PS3 Ps3Xploit Tools v2.0 - Improved Flash Writers & Dumpers (Even easier to install CFW on 4.82 OFW )

Discussion in 'PS3 News' started by esc0rtd3w, Jan 24, 2018.

By esc0rtd3w on Jan 24, 2018 at 2:56 AM
  1. 793
    1,775
    247
    esc0rtd3w

    esc0rtd3w Developer

    Joined:
    Mar 10, 2017
    Messages:
    793
    Likes Received:
    1,775
    Trophy Points:
    247
    Gender:
    Male
    Occupation:
    Hacker
    Location:
    OHIO, USA
    Home Page:
    UPDATE (OCT. 11 2018) - With the release of OFW 4.83 portions of PS3Xploit have been patched, The team is looking at workarounds, STAY ON 4.82, DO NOT UPDATE TO 4.83 AT THIS TIME:

    I will start this off with NO you can not jailbreak your PS3 SuperSlim Console's (seems to be a popular question), however that does not mean the Ps3Xploit Team, (bguerville, esc0rtd3w, habib & W), has not been hard at work, with this new release of Ps3Xploit v2.0.. In this release all the tools (IDPS Dumper, Flash Dumper & Flash Writer) have seen significant improvements and now performing the task such as installing a Custom Firmware on your 4.82 OFW PS3 (with flash writer) has been made even easier and very stable thanks to the team's new checks implemented and progression of the exploit. The Flash and IDPS dumper are also much improved. All the details are provided below please read all the spoiler and tabs before asking any questions.
    -STLcardsWS​

    PS3Xploit_Tools_v2.jpg

    PS3Xploit 2.0 Tools Now LIVE!!

    • Included Tools
      • 4.XX IDPS DUMPER
      • 4.XX FLASH DUMPER (USB Edition)
      • 4.XX FLASH DUMPER (HDD Edition)
      • 4.82 NOR/NAND WRITER (USB Edition)
      • 4.82 NOR/NAND WRITER (HDD Edition)
      Ps3Xploit Tools Changelogs
      v2.0
      • Freeze issues - Fixed
      • Occasional bad dumps - Fixed
      • No beeps & shutdown. Replaced by a graceful ROP chain exit & return to browser. This gives the opportunity to the user to dump after patching & validate the dump with littlebalup's py checker. As long as the user does not shutdown/restart, it's still possible to recover from bad patching.
      • Support for usb port 0,1,6 + sd/cf/ms cards.
      • Multi firmware support on all dumpers (4.10+) & DEX support on 4.81.
      • HDD editions for all dumpers & flash writer where a picture file placeholder is used for read/write operations.
      • Javascript refactoring for performance & efficiency.
      • ps3xploit.com will host the 2.0 update, no need for 3rd party sites.

      v1.0 (Thanksgiving 2017 Release)
      • Supports Direct OFW to CFW patching for All Phat and 2xxx Slim (minver 3.56 Dec 2010 and lower)
      • the NOR/NAND writer will just copy 3Mb of CoreOS data to both ros0 & ros1 in the flash memory.
      • There is only one version released for 4.82. The same hex patch file can be used on nor & nand.
      • It's as safe as possible, with a check for usb device & patch file making the exploit hang instead of corrupting flash if file is not found.
      • In case of corruption (extremely rare but could always happen), it's only a partial brick because no per console info ever gets erased so a hardware flasher could still be used if ever a recovery reboot was impossible



    • Frequency Asked Questions

      Will this jailbreak my SuperSlim?
      • NO,The Flasher Writer Tool is not Supported on the SuperSlim and a some very late Slim models, Howeever, PS3Xploit has a strong possiablity to eventually evolve into a HEN style exploit (that aspect will take some additional development.)

      Which PS3Xploits Tools are Compatible with my PS3 Console?



      • 9199-7853467153566ba1908c9b32aa331bb5.jpg.png
        Check this sticker on the back of your PS3 to view your PS3 Model.
        Flash Writer Model Compatibility (PHAT):
        • CECH-A01 (NAND)
        • B (NAND)
        • C (NAND)
        • E (NAND)
        • G (NAND)
        • H (NOR)
        • J (NOR)
        • K (NOR)
        • L (NOR)
        • M (NOR)
        • P (NOR)
        • Q (NOR)

        All DUMPER (FLASH/IDPS) & FLASH WRITER TOOLS are Supported for this model.


      • 9200-4361b3a6a7359ffe524f966d4eeca4bc.jpg.png
        Check this sticker on the back of your PS3 to view your PS3 Model.

