PS4 News on Facebook! PS4 News on Twitter! PS4 News on YouTube! PS4 News RSS Feed!

Home PS4 News - Latest PlayStation 4 and PS3 News

238w ago - Update: Chinese PlayStation 3 developer xoeo at A9VG.com has now released a working PSGroove payload to spoof PS3 Firmware version 3.15 / 3.41 to 3.50 along with some PSGroove hex codes, as follows:

Downloads: PSGroove PSN Yes 3.15 Hex Code / PSGroove PSN Yes 3.41 Hex Code / Hermes v4b PSN PS3 Yes Hex Code (80010009 Error Fix) / Port1 Hermes v4b PSN (PS3 Yes Pro) / Arduino PL3 (PSN) + Hermes v4b / Arduino PL3 (PSN) + Hermes v4b (PSN) / PSN Payload For PS3 Break v1.1 / Olimex PSN Hermes v4b 8mhz Hex Code / PSFreedom v1.5 Dingoo (PSN) / PSFreedom Palm Pre (PSN) / AVRKey PSN Hermes v4b Blinky LED Hex Code / AVRKey PSN Hermes v4b Working LED Hex Code / AVRKey Hermes v4 PSN Math Netkas Blinky LED Hex Codes / Blackcat PSN Hermes v4b Blinky LED Hex Code / Blackcat PSN Hermes v4b Working LED Hex Code / Blackcat Hermes v4b PSN Math Netkas Blinky LED Hex Codes / Hermes v4b PSN Math Netkas Blinky Multiboard Hex Codes / Maximus PSN Hermes v4b Blinky LED Hex Code / Maximus PSN Hermes v4b Working LED Hex Code / Maximus Hermes v4b PSN Math Netkas Blinky LED Hex Codes / Minimus Hermes v4b PSN Math Netkas Blinky LED Hex Codes / Minimus PSN Hermes v4b Blinky LED Hex Code / Minimus PSN Hermes v4b Working LED Hex Code / Minimus v2.0 Hermes v4b AVR USB Atmega32u2 16Mhz / PS2Chipper PSN Hermes v4b Working LED Hex Code / PS2Chiper Hermes v4 PSN Math Netkas Working LED Hex Code / PSGroove Hermes v4b PSN Mathfix4all OpenKubus Hex Codes / XPlain PSN Hermes v4b Hex Code / Teensy 2.0 PSGroove Hermes PSN Hex Code / Vidarino PL3 (2.76 - 3.41) 11-10-2010 TI-84+ / Vidarino PL3 (2.76 -3.41) 11-10-2010 TI-89 / PSN Hermes V2 TI-84 Hex Code / PSN Hermes V2 TI-89 Hex Code / Hermes v4 PSN Math Netkas Teensy 2.0 Hex Code / Hermes v4 PSN Math Netkas Teensy++ 2.0 Hex Code / Hermes v4 PSN Math Netkas Xplain Hex Code / PSGroove PSN v3 Hex Codes / PSGrooPIC SysVer 3.50 v2.01 Hex Codes / PSGrooPIC PSN PL3 Hex Codes / PIC18F iLLNESS PSN PL3 Hex Codes / PIC18F iLLNESS Hermes V4B PSN 3.41 18Fxxxx LEDB145C0 C1 USBHID Hex Code / PIC18F iLLNESS Hermes V4B PSN 3.41 18Fxxxx LEDB145C0 C1 PICDEM Hex Code / Mini1g Rockbox Hermes V4b PSN / Mini2g Rockbox Hermes V4b PSN / Nano1g Rockbox Hermes V4b PSN / Photo4g Rockbox Hermes V4b PSN / Video5g Rockbox Hermes V4b PSN / Rockbox PL3 PSN FW 3.41 / Nano1g, Mini1g Mini2g, Photo4g, Gray4g, and Video5g Rockbox Hermes v4b Math PSN / PL3 c200/e200 v1 3.41 PSN / PSN Payload Source / PSN Hermes Ubuntu V4B Fixed / Hermes PSN Math All Boards Hex Code Pack / PSGroove All Hex Codes PL3 Default PSN / Hermes v4 PSN Math Netkas All Hex Codes Pack / PL3 Default Vidarino Ecosystem 3.41 Hex Codes / PL3 Dev Vidarino Ecosystem 3.41 Hex Codes / PSGrooPIC PSNDEBUG2 PL3 Hex Codes / PIC18F P3Free iLLNESS Hermes V4B PSN 3.41 Hex Code / Hermes v4 Minimus32 (Atmega32U2) PSN Math Netkas (Switching LED) Hex Code / PIC18F P3Free iLLNESS HermesV4B PSN 3.41 Hex Codes / PL3 Default Vidario Ecosystem Fixed 3.41 Fixed Hex Codes / PL3 Dev Vidario Ecosystem Fixed 3.41 Fixed Hex Codes / psfMOD Android PL3 + PSN 3.41 Payload / PL3 Default Vidario Ecosystem Fixed (PL3 3.50 Fpoofed on 0x82) Hex Codes / PL3 NoUnAuth Vidario Ecosystem Fixed Hex Codes / Hermes v4b Evilsperm Blinky 11.11 Hex Codes / PS3Break v1.1 Hermes 4B PSN VTX Hex Code / PSGroove PSN Trophy Sync 3.41 Bin / All Boards PL3 PSN ECO DEF DEV NOUNAUTH 3.15 3.41 Hex Codes / AVRKey PL3 PSN ECO DEF Hex Codes / AVRKey PL3 PSN ECO DEV Hex Codes / AVRKey PL3 PSN ECO NOUNAUTH Hex Codes / JMDBU2 Atmega32u4 PL3 PSN ECO DEV DEF NOUNAUTH 3.41 Hex Codes / OpenKubus 1287 16Mhz PL3 PSN ECO DEF Hex Codes / OpenKubus Atmega16 8mhz Hermes v4b PSN Math Netkas Hex Codes / PSJailBreak Atmega168 PL3 PSN ECO DEV DEF NOUNAUTH 3.41 Hex Codes / UDIP PL3 PSN EC0 DEV Hex Codes / UDIP PL3 PSN ECO DEF Hex Codes / UDIP PL3 PSN ECO NOUNAUTH Hex Codes / PIC18F iLLNESS PSNPL3 350SPOOF LEDB145C0 C1 PICDEM / PIC18F iLLNESS PSNPL3 350SPOOF LEDB145C0 C1 USBHID / P3Free iLLNESS PSNPL3 350SPOOF / PL3 PSN ECO Cyber Evil Hex Codes / PS3Key v4.3 PSN Fix / PS3Key v4.3 Open Firmware / Rockbox PL3 NOUNAUTH PSN ECO Math FW3.41 FLP / PL3 PSN Evilsperm 12.11.10 Math + Netkas Fix + 3.50 Spoof / Fix Permissions PKG File / AmazeBreak V3 Hermes V4b 3.15 PSN

