Post: PS3Xploit 4.82 CFW on OFW, NOR / NAND Flash Writer & NOR Dumper
11-24-2017, 08:34 AM #1
primetime43
Knowledge is power Tiphat
(adsbygoogle = window.adsbygoogle || []).push({}); You must login or register to view this content.

Version 3.0 is here: You must login or register to view this content.

Version 2.0 is here: You must login or register to view this content.

Version 1.0:
Following their You must login or register to view this content. update, the PS3Xploit Team of You must login or register to view this content., You must login or register to view this content., You must login or register to view this content. and W released both a PlayStation 3 NOR / NAND Software Flash Writer and NOR Dumper to You must login or register to view this content.consoles without the need of a hardware flasher allowing those on Official Firmware (OFW) 4.82 to install Custom Firmware (CFW) finally. You must login or register to view this content.

Download: You must login or register to view this content. (106 KB) / You must login or register to view this content. (3 MB)

To quote from You must login or register to view this content. on the releases: Since this exploit is executed from 4.82 OFW, you can only install to a 4.82 CFW, HOWEVER if you wish to use an earlier firmware such as REBUG 4.81 for example, once on 4.82 CFW you must TOGGLE QA using a toggle tool, which allows CFW user's to freely switch CFW version from past and present.

Read more about this in the Frequently Asked Question (FAQ) and more info in the details provided:

Flash Writer Compatible with these PS3 Models:


  • Supports FAT Models Axx/Bxx/Cxx/Exx/Gxx/Hxx/Jxx/Kxx/Lxx/Mxx/Pxx/Qxx



  • Supports SLIM Models 2xxx (minver 3.56 or lower ONLY, check with You must login or register to view this content.)


    PS3 OFW 4.82 NAND/NOR FLASH WRITER v1.0

Important -- AVOIDING A BRICK


  • Verify flsh.hex file on a flash drive and in the far right USB slot!

    • 4.82 flsh.hex MD5: 8E156C99101BF36EC3EDB832982AE46D
      - USE ONLY ON 4.82 OFW


  • DO NOT USE ON CFW (Custom Firmware) (Only Supports OFW)
  • DO NOT USE ON PS3 Models 3xxx/4xxx (aka SuperSlims / Late Slim models) you will brick those console.

PLEASE READ FIRST:


  • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically..
  • So in short, never use the browser or set a homepage you cancel before running the exploit!
  • If you need to, set the homepage to 'blank', close the browser then reopen it to start the flash writer.

v1.0.0 - Initial Release


  • Supports Direct OFW to CFW patching for All Phat and 2xxx Slim (minver 3.56 Dec 2010 and lower)
  • the NOR/NAND writer will just copy 3Mb of CoreOS data to both ros0 & ros1 in the flash memory.
  • There is only one version released for 4.82. The same hex patch file can be used on nor & nand.
  • It's as safe as possible, with a check for usb device & patch file making the exploit hang instead of corrupting flash if file is not found.
  • In case of corruption (extremely rare but could always happen), it's only a partial brick because no per console info ever gets erased so a hardware flasher could still be used if ever a recovery reboot was impossible.

Usage Tips:

1) Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
2) If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
3) If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.

Steps:

1. Setup a small Web server on pc or smartphone. A custom miniweb application has been created by Aldo, and supplied to host files if you would like to use it. Don't come to us for explanations about how to run a http server though. Google it.

2. Extract the files from release to your http server root folder.

3. Copy the "flsh.hex" file from release folder to root of flash drive.

4. Put a FAT32 USB key in port closest to BD Drive (/dev_usb000).

5. DOUBLE-CHECK your flash drive on XMB to make sure it shows up under Music, Photos, Videos, etc.

6. Open the PS3 browser File Address window, write the IP address of your server (and the port if not 80) & press the Start button.

7. Select the appropriate button for your console and wait for PS3 to power down. DO NOT STOP THE PROCESS ONCE STARTED!!

8. Once PS3 has powered down, reboot console and install CFW matching OFW version. If installing through XMB does not work, boot to recovery and install.




PS3 4.81/4.82 NAND/NOR Flash Dumper v1.0

THE CORRECT FIRMWARE VERSION BETWEEN 4.81 and 4.82 IS AUTOMATICALLY SELECTED!