        ***IMPORTANT***
        You must pay very close attention to your PS3 SLIM Models depending on when the PS3 SLIM was manufactured will determine if your console can install CFW (Flasher Writer Compatibility).

        For the 25XX series or even if your unsure about any of the models it is reccomnded you run the minverchk PUP >> (DOWNLOAD) & (How to use Minverchk) its a simply utility that show the factory installed firmware on your ps3 and for the CECH-25XX model if the utility shows 3.56 or lower you are compatible but if it shows 3.60 and higher that means your are NOT compatible to use the Flash Writer (CFW enabler for 4.82 CFW)

        • Flash Writer Model Compatibility (SLIM):
          • 20XX NOR
          • 21XX NOR
          • 25XX NOR (3.56 minver. and Lower)
        • NOT COMPATIBLE (SLIM):
          • 25XX NOR (3.60 and Higher)
          • 3XXX NOR


        All DUMPER (FLASH/IDPS) TOOLS are Supported for this model.



      • 9203-5ab5229a0530b0274c59419c8b4f8987.jpg
        Check this sticker on the back of your PS3 to view your PS3 Model.
        • FLASH WRITER NOT COMPATIBLE (SUPERSLIM):
          • 4XXXA EMMC
          • 4XXXB NOR
          • 4XXXC NOR

        All DUMPER (FLASH/IDPS) TOOLS are Supported for this model.


      Where can i find official info and details?
      Warning: Known Limitation
      • Due to the lack of proper checks after exiting the ROP chain, it is possible in some cases to obtain a success message despite an operation failure. For instance, if you choose a path where no device is plugged in, a dumper page will still display a success message despite the fact the dump save could not work. This limitation has already been addressed, the added operation checks will be part of an update to these PS3Xploit tools which will be released in the coming weeks, that update will be final, no more will come after it


    • FLASH Dumper's Help


      • PS3 4.xx NAND/NOR/EMMC FLASH DUMPER v2.0
        All PS3 models supported
        All 4.10+ CEX CFW/OFW supported
        4.81 DEX CFW/OFW supported


        IMPORTANT NOTES:
        • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically....
        • So in short, never use the browser or use a homepage you cancel before running the exploit!
        • It is recommended to set your homepage temporarily to the exploit page you wish to use to ensure there is no memory flooding messing with the exploit initialization stage.
        Steps:
        1. Open the browser & browse to the ps3xploit.com website, go to the page of the exploit you need. Set the current page as browser homepage. Don't launch the exploit initialization. Close the browser.
        2. Open the browser. The exploit page will load automatically. Choose your dump path option.
        3. Press the exploit initialization button & wait until initialization succeeds. If it fails, follow the refresh/reload instructions on screen.
        4. Trigger the exploit by pressing the dump button.
        5. On success, validate your dump with the py checker tool.

      • PS3 4.xx NAND/NOR/EMMC FLASH DUMPER - HDD EDITION v2.0

        All PS3 models supported
        All 4.10+ CEX CFW/OFW supported
        4.81 DEX CFW/OFW supported


        IMPORTANT NOTES:
        • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically....
        • So in short, never use the browser or use a homepage you cancel before running the exploit!
        • It is recommended to set your homepage temporarily to the exploit page you wish to use to ensure there is no memory flooding messing with the exploit initialization stage.
        Steps:
        1. Open the browser & browse to the ps3xploit.com website, go to the page of the exploit you need. Set the current page as browser homepage. Don't launch the exploit initialization. Close the browser.
        2. Open the browser. The exploit page will load automatically. Download the dump.jpg placeholder file to your PS3 System Storage using the provided link as instructed on screen.
        3. Press the exploit initialization button & wait until initialization succeeds. If it fails, follow the refresh/reload instructions on screen.
        4. Trigger the exploit by pressing the dump button.
        5. On success, retrieve the dump file from the PS3 XMB Photo section, rename it appropriately to dump.hex or whatever & validate your dump with the py checker tool.


      Usage Tips:
      • Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
      • If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
      • ]If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.




