Questions about Jailbreak and how to access PS3 HDD on Windows?

H

hoyohoo

Member
Hi, I have a PS3 Phat (CECHLXX) here with no HDD, so I have to reinstall the Firmware with a new HDD I am going to install inside. But, I want to install a CFW on it too, so the installed firmware must be jailbreakable. And I can only download the 4.87 from Sony website, is this firmware ok for ** ** www.ps3xploit.net > Domain no Longer owned by team** (NEW URL = http://ps3toolset.com) > Domain no Longer owned by team** (NEW URL = http://ps3toolset.com jailbreak? Or do I have to get 4.85?

The other question: My now broken PS3 has a 500gb HDD, and all my data is on there. I somehow need to get access to it, question is: How? Can I mount it on my PC somehow?
 
I'd have a look and see what version was last installed on it. If you want to jailbreak it you're gonna need HFW that is on the forums here to do so, like this one. It's basically OFW but with the webkit exploit put back into it so it's exploitable by bguerville's toolset to be able to install CFW.

As for the broken systems HDD, if you didnt dump the eid_root_key beforehand. Then i think it's impossible to recover data from it, as the programs need it to be able to decrypt and read the HDD.

EDIT: If it's 4.82, then you can just install the regular OFW since the exploit was present in that firmware, i believe 4.83+ had it patched out hence why you need the HFW.
 
Hi, how do I know, which firmware is on there, when it has no HDD installed? I don't have the old HDD, as I just bought it without..?

And, what is the name of this eid_root_key thing? I dumped a lot of things before it got defective.

And to this HFW thing, I can just install the new HDD and install this 4.87.1 HFW as it is an OFW? Or do I HAVE to istall the 4.87 OFW first, then the HFW over it and then I can use the Jailbreak?

EDIT: Ok, it seems that I habe a backup of my NAND. Is this somehow usefull?
 
Once you put a new drive in it, it should boot to recovery mode and tell you what version it wants.

The eid_root_key as far as i know is a key that is used by the system to decrypt several things including the hard drive and it's contents. The only way i knew how to dump it was to use the Rebug Toolbox that's present with Rebug's CFW. Although the option might still work on other CFW.

EDIT: Typo
 
dazzaXx said:
I'd have a look and see what version was last installed on it. If you want to jailbreak it you're gonna need HFW that is on the forums here to do so, like this one. It's basically OFW but with the webkit exploit put back into it so it's exploitable by bguerville's toolset to be able to install CFW.

As for the broken systems HDD, if you didnt dump the eid_root_key beforehand. Then i think it's impossible to recover data from it, as the programs need it to be able to decrypt and read the HDD.

EDIT: If it's 4.82, then you can just install the regular OFW since the exploit was present in that firmware, i believe 4.83+ had it patched out hence why you need the HFW.
Click to expand...
Actually PS3 Toolset by Bguerville uses a new exploit that does not require HFW. You can exploit 4.80 to 4.87 OFW directly using that toolset.
 
DeViL303 said:
Actually PS3 Toolset by Bguerville uses a new exploit that does not require HFW. You can exploit 4.80 to 4.87 OFW directly using that toolset.
Click to expand...
Ahh, my mistake. I haven't used HFW in quite a while so i thought it was still needed by the flasher. I used to use the old flasher when that came out and also just recently used the new toolset when i got my 2003b on 4.82, so i figured it was still needed. Awesome to know it just works on OFW now! :D

EDIT: Damn these typo's.
 
hoyohoo said:
And to this HFW thing, I can just install the new HDD and install this 4.87.1 HFW as it is an OFW? Or do I HAVE to istall the 4.87 OFW first, then the HFW over it and then I can use the Jailbreak?
Click to expand...
Forget the HFW, i made a mistake. Read @DeViL303 's posts, it works on OFW just fine. My bad. :confused:
 
Ok. This part is now sorted out, I will install REBUG 4.86.2 Lite.

And the other thing, I can't somehow bruteforce the Key? Or recover it from my NAND Backup?
I might have other stuff, I e.g. have my savedata and trophies backuped, but I am not sure if I have this eig thingy.
 
https://www.psdevwiki.com/ps3/Per_Console_Keys#per_console_root_key_1_.28EID_root_key.29
hoyohoo said:
And the other thing, I can't somehow bruteforce the Key? Or recover it from my NAND Backup?
Click to expand...
No
hoyohoo said:
I might have other stuff, I e.g. have my savedata and trophies backuped, but I am not sure if I have this eig thingy.
Click to expand...
When you dump the eid_root_key the dumper tool creates a tiny .txt file, is very short
So try to see if you have something written in a .txt otherway you dont have it and is imposible to recover it

The main purpose of the EID key is to decrypt this area located inside flash chip https://www.psdevwiki.com/ps3/Flash:Encrypted_Individual_Data_-_eEID
And the hdd keys are derivated from the EID key
 
hoyohoo said:
My now broken PS3 has a 500gb HDD, and all my data is on there. I somehow need to get access to it, question is: How? Can I mount it on my PC somehow?
Click to expand...

ERK (EID Root Key) is too long to bruteforce it on current computers. In future, with home quantum computers, this will be possible as we can cut specific zone from encrypted HDD, i.e the area with magic number and trying random keys as long as it not output "FACE0FF0DEADFACEh" (if i remember correctly). But for now it is impossible.

Also It cannot be retrieved from flash dump because ERK is first 48KiB of meta loader. Which can be extracted easily but... it is encrypted by some other hardware (by Cell Key?). So until this key is static (which means the same for all motherboards) or have some extremely pricey stuff (+knowledge), this is beyond Your(our) reach too.

Sorry for bringing bad news but You must fix broken PS3 from which this HDD comes from to be able to read contents on PC, for at least short period of installing CFW and dumping key (i.e via Rebug Toolbox on Rebug CFW).


This is how to read HDD on Linux (full access): https://www.psx-place.com/threads/tutorial-hdd-mounting-and-decryption-on-linux.23308/ On Windows, there is HDD Reader (allow to read basic partitions; some birds told me, that if You will wait month or so, probably write support will be added ;]).
 
Last edited:
Well, the broken PS3 has the YLOD and I once brought it back to live with changing the capacitors with tantalum ones, but it got YLOD yet again :(
And I dont know how to revive it once more...
 
Last edited:
Yeah, I got ripped of, it seems. The new console has YLOD too, but not instant and the time varies between 10 secs to about 2 Minutes. It seems to stay on longer, the hotter it gets
 
You must log in or register to reply here.

Similar threads

Back
Top