Today ecosystem_mod at PSX-Scene.com (linked above) has posted about a PSGroove PL3 payload project he is working on that attempts to fake / spoof PS3 Firmware 3.41 to version 3.50 in hopes of successfully connecting to PSN.

WIP Downloads: Version Ecosystem / Version Ecosystem 2 / Version Ecosystem 201

To quote: I have made a payload that spoofs version to 3.50. It works by capturing VSH code in the moment after it decrypts index.dat.

Unluckily, it is not enough to connect to the PSN, it still refuses to connect. I have only faked the version but there are other numbers, such as release numbers.

I don't know what these numbers would be on 3.50. You can try by modifying the payload with an hexeditor and maybe someone finds the proper numbers.

Techincal info for geeks: Index.dat is the encrypted version of version.txt. After decryption, index.dat is a 20 bytes sha1 followed by 12 bytes of padding, followed by a content identical to that of version.txt.

My payload works by hooking the memcmp that the vsh performs with the sha1 to a syscall, the syscall 10, which is implemented in the payload to fill the buffer with other data.

The payload is just a PL3 default payload with that syscall 10 added and two additional patches added to memory_patch_table_1 (PATCH_INST(0x190C90, li %r11, 10) and PATCH_INST(0x190C94, sc)), and converted to the port1_config_descriptor.bin format.

Only for 3.41. Have fun.

Second version now it also fakes the auth/revision code from 45039 to 46135, which is the supossed one for 3.50. This value was also hardcoded in vsh.self, so two additional patches are done to change that string in vsh.self too. If you are gonna change auth number, remember that you must update that patch too, or you will get a beatiful red screen.

Also it now patches a syscall that gets the SDK version of a process, the patch only fakes the one for vsh. Vsh calls this function before entering the PSN.

Despite all of this, PSN still doesn't connect, but now there is a different behavior: before it told you to update and if you answered yes, you could go through the update process. Now it still tells you to update, but if you click yes, then it tells you that you are on latest version and doesn't let you to update.

I post binary and the three source files that must replace/add to the PL3 one.

Didn't want to release source because I've commited some lazyness. But anyways, here you have the only two files modified by latest, as downloaded some hours ago, PL3.

You can see the two additional patches in memory_patching.h.S. I used direct offsets instead of putting symbols in firmware_symbols.h because I was damn lazy. To complete the payload you need to put the firmware version data here (in default_payload.S):

version_str:
.space 0x2D0, 0x99

Replacing the space 0x2D0, 0x99 with the data, which should be 0x2D0 size.