PLEASE READ FIRST:


  • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically....
  • So in short, never use the browser or set a homepage you cancel before running the exploit! If you need to, set the homepage to 'blank', close the browser then reopen it to start the flash writer.

v1.0.0 - Initial Release.


  • Supports Dumping NOR on both 4.81 & 4.82.
  • bguerville tried to produce a release that was easy to port & he succeeded. Anyone able to search for offsets in IDA can add support to any firmware version in the dumper in a matter of minutes.
  • For technical reasons, the Full NAND dumper release is postponed. We will now be focusing on self execution & if we succeed there will be no need for the extra ROP work to do the NAND dumper. If we fail, I will finish it in ROP.
  • The dumper will be released in a form extremely easy to port so others can tweak it to their heart content with outcomes having to face complicated searches in the big unicode strings
  • A lot of time has been invested into making the javascript + UI more efficient, as well as the trigger phase faster & more stable. I hope you enjoy the result.

Usage Tips:

1) Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
2) If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
3) If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.

Steps:

1. Setup a small Web server on pc or smartphone. A custom miniweb application has been created by Aldo, and supplied to host files if you would like to use it. Don't come to us for explanations about how to run a http server though. Google it.

2. Extract the files from release to your http server root folder.

3. Put a FAT32 USB key in port closest to BD Drive (/dev_usb000).

4. DOUBLE-CHECK your flash drive on XMB to make sure it shows up under Music, Photos, Videos, etc.

5. Open the PS3 browser File Address window, write the IP address of your server (and the port if not 80) & press the Start button.

6. The dumper will detect the firmware version of your console automatically & setup the code appropriately so there is only one version for both 4.81 & 4.82. Run until ps3 beeps & shutdown. The flash dump should be a 16MB file on your USB drive as dump.hex.

You must login or register to view this content. Frequently Asked Questions & Additional Notes

Will this jailbreak my SuperSlim?


  • NO, (PS3Xploit has strong possibility to eventually evolve into a HEN style exploit (that aspect will take some additional development and time, at this time PS3Xploit exploit has not evolved enough)

Can in install a CFW before 4.82, such as Rebug 4.81 or an earlier CFW?


  • Yes, however you must Toggle QA Flag. Once the Token is activated you have the ability to then freely jump CFW versions. (see below for details)

How do I Toggle QA Flag?


  • When on a CFW download & install You must login or register to view this content. (Note: Will just show a black screen then reboot the PS3)

How do I know for sure if my PS3 Model is compatible ?


  • You must have a PS3 Console that has a Factory Firmware of 3.56 and below.
  • To check, its easy with this simple tool for OFW, Download You must login or register to view this content.
  • Then place the .pup file on a FAT32 USB Flash Drive in a PS3/UPDATE folder (create path if needed)
  • Now on the PS3 XMB goto Setting ->> System Update >>> Update via Media Storage
  • Once shown on the list select the PUP and install, shortly after there will be a message showing the factory firmware the console was shipped,
  • For this we want 3.56 and below.
  • ANYTHING HIGHER THEN 3.56 IS NOT ABLE INSTALL A CFW. Sorry this will not work for your console, but there could be a HEN (Homebrew Enabler) possible for running homebrew, but additional research and time is needed for achievement, additional details can be You must login or register to view this content..

Finally, from You must login or register to view this content. to quote: In case anyone is too lazy to host the files themselves I threw the files on my webserver if you would prefer to use it You must login or register to view this content. You must login or register to view this content.

Here is a list of the compatiable/non compatiable ps3s
You must login or register to view this content.

Like Darthsternie, @LightningMods also made an unofficial mirror that has been confirmed working in around 2 minutes here: You must login or register to view this content.

There's also a PS3 4.82 Exploit Tutorial and brief Tutorial by LightningMods with a video below, a PS3 CFW on Latest OFW 4.82 Guide by Zer0xFF available.









Hey, if you want to straight update to rebug 4.81 REX you can use this pup the syscon version is modified to 4.82 so you can update right away from 4.82 OFW, That way it is not needed to install 4.82CFW & downgrade & then install rebug

Download: You must login or register to view this content. (202.5 MB)

PUP MD5: BEABB70067E56DAFCFAE466E1218C1C2

[/I]
Yes I C&P'ed this so here is the source: You must login or register to view this content.
Source: You must login or register to view this content.
Last edited by primetime43 ; 07-01-2019 at 09:48 AM.

