It seems that to roll-out the exploit and make it success 100% is like the lotery, don't get exasperated.
Once installed as descrived previously I recommend a restart. As it is so "tricky" to success with it, it is recommended to do it just after a restart and without logging in into the graphical interface. I mean, when the system requests our login data we will go to a terminal by pushing Control+Alt+F1. There we login with the user defined during the installation.
Once logged in we can go as root with the following command "sudo -s". WE introduce the root password and we are ready to test the exploit.
The command to run the exploit is "ps3exploit" and it needs a parameter. The amount of times that it will give you the opportunity to cause the failure to the hypervisor and that we will take advantage to generate the memory dumps.
If we run "ps3exploit 100". We will get 100 opportunities to carry out the deed.
It will show a message telling us to push the button of the circuit and the retry count until you to the 100 retries xD. How we will know that it works? If the exploit detects your button push in the circuit you will realize, the RAM dump will begin. And what happens if it is not detected? It will inform you that you got you 100 retries and that's it. If it is not detected don't despair, try again with "ps3exploit 100" until you get it.
In my case, I still haven't been able to make it work. I think that it is because of the circuit, I have not built it in the right way, the 26Mhz crystal as I previously said o the the circuit isn't the right one.
I'll keep you updated...
No comments:
Post a Comment