Home / C/C++ / Miscellaneous

Playstation Vita first_loader hack for prototype units on firmware 1.03

broombroom Playstation Vita first_loader hack for prototype units on firmware 1.03 This hack grants "bootrom"-level code execution on the PSP2 by expl
Information
Category: C/C++ / Miscellaneous
Watchers: 2
Star: 12
Fork: 0
Last update: Oct 8, 2021
Resource links
https://github.com/SKGleba/broombroom

broombroom

Playstation Vita first_loader hack for prototype units on firmware 1.03
This hack grants "bootrom"-level code execution on the PSP2 by exploiting a first_loader vulnerability discovered by Team Molecule

Usage

  • You will need mepsdk and vitasdk
  • Compile all the cmep-payloads, make sure that resulting byte arrays are static const
  • Compile the main code, the result should be kexec.bin
  • Run kexec.bin in THUMB mode with a kernel exploit such as this one

Notes

  • By default, broombroom expects arg to be a user-space pointer to a decrypted 3.65 second_loader.enc
    • it is only used for convenience, it is not required for the hack itself
  • Porting to a firmware different than 1.03 requires offset changes in the kernel and tz payloads

Credits

  • 'Proxima' for help and guidance over discord
  • 'Team Molecule' for the user, kernel, bootloader, trustzone, update_sm and bootrom exploits as well as mepsdk and sceutils
  • 'Zecoxao', 'LemonHaze', 'Princess Of Sleeping'
  • All henkaku wiki and vitasdk contributors
  • 'Yasen' for providing a type B prototype devkit and lots of electrons.

Contents

    df7cb SI Units for PostgreSQL
    Vita3K Experimental PlayStation Vita emulator
    MuxaJlbl4 List of awesome stuff for Playstation Vita.
    mmozeiko Decrypts PlayStation Vita pkg file and packages to zip archive
    WeegeeDEVELOPER A port of uMario (a widescreen remake of SMB NES) to the Playstation vita.
    LucidVR Arduino firmware for DIY haptic gloves. Officially compatible with LucidVR gloves.
    SonicMastr Vita Specific Patches and Application for Doki Doki Literature Club (Steam Version) using Ren'Py PSVita
    mmozeiko pkg download & installation directly on Vita
    MuxaJlbl4 Plugin that makes blurry textures sharper by changing scaling algorithm
    CTurt PlayStation 2 DVD Player Exploit
    OpenAnnePro Firmware flashing tool for Anne Pro 2. Allows custom firmware download.
    codestation Henkaku server made for Android
    kevelbreh A utility class for converting between different Android display units
    Crisu83 Library for converting units and sizes in PHP
    triplepoint A library for handling physical quantities and the units of measure in which they're represented.
    llSourcell This is the code for "Neural Arithmetic Logic Units" By Siraj Raval on Youtube
    ERPedersen vue-units - A collection of handy unit conversion filters for use in Vue 2.
    gabrielelana Library to parse, format and convert byte units
    solar-wine QEMU setup for emulating satellite firmware for Hack-A-Sat final event
    shaohua0116 Compare SELUs (scaled exponential linear units) with other activations on MNIST, CIFAR10, etc.
    WhiteBlackGoose Conceptual repo. Most advanced compile time safe units of measure for C# and F#
    Share this repo

    Related Repos


    Miscellaneous
    420
    For recording and retrieving metadata associated with ML developer and data scientist work...
    google ML Metadata ML Metadata (MLMD) is a library for recording and retrieving metadata associated with ML developer and data scientist workflows. NOTE: ML
     
    Miscellaneous
    100
    Hotcaml: an interpreter with watching and reloading
    let-def Hotcaml: an OCaml interpreter with watching and reloading Hotcaml is an OCaml interpreter that starts from a source file and loads its dependencies. W
     
    Miscellaneous
    50
    A React Native library for accessing an ArrayBuffer of a Blob instance.
    mrousavy react-native-blob-jsi-helper A React Native library for directly accessing an ArrayBuffer of a Blob instance. Note: This is a workaround. A long-term
     
    Miscellaneous
    14
    This is a OOSDK port of flat's ps4_remote_pkg_installer, all credit goes to them and their...
    Backporter ps4_remote_pkg_installer-OOSDK This is a OOSDK port of flat's ps4_remote_pkg_installer, all credit goes to them and their amazing work! NOTES Some fun
     
    Miscellaneous
    731
    General purpose GPU compute framework for cross vendor graphics cards (AMD, Qualcomm, NVID...
    KomputeProject General purpose GPU compute framework for cross vendor graphics cards (AMD, Qualcomm, NVIDIA & friends). Blazing fast, mobile-enabled, asynchronous and optimized for advanced GPU data processing usecases based on Vulkan compute. Backed by the Linux Foundation.
     
    Miscellaneous
    31
    An open source machine learning library for performing regression tasks using RVM techniqu...
    siavashserver Introduction neonrvm is an open source machine learning library for performing regression tasks using RVM technique. It is written in C programming la
     
    Miscellaneous
    108
    Pure C ONNX runtime with zero dependancies for embedded devices
    alrevuelta 🤖 cONNXr C ONNX Runtime A onnx runtime written in pure C99 with zero dependencies focused on embedded devices. Run inference on your machine learning
     
    Miscellaneous
    125
    Multi-armed bandit simulation library
    jkomiyama BanditLib: a simple multi-armed bandit library .-. .-') ('-. .-') _ _ .-') _ .-') _ .-. .-') \ ( OO )
     
    Miscellaneous
    466
    oneAPI Data Analytics Library (oneDAL)
    oneapi-src oneAPI Data Analytics Library Installation   |   Documentation   |   Support   |   Examples   |   Samples   |   How to Contribute    oneAPI Data Analy
     
    Miscellaneous
    1.4k
    Library for factorization machines
    srendle libFM Library for factorization machines web: http://www.libfm.org/ forum: https://groups.google.com/forum/#!forum/libfm Factorization machines (FM) a
     
    Miscellaneous
    617
    ThunderGBM: Fast GBDTs and Random Forests on GPUs
    Xtra-Computing Documentations | Installation | Parameters | Python (scikit-learn) interface What's new? ThunderGBM won 2019 Best Paper Award from IEEE Transactions o
     
    Miscellaneous
    34
    Low dependency(C++11 STL only), good portability, header-only, deep neural networks for em...
    mosdeo LKYDeepNN LKYDeepNN 可訓練的深度類神經網路 (Deep Neural Network) 函式庫。 輕量,核心部份只依賴 C++11 標準函式庫,低相依性、好移植,方便在嵌入式系統上使用。 Class diagram 附有訓練視覺化 demo 程式 訓練視覺化程式以 OpenCV
     
    Miscellaneous
    115
    Colibri core is an NLP tool as well as a C++ and Python library for working with basic lin...
    proycon Colibri Core is software to quickly and efficiently count and extract patterns from large corpus data, to extract various statistics on the extracted patterns, and to compute relations between the extracted patterns.
     
    Miscellaneous
    67
    Frog is an integration of memory-based natural language processing (NLP) modules developed...
    LanguageMachines Frog is an integration of memory-based natural language processing (NLP) modules developed for Dutch. All NLP modules are based on Timbl, the Tilburg memory-based learning software package.
     
    Miscellaneous
    14
    FoLiA library for C++
    LanguageMachines Libfolia: FoLiA Library for C++ Libfolia (c) CLS/ILK 2010 - 2022 Centre for Language Studies, Radboud University Nijmegen Induction of Linguistic Know