Psvita Dual-FW Boot (POC){news}

aliak18 · Post by **aliak18** » Tue Jan 28, 2014 4:21 pm

Have you tried to write the old nand back to the Vita?

Advertising

Post by **NNNRT** » Tue Jan 28, 2014 7:46 pm

Amazing work you're doing there katsu! There's progress every week. Hope this would help other devs in accessing the kernels. But we need to get them interested in the Vita first.

Advertising

PS3Y2kvirus · Post by **PS3Y2kvirus** » Tue Jan 28, 2014 11:48 pm

http://youtu.be/05bG3nMimrU ps vita youtube link of katsu's vid for those who are on ps vita.

Um When did FW 2.05 dump happen?

jotax · Post by **jotax** » Thu Jan 30, 2014 10:46 pm

with this inspection, it is possible to find "the sound of PSX"?

Post by **S1NFUL** » Fri Jan 31, 2014 12:40 am

jotax wrote:with this inspection, it is possible to find "the sound of PSX"?

If you're referring to sound output on PS1 games played through eCFW, then the short answer is no...

DaniPhii · Post by **DaniPhii** » Tue May 06, 2014 8:39 am

yifanlu wrote:Nice. That means there's no updating of encryption keys in each fw update. This will be useful whenever a kernel exploit is found (so you can update use psn back up and downgrade).

I hope Sony doesn't update them by now and later, that will give all kernel exploits seekers more time until that moment.

I wish I could buy a PSVita already, but I'm still enjoying my PSP.

XeLasar · Post by **XeLasar** » Mon May 12, 2014 5:14 pm

Im new to reverse enginiering, i think i understood the descryption and encryption Things. But I dont know, is there any way to descrypt the dumpet Firmware. Maybe a brut-force attack? Thats what Wikipedia mentioned C:

krysodlak · Post by **krysodlak** » Mon May 12, 2014 7:46 pm

I've read somewhere that the brute force attack could take around billion years due to the 256bit AES encryption. So I reckon a brute force attack isn't a viable option

Post by **noname120** » Mon May 12, 2014 8:44 pm

XeLasar wrote:Im new to reverse enginiering, i think i understood the descryption and encryption Things. But I dont know, is there any way to descrypt the dumpet Firmware. Maybe a brut-force attack? Thats what Wikipedia mentioned C:

D:

krysodlak wrote:I've read somewhere that the brute force attack could take around billion years due to the 256bit AES encryption. So I reckon a brute force attack isn't a viable option

D:

The modules are encrypted using a key that is different for each firmware. Once we know the decryption key for a firmware, we can decrypt all the modules.
We don't need a bruteforce attack whatsoever.

Signing modules is entirely different because we need a private key, and this one would need a virtually infinite time to factorize (as long as we don't have quantum computers).

XeLasar · Post by **XeLasar** » Tue May 13, 2014 12:58 pm

How are we getting the descryption key? Am I right, when i could get the nand data of the vita and put it into Ida, do i get some readable arm assembly or just rubbish?
Wow, someone replied

Thanks fo tha'

wololo.net/talk

Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC)

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}

Re: Psvita Dual-FW Boot (POC){news}