      • PS3 OFW 4.82 NAND/NOR FLASH WRITER v2.0
        ***** IMPORTANT DETAILS BELOW -- AVOIDING A BRICK *****
        WARNING: USE ONLY THE PROVIDED flash_482.hex AS IS. DON'T PATCH IT OR MODIFY IT OR YOU WILL BRICK *****
        • Verify flash_482.hex file on a flash drive and in the selected USB slot!
          • flash_482.hex MD5: d05be52f8d21700052fbd1fc0174acae
        • DO NOT USE ON CFW (Custom Firmware) (Only Supports OFW)
        • DO NOT USE ON PS3 Models 3xxx/4xxx (aka late Slim or Superslim models), you would brick those consoles.
        • ON SLIM 2xxx Consoles, always use MinVerChck PUP to ensure that the minimum installable firmware version is < 3.60, if ever the minimum version is >3.56, using the flash writer would partially brick your console!
        • USE ONLY ON 4.82 OFW

        IMPORTANT NOTES:
        • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to ps3 javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded due to previous browsing then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically..
        • So in short, never use the browser or use a homepage you cancel before running the exploit!
        • It is recommended to set your homepage temporarily to the exploit page you wish to use to ensure there is no memory flooding messing with the exploit initialization stage.

        Steps:
        For best results with flash writer, here are the recommended steps.
        1. Install OFW 4.82 twice on the console you wish to flash to avoid the potential corruption error during CFW installation.
        2. Open the browser & browse to the ps3xploit.com website, go to the page of the exploit you need. Set the current page as browser homepage. Don't launch the exploit initialization. Close the browser.
        3. Open the browser. The exploit page will load automatically. Choose your path option.
        4. Press the exploit initialization button & wait until initialization succeeds. If it fails, follow the refresh/reload instructions on screen.
        5. Trigger the exploit by pressing the patch button.
        6. On success, load the ps3xploit.com flash dumper, dump the flash memory & validate it with py checker tool. Do NOT restart the console if ever the validation tool gives you errors/warnings on both ros0 & ros1 or you risk to partially brick your console. Report your problem instead.
        7. When you are satisfied with the dump validation, restart your console & install a 4.82 CFW.


      • PS3 OFW 4.82 NAND/NOR FLASH WRITER - HDD EDITION v2.0
        ***** IMPORTANT DETAILS BELOW -- AVOIDING A BRICK *****
        WARNING: USE ONLY THE PROVIDED flash_482.jpg AS IS. DON'T PATCH IT OR MODIFY IT OR WILL BRICK *****
        • YOU
        • Download flash_482.jpg file to PS3 System Storage!
          • flash_482.jpg MD5: d05be52f8d21700052fbd1fc0174acae
        • DO NOT USE ON CFW (Custom Firmware) (Only Supports OFW)
        • DO NOT USE ON PS3 Models 3xxx/4xxx (aka SuperSlims / Late Slim models), you would brick those consoles.
        • ON SLIM 2xxx Consoles, always use MinVerChck PUP to ensure that the minimum installable firmware version is < 3.60, if ever the minimum version is >3.56, using the flash writer would partially brick your console!
        • USE ONLY ON 4.82 OFW

        IMPORTANT NOTES:
        • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to ps3 javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded due to previous browsing then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically..
        • So in short, never use the browser or use a homepage you cancel before running the exploit!
        • It is recommended to set your homepage temporarily to the exploit page you wish to use to ensure there is no memory flooding messing with the exploit initialization stage.
        Steps:
        For best results with flash writer, here are the recommended steps.
        1. Install OFW 4.82 twice on the console you wish to flash to avoid the potential corruption error during CFW installation.
        2. Open the browser & browse to the ps3xploit.com website, go to the page of the exploit you need. Set the current page as browser homepage. Don't launch the exploit initialization. Close the browser.
        3. Open the browser. The exploit page will load automatically. Download the patch file flash_482.jpg to your PS3 System Storage using the provided link on screen.
        4. Press the exploit initialization button & wait until initialization succeeds. If it fails, follow the refresh/reload instructions on screen.
        5. Trigger the exploit by pressing the patch button.
        6. On success, load the ps3xploit.com flash dumper, dump the flash memory & validate it with py checker tool. Do NOT restart the console if ever the validation tool gives you errors/warnings on both ros0 & ros1 or you risk to partially brick your console. Report your problem instead.
        7. When you are satisfied with the dump validation, restart your console & install a 4.82 CFW.

      Usage Tips:
      • Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
      • If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
      • ]If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.

    • PS3 4.xx IDPS DUMPER v2.0

      All PS3 models supported
      All 4.10+ CEX CFW/OFW supported
      4.81 DEX CFW/OFW supported

      IMPORTANT NOTES:
      • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically....
      • So in short, never use the browser or use a homepage you cancel before running the exploit!
      • It is recommended to set your homepage temporarily to the exploit page you wish to use to ensure there is no memory flooding messing with the exploit initialization stage.
      Steps:
      1. Open the browser & browse to the ps3xploit.com website, go to the page of the exploit you need. Set the current page as browser homepage. Don't launch the exploit initialization. Close the browser.
      2. Open the browser. The exploit page will load automatically. Choose your dump path option.
      3. Press the exploit initialization button & wait until initialization succeeds. If it fails, follow the refresh/reload instructions on screen.
      4. Trigger the exploit by pressing the dump button.
      5. On success, check your idps dump with an hex editor.

