tools i will be using.
MS notepad, ctrl+c, ctrl+v, the delete button on my keyboard, a gamestop warranty (i can brick as many psp's as i want), v1.0 firmware in pbp, v. 1.50 firmware in pbp, and v2.0 USA firmware in pbp...
what i plan on doing.
i have 3 methods.
using notepad, i plan on finding out where the firmwares are different. yess it will be painstakingly long, because it'l look worse than the matrix, but that's a task im willing to take.
i plan on either
A) creating a "HACKED" downgrade capable 1.0
B) a "Hacked downgrade to 1.5"
C) an exploitable 2.0
D) a 1.50 with 2.0 features, and identifies itself as 2.0
E) CREATING MY OWN FIRMWARE a "frankenstein firmware with MAC OSX TYPE GUI"
tools i may end up using.
"pbp unpacker"
im setting a realistic goal of having something working by december 31st.
and so far, by crudely cutting and pasting things in wordpad, i have gotten my psp to recognise the update on the memstick, but it wont run because of an error.
maybe if i figure out how to digitally sign it... who knows.
but within the big garble that notepad gives me, im not able to figure out what part is signed.
maybe if i had a jatag, i could just wipe the whole firmware, and write my own drivers and everything, but then it would be useless because it wouldnt run umd's any more...
wish me luck.
is there anything else to help me.
So... today i start hacking the 2.0 firmware....
So... today i start hacking the 2.0 firmware....
Yours truly,
EMO NEGRO.
EMO NEGRO.
-
AnonymousTipster
- Posts: 197
- Joined: Fri Jul 01, 2005 2:50 am
This is not the place to talk about "exploits". I suspect this thread will be locked/deleted soon.
> using notepad, i plan on finding out where the firmwares are different. yess it will be painstakingly long
You can say that again. A very long time...
-----
For anyone with who wants to seriously attempt such a thing, at least start with "PSAR Dumper" and the PRX decrypter sample in the PSPSDK
http://forums.ps2dev.org/viewtopic.php?t=2883
Even with that leg-up, there are incredible hurdles to get over due to the encrypted/signed executables.
BTW: The 2.0 English update content is exactly the same as the 2.0 Japanese update - not surprising.
My advice - spend your time doing something more productive - like learning/using the PSPSDK and writing useful Homebrew PSP apps.
> using notepad, i plan on finding out where the firmwares are different. yess it will be painstakingly long
You can say that again. A very long time...
-----
For anyone with who wants to seriously attempt such a thing, at least start with "PSAR Dumper" and the PRX decrypter sample in the PSPSDK
http://forums.ps2dev.org/viewtopic.php?t=2883
Even with that leg-up, there are incredible hurdles to get over due to the encrypted/signed executables.
BTW: The 2.0 English update content is exactly the same as the 2.0 Japanese update - not surprising.
My advice - spend your time doing something more productive - like learning/using the PSPSDK and writing useful Homebrew PSP apps.
i think i've got it!!!!!!
someone's prolly already tried it...
but what about unpacking a 1.50 pbp
and a 2.00 pbp
and swapping the data.psar
that's where the bulk of the update is, and i bet there are security files to be deleted there.
we just have to figure out where.
il keep you posted....
*open's word pad*
someone's prolly already tried it...
but what about unpacking a 1.50 pbp
and a 2.00 pbp
and swapping the data.psar
that's where the bulk of the update is, and i bet there are security files to be deleted there.
we just have to figure out where.
il keep you posted....
*open's word pad*
Yours truly,
EMO NEGRO.
EMO NEGRO.
Spoof certificates? :D
Lemme give you a piece of advice, take a class on crypto systems, then come back. Most of us gave up on researching it for two reasons:
1) Attacking the crypto system itself is pointless, the keys are either too large to crack (RSA/Certificates), and protect the real encryption scheme which currently is safe from brute-force as well. So bypassing the security is done instead (a la the current schemes).
2) There are better places to discuss cracking, and the mods here have just got fed up with people jumping in attempting to use this as a site for it. They would like to be able to stay close to the white side of homebrew as possible. Cracking discussions don't help that.
Lemme give you a piece of advice, take a class on crypto systems, then come back. Most of us gave up on researching it for two reasons:
1) Attacking the crypto system itself is pointless, the keys are either too large to crack (RSA/Certificates), and protect the real encryption scheme which currently is safe from brute-force as well. So bypassing the security is done instead (a la the current schemes).
2) There are better places to discuss cracking, and the mods here have just got fed up with people jumping in attempting to use this as a site for it. They would like to be able to stay close to the white side of homebrew as possible. Cracking discussions don't help that.
