graf_chokolo releases his lv2 decrypter!

**The Central Scrutinizer** · 12-09-2010,12:28 PM

Hi,

how come nobody posted this? Anyway...let me quote the masters words!

Originally Posted by graf_chokolo

December 9, 2010 at 3:39 am

I just release my lv2 kernel decrypter.

You need metldr, lv2ldr, RL_FOR_PROGRAM.img and lv2_kernel.self.
You have first to dump your metldr from FLASH memory.

lv2ldr you will find also in your FLASH memory or in decrypted CORE_OS_PACKAGE.pkg from PUP files.
RL_FOR_PROGRAM.img is a revoke list for programs and can be also found in PUP files.
lv2_kernel.self is on your FLASH memory or in decrypted CORE_OS_PACKAGE.pkg.

First I send all files to PS3 and store them in memory. After that i load metldr in isolation mode and pass it the address of lv2ldr. The code is very low level and many things are done by directly manipulating SPU registers

If you have any questions or problems then feel free to contact me or ask here. I will try to help you.
I will try to document my findings on my homepage.

I also uploaded a code which can communicate with USB Dongle Authenticator by using Dispatcher Manager without using any GameOS functions It’s exactly what GameOS does, just low level.

Have fun guys!

Originally Posted by graf_chokolo

December 9, 2010 at 7:54 am

lv2_kernel.self from 1.10 firmware decrypted

#1360067 - Pastie

For those who are interested, can grab his latest payload here: https://github.com/grafchokolo

Big respect and thanks again to graf_chokolo !!

Keep up your great work brother !!

Regards,
iCEQB

**theruler** · 12-09-2010,12:30 PM

Originally Posted by iCEQB

how come nobody posted this?

I wondered the same thing but I think the scene is still reeling from and consumed by the Downgrader fiasco..

Graf is the man, amazing work as always. Thanks graf!

PS: I wonder if graf has any thoughts on the downgrading problem and/or could apply his amazing talents to help the scene move past it...

**halokitty** · 12-09-2010,12:44 PM

Great work! Now, that we can decrypt lvl2 kernel, could it be possible to load our encrypted patched lvl2 kernel like AsbestOS?

**VriskaBlack** · 12-09-2010,12:57 PM

decrypting Lvl2, IIRC, means we can look at the code for the XMB.
If so, one step closer to CFW etc etc.

**masterchan777** · 12-09-2010,01:07 PM

Early findings of this is what Math noted via Twitter :
"In the debug firmwares' lv2 starting from 2.40 and onward, a check has been added to make sure it wont run on retail"

**DATTER** · 12-09-2010,01:08 PM

Thanks alot for the work graf_chokolo!

Cheers bro.

**Kamse** · 12-09-2010,01:10 PM

Thanks mate for your hard work!

**iCEQB** · 12-09-2010,01:19 PM

Originally Posted by Beegee7730

decrypting Lvl2, IIRC, means we can look at the code for the XMB.
If so, one step closer to CFW etc etc.

Kernel != XMB

**mikerock98** · 12-09-2010,01:22 PM

graf is a machine....this guy is so in love with the HV......i really cant wait to see what this guys is capable of.......

**logock** · 12-09-2010,01:49 PM

Sorry for the dumb question, but what is a payload exactly? or what is it needed for?
Thanks in advance o_O

User Tag List

Thread: graf_chokolo releases his lv2 decrypter!

Tweet

LinkBack

Thread Tools

Display


	Would you like to get all the new info from PSX-Scene in your email each day? Subscribe to our Daily Digest! Want to learn more about the team keeping you up to date with the latest scene news? Read about them now! Check out our Developer bios, too!