Help the PSP 3D community grow!
Vote for us below:
| | Development Center - Learn the basics of coding or talk about advanced coding techniques with other developers. |
Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!
You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.
Registration is fast, simple, and absolutely free so join our community today!
|
 | | 
04-18-2006, 08:18 AM
|  | Camouflage Condoms: They won't see you coming
My Mood:  | | Join Date: Nov 2005 Location: Surrey, UK Age: 23
Posts: 1,310
Points: 215.27 Donate | |  firmware emulator...
hey i posted this a while ago (can't remember what forum), but my idea was a 1.5 firmware emulator for 2.xx WITHOUT EVEN TOUCHING THE FLASH.....
Sounds crazy? read on and find out how it works:
1) We capture and save the entire memory at the standard 1.5 firmware XMB to the ms. (i know it can be done,as in the GTA cheat device, you can dump the memory. all you would need is a background application)
2)We put a flash1 and flash0 dump of 1.5 on the ms.
3)We write a program to load the entire contents of the 1.5 memory we captured in step 1, and then the program will write a string to the memory which
redirects all FLASH calls to the MS.
4)The Program will then clear every single string of memory, EXCEPT:
-The 1.5 memory we just loaded
-the FLASH call redirection
5)then the program would allow an exit to the XMB, which should then be a 1.5 interface
voila! you COULD have a temporary 1.5 psp! when you hard reboot the system, the 2.xx would have been restored!
---
Here are the catches:
-if we were to successfully run homebrew from the XMB, it would be ever so slightly slower, as you have the redirecting memory string running.
-Some of the stages (ie. 3 and 4), would be very difficult. |
04-18-2006, 08:31 AM
| | | Quote: |
Originally Posted by pj1115 3).../...and then the program will write a string to the memory which
redirects all FLASH calls to the MS. | You won't be able to do this as GTA cheat device doesn't run in kernel mode. |
04-18-2006, 08:36 AM
|  | Master-Bator | | Join Date: Jan 2006 Location: England Age: 18
Posts: 957
Points: 17.00 Donate | | | If we could do this wouldn't we just emulate 2.0 and run the tif exploit (but it probably would not write to the flash). |
04-18-2006, 08:36 AM
| | | Camouflage Condoms: They won't see you coming
My Mood: | | Join Date: Nov 2005 Location: Surrey, UK Age: 23
Posts: 1,310
Points: 215.27 Donate | | | you don't need to have kernel mode. if you load an EBOOT, you are writing to the memory. If you load a game, you are writing to the memory.
All it is, is loading a program.
If you wanted to dump the memory, that is even easier. |
04-18-2006, 08:41 AM
| | | Camouflage Condoms: They won't see you coming
My Mood: | | Join Date: Nov 2005 Location: Surrey, UK Age: 23
Posts: 1,310
Points: 215.27 Donate | | Quote: |
Originally Posted by chriscooke109 If we could do this wouldn't we just emulate 2.0 and run the tif exploit (but it probably would not write to the flash). | I thought of this. Running the TIFF exploit would write to index.dat on the ms instead, as it would be redirected. But this would mean the ability to run the 1.5 update (and even then, it would be re-directed to the MS.......)
UNLESS WE PROGRAM THE STRING TO ALLOW EBOOTS? |
04-18-2006, 09:30 AM
|  | Is Da Best PSP3D Member
My Mood:  | | Join Date: Dec 2005 Location: England
Posts: 651
Points: 1.61 Donate | | | also ifu manage to emulate it we could just run the 2.0 eboot |
04-18-2006, 09:40 AM
|  | Senior Member
My Mood:  | | Join Date: Nov 2005 Location: America FUc|< yeah
Posts: 335
Points: 9.68 Donate | | | this sounds like a good idea but we all said that when we tryed to overflow the psp causing it to load the 1.50 update
__________________  
OMFG ROFL COPTER! Quote:
Quote from: k_os
I mostly play C&C Renegade, which im sure u are all aware is the same engine as Crysis.
| |
04-18-2006, 10:09 AM
| | | Camouflage Condoms: They won't see you coming
My Mood: | | Join Date: Nov 2005 Location: Surrey, UK Age: 23
Posts: 1,310
Points: 215.27 Donate | | | That's True, but the memory string would have to include an offset that allowred
a file with a certain signiature to write to the Flash.
But this would have to use ALOT of memory, as not only would the string have to intercept, alter, and re-send the call, it would have to examine the caller of every single request, and then take the appropriate action.
Last edited by pj1115 : 04-18-2006 at 10:13 AM.
|
04-18-2006, 11:29 AM
|  | Teh h4x0r admin
My Mood:  | | Join Date: Feb 2006 Location: New York Age: 25
Posts: 961
Points: 9,999,500,271.08 Donate | | Not possible. Quote: |
Originally Posted by pj1115 ...
3)We write a program to load the entire contents of the 1.5 memory we captured in step 1, and then the program will write a string to the memory which redirects all FLASH calls to the MS. | Requires kernel mode. Quote: |
Originally Posted by pj1115 5)then the program would allow an exit to the XMB, which should then be a 1.5 interface | Requires kernel mode. |
04-18-2006, 11:57 AM
| | | Camouflage Condoms: They won't see you coming
My Mood: | | Join Date: Nov 2005 Location: Surrey, UK Age: 23
Posts: 1,310
Points: 215.27 Donate | | | Freeplay, why wouldn't you be able to load things to the memory? If you could alter memory using GTA, and you could launch programs, why couldn't you upload the 1.5 capture?
Or did you mean you couldn't run a background memory string? So you cannot keep alien strings in the memory, after you exit to the XMB?
Also step 5 shouldn't require kernal access, as all you are doing is quitting the application, and returning to the XMB. and if the memory was pre-loaded with the 1.5 memory dump, the XMB should therefore be the 1.5 one, as effectively firmware 2.xx will have been "quitted" | |
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | | | | Thread Tools | | | | Display Modes |  Linear Mode | 
Posting Rules
| You may not post new threads You may not post replies You may not post attachments You may not edit your posts
HTML code is On
Points Per Thread View: 0.00 Points Per Thread: 1.00 Points Per Reply: 0.10 | | | | |
SNES, PS1, PS2, PSP and PS3 
Number of times reached 1000 posts: 3 
