Top Menu

Tag Archives davee

Firstly, my congratulations to the HENkaku KOTH solvers: Mike H. and st4rk. I hope you guys enjoyed the KOTH and gained meaningful experience from the challenge. As promised, we will release the source of HENkaku. Furthermore, you've probably heard about taiHEN - the latest release from team molecule. Maybe you've read Yifan Lu's excellent blog post, explored the taiHEN website and even tested out…

home

Here we are at last, the release of 6.61 Infinity. It's been over 11 years since the PSP was released back in 2004 and it's somewhat impressive how long this device lasted. There is no definitive end to the representative scene, it just gets quieter and quieter. I'm not claiming this releases is the end of the PSP, but it…

Now that 6.20 TN-A is out in the open, allow me to describe the kernel vulnerability used. Back in 5.70/6.00 Sony introduced a feature into the sceUtility_private library that allowed to set and unset a callback with kernel privileges.

sceUtility_private_764F5A3C //Set power callback
sceUtility_private_2DC8380C // release (unset) power callback

These two functions are not normally imported so they require some special techniques such as syscall estimation to reach them in order to utilise their functionality.

Now, how does this kernel exploit work?

Hello everyone, this is my blog! After owning x-fusion for nearly four years, decided I should get a new domain, hence this blog. I've never had a blog before, so bear with me whilst I get used to all this fancy software (currently using wordpress atm). Back to the point, I made this blog in order to share research and…

Close