Woooow...

So with just a picture, you could fond an exploit? Also if this happened earlier with Sony why didn't they remove the .tiff from the list of compatible pics thing XD? No complaining but good work! Can't wait to see the potential of this :). Seems that people totally forgot about exploits ever since pandora batteries...

Heh, Sony

Sony is lazy and stupid, that's why :P I'd worked on this a bit with him, but he's clearly taken it far beyond where it was before... nicely done, MaTiAz :) Glad to see you got things to actually run consistently.

Word..

Yeah, Sony is lazy and stupid. Anyways, let's hope it's compatible with the 3000. Yay.

O.O

Worked the first time on my phat, and the screen flashed the picture when i turned it back on O.O

:D

I cant believe he got it to work! now why wasnt this on lan 0.o anyway, i wonder what mode this is in, probably VSH but i have no way of knowing for sure

And it's not even April 1st !

Wow. Very nice. I wonder if there was word of this when they played that joke here. Where are the ribbons?

3k

works on 3k with 502 i test it and works !!! to cool, finali i made samething with my 3k.

You Serious?

Did it actually work on your 3k? Is this an exploit to what? Install custom firmware? Phat just broke, if this works on Brite. Hello happy me. XD

@FreePlay

I'm not a dev and could be absolutely wrong here, but I don't think Sony is lazy and stupid, well stupid. There's an infinite amount of ways to get past any firmware, and it's a lot easier when many devs all ready have access to the inner workings of the things they are making software for. I think they just missed stuff.

Wrong Source

This is the Original Source http://forums.mformature.net/showthread.php?t=2242 Not PSPGEN

Future Awesomeness

I just can't wait. A few days. I really really can't wait.

Hmmm

I wonder if he is hinting at psp 3000 hackability? that would be soo bomb my last psp's analog nub then screen went ka-pooy and ive been needing a new one

I think the news is big.

I've been reading through pages 6 & 7 on this thread: http://forums.mformature.net/showthread.php?t=2242 Sounds like some major posturing and then backing down. This could be da bomb!

...

Really, I dont understand how one hacker hacker can be smarter then a major corporation with thousands of college graduate employees, but it's actually true!

1 + 1 + 2?

"college graduate" ^^ That is why. Street smart always wins.

It wasn't only "one hacker"

It's easy to forget the credits line, and Matiaz clearly did 99% of the job. But don't believe that he was "alone" against a corporation. I know that at least 8 people where actively working on this, (not necessarily together, but you get my point). And you'd be wrong to think of these persons as high school script kiddies. The ones I've been in contact with have probably a stronger background in IT than most software engineers at Sony.

Not just 3000 Hackibility

This doesn't just mean that you'll probably be able to hack the 3000. It also means you'll be able to hack any model on any existing firmware without having to buy anything. No buying a pandora, and no buying a crappy game no one wants! Wahoo!

true but

Pandora is still the best way to go compared to software downgrades that could brick your psp...

..

because their system is not that perfect

Err...

They're not mutually exclusive, y'know. Someone could just as easily make a software exploit that converts a battery into a pandora battery. Also... if this exploit work the way I think it does, does that mean that they can bypass that whole confusing thingy that Dark Alex explained when he was talking about why Pandoras don't work on Brites/Later Slims?

Hmm...OFW Only?

Is this meant to work on OFW only? Because whenever I do this on my phat with 5.00 m33-6 it just freezes and shuts down. I know it's not supposed to work on the first try, but I did it alot.

@Achooist

No one actually uses TIFF images as images. All they're good for are various forms of exploits and hacks. Even on a PC, TIFF's are often used to install malware without a user's consent. I don't know what it is about the file format that makes it so hard to code a secure implementation, but that fact is that it's easy to exploit. So, if Sony was smart, they'd just remove TIFF support. Of course, that would probably make them look very bad to the end user ("What's this? An update that removes functionality?! Holy Executive Meddling, Batman!").

sony

just proves that there is no perfect firmware also does this have kernel mode, i remember the last tiff hack on ofw had kernel mode

Lol

Matiaz, are you paying attention?

nice

i never used an exploit before. i did explode a batt tryin to hard mod it before buyin one cuz i just could'nt find anyone around here to help me out... stupid noob move i guess. learned a lot since then and lookin forward to the dev on this :)

PSP 3000 CFW COMING.

can i has cfw on my psp 3k nao? kthxbai.

Try 5.03 OFW

It's designed for 5.03.

Malloxis

5.03 TIFF Hello World is the my tiff (the laughing man) by me malloxis he changed my work and i am happy he did something with it but he didn't give me credit for the time i spent making the tiff and trying to get people to see what i was trying to do on your next review don't forget the maker me Malloxis thanks

Does this actually allow you to replace pandora

Can you actually get to a cfw using this

Hey Malloxis

I clearly named you in the article summing this up in my blog (wololo dot net), I guess that's the best I can do for you :/. You're definitely not the only one Matiaz forgot to mention, but remember we all fight for the same cause, so it doesn't matter that much ;)

@Erkz

no it wont thing with TA-088v3 and TA-090v2 boards are that when pandora is inserted the pre-IPL checks are done no TIFF or savegame exploit can bypass that additionally i believe the trigger for pandora has changed in the TA-090v2 (0xFFFFFFFF is blacklisted, so not only do you need to find the new trigger, you need to pass pre-IPL checks as well). this for me explains why TA-088v3 gets a green light even though pandora doesnt work and TA-090v2 doesnt do anything.

