@sandungas btw, the soft id is also called syscon revision on the decr firmware and on the patch keys it's used to derive them using a decimal...
also, if anyone could check on old sceners like @mysis or @3141card i'd really appreciate it since i have not a lot of experience with RE
It'll heavily depend on what we find in the arm firmwares. the door is now semi open. we just need to open it fully.
Yes, @sandungas is right. only until CECH-L. when the TSOP versions show up, which use a 78K0R model, we also tried to attack it but we got...
The problem with the slim and superslim models is that the eeprom is internal. we cannot dump the patch key for DYN like we could dump the ones...
That is correct. ONLY for BGA models :)
CPA/DPA from a friend of mine. i bought him a chip whisperer, a bottle of wine and an ssd. he did the rest lol
are you all clarified now? can you stop bugging me on twitter for eta wens and superslim cfw maybe ? 1:0
with this key the following has happened:
14 syscon firmwares for the BGA models (CXR) were decrypted.
from them, keys for PATCHES and FULL FW...
don't expect miracles, is all i'm saying
documented some stuff
@sandungas why you leave casabonita? ;(
Separate names with a comma.