PS4 News on Facebook! PS4 News on Twitter! PS4 News on YouTube! PS4 News RSS Feed!

Home PS4 News - Latest PlayStation 4 and PS3 News

171w ago - Following up on the previous True Blue (TB) PS3 JailBreak 2 (JB2) DRM-infected dongle news comes a WIP update from Shadoxi on dumping and decrypting the TB and Cobra payloads below, as follows:

Download: TB / Cobra Payloads (2.84 MB) / TB / Cobra Payloads (2.84 MB - Mirror) / TB / Cobra Payloads (2.84 MB - Mirror) / PS3 True Blue MFW (172.19 MB)

I have figured out where the payload is located of the TB and Cobra dongles. You can find it at offset @360000 in lv2_kernel and 7f0000 in PS3 memory. According to the PS3 Developer Wiki (ps3devwiki.com/index.php/ReDRM_/_Piracy_dongles) the LV2 dump payload at 0x7f0000 has also been decrypted @ LV2 dump 0x7f0000 (pastebin.com/3VG76HQs)

Drag and drop payload in IDA and load it in Binary file mode, Processor type PPC.Press "C" to convert in ASM code.

First of all you need to edit the header of lv2_kernel.self (from CFW TrueBlue) at offset 0x1D, replace 36 1A 00 by 4C FC F0. And decrypt it with unself tool from fail0verflow. Open lv2_kernel.elf with IDA Pro (in binary file mode), go to offset 360000 and press "C" to convert to asm code.

TrueBlue use some HVCALL:

  • lv1_insert_htab_entry
  • lv1_undocumented_function_114
  • lv1_undocumented_function_115
  • lv1_allocate_device_dma_region
  • lv1_map_device_dma_region
  • lv1_net_start_tx_dma
  • lv1_net_control
  • lv1_panic (shutdown ps3 when TB is unplugged)

This payload do some HVCALL:

  • lv1_insert_htab_entry (map lv1)
  • lv1_allocate_device_dma_region (?)
  • lv1_map_device_dma_region (?)
  • lv1_net_start_tx_dma (?)
  • lv1_net_control (?)
  • lv1_panic (shutdown ps3 when TrueBlue dongle is unplugged)
  • lv1_undocumented_function_114 (map lv1)
  • lv1_undocumented_function_115 (unmap lv1)

We needed to dump lv2 and lv1 memory when the dongle is plugged in, so I created a modified TB CFW with peek and poke syscall. It works fine !

Finally, from the MFW_TrueBLue.zip ReadMe file: Warning this mfw can brick your dongle !!!

  • First install PS3PEEKTEST.pkg
  • Install MFW TrueBlue firmware in recovery mode
  • Start ps3peektest

If Peek Result is equal to 10 and true blue light is green -> work.


True Blue (TB) and Cobra PS3 JB2 DRM Dongle Payloads WIP

Follow us on Twitter, Facebook and drop by the PS3 Hacks and PS3 CFW forums for the latest PlayStation 3 scene and PS4 Hacks & JailBreak updates with PlayStation 4 homebrew PS4 Downloads.




#802 - Tidusnake666 - 147w ago
Tidusnake666's Avatar
I do not know, by what miracle guys have run Batman Arkham City on TB CFW, it gave me black screen all the time, and I tried with and without disc, with and without patch, with and without dlc... etc.

1) Then I tried to make a PSN-like package to run it with the TB unplugged (you remember good old times, eh?). After 2.5 hours of converting NPDRM-update-like-pkg signed with debug keys with hard-as-nutshell-to-decrypt eboot, I finally managed to create a pkg. It run, but at the install it hanged.

2) So, I made another (obvious) solution in half an hour - reencrypted eboot, so you can replace it directly over your game dump and play happily on any 3.55 CFW (included TB) without problems (haven't tried dlc's on TB CFW yet). Tested on TB CFW v2 with dongle plugged.

