bandit
September 14th, 2010, 14:47
http://i202.photobucket.com/albums/aa112/dcemureviews/apploader.png
What this payload does is makes use of the /app_home/PS3_GAME menu on the XMB. You can place an application on a USB drive under the PS3_GAME folder and run it without installing a package. However, extracting a .pkg file onto a USB drive is not sufficient to run the program. You will need to modify the EBOOT.BIN in order for it to work properly. Once homebrew files start to roll out, we may not need to install them but can simply run them from the USB drive themselves.
PSGroove
This is the PSGroove, an open-source reimplementation of the psjailbreak exploit for AT90USB and related microcontrollers.
AerialX's fork of PSGroove was made for easier prototyping of the initial payload.
It should work on:
AT90USB162
AT90USB646
AT90USB647
AT90USB1286
AT90USB1287
ATMEGA32U4
... and maybe more.
This software is not intended to enable piracy, and such features have been disabled. This software is intended to allow the execution of unsigned third-party apps and games on the PS3.
Payloads
This fork comes with multiple payloads, which you can enable by editing port1_config_descriptor.S. All payloads have been rearranged so that they do not use hardcoded addresses anymore; you can rewrite and resize functions without worrying about offsetting others.
Default Payload
The default payload performs the basic PSGroove exploit; it allows you to install and run unsigned packages.
Apploader Payload
This payload makes use of the /app_home/PS3_GAME menu item. You may place an application on a USB drive under the PS3_GAME folder to run it without installing a package. Note that simply extracting a .pkg onto the USB drive is not quite enough for a program to run. EBOOT.BIN must be slightly modified to boot properly.
Using
To use this exploit:
Hard power cycle your PS3 (using the switch in back, or unplug it)
Plug the dongle into your PS3.
Press the PS3 power button, followed quickly by the eject button.
After a few seconds, the first LED on your dongle should light up. After about 5 seconds, the second LED will light up (or the LED will just go off, if you only have one). This means the exploit worked! You can see the new "Install Package Files" menu option in the game menu.
Source: AerialX Github (http://github.com/AerialX/psgroove) / AerialX Twitter (http://twitter.com/AerialX)
What this payload does is makes use of the /app_home/PS3_GAME menu on the XMB. You can place an application on a USB drive under the PS3_GAME folder and run it without installing a package. However, extracting a .pkg file onto a USB drive is not sufficient to run the program. You will need to modify the EBOOT.BIN in order for it to work properly. Once homebrew files start to roll out, we may not need to install them but can simply run them from the USB drive themselves.
PSGroove
This is the PSGroove, an open-source reimplementation of the psjailbreak exploit for AT90USB and related microcontrollers.
AerialX's fork of PSGroove was made for easier prototyping of the initial payload.
It should work on:
AT90USB162
AT90USB646
AT90USB647
AT90USB1286
AT90USB1287
ATMEGA32U4
... and maybe more.
This software is not intended to enable piracy, and such features have been disabled. This software is intended to allow the execution of unsigned third-party apps and games on the PS3.
Payloads
This fork comes with multiple payloads, which you can enable by editing port1_config_descriptor.S. All payloads have been rearranged so that they do not use hardcoded addresses anymore; you can rewrite and resize functions without worrying about offsetting others.
Default Payload
The default payload performs the basic PSGroove exploit; it allows you to install and run unsigned packages.
Apploader Payload
This payload makes use of the /app_home/PS3_GAME menu item. You may place an application on a USB drive under the PS3_GAME folder to run it without installing a package. Note that simply extracting a .pkg onto the USB drive is not quite enough for a program to run. EBOOT.BIN must be slightly modified to boot properly.
Using
To use this exploit:
Hard power cycle your PS3 (using the switch in back, or unplug it)
Plug the dongle into your PS3.
Press the PS3 power button, followed quickly by the eject button.
After a few seconds, the first LED on your dongle should light up. After about 5 seconds, the second LED will light up (or the LED will just go off, if you only have one). This means the exploit worked! You can see the new "Install Package Files" menu option in the game menu.
Source: AerialX Github (http://github.com/AerialX/psgroove) / AerialX Twitter (http://twitter.com/AerialX)