02-25-2007 #111hacked2123 Guest
02-25-2007 #112jaynice2 Guest
Hacked123, how do you go about decrypting the .pkgs? I would like to help but I don't know where to start.
- Join Date
- Apr 2005
02-25-2007 #114hacked2123 Guest
You could try to find some program that would brute force decrypt the file till it see's eboot (even if it's compress file names stay in tack most the time right?) If you can find something to do that would be the best way to help. (Doubt there is anything like that)
I am personally working with flow (with no progress)
02-25-2007 #115jaynice2 Guest
Hope this help got it from cobalfaqs
Unpack Sausalito PKG file
Most PKG files for Sausalito machines are encrypted tarballs. You cannot just open them with
tar zxf Filename.pkg
like you can for RaQ 4 and before.
To open the PKG and see what's inside it, do
gpg --decrypt --output Filename.tgz Filename.pkg
tar zxf Filename.tgz
Alternatively this can be combined into one step:
gpg --decrypt Filename.pkg | tar zxf -
02-25-2007 #116hacked2123 Guest
Decrypt file (or stdin if no file is specified) and write it to stdout (or the file specified with --output). If the decrypted file is signed, the signature is also verified. This command differs from the default operation, as it never writes to the filename which is included in the file and it rejects files which don't begin with an encrypted message.
"gpg: no valid OpenPGP data found.
gpg: decrypt_message failed: eof"
Wish it would be that easy, anyways tried it with and without the "header" portion of the file.
02-25-2007 #117NDT Guest
the total file length @ offset 1C (07CF2A20)
the contained file length @ offsets 2C and F0 (07CF2880)
so the difference is 1A0 (like for all the others pkg) and so the header is 416 bytes, those are the bytes that we have to check in order to decrypt/decompress these pkg.
02-25-2007 #118hacked2123 Guest
I believe gpg has to do with mail messages... and so does pkg's... o well, it won't be to long, at least we have a specific goal.
does anyone want to try double clicking it from a Mac. (Another under our noses thing maybe?)
02-25-2007 #119ps2asker Guest
I did a test yesterday, I backed up the data on the ps3 with the "Backup function", restored the system, and restored the data. Now flOw (which I paid for) gave me the same error as Blast Factor (which I did not pay for): it said that it could not be accessed on my account.
Today I went to download flOw from a real link to get a working copy, and just before the download started I noticed it said "Activating" for a second or two. The it started the dl as usual but I cancelled it after 1%, went back to the XMB, and flOw worked just fine
So just before it starts do download it activates something, and stores it on the hdd but won't back it up.
02-25-2007 #120ps2asker Guest
If I change the flOw download link to a blast factor .pkg on my pc, it still says "Activating" when starting a download.
Also, when you download like Blast Factor from the flOw link, it still shows the flOw pic and it also pulls information from the REAL flOw pkg file(name). If you check ie flOw pkg in an hex editorm you can see that it's name is FLOWPLAYSTATION3, and thats the exact name that shows up even if you change the link to another games pkg.
Is it possible to sniff all links somehow, and not just the ones with .pkg in them?