I was lazy again and I just pasted the proper content after compilation with an hex editor.

As for the other question, dunno if games with higher version work without sfo editing, but I think they should work. Anyways, real purpose of this is to at least allow tests to be done.

It serves the purpose of faking version. It is a matter of time to check if it leads to more things.






Update: 2.01, small bugfix (cmpwi != cmpw), still no luck with PSN.

PL3 Payload to Spoof PS3 Firmware Version 3.41 to 3.50 WIP

PL3 Payload to Spoof PS3 Firmware Version 3.41 to 3.50 WIP

Follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 CFW forums for the latest PlayStation 3 scene and PS4 Hacks & JailBreak updates with PlayStation 4 homebrew PS4 Downloads.




#450 - FMAranda - 237w ago
FMAranda's Avatar
#bl0wme

I found this one from jtanner.

Olimex 8mhz.

#449 - FMAranda - 237w ago
FMAranda's Avatar
#tjay17

That's depends, if you use direct boot it will show the name of the manager, but if you load it from the disc on XMB it will show the name of the game.

#448 - Dominator7 - 237w ago
Dominator7's Avatar
Quote Originally Posted by tjay17 View Post
When playing online with a backup manager does it show the game you are playing or the manager?


I believe the manager's and that's why many plp are still afraid to play online, including me!

#447 - tjay17 - 237w ago
tjay17's Avatar
When playing online with a backup manager does it show the game you are playing or the manager?

#446 - bl0wme - 237w ago
bl0wme's Avatar
can someone compile olimex 8ghz please?

#445 - FMAranda - 237w ago
FMAranda's Avatar
This is great. Newest hexes for PIC18FXXXX and P3Free boards.

As always, this is a iLLNESS work, so thank him.


- PSN Access (Debugging Station 0x82) (CECH20A / CECH20B (120GB/250GB Slim)

- DYN-001 0x09 + ECO Mod (Firmware 3.50 Spoof) 3.41 ONLY!

- 3.50 spoof so you dont need to edit param.sfo or the metadata to get things like netflix or call of duty black ops working.

#444 - War Kid - 237w ago
War Kid's Avatar
I'm slightly confused here. I'm not a genius with hex stuff yet, but know how to modify it and all that crap (which doesn't take any knowledge at all...lol)

Anyways...I've been trying to downgrade my PS3's FW for some time now. I've modified the hex of FW v3.50 with some from v3.41, and got it to the 60% check thing, then the PS3 realizes that the update has been tampered with, and says that the data is corrupt or something or the sorts.

With this new find, can I downgrade my PS3's FW? Or can I be able to jailbreak the PS3 while its running on FW V3.50? I'm mostly looking to enable FTP stuff again, that way I can try some things with games and other stuff. I don't need to be able to sign into PSN as I have a second console that I could just File Transfer from the jailbroken one to the other one and get the files that I modded onto that one.

Basically, where do I put the modified hex that is posted in the original post in my 3.50 update .PUP file so I can enable jailbreak/FTP again?

Any help guys?

#443 - R3b0rn - 237w ago
R3b0rn's Avatar
I think that most of the problems are almost ALWAYS about permissions.

Cuz first time i tried the PL3 some games behaved odd and i had all kinds of issues... so i went back to Hermes.

But now that hermes wont make any new payloads i find it kind of stupid to use it when PL3 is so much cleaner and better... according to well... a lot of ppl.

So i decided to switch but i instantly got problems with accessing some folders wich was because of permissions not being right with the hermes payload.

After i fixxed the permissions with that .pkg available here it actually fixxed every problem ive ever had with some games instantly.
It even let me run some games i had troubles with before...

So personally i would recomend really trying hard to get everything to work with PL3 and well my personal Manager choice is Multiman as you can choose how u want it to work...

Now when i look back, i feel like Hermes and Gaia manager held me back on success with some games. In particular my favourite one F1 2010 as it now even works online for me, wich it didnt with hermes and Gaia...

No offence to any of the creators. Their work is great in every way as they showd the way to make great things...

#442 - DeViL303 - 237w ago
DeViL303's Avatar
Thanks guys, I got my 60GB launch on FW3.15 deactivated from my account which is great as it was last living ps3 out of the 5 tied to my account. I used the pic18f file for 3.15 and it worked fine.

I used LEDB145C0-1-iLLNESS-PL3PSN-315-default_pl-753eade44e2eb9fcf2a5-PICDEM.hex

#441 - FMAranda - 237w ago
FMAranda's Avatar
Here is the first Hermes V4B hex with PSN access. Let's make this thread the official for Hermes V4B PSN Hexes.

This is for PIC18FXXXX and BeePIC.

Special thanks to TSC.

- wBTL and nBTL