1. Forums /
  2. Gaming Lounge /
  3. PS3 /
  4. PS3 Mods and Cheats /
  5. PS3 {Partial} Hacking Program
Post: PS3 {Partial} Hacking Program
01-25-2012, 11:38 PM #1
BriceC's Avatar
BriceC
Computer Programmer
(adsbygoogle = window.adsbygoogle || []).push({}); I wanted to encourage you to code some software to decrypt the PS3 FW update file. So stop searching metldr/trying to dump lv2 and code that program. According to geohot's blog. It IS possible to load metldr into a SPU and from that load the loader of your wish and decrypt everything you want!
See if you can finish Geohot's Unfinished program...

Originally posted by another user

volatile int init_module() {
unsigned long priv2_addr, problem_phys, local_store_phys, context_addr, shadow_addr, spe_id, vas;

lv1_get_virtual_address_space_id_of_ppe(0, &vas);

printk(KERN_ERR "die kernel %d\n", lv1_destruct_logical_spe(0xb));

printk(KERN_ERR "construct SPE: %d\n", lv1_construct_logical_spe(0x10,0x10,0x10,0x10,0x10, vas, 0, &priv2_addr, &problem_phys, &local_store_phys, &context_addr, &shadow_addr, &spe_id));
boom_lpar(shadow_addr);
printk(KERN_ERR "make SPE id: %d\n", spe_id);
printk(KERN_ERR "enable SPE: %d\n", lv1_enable_logical_spe(spe_id, 0));


unsigned long *problem_mapped, *privileged_mapped, *local_mapped;

problem_mapped =__ioremap((unsigned long)problem_phys, 0x20000, PAGE_SHARED_X);
privileged_mapped =__ioremap((unsigned long)priv2_addr, 0x20000, PAGE_SHARED_X);
local_mapped =__ioremap((unsigned long)local_store_phys, 0x40000, PAGE_SHARED_X);

printk(KERN_ERR "status: %lx\n", problem_mapped[0x4020/8]);
printk(KERN_ERR "privileged control: %lx\n", privileged_mapped[0x4040/8]);
privileged_mapped[0x4040/8] |= 4;
printk(KERN_ERR "privileged control: %lx\n", privileged_mapped[0x4040/8]);

struct file* fd;
mm_segment_t old_fs = get_fs();
set_fs(KERNEL_DS);
fd = filp_open("/work/pwned/metldr", O_RDONLY, 0);
if(!IS_ERR(fd)) {
printk(KERN_ERR "file is open\n");
printk(KERN_ERR "read %d\n", fd->f_op->read(fd, local_mapped, 0x40000, &fd->f_pos));
filp_close(fd, NULL);
} else {
printk(KERN_ERR "file open failed!!!!\n");
}
set_fs(old_fs);
printk(KERN_ERR "read in metldr\n");

problem_mapped[0x4018/8] |= 3;

int i;
for(i=0;i<0x20;i++) {
printk(KERN_ERR "status: %lx\n", problem_mapped[0x4020/8]);
}
printk(KERN_ERR "destruct SPE: %d\n", lv1_destruct_logical_spe(spe_id));

return 0;
}
(adsbygoogle = window.adsbygoogle || []).push({});

The following 4 users say thank you to BriceC for this useful post:

gamer89117, ILovePie24!!, ryantehninja, sonny356

The following 2 users groaned at BriceC for this awful post:

Alexis Rhodes, CodingNation
01-28-2012, 12:12 AM #20
GUESS_HU's Avatar
GUESS_HU
< ^ > < ^ >
Originally posted by XxWOLFxXLeader View Post
You can't be serious. Hotz let out an exploit to ALLOW OtherOS on higher firmwares after Sony took it off. The entire point of hacking the PS3 (in the beginning) was to re-enable the option... And to those of you saying GeoHot is a legend, wrong again. He took most of the credit for the hacking when he really didn't do much work when you think about it. He just simplified the work of others, which was going to be done anyway. He stepped in the spotlight when others didn't really want the attention. Personally I think he is done with the PS3. Sony scared him with the lawsuit.


He had jailbroken the ps3 through other os, before they removed it. that is why they removed it. then he was just on a merge to get it back but went a few steps too far Happy

The following user thanked GUESS_HU for this useful post:

racecar12
01-28-2012, 08:25 PM #21
Default Avatar
WOLF
Guest
Originally posted by HU View Post
He had jailbroken the ps3 through other os, before they removed it. that is why they removed it. then he was just on a merge to get it back but went a few steps too far Happy


You think he calling it quits with PS3?
01-30-2012, 05:15 AM #22
ILovePie24!!'s Avatar
ILovePie24!!
Banned
even tho is kakarato made first cfw geohot perfect it cmon kakaratto custom really doesnt count like dat compare 2 the werk geohot put on his beside lets not get off track the guy thought geohot was team/group lmaooo
01-31-2012, 12:21 AM #23
Kratos_'s Avatar
Kratos_
Blizzard Fails
Originally posted by xX View Post
and geohot has quit facebook and looks set to go bk to his hacking Smile

Probably only iphone hacking. I don't think he wants to get sued by Sony Playstation again lol

The following user thanked Kratos_ for this useful post:

02-02-2012, 06:53 PM #24
Tricksterrr's Avatar
Tricksterrr
Full time porn star, part time ninja!
Originally posted by sunce99 View Post
geohot's are lazy tbh they take too long to make everything when they finish it this project we will be on ps4 and they still working on ps3 4.00 :l

So is the KaKaRoTo 'Group.'
02-02-2012, 08:58 PM #25
sunce99's Avatar
sunce99
League Champion
Originally posted by r View Post
So is the KaKaRoTo 'Group.'


No its one person
02-02-2012, 10:41 PM #26
AMNE's Avatar
AMNE
Big Daddy
Originally posted by iPhone
not to be a dick but KaKaRoToKs was the first to make a CFW, geohot just made it complete and way better....and hes not just "cool." He's a god damn legend!


your wrong it whas fail overflow that figured it out then geohot finished the job
02-03-2012, 04:36 AM #27
ResistTheMoon's Avatar
ResistTheMoon
< ^ > < ^ >
Originally posted by x View Post
your wrong it whas fail overflow that figured it out then geohot finished the job


Nah, failoverfl0w found the keys, passed on to kakarotos then geohot
11-21-2016, 01:52 AM #28
Expo_Modz's Avatar
Expo_Modz
Haxor!
All of this is bs

Copyright © 2026, NextGenUpdate.
All Rights Reserved.

Gray NextGenUpdate Logo