Wait and see

There's more to this exploit than you think

no

HEN will be the aim of this exploit if custom firmware is installed on PSP-3000 it will brick due to pre-IPL checks

just for the record

tested on my 5.01 PSP-3000 doesnt work might update it to 5.03 since you've already tested 5.02 and check

hmmm

i kinda had a change of heart ok PSP-2000 TA-088 goes into service mode hackable TA-088v2 goes into service mode hackable TA-088v3 goes into service mode but not hackable (pre-IPL check) TA-090 goes into service mode hackable PSP-3000 TA-090v2 doesnt go into service mode not hackable, but is it pre-IPL check i started thinking that the previous two TA-088 were hackable then they released TA-88v3 where pandora works but the memstick doesnt maybe sony did something that even they cant revive dead TA-088v3 boards then the latest slim board the TA-090 which is hackable again then the PSP-3000 TA-090v2, now i'm thinkin this is hackable but oxFFFFFFFF has been blacklisted. once the trigger for service mode is relised for the PSP-3000 the existing IPL's will work.

um

not working on my 3k 5.02 or 5.03

HEN

i was gonna say "didn't the original HEN come to be in a similar fashion?"

.

@KylBlz: It's VSH mode, since it's in the VSH :P @Achooist: Well... not stupid. Lazy and sloppy, yeah.

...

why would you buy a pandora? I made my own.

You made jack sh*t.

You randomly edited a TIFF image and then sent off a ranting screed about how great and innovative you are.

Here, I'll prove it.

MaTiAz said it would help if he knew what "malloxis" did, so when asked, here's what he said: "I've put in so many enigmas and puzzles into this laughing man tiff that it will keep the professors busy for centuries arguing over what I did to this tiff, and trying to crack my code wont solve anything i want to see if you can crack my code A man of genius makes no mistakes; his errors are volitional and are the portals of discovery.Dark Alex Your battles inspired me or have i solved much more in a matter of minutes then you all in hours How rare and wonderful is that flash of a moment when we realize we have discovered how simple things are listen The value of an idea lies in the using of it so what i tell you is not is to not think so simple like those idiots but to understand simply step outside your box and into Pandora's box but i have found i have learned how to accomplish great things with this tiff is something so simple thank you " In other words, he's full of sh*t, and he just discovered it completely by accident.

Version 2 for the slims are out

http://forums.mformature.net/showthread.php?t=2242 Hello World for PSP firmware 5.03 The days of TIFF based exploits aren't long gone, at least not yet Here's the third TIFF exploit for the PSP, enjoy. Just copy the files to the memory stick root, disconnect USB and go to photo menu. Don't dismiss the exploit even if it doesn't work on the first time, it's *very* unstable. You might get it working on the first time, but you might as well have to try it 20 times! The h.bin is loaded to 0x08800000, and the text address of paf.prx is passed in $a0 to the binary code. You can then trick out function imports, like for example sceDisplayWaitVblankStart: sceDisplayWaitVblankStart = (void*)(paf_addr+0x15F068); Instructions: 1. Copy either slim.tiff or phat.tiff to /PSP/PHOTO/ folder on the memory stick, depending on your PSP model. Do NOT copy both! 2. Copy h.bin to the root of the memory stick. Thanks to malloxis, FreePlay, Archaemic, wololo, Cloudy, Davee and everyone else who was involved. Have fun! P.S. Just wait a few days, there's a bit of awesomeness coming up. - MaTiAz Updated with new version which works on Slims and Phats. No 3000 though. :/ that was copied from the forum i linked above. it also has version 2 of the exploit attached to the post and it isn't too hard to register to try it out. keep up the work on the exploit and it works great. i know when i tried version one on my 3000 it sometimes loaded the picture then it crashed and flashed the wlan light. did something similar on my 2000 and it crashes when i just hit photo on my 1000 like it said. good job :D

confirmed

as it says works on PSP-2000 (dont have a TA-088v3 so couldn't test that specific board) but it dont on PSP-3000 good work MaTiAz you're onto something great maybe HEN very soon

ON SECOND THOUGHTS

gripshift would of been linked to custom firmware installers and such when first discovered, i mean you gotto figure this would be first action to take. it must be a new IPL as well. to what i'm thinking it has to be

thanks for uprates guys

all i wanna say is QJ should add a function where you cant put smiley or frowny face vote without posting a reply whether you agree or disagree the votes should be for people who are active in the coversation

YAY

Rejoice for MaTiAz, i thought DA would of hacked the psp 3000 first but, unexpected

Jump the article?

You can jump the article up if you like it. Do nothing if you do not. What is it that you want to vote on?

i dont think you should be about to vote on a COMMENT without a reply

maybe even force votes on replies did you like or dislike this comment. why or why not. instead of this system where people may have a great comment thats totally relevant. and you get people downvoting him not because of their answer, but maybe they know him from around and just like downvoting him. i think being only able to (and even forced) to vote on reply could get some really good discussions going amongst the real tech heads. like lately ive enjoyed alot of PS34ME's comments, as he has a seemingly better knowledge on how the two systems perform, and he does it in an unbiased way. i just think if your going to sit there and rate people's opinions down or up, you have to post a why you think that.