Sorry for posting the link for NFS: The Run 3.60 update, maybe just UP0006-BLUS30757_00-NFSPATCH00000001-A0101-V0100-PE.pkg would have been enough.
The BLES original executable differs from the BLUS original executable, so a crack for BLES could work for BLUS but it would have some BLES code in it... So, to make sure that we have a fully BLUS proper running code, it would be great to have this update fixed. Also if this can be fixed please share the klic key for it.
My original game files are messed up I think, when I tested it, the game itself installed then just kicked back to XMB everytime after that. There doesn't seem to be any other encrypted files besides eclipse.self and eboot.bin, plus the 1.02 Patch works, if it doesnt work for a few testers may have to try some version file swapping.
Also here's the klic key (Dragons Age II BLUS 1.05):
Code:
cbb2eab0e2925a89df06a843b7f2221b
Last edited by PatrickBatman; 08-09-2012 at 08:36 PM.
PS3 Slim w/ Rebug Rex 4.30.2, 500GB Internal, 1TB/3TB External; PS2 Fat McBoot w/ Hard Drive; Windows 7 x64 Ultimate
Last game finished: The Last of Us | Currently Playing: Metro Last Light
Hello, here it is the key for Tour de France 2011:
Done! Key used was: 007bad666bed00babe00b0b05ad0b173
Ok, i have used the adostools script but were is the decrypted file? Is the selfout.elf? How can i encrypt it with 3.55 keys and convert it to .sprx? Now that i have the key how can i use it on more files?
Sorry for all this noob questions :P, but i like to learn :P.
This is a graphical version of the BruteForce batch
It has a slider for a more convenient selection of the offset.
The cut.exe / dd.exe / od.exe / sed.exe / batch files are not needed.
Just put it in the same folder of the scetool.exe, with the EBOOT.BIN and the .self or .sprx to be decrypted, start the BruteForce.exe and press the Start button.
Tested working with Red Dead Redemption
Edit:
Added support for command line parameters. Example:
BruteForce.exe 332300 /start
I'm guessing you used the klic key I provided and i saw in the graphic RDR2.self, but did you actually get the 2.07 update to work? I didnt know if i needed to decrypt those .rpf files, the update would install fine just game would kick back to xmb. I only tried a few times and then moved on. You prolly just meant testing working like it found the key and it matched the one I provided or something. (Anyway yeah thats right, I remember the offset)
Oh and BTW you're starting to become one of my favorite developers (besides deank) cause you just throw yourself in and get involved, that's rare for a dev but I like it, we're all nerds here so we dont have to act like the people we hated in high school, popular snobs.
Originally Posted by FinalFight
Hello, here it is the key for Tour de France 2011:
Done! Key used was: 007bad666bed00babe00b0b05ad0b173
Ok, i have used the adostools script but were is the decrypted file? Is the selfout.elf? How can i encrypt it with 3.55 keys and convert it to .sprx? Now that i have the key how can i use it on more files?
Sorry for all this noob questions :P, but i like to learn :P.
I would patch it but im getting ready for bed. JLM mentioned in an earlier post how to encrypt the .sprx That key is the klicensee key and its game specific meaning its only for that game, so you cant use it for anything else its just to decrypt .self/.sprx files from that particular eboot. If they release another update it may use the same key so then you could easily decrypt that as well if you had the right keys. But yeah these keys are game specific, only use them for this game maybe only this ebooot/sprx comination as well.
well if you didnt change the .bat file then the .bat finally found the key the one you mentioned then decrypted whatever file name you had in the .bat, like i think the first .bat posted had patch.self in there default (funny Rage file) s whatever you changed that too is what the bat filed decrypted to selfout.elf
Last edited by PatrickBatman; 08-10-2012 at 02:22 AM.
