Want to Join Us ?

you'll be able to discuss, share and send private messages.

Dump Bootloader Quick and Easy

Discussion in 'Homebrew' started by Rip Cord, Jun 29, 2013.

Share This Page

  1. Rip Cord

    Administrator Staff Member Admin Developer

    I wanted to take a look at the bootloader and didn't notice any copies posted, so used Juan Nadie's exploit. Only problem, it was compiled for 3.55 (my console firware 3.41), so changed the lv1 patch offset of peekpoke module. Here it is for 3.55, 4.21, 4.30, and 4.41 also. I tested on 3.41, 3.55, and 4.21 (all Rebug). 4.30 and 4.41 not tested.

    Includes all binaries and source code. Compiled for both Red Ribbon 5 (kernel 2.6.38) and Red Ribbon 7 (kernel 3.7.1). Use the one compatible with your firmware and kernel.

    Important: only for NOR consoles.

    Thanks to Juan Nadie <of course>.
    Thanks to Nighthawk and Alex for 4.21+ lv1 dumps.

    all_versions.zip is really a 7zip archive, change the name to all_versions.7z and unzip using password: 13875193875938132B
    (apologies, forum doesn't accept files with 7z extension)

    Attached Files:

    acab, VyvyanBasterd, Gh0st and 2 others like this.
  2. storm shadow

    Techbliss Owner Admin Ida Pro Expert Developer

    Very nice Rip Cord
    VyvyanBasterd, Nighthawk and Rip Cord like this.
  3. Rip Cord

    Administrator Staff Member Admin Developer

    Yea, it's pretty amazing to look at his code.

    Forgot to include the link to his original source:

    The thread title is a little goofy, but it's funny how long everyone waited for this and only takes a minute to get.
    Attached is a console log of compiling and running it on 3.55.4 Rex.

    Linux doesn't have to be installed to the ps3 hdd; I compiled and tested red ribbon 7 versions from red ribbon 7 installed on pen drive. Only difference is when double checking to see if the module is inserted into the kernel, dmesg may not show "ps3peekpoke installed successfully" even though it is.

    Attached Files:

  4. Gh0st

    Australia's finest since 1981 Admin

    • Gh0st
    • Feb 5, 2013
    • 197
    • 219
    Nice one mate!
    I love taking dumps with lots of info in them..
    Bit painful when they have keys in them though :(
  5. Rip Cord

    Administrator Staff Member Admin Developer

    lol, take smaller bytes.
    Nighthawk likes this.
  6. Rip Cord

    Administrator Staff Member Admin Developer

    for message "permission denied" when using command: ./lv0Decrypt 0 nor.bin buffer.bin
    use chmod command: chmod 777 lv0Decrypt
    Nighthawk and storm shadow like this.