    Source Code & Downloads:
    NOR/NAND/EMMC/IDPS 4.xx Dumpers v2.0 Update
    NOR/NAND 4.82 Flash Writer v2.0 Update
    flash_482.hex (already included in the Flash Writer 2.0 archive) MD5: d05be52f8d21700052fbd1fc0174acae
    MinVerChck PUP


    Exploits now hosted @ ps3xploit.com
    Official Support Forum: psx-place.com/forums/PS3Xploit/
     
    Last edited by a moderator: Oct 12, 2018
    HIASQ, hurrz, Algol and 38 others like this.

Comments

Discussion in 'PS3 News' started by esc0rtd3w, Jan 24, 2018.

    1. unseen
      unseen
      Try PyPS3checker from a command prompt. Don't drag and drop, and make sure you have Python 2.7.x
      Did you check the MD5 of the update CFW on the USB stick? That way you eliminate any bad transfer.
    2. Sibi
      Sibi
      I'll try PyPS3 checker from cmd (I'll need instructions though). And yes, I did check the MD5 of the update CFW on the USB stick 100% integrity. Honestly feel lost about this issue, been trying so many permutations.
    3. unseen
      unseen
      With Python installed, you go to the PyPS3Checker folder, and type in: checker.py dump.hex
      (ex. C:\PyPS3Checker\checker.py dump.hex)
      Probably you should have installed OFW 4.82 twice in the first place before attempting the exploit.
      You could also try installing CFW from safe mode.
    4. sandungas
      sandungas
      Better step back to the point where you have to make dumps and check them for validation, having so many errors in the dump is not normal at all, try with other pendrive or reformat it until you have a valid dump

      And btw... to achieve a 100% valid dump is needed to install OFW 4.82 two times before starting the tutorial
    5. PSXFan
      PSXFan
      had to flash my CECH2004B Slim again after changing HDD...
      had 3 errors..
      ROS0 hash, ROS0 Version, ROS1 Hash
      but everything is working fine...
      CFW running like a breeze.
      (i only installed OFW once, so i suggest you people do it TWICE as the developers tell you to.. i have hardware ways to fix a brick, so i wasn't too worried about it...)
      Last edited: Aug 1, 2018
    6. unseen
      unseen
      Still interesting to see that it worked with errors on both ROS hashes.
      PSXFan likes this.
    7. Algol
      Algol
      Hello to you all and so good holidays.

      I come back to you to ask you some questions about the possibility of installing the HAN in a CFW Rebug-4.82.2 console (REX).

      This installation will be done on a secondary hard drive of small capacity (120GB) because I have another DD but it is a 500GB and it is the main DD. It has all the games installed and I do not want to re-format it for nothing.

      Can we do it and if YES, is it dangerous for my console (Brick)???
      Some of you have they done and passed this passage ???
      If YES, is the HAN installed in the "Flash" or only on the DD ???
      => Only DD, it's more reassuring because I can resume the normal operation of the console in CFW Rebug.

      Am I forced to switch my console to OFW-4.82 (from SONY) before going under the HAN ???

      I confess that it is not for me personally but for my nephews that I do it. It is only for tests of link of my console with my PC in Windows-7 via the "PKG-Linker_v2". I make my transfers via "FileZilla" for a long time on my console and that's good enough for me but I must also do these new tests.

      I only have one main account on the PSN and it seems to me that for a security reason I must also create one (or more) account(s) secondary(s), is it true ???

      If EVERYTHING becomes functional, I will not fail to create a little topic giving all the solutions used to succeed this difficult passage, a kind of user manual.

      Thank you for everything and see you soon.

      Kind regards.

      Algol "le papy".
      jolek likes this.
    8. bguerville
      bguerville
      Fundamentally, HAN is not made for CFW usage. I see no advantages in using it as it brings nothing valuable to the table.
      On a CFW, you can mount iso images or the legacy JB folder format (game folders & files), so obviously there is no point in using cfw2ofw conversions with limitations & much hassle overall. You can also install any original PSN pkg file & inject the required licenses if required, manually or using a tool like psnpatch.
      Also on CFW, you can run ftp & mount ntfs partitions so in order to transfer big files (>4Gb), you can still use pkg linker but you have better alternatives imho.

