Actually the revocation list exploit doesn’t allow you to exploit isoldr, you could however sign a revoke list if you had the revocation list keys and knew the sign fail, and use that to dump isoldr. Metldr does not load revocation lists.

@jarmster
Ya well without a disassembly i guess its all speculation isn’t it math

This has been tested, how do you think I could release the lv2ldr and appldr keys ? (about 24hrs before Geohot showed up with metldr keys) This has been tested, how do you think I could release the lv2ldr and appldr keys ? (about 24hrs before Geohot showed up with metldr keys)

You can also dump any loader using a signed metadata (including metldr) though that means you need to have the keys for it in the first place (kinda kills the purpose)

Your entire purpose is to get the isolated process (the code running inside the spu) to jump to your instructions

For exemple the following instructions will dump the isolated LS to the SPU mailbox:
loop:
rdch $3, ch29
lqd $3, 0($3)
wrch ch28, $3
rotqbyi $3, $3, 4
wrch ch28, $3
rotqbyi $3, $3, 4
wrch ch28, $3
rotqbyi $3, $3, 4
wrch ch28, $3
up_one:
br loop
br up_one
Of course you’ll need a ppu payload to fetch the mailbox data.
Metldr is trivial to dump now that you can sign your loader, but I wont say anything more on this.

Finally the problem with isoldr and the revoke list exploit isn’t so much that the exploit doesn’t work (it actually does) It’s that the payload from the crafted revoke list overwrites isoldr keys (which kinda kills the whole purpose), You can however get the revoke list keys from lv2ldr or appldr using the revoke list exploit and then sign a revoke list metadata to exploit isoldr later on. (There are other ways to get isoldr though, including the 3.60+ exploit I have (but there is at least another I know of) Again, good luck in your endeavor.

There is more than one npdrm key. It’s not been released because the ones who have the skills to do it do not remotely care about pirating playstation store games (obviously).

do u guys think this would bypass something possibly and let us play online ?
You must login or register to view this content.


a wireless bridge for ps3

not really he can pass the hack behind closed doors
he can pass hack to me i will take the blame

yeah sure anyway it seems a CFW is coming more closer than i expected! thumbs up if you agree

yeah sure anyway it seems a CFW is coming more closer than i expected! thumbs up if you agree

You must login or register to view this content.

Many people have been talking about the exploit found by Mathielh and some people got too excited about it. His exploit would let us hack all future firmwares which are soon to come.

Whether or not it can be compared with the exploit that geohot used to obtain metldr keys is still not clear, even from Mathieulh himself since geohot has been keeping his mouth shut about it although he did told everyone on IRC, the metldr exploit was done (or use) on a OtherOS enabled 3.15 console.

Now, Mathielh posts:






When he was asked about the NPDRM key in the equation. Here’s what he said:


You must login or register to view this content.

this isnt youtube buddy stop asking for stuff :mad:

dude you just copy and paste your post from youtube? "THUMBS if you agree" /facepalm