The following 29 users say thank you to primetime43 for this useful post:

Day, /SneakerStreet/, Okami, AkumaNYC, BurtE, CavaloDeTroia10, DEREKTROTTER, DiJiTaLGoDz, Father Luckeyy, Frosty, hibye3, Hydrogen, ImHere4DaSaves, ImPiffHD, ipwnu2day, joni_djESP, lilproman9, M0D_TH1S, Member35342235, RF0oDxM0Dz, Rogue_Wolf, sertefile, SHAkA, SoloHoster, Susanoo, Xcutioner, YouAppreciateMe, Ytanfox, zOblivious
11-24-2017, 07:11 PM #11
00abovezero
Save Point
I have the 2nd phat ps3 with no ps2 support. So I can jailbreak it with a flash drive? I thought you had to reverse to 3.55 in order to install cfw? Fixed? If so awesome.
11-24-2017, 08:46 PM #12
ljjp
LJJP I GOT SWAG
Originally posted by primetime43 View Post
Following their You must login or register to view this content. update, the PS3Xploit Team of You must login or register to view this content., You must login or register to view this content., You must login or register to view this content. and W released both a PlayStation 3 NOR / NAND Software Flash Writer and NOR Dumper to You must login or register to view this content.consoles without the need of a hardware flasher allowing those on Official Firmware (OFW) 4.82 to install Custom Firmware (CFW) finally. You must login or register to view this content.

Download: You must login or register to view this content. (106 KB) / You must login or register to view this content. (3 MB)

To quote from You must login or register to view this content. on the releases: Since this exploit is executed from 4.82 OFW, you can only install to a 4.82 CFW, HOWEVER if you wish to use an earlier firmware such as REBUG 4.81 for example, once on 4.82 CFW you must TOGGLE QA using a toggle tool, which allows CFW user's to freely switch CFW version from past and present.

Read more about this in the Frequently Asked Question (FAQ) and more info in the details provided:

Flash Writer Compatible with these PS3 Models:


  • Supports FAT Models Axx/Bxx/Cxx/Exx/Gxx/Hxx/Jxx/Kxx/Lxx/Mxx/Pxx/Qxx



  • Supports SLIM Models 2xxx (minver 3.56 or lower ONLY, check with You must login or register to view this content.)

PS3 OFW 4.82 NAND/NOR FLASH WRITER v1.0

Important -- AVOIDING A BRICK


  • Verify flsh.hex file on a flash drive and in the far right USB slot!

    • 4.82 flsh.hex MD5: 8E156C99101BF36EC3EDB832982AE46D


  • DO NOT USE ON CFW (Custom Firmware) (Only Supports OFW)
  • DO NOT USE ON PS3 Models 3xxx/4xxx (aka SuperSlims / Late Slim models) you will brick those console.

PLEASE READ FIRST:


  • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically..
  • So in short, never use the browser or set a homepage you cancel before running the exploit!
  • If you need to, set the homepage to 'blank', close the browser then reopen it to start the flash writer.

v1.0.0 - Initial Release


  • Supports Direct OFW to CFW patching for All Phat and 2xxx Slim (minver 3.56 Dec 2010 and lower)
  • the NOR/NAND writer will just copy 3Mb of CoreOS data to both ros0 & ros1 in the flash memory.
  • There is only one version released for 4.82. The same hex patch file can be used on nor & nand.
  • It's as safe as possible, with a check for usb device & patch file making the exploit hang instead of corrupting flash if file is not found.
  • In case of corruption (extremely rare but could always happen), it's only a partial brick because no per console info ever gets erased so a hardware flasher could still be used if ever a recovery reboot was impossible.

Usage Tips:

1) Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
2) If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
3) If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.

Steps:

1. Setup a small Web server on pc or smartphone. A custom miniweb application has been created by Aldo, and supplied to host files if you would like to use it. Don't come to us for explanations about how to run a http server though. Google it.

