_GAME/USRDIR/3rd.pkg
ULUS10567.iso/PSP_GAME/ICON0.PNG
ULUS10567.iso/PSP_GAME/PARAM.SFO
ULUS10567.iso/PSP_GAME/PIC1.PNG
ULUS10567.iso/PSP_GAME/SND0.AT3

Is any files/folder I should delete first ? and rebuild the .iso again ? I have try 3 times to convert this game but still black screen

#56 - szczuru - 94w ago
szczuru's Avatar
Make sure you don't have ANY spaces in path to PSP2PS3.

#55 - GotNoUsername - 94w ago
GotNoUsername's Avatar
Hi Guys I try to run ISO2EBOOT.bat on Win7 without admin rights I get access denied and with admin rights I get file not found (wrong path). It seems for me the bat looks into C:\Windows\System32 WTF do what do I do wrong ? and the Bite thing doesn't work at all

So I tried Assassin's Creed: Bloodlines hangs on loading the menu and Valkyrie Profile Lenneth gives me a black screen. What do I do wrong ?

"SIGN_EBOOT.bat" has Problems or requirements too cmd tells a lot stuff is missing !?!

#54 - JOHNBOI - 94w ago
JOHNBOI's Avatar
english version?

can anyone tell me why certain games wwe svr 2006 onwards.... mortal kombat ect.. starts intros play just when game starts it fights for 5 secs then freezes? a save or temp or load issue?? i'm sure its easily fixed???

#53 - PS3 News - 94w ago
PS3 News's Avatar
Quote Originally Posted by pedro800 View Post
anyone have mirror of PSPMinis / Bite v1.2 ?

I have added a mirror in the main article now, but here it is as well: [Register or Login to view links]

#52 - GotNoUsername - 94w ago
GotNoUsername's Avatar
Hi can't find a big enough PSP PSN link can anyone help me ?

What is the biggest game you have found ?

#51 - pedro800 - 94w ago
pedro800's Avatar
anyone have mirror of PSPMinis / Bite v1.2 ?

#50 - PS3 News - 94w ago
PS3 News's Avatar
Following up on PSP2PS3 v1.7.3 for CEX / DEX by szczuru, today Italian PlayStation 3 developers at BiteYourConsole have updated their PSP Minis on PS3 application dubbed PSPMinis / Bite to version 1.2 with the changes below.

Download: [Register or Login to view links] / [Register or Login to view links] (Mirror) / [Register or Login to view links] (Mirror #2) / [Register or Login to view links] / [Register or Login to view links] by Agrippa90 / [Register or Login to view links] (Can't decrypt some tags) by lex3a / [Register or Login to view links] by israyel

To quote, roughly translated: Based on the frequent releases of the developer szczuru for his excellent work PSP2PS3 arrived at version 1.7.3 we have decided to release a program that simplifies the steps to follow.

Drag a file EBOOT.PBP, a PKG file to be extracted or an ISO file in the window that you see in the program. Click PspMinis PspMinis CEX DEX or according to your console.

From this screen, we can extract the PKG file included above, to convert our ISO file EBOOT.PBP, or if we can create an EBOOT.PBP file ISO.BIN and MINIS.bin. The program creates the game in PKG format to install on the PS3 in 3 simple clicks of the mouse. Convert, Create, Build.

Batch files have been translated into Italian for a quick and easy understanding.

1.7.3 PSP2PS3 Changelog:

  • MAKE_EDATS_CEX: Starting EDAT when the user chooses to unpack the ISO.
  • MAKE_PACKAGE: Fixed an issue when the sleep function does not exist in the system.
  • ISO2EBOOT: DONOR.PBP the file is no longer required.
  • Fake_np replaced, support for files larger than 728 mb, no longer requires the donor file thanks to Aldo (aldostools).

Changelog 1.2 Bite program:

  • Adding psp icon in the program.
  • Adding sounds to mouse clicks on the buttons.
  • Fixed other minor bugs.

From szczuru: PSP isn't needed anymore to decrypt EBOOTs I'm testing this method since morning and working ok.

Download JPCPS and in Options->Configuration-> Crypto TAB enable 'Extract decrypted EBOOT.BIN files to TMP folder' option.

Then load encrypted EBOOT.BIN using "Load file" option. Decrypted EBOOT.BIN will be saved in TMP directory.

From $n!pR: In Dev C++ you can just install the zlib package. aldostools, is there anything stopping us from using the real SFO info from iso in the EBOOT.PBP (Title and CID)? Instead of DONOR.PBP's SFO info? Editing the src of fakebig_np you provided...

From aldostools: Well the code is not mine and I haven't tested it, but looking in the .h files, I guess it could be possible to replace in UCES00310.h, the static bytes listed below with some values received from a parameter (unless some of the other bytes contain a hash of the headers):

[Register or Login to view code]

From zecoxao: i don't know if this has been told, but simply EBOOT.PBP is enough rename, no need for NP.PBP on npdpc v2.

