PSP3D Left Header
Shop Online
PSP3D Logo CraveOnline Logo
Help the PSP 3D community grow!
Vote for us below:

Vote on the PSP Top 200
PSP Top 200 - Games, Videos, Wallpapers, Files, Hacks, Homebrew
Homebrew/Hacking - Discuss the latest available homebrew applications and games.

Welcome to PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums!

You are currently viewing our website as a guest, which gives you limited access to reply and interact to discussions and other members. By joining our free community, you will be able to post topics in the forums, communicate privately with other members, vote in polls, and access many other special features.

Registration is fast, simple, and absolutely free so join our community today!

Go Back PSP3D.com - Sony PlayStation Portable News, Homebrew, Hacks, Reviews, Videos, Mods, Forums > PSP Forums > Homebrew/Hacking
Reload this Page Attempting to crack savefile encryption (MagicGate)



Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 11-20-2005, 03:47 PM
echeese echeese is offline
Junior Member
  
Join Date: Nov 2005
Posts: 8
Points: 0.29
Donate
Attempting to crack savefile encryption (MagicGate)
Hey everyone, I've been trying to figure out how MagicGate encryption works, because if we can get it to work then we could edit save files and find buffer overflows and hack the PSP (much like the xbox softmod)

Anyways, I was checking out the PARAM.SFO of 2 GTA:LCS saves that I took at the same point in the game (I saved twice)

It was pretty much the same, but at 0x55D, I found a 16 bit thing (I'm guessing a key)

Later on in the file, I found 3 more at:
0x11C0
0x11D0
0x1220

I'm guessing one (or more) contributes to the save file's key...

The DATA.BIN must be encrypted, because only one variable changed between saves (time) and I found the 2 bins were 99% changed between saves. If anyone has any ideas, please let me know

EDIT: After some experimentation, I've found that the SFO itself must be hashed or something
EDIT2: I think it may use VSH encryption or hashing. Not sure exactly what this is but I intend to find out.
Last edited by echeese : 11-20-2005 at 04:59 PM.
Reply With Quote
  #2 (permalink)  
Old 11-24-2005, 08:18 PM
Milkman's Avatar
Milkman Milkman is offline
Senior Member
  
Join Date: Nov 2005
Location: Canada: 1 hour away from toronto
Posts: 141
Points: 0.76
Donate
that great man just keep up the good work i guess
Reply With Quote
  #3 (permalink)  
Old 11-26-2005, 02:01 AM
coolio69's Avatar
coolio69 coolio69 is offline
Member
  
Join Date: Nov 2005
Posts: 44
Points: 0.20
Donate
Quote:
Originally Posted by echeese
Hey everyone, I've been trying to figure out how MagicGate encryption works, because if we can get it to work then we could edit save files and find buffer overflows and hack the PSP (much like the xbox softmod)

Anyways, I was checking out the PARAM.SFO of 2 GTA:LCS saves that I took at the same point in the game (I saved twice)

It was pretty much the same, but at 0x55D, I found a 16 bit thing (I'm guessing a key)

Later on in the file, I found 3 more at:
0x11C0
0x11D0
0x1220

I'm guessing one (or more) contributes to the save file's key...

The DATA.BIN must be encrypted, because only one variable changed between saves (time) and I found the 2 bins were 99% changed between saves. If anyone has any ideas, please let me know

EDIT: After some experimentation, I've found that the SFO itself must be hashed or something
EDIT2: I think it may use VSH encryption or hashing. Not sure exactly what this is but I intend to find out.
HOW DO YOU OPEN .BIN AND .SFO FILES ?
Reply With Quote
  #4 (permalink)  
Old 11-26-2005, 09:35 PM
echeese echeese is offline
Junior Member
  
Join Date: Nov 2005
Posts: 8
Points: 0.29
Donate
With a hex editor
Reply With Quote
  #5 (permalink)  
Old 11-26-2005, 09:43 PM
iball iball is offline
Senior Member
  
Join Date: Nov 2005
Posts: 146
Points: 0.41
Donate
Ummm...you guys do know that Sony implemented a new type of savegame module in 2.0, right?
It's fairly common knowledge by now. Erant - at least I think that's who found it - over on maxconsole.net figured it out.
Reply With Quote
Reply

« will the 2.5 downgrder be released? | LocationFree exploit theory... (JUST A THOUGHT) »



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Points Per Thread View: 0.00
Points Per Thread: 1.00
Points Per Reply: 0.10





Crave Partner Sites: CraveOnline.com | DVDFile.com | PSP3D.com | ComingSoon.net | SuperHeroHype.com | RedBalcony.com | ActionTrip.com | CraveLyrics.com
Soundtrack.net | CraveFix.com | SpikedHumor.com | RPGamer.com | TattooNow.com | ImpactWrestling.com | SeekLyrics.com | PedalBMX.com | WildKO.com
vidKing.com | StrategyInformer.com | HHdb.com | RapLeagues.com | HipHop-Lyrics.com | Cravecocktails.com | ThePhatPhree.com | RideJudge.com | HottieSpots.com


Contact Us - PSP3D.com - Sony PlayStation Portable PSP News, PSP Homebrew, PSP Hacks, PSP Tutorials, PSP Videos, PSP Mods, PSP Forums - Archive - Privacy Statement - Top
Powered by Custom vB Version 6.0 for Crave Online Media, LLC.
Copyright © 2000 - 2009, Jelsoft Enterprises Ltd. and PSP3D.com.
LinkBacks Enabled by vBSEO 3.0.0 RC8
All times are GMT -4. The time now is 06:48 AM.