155w ago - Update: The 27C3 PS3 Hacker Conference date has been changed to 12/29 as reported HERE, with live streams available HERE for those interested.
At this years 27C3 (Chaos Communication Congress) Hacker Conference on December 28 videogame console hackers marcan, bushing, and sven will be lecturing on the recently hacked PS3 system and plan to share a some new exploits details as well!
From PSGroove (linked above): In addition to PS3 security, the lecture will also touch on other consoles, such as the Xbox 360 and Wii.
"We will also go over hacks for the other consoles, including the JTAG hack for the Xbox 360 which made running homebrew code more convenient, and the cat-and-mouse games that Nintendo played with us to combat Wii hacks. We might also check out the security of their 'new' handheld console - the DSi."
For those of you unfamiliar with the Chaos Communication Congress, it is an annual meeting of the international...
157w ago - Today we have for you a video that shows off the work of Cyberskunk in a PS3 Retail to Debug WIP Project dubbed Codename: Rebug!
He has been working on turning a retail console into a debug console through the use of firmware loader. The reason we are sharing this now is to show that it is nearly complete.
Most of this work has been done for quite some time just not shared with the public, but seeing its nearly complete you will get a preview of things to come. Once we have our full debug dumps you can expect 100% debug features on a retail console (currently we only have partial dumps).
I have left a few things out in the video that I will take screenshots of like *check although we have it enabled its grayed out, also auto download is now gone just like a TEST unit.
We will keep you posted as we make more progress in the coming days. Please do not ask when we will release this because we ourselves don't know when it will be finished.
The good news? Others whom GeoHot shared the PS3 METLDR info and LV2 dump with are currently using his work to continue hacking the PS3 console, with rumors from IRC (for what those are worth LOL) indicating a public "end-user" PS3 hack may arrive before September 2010 from their camp.
Unfortunately though, just like the past Dark_AleX and "M33" PSP releases, an incoming PS3 hack will probably be from a fictitious group and won't include anything useful to PS3 Devs such as dumps, reversals, sourcecode, etc.
Hopefully once a hole that Sony can't block is public, other PlayStation 3 Devs will begin working on the PS3 though... and sharing all the juicy...
206w ago - This weekend GeoHot, the hacker responsible for several Apple iPhone hacks, has returned to Sony PS3 hacking after his initial announcement a few months back and has opened a PS3 hacks blog (linked above).
"I just pulled everything from the USB bus... http://pastie.org/757313 the Cell processor SPI bus, PS3 is going down :-)"
These are the latest posts on his new PS3 hacks blog:
The Cell processor has an SPI port which is used to configure the chip on startup. Well documented here. It also allows hypervisor level MMIO registers to be accessed. In the PS3, the south bridge sets up the cell, and the traces connecting them are on the bottom layer of the board. Cut them and stick an FPGA between.
Quick theoretical attack. Set an SPU's user memory region to overlap with the current HTAB. Change the HTAB to allow read/write to the hypervisor! If that works it's full compromise...