Guide: How to Compile PSFreedom's Payloads with Ubuntu 10.10

179w ago - Over the weekend Klutsh posted a simple guide on how to compile PSFreedom's payloads with Ubuntu 10.10.

He states this is for the payloads only and is independent of devices, and his next guide will cover compiling the kernel and the kernel module which are device dependant.

Below is the guide, to quote:

Here's a real quick guide on getting Ubuntu 10.10 ready to compile the PSFreedom payloads.


• A Working install of Ubuntu 10.10

The Guide:

First thing we need to do is install some applications through apt, so open a terminal and do the following:

sudo apt-get install git-core gnupg flex bison gperf libsdl1.2-dev libesd0-dev libwxgtk2.6-dev build-essential zip curl libncurses5-dev zlib1g-dev gcc-4.3 cpp-4.3 g++-4.3 texinfo autoconf

Now we need to clone PSFreedom from github to our local PC, pull it's submodules and get the toolchain installed

cd ~/
git clone git://
cd PSFreedom
git submodule update --init
cd pl3
git submodule update --init
cd ps3toolchain

KaKaRoTo on The PSGroove / PSFreedom PS3 Payload Mess

183w ago - Update: The latest PSFreedom build (with PL3) is now available for both iPhone 2G/3G and iPod Touch 1G with details posted HERE, and Zaxtron has released what he calls Zaxtron Front End Multi PS3 Firmware And Multi Payload for iPhone 2G and 3G with PSFreedom 1.1 Payloads.

Today PSFreedom author KaKaRoTo discusses the current PSGroove / PSFreedom PS3 payload mess.

To quote: "I see a lot of people asking me some questions and I notice a lot of ignorance in the net about the different payload and the latest PL3 payload. So I want to make things clear..

First of all, people should stop talking/requesting/using the hermes v3 payload, I don't like his work, and the payload is not good, it might crash the system in some cases, it's not written properly, and hermes doesn't even seem to understand how git works.

KaKaRoTo on How to Port PL3 to an Exploitable PS3 Firmware

185w ago - Today KaKaRoTo detailed how to port PL3 to an exploitable PS3 Firmware via Github (linked above).

To quote: "How to port to a new Firmware (but < 3.41) :

First disable the JIG mode, and try to bruteforce the position of the payload with a panic payload (add 'b panic' at payload_start in dump_lv2.S), until you can get a hit reliably (see

Then replace the payload with the original dump_lv2 payload, and connect the ps3 through ethernet to your PC and run wireshark to capture your dump... Run the payload, then once the ps3 panics (to tell you it's done), you can save your wireshark dump to a file in .pcap format.

Then run the tools/dump_lv2_pcap_to_bin program to dump the lv2 binary from the pcap file captured by wireshark.

Open the dump with IDA, set the processor to 'ppc', then run the dump_lv2_analyzer.idc IDC file from the tools directory to get it analyzed and follow the instructions (set TOC table in IDA options).

Once you are done, set the TOC_TABLE value in PSFreedom/PSGroove and set the syscall_table define in macros.h.S.

Then look for the position of the JIG response offset in the dump by searching for a recognizable string you previously put in there. You can now set the JIG response address...

PSFreedom Now Officially Supports PS3 Firmware 3.01

185w ago - Update #2: Jevinskie has now has coded the PL3 branch to now work on PSGroove devices, evilsperm has compiled PSGroove Jevin Firmware available HERE and RichDevX has released a 3.40 (Static) Debug Payload and a 3.40 + 3.41 (Static) Debug Payload so PS3 Debug users can utilize PSGroove to dump kernels, etc.

Update from KaKaRoTo, to quote: "Philhug and I have worked together recently to make PL3 compatible with 3.15, and it is now done, working and ready for you to use.

I have just pushed the latest changes to github, so just update both PSFreedom and PL3, and define FIRMWARE_3_15 in PSFreedom's...

KaKaRoTo Introduces PL3, 3.01, 3.10 and 3.15 PSFreedom Ports

185w ago - Today KaKaRoTo has introduced a common repository of payloads that can be used by any PS3 JailBreak implementation called PL3, and also said he is making progress with PSFreedom ports for PS3 Firmware 3.01, 3.10 and 3.15.

Download: PL3 PS3 JailBreak Payloads

To quote: "I'll announce two things, first, let's talk about PL3.. PL3 is a new project I started in order to have a common repository of payloads that can be used by any 'jailbreak' implementation. I got tired of copying payloads from PSGroove, and I had some nice changes in mine that I thought the PSGroove project could benefit from, so I thought I'd create a single repository that both projects, PSFreedom and PSGroove (or any other similar projects) could use.

You can find it in github, so don't hesitate to submodule it and use it.

Second important news... I've bought a new PS3 just for homebrew. Thanks to all who donated money so I can buy it (I didn't get enough donations to pay for it, but enough to help me). I bought this PS3 used and it came with firmware 3.01! This is good and bad news : I can't use PSFreedom to jailbreak it, so i've put on hold any improvements for it, however,...

