Sponsored Links

Sponsored Links

Dumping PS3 Hypervisor and Bootloader with Atmega8 at 16Mhz


Sponsored Links
263w ago - Hi guys, I used an Atmega8 running at 16Mhz (I had a couple lying about from the BT Vision project I was working on) and knocked up a small prog to do the same as the other chips and dump out the PS3 Hypervisor and Bootloader.

I was quite surprised, It actually worked fairly straight away! I only had one pulse going everytime I pressed the button at first but not a lot was happening.

So I did what xorloser did, and modded it so it pulsed every 100ms while the switch is pressed.

After about 30-40 seconds... I got a hit with the exploit code posted here. Then I used the dumper (posted here) to dump the 10mb bin.

Just having a look through the dump, lots of strings in there.. I haven't dropped it into IDA yet tho...

This is the source and hex (for those who dont want to compile it) for the Atmega8 which I glitched my PS3 with. The Chip I used was the Atmega8-16pu. You will also need a 16mhz Crystal, and 2 x 22pf Capacitors.

Grounding pin 14 on the chip will produce a pulse on Pins 2 of the chip (infact it does all of PORTD) This should then go to the memory bus point on the ps3. See Circuit diagram (below).

I used ponyprog to program my chip, with CKOPT ticked in the fuse settings, everything else was unticked.

Mick



Stay tuned for more PS3 Hacks and PS3 CFW news, follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 Custom Firmware Forums for the latest PlayStation 3 scene and PlayStation 4 scene updates and fresh homebrew PS3 Downloads. Enjoy!
Sponsored Links
Sponsored Links

Comments 55 Comments - Go to Forum Thread »

• Please Register at PS4News.com or Login to make comments on Site News articles.
 
#15 - saviour07 - 263w ago
saviour07's Avatar
The links posted for the PS2 wiki are an interesting read, just a little peak at some of the stuff that the dev's must be looking over now

And well done is0mick, +Rep!

#14 - Adelin - 263w ago
Adelin's Avatar
is it working or must wait for another testing to play it

#13 - Corradoc - 263w ago
Corradoc's Avatar
Good news...

Looking forward... have a nice job, guys!

#12 - skatomelato - 263w ago
skatomelato's Avatar
Great news!!! Geohot made the start and you continue...

#11 - PS4 News - 263w ago
PS4 News's Avatar
Quote Originally Posted by ernvil View Post
It seems like Geohotz's exploit really did ignite the Ps3 scene!

Definitely... I'm sure in weeks or months to come a lot of the "whispers" that are currently happening behind the scene will surface publically if they prove true.

There are already unconfirmed reports that the exploit is reproducible on PS3 Debug units via XMB with no memory line glitching required through software which would be interesting.

Other rumors include calls like cellUsbdAllocateMemory and libusbd may be exploitable, but right now these are just IRC rumors and remain unconfirmed.

Slowly the PS2Dev Wiki is being updated also, something to keep watch on:

http://wiki.ps2dev.org/ps3:hypervisor:lv1_storage_write
http://wiki.ps2dev.org/ps3:hypervisor:lv1_get_repository_node_value
http://wiki.ps2dev.org/ps3:security

#10 - ernvil - 263w ago
ernvil's Avatar
It seems like Geohotz's exploit really did ignite the Ps3 scene!

Keep it up guys

#9 - Poopsqueege - 263w ago
Poopsqueege's Avatar
Cool, I was going to buy an Arduino anyway. Now I have another reason to get one.

#8 - aries2k6 - 263w ago
aries2k6's Avatar
Great Job.

I'm glad more ways are popping up for achieving this and more people are looking into the dumps. The ps3 scene is starting to look hopeful.

#7 - wallace80 - 263w ago
wallace80's Avatar
hey mick fancy seeing you here

great work on the coding mate, nice to see the btvision project is still helping ;D

#6 - is0mick - 263w ago
is0mick's Avatar
Attached in the first post HERE is the code, compiled hex, circuit diagram I quickly chucked together, and a small readme.

Hope I didnt miss anything.. (apologies if I have, its Waaaay past my bedtime )

Mick

Edited By Admin: Moved Attachment to First Post for Site News and linked it.

 

Sponsored Links

Sponsored Links







Advertising - Affiliates - Contact Us - PS4 Downloads - PS4 Forums - Privacy Statement - Site Rules - Top - © 2015 PlayStation 4 News