(adsbygoogle = window.adsbygoogle || []).push({}); In not-so-surprising news, the crew over at the other DH -- DemonHades -- dropped insider knowledge on the latest 3.70 firmware. And of course there is more than meets the eye; 3.70 uses new encryption/decryption keys and also patches certain vulnerabilities that Cobra USB took advantage of, making 3.70 more secure than previous firmware

source
You must login or register to view this content.

i'm not trolling bro,i have the right to my opinion just like everyone else.also gitbrew said its a ''exploit''<------
so a custom ''firmware'' is not a exploit?
im well aware he said this
[ATTACH=CONFIG]10964[/ATTACH]

[ATTACH=CONFIG]10963[/ATTACH]

Does the DNS bypass works? If so.. How?
Because i tried it and it didnt wotk?

yea it still works i just got done playing hours of zombies. I use manual IP and input the dns that way, it more complicating than going into ip address auto and than dns manual. but i have my ps3 ip portforwarded.

Alright so i dont a pc right now (it is broken)
Is there any chance i can do it without pc? If so can you explain it to me step by step thanks i need to sync some trophies=D

yeah just go to internet connection settings on your ps3, and go till you see dns, hit manual put in the bypass dns hit accept your done

i think any 1 who knows anything about the ps3 encryption/decryption

would know that sony would change keys with every firmware

i knew that even before reading this

its common sense for sony to change keys with every update

i bet sony have even changed the psn passphrase aswell

"No this won't work. Repackaging the update will change the hash check. So the PS3 would check the update and say "My ass this is official firmware"

Your PS3 would still have to be OFW 3.60+ which would disable all jailbroken features in order for it to output the new Passphrase.

Now doing it with a legit PS3 and the latest update. There is the same hash problem. To grab the passphrase is actually pretty easy. All that needs to be done is as follows and hopefully someone out there can build off the work I have already done so here goes.

Performing a MIM on a PS3 from a computer connected to the same network. This will grab the header that is needed and output in plain text the new passphrase. This can be done on a jailbroken PS3 simply because we can change the file. Now doing this method on a legit PS3 will NOT work. What needs to be done is to create a new CA with openssl to get the ps3 to trust the connection to your computer. Now we cannot simply upload the new certificate we generate to the legit ps3. Now this is where I didn't have time to actually perform the whole setup, but I was thinking what had to be done is pass the new cert in between the connection from PS3. So to get it working it should look like this PS3 (legit), Second computer, 3rd computer.

Have the PS3 send out the request to sign in it then sends header information to your second computer that holds the fake cert and finally your third computer which is setup to arp spoof which will then be a trusted connection from the second computer and unencrypt the headers. The PS3 WILL fail the login this is normal but we are just trying to grab the new passphrase to inject it into charles or whatever tool.

Now this was where I last left off when I was playing around with it so I never got a chance to try it out. And when I get a break from working 6 days a week I will probably try this out but I am hoping someone understands what I am talking about and tries it out. "

Well that sounds like a good idea...^^^ comment from the link in the post

honestly i doubt you can make cfw for few reasons already been stated months ago

Who cares PS3 scene is dead as a dodo now