      That being said, for convenience, Rebug 4.82 includes the ps3xploit HAN patch by default. It means that if you have backups already prepared/resigned for HAN, you can readily install those pkg files. You have absolutely no need for any of the ps3xploit tools v3.0 or the HAN Toolbox etc..

      Btw you are posting in the wrong thread. Please create your own thread or use the ps3xploit tools v3.0 thread for your HAN related questions.
      Last edited: Aug 2, 2018
      Algol and jolek like this.
    9. PSXFan
      PSXFan
      Unless he is very familiar with the toolboxes downloaders,and absolutely wants to use them.
      I installed it because of that, tho there is that other demo downloader i hear.


      @unseen: you want screenshots or what?
      Algol likes this.
    10. LiLCruz
      LiLCruz
      Question it is recommended install OFW 4.82 twice but how do Install it twice?From xmb won't let me doesn't work.My PS3 already came with 4.82 so have install it only 1 time or 2?Anyone can help much appreciated using nand console.
      Last edited: Aug 15, 2018
    11. supermadflash101
      supermadflash101
      Im having trouble using the writer. I have everything set up correctly to my knowledge but when i go to "patch nor flash memory" my ps3 instantly freezes. im using a "2001A" and the slight searching for answers i did has resulted in nothing. if anyone could help me that would be great.
    12. bguerville
      bguerville
      Any compatible firmware can be installed as many times as you wish from the XMB System Update feature. There are no limits to the number of times you can reinstall the current firmware.

      Before using the Flash Writer 2.0, it's highly recommended to install ofw 4.82 twice, in order to avoid possible errors during the cfw installation which follows the patching process.

      If you got a console with ofw 4.82 installed already, you should reinstall that firmware just once.

      The flash memory (nor or nand) contains 2 ROS banks. When you install a firmware PUP file, CoreOS (system files) gets copied to the currently inactive ros bank, which then gets activated while the other bank, which was active until then, gets deactivated.
      When you install the same firmware twice, you ensure that both the active & inactive ros banks (ros0/ros1) contain the same fw data.

      This "trick" to avoid a possible cfw installation error won't be necessary anymore with the coming 4.0 release.
      Last edited: Aug 15, 2018
      Algol and LiLCruz like this.
    13. LiLCruz
      LiLCruz
      Thanks for reply/information but I can't install from xmb I get no applicable data found from xmb I did change the hard drive maybe that is the problem?
    14. DeViL303
      DeViL303
      Try it from safe mode (recovery mode) ;)

      Not sure if this happens for everyone, but for some at least it wont install the same FW from the XMB.
      Last edited: Aug 15, 2018
      Algol and LiLCruz like this.
    15. LiLCruz
      LiLCruz
      Will try this out will edit my post if it worked or not.
    16. Jay99445
      Jay99445
      Hi, I have some trouble with my ps3 cech P fat model after running the dumper 2.0 my recovery mode on my ps3 no longer works, My ps3 wont even do the 1 or 2 beeps anymore no idea what has happened it just turns off now,

      I had about 10 items on the usb flashdrive when i was running the exploit i did rush though it a bit, Is there anyway to recover from this also my hdmi port no longer works it actually went out when the exploit was running and i forced my ps3 off by the power switch, Prob a bad idea but it just sat there with no display for 10 mins because i was using HDMI at the time.

      And now my ps3 only works via component, I'm lucky it boots at all to be honest but what about when hdd fails i can never enter recovery mode again and my ps3 will be bricked forever, I tried to enter recovery mode via rebug toolbox and it just black screens but my controller synced up very strange indeed, I pressed a bunch of buttons blindly on the controller and managed to get back to the xmb,

      Can i replace the broken recovery flash files somehow? it worked fine before i messed with the exploit 2.0 nor dumper.

      also i have no hardware flasher

      I am on rebug 4.82cfw right now and can ftp files, Also i did manage to get a full dump of my nor
      Last edited: Aug 17, 2018
    17. rmfdemon
      rmfdemon
      Does anyone have a flash dump backup for a CECHE01 firmware 4.82 (Fat)? I was stupid and forgot to back it up but the exploit worked but the patch froze my PS3 making it act stupid like freeze and show dead pixels.
    18. pinky
      pinky
      won't work. the flash dump must be restored from the system that made it.
      Algol likes this.
    19. DeViL303
      DeViL303
      If its still booting and working just reinstall CFW, that will fix any FW errors. TBH from your description it sounds like a hardware error, RSX maybe, about to YLOD maybe, hard to know.
      Algol likes this.
    20. rmfdemon
      rmfdemon
      I don't know what it is. Also won't let me install any kind of firmware.

Share This Page