Mobile/PDA About Us Advertise here
User User name Password  
  Not registered yet? Register here.
Lost your password? Click here. 		 
  Home   News   Guides   Downloads   Glossary   Hardware   Profiles   Forums   v4  
 Advertise at AfterDawn.com     Link to us!     Private messages     Compose a private message     List of all updated threads     Threads without replies     Search messages
Tuesday 14.10.2025 / 03:03
Search AfterDawn Forums:        In English   Suomeksi   På svenska
afterdawn.com > forums > consoles > ps3 - modding & hacking > grea:mr.graf_chokolo released hv exploit and dump from gameos
Show topics
 
Forums
Forums
Grea:Mr.Graf_Chokolo released HV Exploit and Dump from GameOS
  Jump to:
 
Posted Message
wendymi
Junior Member
_ 		28. December 2010 @ 02:51 _ Link to this message    Send private message to this user   
This is a good news, if it works out in the end , there will be some more interesting things for PS3 players.

PS3 console decrypting and hypervisor master "Mr. Graf_Chokolo" told us that he has been able to dump the Hypervisor v3.15 via the GameOS and he decide to do the same thing for

V3.41.




Here is the Quote for you :

Originally Posted by graf_chokolo(forum member name)

I have just exploited and dumped HV 3.15 from GameOS

I used memory glitching like Geohot to get dangling HTAB entry but 2nd and 3rd stages are quite different. I used my knowledge about HV internals and created a simpler exploit for stage2 and stage3.

I didn't use second VAS like Geohot. I used lv1_undocumented_function_114 and lv1_undocumented_function_115 to exploit HV after i got a dangling HTAB entry

Now we don't need Linux to exploit and dump HV. Furthermore, HV dump from GameOS is a lot better because when GameOS is running more features are activated in HV So, i can reverse now more C++ objects and understand better how HV works

I will make everything public very soon and i plan to dump HV 3.41 in the next days

Happy New Year guys!
BREAKING NEWS UPDATE: -- FINALLY THE REAL KEY! -- Thanks Graf!

Quote:

Originally Posted by graf_chokolo

And now i dumped the real PS3 break V1.2 Master Key guys Noone needs it now but here it is. I tested it with HMAC SHA1 and dongle key 0xAAAA and got the same dongle key that was reversed by KaKaRoTo

Just as i said previously, use USB Dongle Authenticator, then dump HV and the decrypted USB Dongle Master Key will be in HV dump I extracted this key from my HV dump after i used USB Dongle Authenticator on GameOS. Then i rebooted GameOS but not HV and the key was still in HV and still decrypted

static u8 master_key[20] =
{
Code:
46 DC EA D3 17 FE 45 D8 09 23 EB 97 E4 95 64 10 D4 CD B2 C2



This man can make the PS3 game hdd turn inside out and spill all its bits & bytes to him!


Thanks very much for the great job of graf_chokolo

Good job , keep going ......CFW is not far from us ...
[ + quote]

This message has been edited since posting. Last time this message was edited on 19. January 2011 @ 08:37
afterdawn.com > forums > consoles > ps3 - modding & hacking > grea:mr.graf_chokolo released hv exploit and dump from gameos
 

Digital video: AfterDawn.com | AfterDawn Forums
Music: MP3Lizard.com
Gaming: Blasteroids.com | Blasteroids Forums | Compare game prices
Software: Software downloads
Blogs: User profile pages
RSS feeds: AfterDawn.com News | Software updates | AfterDawn Forums
International: AfterDawn in Finnish | AfterDawn in Swedish | AfterDawn in Norwegian | download.fi
Navigate: Search | Site map
About us: About AfterDawn Ltd | Advertise on our sites | Rules, Restrictions, Legal disclaimer & Privacy policy
Contact us: Send feedback | Contact our media sales team
 
  © 1999-2025 by AfterDawn Ltd.

  IDG TechNetwork