PS3 Slim w/ Rebug Rex 4.30.2, 500GB Internal, 1TB/3TB External; PS2 Fat McBoot w/ Hard Drive; Windows 7 x64 Ultimate
Last game finished: The Last of Us | Currently Playing: Metro Last Light
BLES is cracked. http://ps3scenefiles.com/file.php?id=919 Try to see if it works with BLUS. I not I'll crack the BLUS one but I don't have the key because I didn't do the BLES one. Also don't link to Sony.
Hey Pat or anyone, any change on looking over UP0006-BLUS30757_00-NFSPATCH00000001-A0101-V0100-PE.pkg and getting the klic out of it?
The BLES original executable differs from the BLUS original executable, so a crack for BLES could work for BLUS but it would have some BLES code in it... So, to make sure that we have a fully BLUS proper running code, it would be great to have this update fixed. Also if this can be fixed please share the klic key for it.
This is a graphical version of the BruteForce batch
It has a slider for a more convenient selection of the offset.
The cut.exe / dd.exe / od.exe / sed.exe / batch files are not needed.
Just put it in the same folder of the scetool.exe, with the EBOOT.BIN and the .self or .sprx to be decrypted, start the BruteForce.exe and press the Start button.
Tested working with Red Dead Redemption
Edit:
Added support for command line parameters. Example:
BruteForce.exe 332300 /start
I did some tests on this for you and you're either missing a key(s) or have a command configured wrong or I'm really stupid . I'm using EBOOT.BIN(s) I know are 3.60 (because I've decrypted them myself a few days ago) and it gives the same error on each one "Bad file or not supported version of EBOOT.BIN (fw3.61+)" i tried the orginal 3.60 EBOOT.BIN and a resigned 3.55 EBOOT.BIN same thing. (For instance one i tried was the Dragon Age II 1.05 eboot which i obviously decrypted cause I got the klic key, folder with bruteforce.exe, scetool.exe, EBOOT.BIN, eclipse.self)
Originally Posted by xscorpion
Hey Pat or anyone, any change on looking over UP0006-BLUS30757_00-NFSPATCH00000001-A0101-V0100-PE.pkg and getting the klic out of it?
The BLES original executable differs from the BLUS original executable, so a crack for BLES could work for BLUS but it would have some BLES code in it... So, to make sure that we have a fully BLUS proper running code, it would be great to have this update fixed. Also if this can be fixed please share the klic key for it.
Whats the matter you dont want to learn this stuff? When I get time I'll look into it.
Last edited by PatrickBatman; 08-10-2012 at 03:40 AM.
PS3 Slim w/ Rebug Rex 4.30.2, 500GB Internal, 1TB/3TB External; PS2 Fat McBoot w/ Hard Drive; Windows 7 x64 Ultimate
Last game finished: The Last of Us | Currently Playing: Metro Last Light
Actually I would love to learn to do this, but bruteforcing will take forever as the decrypted eboot.bin has like 25 mb, and I got kinda lost in IDA
I used DataRescue_IDA_Pro_Advanced_v5.2 with the PS3 Loader v1.1 plugin done by xorloser. I looked over COD Black Ops and MW 3 as the klic keys where available, and tried to figure out some kind of pattern of where the key would be placed and where the klic function would be called but no luck. I hex searched in the decrypted eboots with (HxD) for the keys, then gone in IDA and jumped to that offset but i got lost in jumps and strange name function calls.
For instance in COD Black Ops (UP0002-BLUS30591_00-CODBLOPSPATCH012-A0113-V0100-PE.pkg) the key is place at the unk_A5B370 label, and the code that calls is like:
Reply With Quote
Originally Posted by aldostools
. I'm using EBOOT.BIN(s) I know are 3.60 (because I've decrypted them myself a few days ago) and it gives the same error on each one "Bad file or not supported version of EBOOT.BIN (fw3.61+)" i tried the orginal 3.60 EBOOT.BIN and a resigned 3.55 EBOOT.BIN same thing. (For instance one i tried was the Dragon Age II 1.05 eboot which i obviously decrypted cause I got the klic key, folder with bruteforce.exe, scetool.exe, EBOOT.BIN, eclipse.self)
