Random Homebrew: pspint
Intellivision emulator
 Friends: Coding 'n Cracking - Nymphaea - PS3 Forum - darkforestgroup - daxhordes.org - Tgames - coldbird - gopsp.it - pspstation.org - prometheus - hgoel.info - MakeSmartTV - ps vita

Exploit achieved

Post crashes / information about (potential) security issues over here! Sensitive information might be deleted without notice.
Post a reply

Re: Exploit achieved

Postby m0skit0 » Wed Mar 07, 2012 10:39 am

And finally: congrats xerpi!

Although I don't know what you mean by "injecting ASM code". There's no such thing. You inject machine code (binary).
I wanna lots of mov al,0xb
Image
"just not into this RA stuffz"
User avatar
m0skit0
Guru
 
Posts: 4787
Joined: Mon Sep 27, 2010 6:01 pm
Top

Re: Exploit achieved

Postby xerpi » Wed Mar 07, 2012 4:59 pm

I'm trying to encrypt the savedata (SDDATA.BIN), but I'm doing something bad with the SED because the game says : "Corrupted Data".
Is there anohter alternative to SED for encrypting savedata?
User avatar
xerpi
HBL Collaborator
 
Posts: 94
Joined: Sat Apr 23, 2011 10:45 am
Location: Near Barcelona
Top

Re: Exploit achieved

Postby codestation » Wed Mar 07, 2012 8:08 pm

xerpi wrote:I'm trying to encrypt the savedata (SDDATA.BIN), but I'm doing something bad with the SED because the game says : "Corrupted Data".
Is there anohter alternative to SED for encrypting savedata?

You could use MagicSave for that task (i used it to encrypt back the translated quests of MHP3rd). The other option is to extract the gamekey and write a small homebrew to load your encrypted file and generate a savedata (sadly the savedata example in the pspsdk is too outdated :cry: ).
Plugin list
Working on: Python (django, sqlalchemy, PyQt, etc) + Lua
Repositories: github, bitbucket, google code
Just feel the code..
opencma/vitamtp for Archlinux
User avatar
codestation
Big Beholder
 
Posts: 1278
Joined: Wed Jan 19, 2011 3:45 pm
Location: /dev/negi
Top

Re: Exploit achieved

Postby xerpi » Wed Mar 07, 2012 8:39 pm

codestation wrote:
xerpi wrote:I'm trying to encrypt the savedata (SDDATA.BIN), but I'm doing something bad with the SED because the game says : "Corrupted Data".
Is there anohter alternative to SED for encrypting savedata?

You could use MagicSave for that task (i used it to encrypt back the translated quests of MHP3rd). The other option is to extract the gamekey and write a small homebrew to load your encrypted file and generate a savedata (sadly the savedata example in the pspsdk is too outdated :cry: ).

Ok, I'll try it, thnx.
LOL you have 999 posts xD
User avatar
xerpi
HBL Collaborator
 
Posts: 94
Joined: Sat Apr 23, 2011 10:45 am
Location: Near Barcelona
Top

Re: Exploit achieved

Postby pirep » Thu Mar 08, 2012 3:22 am

Congrats on finding an exploit! The only question now is, is it a US game in the PSN by any chance? :)
Spoiler
Image

Spoiler
iPhone 3Gs White Unlocked "Original Baseband" Running iOS 5.1 Jailbreak Tethered
PSVITA 32GB OFW 1.67 r184 VHBL SC3 Exploit
PSP 1K 32GB (16gb X2 MicroSD) CFW 5.50 Prom B4 (Bricked from upgrading to 6.60 and Retired)
User avatar
pirep
 
Posts: 41
Joined: Sat Feb 11, 2012 3:30 am
Location: Flow-I-Da
Top

Re: Exploit achieved

Postby The Z » Thu Mar 08, 2012 9:49 am

xerpi wrote:With the amazing tutorials of wololo, with the help of m0skit0, fidelcastro, JJS and Xian Nox, finally I achieved to make an exploit in a PSP game:

Here a video:




This is indeed very nice :)
White PS Vita Wifi - 36 GB - 2.12 Vita HBL
White PSP Fat 1000 - TA-081 - 6.60 ME-1.8
Black PSP Slim 2000 - TA-085 - 6.60 ME-1.8
White PSP Go N1000 - TA-091 - 6.60 LME-1.8
Black PSP Street E1000 - TA-096 - 6.60 LME-1.8
User avatar
The Z
VIP
 
Posts: 2773
Joined: Thu Jan 27, 2011 4:26 pm
Location: NRW, Germany
Top

Re: Exploit achieved

Postby Xian Nox » Thu Mar 08, 2012 10:21 am

Congrats! Now, see if you can get HBL working on it. Keep it a secret until Sony releases some patches and makes everyone despair from the lack of homebrew, and then come out to save the day. :)
Spoiler
Disturbed0ne wrote:PS. EVERYONE should like girls. they're just so soft. :oops:
Moderator 80% corrupt. That's funny, I don't feel corrupt. In fact, I feel pretty good.
What looks like a blog of mine can be seen here. Or stalk me on twitter.
User avatar
Xian Nox
Moderator
 
Posts: 6071
Joined: Fri Nov 05, 2010 5:27 pm
Location: /home/xian/n-field
Top

Re: Exploit achieved

Postby m0skit0 » Thu Mar 08, 2012 12:09 pm

He's already working on making HBL run on it... and it's most likely finished. HBL is quite easy to port to a new exploit (it was made to be that way).
I wanna lots of mov al,0xb
Image
"just not into this RA stuffz"
User avatar
m0skit0
Guru
 
Posts: 4787
Joined: Mon Sep 27, 2010 6:01 pm
Top

Re: Exploit achieved

Postby Casavult » Thu Mar 08, 2012 12:42 pm

Well done Xerpi, nice work. ;)
PSP 1000 32GB PRO-HG Duo TA-082 6.60 CFW ME 1.8 and (L)CFW PRO-C fix3 + TM and DDC v8/v9 Mod
PSP 1000 8GB PRO-HG Duo TA-079 5.00 CFW M33-6 + Fix, TM and DDC v8/v9 Mod
PS Vita 32GB 3g + Wi-fi PCH-1103 2.02 OFW ARK eCFW

Forum Rules. Read them first!
User avatar
Casavult
Moderator
 
Posts: 2567
Joined: Wed Jun 08, 2011 4:22 pm
Location: London, UK.
Top

Re: Exploit achieved

Postby Green Ranger » Thu Mar 08, 2012 4:54 pm

Xian Nox wrote:Congrats! Now, see if you can get HBL working on it. Keep it a secret until Sony releases some patches and makes everyone despair from the lack of homebrew, and then come out to save the day. :)





Yeah, xerpi made my day :) Congrats to you ;)

This could my chance to run VHBL on my Vita :D i'm lookin forward to the Day it gets released. Thanks for your research and great work.


Ps. Would this going to be released like Wololo does with Motorstorm....
Before you talk, listen. Before you react, think. Before you criticize, wait. Before you pray, forgive. Before you quit, try.
User avatar
Green Ranger
 
Posts: 129
Joined: Mon Mar 05, 2012 7:41 pm
Location: NRW Germany
Top
PreviousNext
Post a reply

Return to Security

Who is online

Users browsing this forum: No registered users and 1 guest

Powered by phpBB® Forum Software © phpBB Group