6/25/2007

PSP Illuminati_Exploit_Homebrew Sample(MemoryDump, Tetris)

1. Illuminati_Exploit_Homebrew PSP User Memory Dump write by asm

2. Illuminati_Exploit_Homebrew PSP User Memory Dump write by C

3. Illuminati_Exploit_Homebrew PSP Tetris write by C


about Illuminati exploit
http://www.noobz.eu/joomla/news/beware-of-the-illuminati.html





3. Illuminati_Exploit_Homebrew PSP Tetris write by C

Illuminati Exploit Homebrew Tetris C Sample
download sample src & bin
Easyshare - Illuminati_Exploit_Homebrew_Tetris.zip



2. Illuminati_Exploit_Homebrew PSP User Memory Dump write by C

Illuminati Exploit Homebrew User Memory Dump C Sample
download sample src & bin
Easyshare - Illuminati_Exploit_Homebrew_C_Sample.zip



1. Illuminati_Exploit_Homebrew PSP User Memory Dump write by asm

Illuminati Exploit Homebrew User Memory Dump asm Sample

#
# Illuminati_Exploit_Homebrew PSP User Memory Dump By 0okm
#

    .set  noreorder
    .global _start

_start:
    j     L08B008A0
    nop
    nop
    nop


L08B008A0:
    lui   $v0, 0x0887
    lui   $v1, 0x08b0
    ori   $a0, $v0, 0x459C        # sceKernelExitGame
    sw    $a0, 0x0a98($v1)
    ori   $a0, $v0, 0x46b4        # sceKernelDcacheWritebackAll
    sw    $a0, 0x0a9c($v1)
    ori   $a0, $v0, 0x457c        # sceIoClose
    sw    $a0, 0x0aa0($v1)
    ori   $a0, $v0, 0x453C        # sceIoWrite
    sw    $a0, 0x0aa4($v1)
    ori   $a0, $v0, 0x4584        # sceIoOpen
    sw    $a0, 0x0aa8($v1)

    lui   $v0, 0x08b0
    lw    $v0, 0x0a9c($v0)
    jalr  $v0                     # sceKernelDcacheWritebackAll
    nop

    lui   $v0, 0x08b0
    lw    $v0, 0x0aa8($v0)
    lui   $a0, %hi(FileName)
    addiu $a0, $a0, %lo(FileName) # FileName
    addiu $a1, $0, 0x0602         # PSP_O_CREAT|PSP_O_WRONLY|PSP_O_TRUNC
    jalr  $v0                     # sceIoOpen
    addiu $a2, $0, 0x01ff         # 0777
    addu  $s0, $v0, $0

    lui   $v0, 0x08b0
    lw    $v0, 0x0aa4($v0)
    addu  $a0, $s0, $0
    lui   $a1, 0x0880             # buff 0x08800000
    jalr  $v0                     # sceIoWrite
    lui   $a2, 0x0180             # size 0x01800000

    lui   $v0, 0x08b0
    lw    $v0, 0x0aa0($v0)
    jalr  $v0                     # sceIoClose
    addu  $a0, $s0, $0

    lui   $v0, 0x08b0
    lw    $v0, 0x0a98($v0)
    jalr  $v0                     # sceKernelExitGame
    nop

L08B00A50:
    j     L08B00A50
    nop


L08B00A58:
    .asciz "UserMemDump"
    .align 2

FileName:
    .asciz "ms0:/umemd.bin"
    .align 2


    nop
    nop
    nop
    nop


download sample bin
DivShare - ULUS10002LUMINES.zip
Easyshare - ULUS10002LUMINES.zip


[+/-] show/hide this post

posted by 0okm @ 6/25/2007 08:21:00 am   0 comments
 [+/-]