Instructions:

1. Replace ebbot in your game's dump directory with this: http://www.sendspace.com/file/3u2rb5 (THIS IS NOT AN OLD EBOOT, IT'S CONVERTER!)
2. Run the game, allow it to install data, start new game, when you'll regain control of Bruce, while moving the character, you should press PS button and chose "Exit game"
3. Start multiman, copy "PATCH" directory d/l from here: http://www.sendspace.com/file/8yp618 to your hdd0/game/BLUS30538/USRDIR (game install directory)
4. Start the game again, wait till another install finishes, enjoy!

No old semi-working patches were used, it's a real deal, patched to run in a way for TB users, who have troubles launching the usual style.

Come on guys, I sacrificed some precious hours of sleep (it's 4 AM here), I deserve some +reps

#801 - kyubey - 148w ago
kyubey's Avatar
updated version refer to:

-the software
-the hardware (new dongle)

?

#800 - HWARAKADLAH - 148w ago
HWARAKADLAH's Avatar
Here is another update from the TB site:

23 - 7 - 2012

The True Blue team will soon be launching an updated version of our dongle, hence our silence and lack of news/updates. The changes include a new style casing to help differentiate clones from the authentic True Blue dongles. The new version dongle will be compatible with EBOOT patches released to date, whilst existing authentic True Blue dongles in the market will continue to be supported in the same firmware releases.

You can expect a spate of EBOOT releases shortly after the new version dongle is released. We also plan to include a lot of extra features for our loyal True Blue user base in upcoming firmware releases. which will also function seamlessly on existing authentic True Blue dongles.

We would also like to bring to our potential customers and existing users attention that the website: truebluejb2.cc is selling FAKE dongles. We are in no way associated with them nor will we replace or support their fake dongles.

Information received suggests that they have not yet cloned our new style packaging, so large qty's of devices in the market which do NOT come packed in the packaging detailed below (30-5-2012 news) are most likely fake. We will continue to monitor the situation daily.

The upcoming new firmware releases will also block the clones and help users differentiate fakes from authentic dongles.

Upcoming firmware releases will block these fake devices and furthermore EBOOT's will not support the clones. PB2 and JBking clone devices will also be blocked in the future and will not function correctly with our upcoming features!

We thank our customers for their continuing support and hope you will enjoy the coming features and EBOOT patches.........

The clones sold by truebluejb2.cc can be differentiated by checking the PCB inside the casing using the guide below, as previously posted in news.

#799 - fantopoulos - 150w ago
fantopoulos's Avatar
very crazy stuff, i think you will probably need kind of update, or adapter, or something for the true blue to work, the pieces just do not add up to me.

#798 - Erz - 150w ago
Erz's Avatar
Ouch! Please don't make another dongle

If they did make another dongle for high rocket price then, I guess I have to say goodbye to PS3 and welcome 360

#797 - leon315 - 150w ago
leon315's Avatar
man, you don't have to pirate, nor get their dongle...

#796 - elser1 - 150w ago
elser1's Avatar
I'm sure they've made enough ten times over considering its not their games they are allowing us to pirate. what about free verios, or karmas a bit hope you all go to jail tb there to modify it.

#795 - hey69 - 150w ago
hey69's Avatar
If it wasn't 60 bloody EURO maybe , and so would lots of other people i think

#794 - saito1234 - 150w ago
saito1234's Avatar
I'm afraid that if True Blue really releases a new dongle soon, they won't release any more eboot for the dongle, as it already has a lot of clones, and they probably want to sell more from their new dongle...

#793 - Xyth - 152w ago
Xyth's Avatar
TrueBlue (JB2) will stop production and another dongle will be released according to LighTake's site:

True Blue JB2 was stop producing and a newest replace product will be released in July, please pay close attention to TB official site news update in recently days. Any questions just contact sales for help.

A newer replace DRM dongle with build-in ndw function will be released July 20th.

Q: Does the old TB dongle compatible with the new one?
A: Yes! our supplier said the old TB will still get support on updating so that it can play new games as the new dongle. If there is a change, I will advance notice.

Q: What's the name and function of the new dongle?
A: It's still a mystery currently, I will update immediately if I heard something from our supplier.

We have confirmed that the new dongle is still called True Blue (aka JB2 / TB), but it was changed new packaging and add more function in it. What's the new technical support? I am sorry we don't know currently except compatible with the old TB eboots.