PS3 eEID0 Dumper for JBM 3.55, MA 3.56 & CFW 3.55

[BNDVS]

This weekend Spanish PlayStation 3 developers at DemonHades have made available a PS3 eEID0 Dumper for JBM 3.55, MA 3.56 and PlayStation 3 CFW 3.55.

To quote, roughly translated: eEID0 Dumper by BlackDeath to JBM 3.55, MA 3.56 and CFW 3.55

Hello friends, after the method of filtration CEX2DEX the team decided to investigate this new field (for some) and not so much for others, that is why we are working to bring you the easiest method to move to Linux without requiring DEX.

Today I present created by the dumper EID0 blackdeath with which we can dump all EID0 or directly CEX first section with only launch a pkg and have connected a USB port on dev_usb000, the instructions are on screen and are easy:

START: To dump all EID0.
SQUARE: To dump the first section of EID0 directly (eid0_1st_Section_CEX.bin).
X (EQUIS): To dump metldr (Encryption) to USB and be prepared to exploit and get the dump of the decrypted metldr in subsequent steps.

If you are in Normal 3.55 cfw release the pkg from video.

BlackDeath says: This latest version now allows you to dump the metldr (encryption) on your console if usais the X button and you will have your ready to dump metldr encryption decryption keys used together with her ​​exploit later.

Tell them to keep working this issue need not linux as the next step is to dump the metldr without having to make so many things in linux but a quick and easy dump.

The eEID0 is necessary for the process dump metldr As you know, and only the first section of eEID0 (That we get directly to this tool) is required for Conversion to a unit DEX / TEST.

No more here I leave the download link, works both on any CFW 3.55 (PEEK | POKE LV2) as in MA:

http://www.mediafire.com/?eblfgmmwrmjl8sw (Old Version)
http://www.mediafire.com/?32dca82c31470qa (New Version)

Thanks BlackDeath, Checko, Tito01 and DemonHades

From checko: WIP: A method to dump metldr and eEID root keys without linux, more easy with some little steps .. maybe naehrwert can help you. To quote from his Twitter (via twitter.com/naehrwert/status/226682478373531648 and twitter.com/naehrwert/status/226686257005203456):

Isn't installing linux to get your eid root key a bit of an overkill when you could just use netrpc?!

Or you could compile this pastie.org/4295312, sign it with metldr keys and grab the key/iv from shared LS...

ldr.ld

ENTRY(_start)

SECTIONS
{
. = 0x25800;
.text :
{
*(.text)
}
.data :
{
*(.data)
*(.rodata)
}
.bss :
{
bss = .;
*(.bss)
}
}

types.h

#ifndef _TYPES_H_
#define _TYPES_H_

typedef char s8;
typedef unsigned char u8;
typedef short s16;
typedef unsigned short u16;
typedef int s32;
typedef unsigned int u32;
typedef long long int s64;
typedef unsigned long long int u64;

#endif

Code:

start.S

.text

/* Loader entry. */
.global _start
_start:
/* Setup stack pointer. */
ila sp, 0x3DFA0

/* Well... */
brsl lr, main

_hang:
br _hang

main.c

#include "types.h"

void *_memcpy(void *dst, void *src, u32 len);

void main()
{
//Copy eid root key/iv to shared LS.
_memcpy((u8 *)0x3E000, (u8 *)0x00000, 0x30);
//Hang (the PPU should copy the key/iv from shared LS now).
while(1);
}

void *_memcpy(void *dst, void *src, u32 len)
{
u8 *d = (u8 *)dst;
u8 *s = (u8 *)src;
u32 i;

for(i = 0; i < len; i++)
d[i] = s[i];

return dst;
}

Source this news

[JLM]

Hello friends, after the method of filtration CEX2DEX the team decided to investigate this new field (for some) and not so much for others, that is why we are working to bring you the easiest method to move to Linux without requiring DEX.

should be: move to DEX without requiring Linux.