2. Extract the files from release to your http server root folder.

3. Copy the "flsh.hex" file from release folder to root of flash drive.

4. Put a FAT32 USB key in port closest to BD Drive (/dev_usb000).

5. DOUBLE-CHECK your flash drive on XMB to make sure it shows up under Music, Photos, Videos, etc.

6. Open the PS3 browser File Address window, write the IP address of your server (and the port if not 80) & press the Start button.

7. Select the appropriate button for your console and wait for PS3 to power down. DO NOT STOP THE PROCESS ONCE STARTED!!

8. Once PS3 has powered down, reboot console and install CFW matching OFW version. If installing through XMB does not work, boot to recovery and install.

You must login or register to view this content. PS3 4.81/4.82 NAND/NOR Flash Dumper v1.0

THE CORRECT FIRMWARE VERSION BETWEEN 4.81 and 4.82 IS AUTOMATICALLY SELECTED!

PLEASE READ FIRST:


  • It's essential not to flood the browser memory with junk before running the exploit. The reason for this is that due to javascript core memory usage limitations we are scanning several times a small range of browser memory (a few Mb) to find some essential data in RAM, if the memory is flooded then the range to scan becomes much larger & the probabilities that our data is found in the smaller range decrease dramatically....
  • So in short, never use the browser or set a homepage you cancel before running the exploit! If you need to, set the homepage to 'blank', close the browser then reopen it to start the flash writer.

v1.0.0 - Initial Release.


  • Supports Dumping NOR on both 4.81 & 4.82.
  • bguerville tried to produce a release that was easy to port & he succeeded. Anyone able to search for offsets in IDA can add support to any firmware version in the dumper in a matter of minutes.
  • For technical reasons, the Full NAND dumper release is postponed. We will now be focusing on self execution & if we succeed there will be no need for the extra ROP work to do the NAND dumper. If we fail, I will finish it in ROP.
  • The dumper will be released in a form extremely easy to port so others can tweak it to their heart content with outcomes having to face complicated searches in the big unicode strings
  • A lot of time has been invested into making the javascript + UI more efficient, as well as the trigger phase faster & more stable. I hope you enjoy the result.

Usage Tips:

1) Try using a LAN connection or a solid WiFi connection during exploitation. A weak signal can cause problems.
2) If the exploit takes more than 5 minutes to work, reload page, browser, or restart console and try again.
3) If you are using a LAN connection and experience network issues, make sure all cables to router are in working order.

Steps:

1. Setup a small Web server on pc or smartphone. A custom miniweb application has been created by Aldo, and supplied to host files if you would like to use it. Don't come to us for explanations about how to run a http server though. Google it.

2. Extract the files from release to your http server root folder.

3. Put a FAT32 USB key in port closest to BD Drive (/dev_usb000).

4. DOUBLE-CHECK your flash drive on XMB to make sure it shows up under Music, Photos, Videos, etc.

5. Open the PS3 browser File Address window, write the IP address of your server (and the port if not 80) & press the Start button.

6. The dumper will detect the firmware version of your console automatically & setup the code appropriately so there is only one version for both 4.81 & 4.82. Run until ps3 beeps & shutdown. The flash dump should be a 16MB file on your USB drive as dump.hex.

You must login or register to view this content. Frequently Asked Questions & Additional Notes

Will this jailbreak my SuperSlim?


  • NO, (PS3Xploit has strong possibility to eventually evolve into a HEN style exploit (that aspect will take some additional development and time, at this time PS3Xploit exploit has not evolved enough)

Can in install a CFW before 4.82, such as Rebug 4.81 or an earlier CFW?


  • Yes, however you must Toggle QA Flag. Once the Token is activated you have the ability to then freely jump CFW versions. (see below for details)

How do I Toggle QA Flag?


  • When on a CFW download & install You must login or register to view this content. (Note: Will just show a black screen then reboot the PS3)

How do I know for sure if my PS3 Model is compatible ?