Another "mod" based on the awesome work from szczuru (BRAIN) 1.7.3. I have been trying to streamline the procedure to basically 1 single click: put the file (pkg, cso or iso) in the PSP2PS3 folder and run the proper batch.

Download: [Register or Login to view links]

The "MakeEDATs.exe" will fill the CID and press the buttons automatically and auto create the PKG. It is a "beta" that is focused on the PSP conversion for CEX, so the DEX procedure could not be working. If there are not major issues, I could be integrating this to the Windows context menu of the ps3tools collection... if szczuru is ok with that.

Using my "mod" 1.7.3a are 2 steps:

If your game is in CSO format:

1. put the .cso of CC:FF7 in PSP2PS3 folder (make sure there are not other .cso)
2. run "1b. CSO2ISO.bat" and wait until it finish.

If your game is already in ISO format:

1. put the .iso of CC:FF7 in PSP2PS3 folder and rename it as NP.ISO
2. run "1b. ISO2EBOOT.bat" and wait until it finish.

Here is another "mod" v1.7.3c: Download: [Register or Login to view links]

Changes:

  • Added support for context menu: run "Right_click_context_menu - CSO & PBP.bat" as administrator (In my tests currently CSO context is worked, for some reason PBP didn't show. I will add ISO to the context menu later... this is still a WIP)
  • The PKG now uses the original name of the CSO
  • ISO2PBP.bat now uses the old version of fake_np 1.0 if the ISO image is smaller than 133.4MB (this helps to speed up the conversion & makes the final PKG smaller)
  • Fix: Added option to include or not the load_tmp/open_tmp/save_tmp in the placeholder.
  • Disabled the question about upload the PKG to FTP (it can be enabled commenting the goto ftp_no in 3. MAKE_PACKAGE.bat)
  • Improved the speed of MakeEDATs.exe (now should work better)
  • More bug fixes (this version still doesn't use the CID as command line parameter from pink1... I will check it later)

Only EDATs and PKG should have the same Content ID. The content id of the EBOOT is not validated by the PS3.

In my tests:

  • EBOOT CID=Syphon, EDAT CID=Brave, PKG CID=Brave ---> OK
  • EBOOT CID=Syphon, EDAT CID=Syphon, PKG CID=Brave ---> Black Screen
  • EBOOT CID=Brave, EDAT CID=Brave, PKG CID=Brave ---> OK (but requires Brave from PSN)

From pink1: It doesn't get the contentID straight from the PBP first it dumps the BINs with mongoose.exe and then reads it from ISO.BIN with:

[Register or Login to view code]

From samson: English "make.bat" made by Google:

[Register or Login to view code]

From BlackDaemon comes a [Register or Login to view links] demonstrating a possibility of Minis on SEX-based MFW. To quote:

Let’s back a bit in time, when Kakaroto was making his HEN for OFW 4.xx. He said, that he was able to install pkg’s but can’t run it because it requires proper SELF signature. Minis doesn’t have any SELF files inside and could be packed as free content.

Well, i have done one experiment – on CFW 3.55 i installed those packages, updated to SEX-based MFW by TechnoDon and tried to run installed pseudo-minis. See, what happened on video (sorry for quality, unfortunately PS Vita can’t record it better). I have flasher, so it not a problem for me to go back to normal CFW.

From israyel (via naha09) comes the first English version of Bite 1.2 / PSP2PS3v1.7.3a CEX-DEX with details below, as follows:

Download: [Register or Login to view links]

PSP MINIS 1.1 GUI Changelog:

  • Fixed issue with buttons and no resources
  • Made simple with menu strip
  • Also fixed directory issue need to be extracted to desktop

Finally, below are the initial PSPMinis v1.1 details for legacy purposes, roughly translated as follows:

We are pleased to present our latest project by BiteYourConsole, PSPMinis 1.1. The program contains all the files with bat (batch file contains a sequence of commands to the command interpreter system, usually Command.com or Cmd.exe).

If the program is drag an EBOOT.PBP, a PKG file to extract or file you want to convert and click DONOR.ISO our choice, whether to convert the title for the console or the console CEX DEX.

From here we have two possibilities, if we have an ISO image file we can convert an EBOOT.PBP, we can also extract a PKG file exists in the directory, the program will automatically extract the file in bytes.





Or if we have the EBOOT.PBP we can convert to our PS3, we can create an infinite number of packages with the ability to be able to change the ID PKG. The PKG file that is created can be found in directory Bite or in the tools folder.

More PlayStation 3 News...

 

Sponsored Links

Sponsored Links







Advertising - Affiliates - Contact Us - PS3 Downloads - PS3 Forums - Privacy Statement - Site Rules - Top - © 2015 PlayStation 3 News

Sponsored Links