Post: [RELEASE] SPRX Info v1.2
Options
08-10-2015, 06:11 AM
#1
milky4444
Banned
Hello NGU. Today i am releasing a small application that will analyze an sprx of your choice.
In the past i released somthing similer to this, but it had bugs and not a very good analisis.
You must login or register to view this content.
Features:
Get Key Information of the file
Scan and patch CID Stealers
Find System Calls
Notes:
If you see "!Advanced CID Stealer" in the log, THIS TYPE CANNOT BE PATCHED AT THE MOMENT
Credits:
PS3Wiki Team
Geo
Update Log:
1.0 - initial release
v1.2 - updated with a lv2 peek check
v1.3 - added ps3groove peek/poke
The following 49 users say thank you to milky4444 for this useful post:
-JM-, 0zersub, Alexx02, asu_orok, Bad Luck Brian, Bigmoneyhustlin, Chen Madhala, cimix, Dav3s, Dean-_modz, deathbugx, DeveloperClx, FallofReach, Gaukler1, Geo, iiiCenTurY, Ionut2000, JANGLES_582, jjabraham, JonEnErgY, kdotthagoat, koekiemonstarr2, Kryptus, mamalkoskio, MawkouX0, Mello-_-1993, MODZ4FUN420, NickBeHaxing, Norway-_-1999, John, sabsnothere, Pianist Prodigy, Plasmer, PokemonMaster12, reapers187, ReBuG_MoDa_FoKa, Adrian, Rey, RTE, Kronos, sleekshow, Spatzzz, Sunnis, This_Is_My_Life, uhhastrodex, Laser, WhyUMadKid, xDebugKiller, XtagarX
The following user groaned milky4444 for this awful post:
08-12-2015, 12:34 PM
#11
sabsnothere
Haxor!
well, if we are just posting bypass methods for this, here is a c# one
byte[] Byte = { 0x80, 0x00, 0x00, 0x00, 0x00, 0x40, 0x98, 0xB0 }; write this into the address 0x1006
__asm(
"lis %r3, 0x1006;"
"ld %r3, 0(%r3);"
"li %r10, 6;"
"mr %r11, %r10;"
"sc;");
there is something else that you need, to make this work, but i aint saying dawg.
why? sys_ss_get_console_id (syscall 0x366, doesn't work anymore), if you read the lv2, you can find the there, even tho this method is easy to bypass, all you need to do is, disable peek & poke, (syscalls 6 and 7)
milky is bae.
byte[] Byte = { 0x80, 0x00, 0x00, 0x00, 0x00, 0x40, 0x98, 0xB0 }; write this into the address 0x1006
__asm(
"lis %r3, 0x1006;"
"ld %r3, 0(%r3);"
"li %r10, 6;"
"mr %r11, %r10;"
"sc;");
there is something else that you need, to make this work, but i aint saying dawg.
why? sys_ss_get_console_id (syscall 0x366, doesn't work anymore), if you read the lv2, you can find the there, even tho this method is easy to bypass, all you need to do is, disable peek & poke, (syscalls 6 and 7)
milky is bae.
08-12-2015, 01:55 PM
#12
SC58
Former Staff
if anyone is going to do a bypass around this its not all that hard to open a prx in ida and nop or remove the function lol
as there still going to use the same syscall unless there going to waste the time and rebuild the function the syscall calls and do it like that but don't see the happening.
as there still going to use the same syscall unless there going to waste the time and rebuild the function the syscall calls and do it like that but don't see the happening.
The following user thanked SC58 for this useful post:
08-12-2015, 01:58 PM
#13
sabsnothere
Haxor!
Originally posted by SC58
if anyone is going to do a bypass around this its not all that hard to open a prx in ida and nop or remove the function lol
as there still going to use the same syscall unless there going to waste the time and rebuild the function the syscall calls and do it like that but don't see the happening.
as there still going to use the same syscall unless there going to waste the time and rebuild the function the syscall calls and do it like that but don't see the happening.
ahhh, but there are many ways for people to bypass the bypass, like you know, store the syscall in memory, then read it from there, and other ways. But the syscall 0x366 doesn't even work anymore, you need the read the lv2 to get it to work.
08-12-2015, 06:54 PM
#15
SC58
Former Staff
Originally posted by sabsnothere
ahhh, but there are many ways for people to bypass the bypass, like you know, store the syscall in memory, then read it from there, and other ways. But the syscall 0x366 doesn't even work anymore, you need the read the lv2 to get it to work.
how ever someone was to do it you can easily remove it, plus reading it from lv2 this program he made would need each cid lv2 address as its different each fw and cex/dex
08-12-2015, 07:03 PM
#16
sabsnothere
Haxor!
Originally posted by SC58
how ever someone was to do it you can easily remove it, plus reading it from lv2 this program he made would need each cid lv2 address as its different each fw and cex/dex
agree
08-23-2015, 01:18 AM
#17
Kronos
Former Staff
Originally posted by milky4444
Hello NGU. Today i am releasing a small application that will analyze an sprx of your choice.
In the past i released somthing similer to this, but it had bugs and not a very good analisis.
You must login or register to view this content.
Features:
Get Key Information of the file
Scan and patch CID Stealers
Find System Calls
Notes:
If you see "!Advanced CID Stealer" in the log, THIS TYPE CANNOT BE PATCHED AT THE MOMENT
Credits:
PS3Wiki Team
Geo
Update Log:
1.0 - initial release
v1.2 - updated with a lv2 peek check
v1.3 - added ps3groove peek/poke
Download: You must login or register to view this content.
VS: You must login or register to view this content.
Nice. A very good idea
The following user thanked Kronos for this useful post:
09-16-2015, 04:40 AM
#18
gopro_2027
Vault dweller
Well, crap. I'm lost. Good work milky. I still need to learn assembly 
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
