- We are happy to report that the PS3 Hypervisor LV1 and Bootloader LV0 are dumped from the PlayStation 3's RAM after getting our SX28 Hardware
a few days ago, utilizing code for glitching and mashing buttons for hours - the exploit
eventually will get triggered!
We tried a few different ways to dump out the real memory - the biggest "problem" was the fact that you can't just simply use File I/O code in a kernel module. Furthermore, you can't call the lv1_peek
function from user mode either.
Luckily, resident DEV kakarotoks
was up to the challenge. After some trial and error (and too many PS3 crashes!) he made a kernel module
which maps the "real" PS3 memory to a device in /proc
. The /proc
area lets the kernel and userland interact some.
Basically, the device /proc/ps3_hv_mem
is created when the kernel module is inserted. Once it is inserted, you can use dd
to read the device. By doing this, the device gets passed arguments, which is...