  • You must have a PS3 Console that has a Factory Firmware of 3.56 and below.
  • To check, its easy with this simple tool for OFW, Download You must login or register to view this content.
  • Then place the .pup file on a FAT32 USB Flash Drive in a PS3/UPDATE folder (create path if needed)
  • Now on the PS3 XMB goto Setting ->> System Update >>> Update via Media Storage
  • Once shown on the list select the PUP and install, shortly after there will be a message showing the factory firmware the console was shipped,
  • For this we want 3.56 and below.
  • ANYTHING HIGHER THEN 3.56 IS NOT ABLE INSTALL A CFW. Sorry this will not work for your console, but there could be a HEN (Homebrew Enabler) possible for running homebrew, but additional research and time is needed for achievement, additional details can be You must login or register to view this content..

Finally, from You must login or register to view this content. to quote: In case anyone is too lazy to host the files themselves I threw the files on my webserver if you would prefer to use it You must login or register to view this content. You must login or register to view this content.

Here is a list of the compatiable/non compatiable ps3s
You must login or register to view this content.

Yes I C&P this so here is the source: You must login or register to view this content.

i hope sony patch this up quick

The following 4 users say thank you to ljjp for this useful post:

AFG, MrDmoney156, TeOzMaGiKz, xPurpBoyyx
11-24-2017, 10:29 PM #13
AFG
The One and Only
yay more little kids thinking they're Gods on PS3, Good Job @Escort you really had the balls to release this lmao, didn't think about the longterm did you? Some ppl still play old ass PS3 for the old games and you had to ruin that didn't you? No PS4 is borin asf too, way to fuck up everything.
Last edited by AFG ; 11-24-2017 at 11:22 PM.

The following 2 users say thank you to AFG for this useful post:

G-Kats, MrDmoney156

The following 5 users groaned at AFG for this awful post:

BurtE, Hola, LaughTracks, Saul, Sir Zee
11-24-2017, 10:57 PM #14
Chris
Former Staff
Originally posted by AFG View Post
yay more little kids thinking they're Gods on PS3, Good Job @Escort you really didn't think about the longterm did you? Some ppl still play old ass PS3 for the old games and you had to ruin that didn't you? No PS4 is borin asf too, way to fuck up everything.


Sounds like you especially play a lot of PS3. And I can understand where you're coming from.

What I can say is that your means of having fun might be different from Escort, or whoever may enjoy modding and releasing these things to other people. Probably not a good idea to criticize every person who prefers progress the modding scene rather than play legit. Just my two cents though, everyone is free to have their own ideals of what "fun" is for them.
11-24-2017, 11:08 PM #15
AFG
The One and Only
Originally posted by Chris View Post


Probably not a good idea to criticize every person who prefers progress the modding scene rather than play legit.

Modding Scene for PS3 is already complete. There is nothing to progress. With an E3 Flasher it requires skill, that's why there aren't many little kids who mod on PS3. Now with this USB method any 6 yr old can have a debug PS3.

The following 2 users say thank you to AFG for this useful post:

Decommit, TeOzMaGiKz
11-24-2017, 11:13 PM #16
Chris
Former Staff
Originally posted by AFG View Post
Modding Scene for PS3 is already complete. There is nothing to progress. With an E3 Flasher it requires skill, that's why there aren't many little kids who mod on PS3. Now with this USB method any 6 yr old can have a debug PS3.


Well not sure how it would differentiate simply because it requires "skill". Once again, I can 100% see where you're coming from, but if the developers want to do this, then that's what will happen.

Side Note: There were already primarily kids within the PS3 modding scene beforehand.
11-24-2017, 11:15 PM #17
AFG
The One and Only
Originally posted by Chris View Post
Well not sure how it would differentiate simply because it requires "skill".

Because little kids can't open up a PS3 and hardware downgrade it themselves.

The following 2 users say thank you to AFG for this useful post:

MrDmoney156, wsocishia14
11-24-2017, 11:31 PM #18
ljjp
LJJP I GOT SWAG
Originally posted by AFG View Post
Because little kids can't open up a PS3 and hardware downgrade it themselves.
thats right this should of been privet if
people wanted a cfw that bad they would of looked into modded but this is where it all started with just a usb stick
11-24-2017, 11:45 PM #19
btek
Banned
Why do I keep getting an error code every time I try to install ferrox I get to 70-72% same thing with rebug I don't understand even recovery mode doesn't work what am I doing wrong??????

Copyright © 2024, NextGenUpdate.
All Rights Reserved.

Gray NextGenUpdate Logo