02-24-2010 #11Banned User
- Join Date
- Mar 2008
great work xor.
i'm happy to see people like you in the community working such hard.
you did a great job and i hope your work will lead the others to our goal
i keep watching what you do in this forum and all i can say is
i really think all you guys are simply the best, and i hope finally sony will learn not to mess with people from here.
Cheers PAL!! You keep coming up with these gems!
I also updated the Wiki to detail XORLOSER script. See http://ps3hvdoc.wikispaces.com/Tools
Thanks to XORLOSER +rep for his great work !!! Now we even have string linked with code !!!
Thank you very much! I hope you will be the ones who lead the PS3 scene.
When I run the script in IDA Pro 5.4 the script stops without any exception at the function find_opd_start.
I am new to IDA is there a step by step debugger or debug mode with extended exception printouts?
I updated the first post again with the latest revision, which includes labeled peek/poke calls via sapperlott:
You could add the four additional interrupt vectors mentioned in the CellBE Handbook (page 253):
0×0F20 – VXU Unavailable
0×1200 – System Error
0×1600 – Maintenance
0×1800 – Thermal Management
Hypercalls 16 and 20 are lv1_peek and lv1_poke. Without the exploit they most probably would point to lv1_invalid_hvcall.
Hypercall 221 contains a typo – it should read “lv1_gpu_context_iomap”.
frinken awesome.. i'm no reverser.. i've been playing with ida and trying to learn as i go.. i thought i was doing good =P took a script 3 minutes to get prob 90% further than i got in a week =P now if we could just get the whole mem dump and try to find some useful stuff in there.. the flash/nand should be mapped in memory.. therefore metldr should be in there as well!
from my understanding that's the next step to being able to load our own "isolated" spe to use to decode things like lv2ldr that are not decoded in the dump we all have or even better decode an update to get lv2 from it.. please someone correct me if i am thinking in the wrong direction!