not sure why stuff like this hasn't been made public already...
enjoy

afaik the only way to get spare data is to go through the SFCX registers, libxenon has code for using it if your coding with that. There's also some XEX 360 nand flasher code floating around too, but I'm not sure if it was actually made public.

Just wanted to note that XeKey 0x3F is XEKEY_CONSTANT_SATA_DISK_SECURITY_KEY, which I think is also used to verify the security sector on MU/HDD too.
Also, that Console Certificate seems a strange size, I've always thought they were all 0x1A8... Could somebody maybe post an example of one?

Big bump I know, but there doesn't seem to be anything else about this. I'm wondering if anybody here has any info on these files.

I've been having a go at working out them out. recdata seems to be encrypted/compressed somehow, so I haven't looked at that yet.
recctrl seems pretty interesting though, It contains a list of versions(or models) and devices, and a file table.
Each file is mapped to a specific version and device, there are some files inside which aren't installed on my xdk and have a different version index to others. I've tried modifying the file so it installs them to no avail which leads me to believe it either has a signature or a hash somewhere.

I managed to figure out how to read most everything except I'm not sure of the random data in between file entries (after the filename), so far I can read the first entry and that's it I've tried scanning for the next string and going back 23 bytes but some reason .NET doesn't work properly...

I think the data is used for unpacking the file somehow, or verifying it, it seems to change size depending on the files size.

If anybody has any expertise with these files could you please lend me a hand I've linked my code but the program itself isn't useful (only for getting a string from a version/device index).

XRecoveryViewer

edit: seems that either the recctrl/recdata files contain such good secrets that nobody wants to talk about it in public (there is PM...), or maybe nobody has thought to look at these files, which personally I doubt because I've heard from a few places about files being extracted, guess this is gonna be yet another thing kept secret by the private xbox scene

info about this can be found at http://ps3wiki.lan.st/index.php/Basic_Bluray_disc_authentication_procedure

EID area? not sure what that is, one place I think it might be inside is the registry file, although i'm not sure what setting it would be under.

whoops, forgot a line of code in the data entry saving function, if you try to increase a strings length it would break stuff, fixed download:
http://stoker25.com/files/xRegistryEditor04.rar

this file's located on your dev_flash2. SKFU attempted to document it, but still got a lot of things wrong, im posting this here in hopes a wondering PS3 god will pass by and shed more light on the subject

things figured out so far: http://psx-scene.com/forums/showthread.php?t=65622 (too much to copy and paste sorry!)

i wrote an app based on my own findings (and help from k4roshi in the thread above regarding offsets in data entries), available at http://stoker25.com/files/xRegistryEditor03.rar (source, exes are in xRegistryEditor/bin/debug), it seems to work fine, not sure if changes actually effect the PS3 though since there seems to be some sort of checksum there

any help is appreciated would love to see the PS3 scene start off nice and open unlike other consoles...

(FYI: registry contains bluray/dvd region code, as well as the current server (np/sp-int/mgmt/prod-qa) and other goodies, surprised nothing has been released already...)

^ example of elitism
he could of meant he had the key backed up on a DVD? all of mine are...
i know he probably didnt, but all that $#!t about lego was unneeded. whats the point of being a total dick?
just makes people not want to learn any more...

I love how the original PSGroove release had backups disabled, so that it was a "homebrew-only" release, even though there's no publicly available leaked SDK that can actually compile any. (1.92 isn't publicly available, it was, but nowhere to be found now. 1.6 is incomplete, no compilers).

Android runs on top of linux...

hopefully the N900 code can be ported to android phones, then I can finally have fun with my PS3

(off-topic: maybe http://www.ps3scene.com/ should actually be updated with news of this jailbreak? that site kinda died years ago, but xboxscene still links to it...)

edit: i've emailed the ps3scene guys, hopefully they'll see the email and remember that the site exists. seeing as we can run unsigned code now I think having a site like xboxscene for PS3 would be a priority

pls, stop bumping this topic to get your post count up
someone could of just made a one post answer simply saying no, but somehow this actually turned into a conversation.

please, lets keep this topic to what its about, take your wars somewhere else. this thread has good ideas, be a shame to see it get locked.

about the fuses: as i said in another post, freeboot lets you use virtual fuses, couldn't we just replace the CE and CG sections (reencrypted with correct key) + files in a freeboot image with a devkits, then change the fuses from "C0FFFFFFFFFFFFFF0F0F0F0F0F0F0FF0" to "C0FFFFFFFFFFFFFF0F0F0F0F0F0F0F0F"?

just made this:
edit: updated it, fixed a few bugs and added some stuff to make adding / deleted lots of files easier, added what i think is bigblock support, not sure if it works though, use nandpro to recalculate ECC bytes:
v.45d binaries
v.45d source

source is included, but you can just run NANDFS/bin/Debug/NANDFS.exe if you want

untested, because i got no idea how to recalc the ECC bytes in c# :/, but added/deleted files do make a difference in 360 flash tool, so thats a good sign.

it's commandline, run with no arguments to see how to use

usage:

^ this is why the xbox scene currently fails. people need to change their mindset, idk why, but it seems the only people who know what their doing with Xbox get a huge f***ing ego from doing it.

if the entire human race thought like that, where would we be? not in front of a computer I assure you.

I know this is a bit of a bump, but I just realised something
AFAIK the fuses determine if its a retail or a XDK, and AFAIK the XDK XEX's check this (no idea though, anybody clarify?)
freeBOOT uses the values inside bin/fuses.bin to act as virtual fuses
freeBOOT also lets you put whatever files you want into the nand.

Does this mean that we could (possibly) copy the values of an XDK's fuses to the fuses.bin, copy all the XEX's from that XDK's NAND into freeBOOT's data folder, build an image and successfully run it? I'm not really up to speed on how the Xbox boots, but based on things I can remember, shouldn't this work?

(ofc, use xextool to convert all the XEX's to retail first)

http://free60.org is the link, just in case anybody doesn't know.

It's just so sad to see a good wiki go to waste. The Wii scene has WiiBrew, and we have Free60. Free60 barely even has 100 pages, but WiiBrew is thriving. Want to know why? Because in the Wii scene, things are OPEN, people actually provide information (and good information at that). This is the main reason why the Wii has so much homebrew, and the 360 has almost nothing. AFAIK the only people who make any homebrew for the 360 have good informative contacts, which kinda stops the little guy with a good idea but not good friends.

So, in basic, I'm asking for you (yes, you), to help Free60 grow. I've been helping for the past 2 weeks, cleaning up and adding info to pretty scarce pages. After browsing XboxHacker today I realised how much information is here, but is nowhere to be found on Free60.

So yeah, there's all that text above that's meant to convince you, but if that didn't, here's some info. The only people who are actively editing the wiki (as in, have edited a page within the past month) are me, Gamewizard71 and a few random spam bots that decide to pop in once in a while and replace a page. It's so lonely

I've updated the FATX page on free60 to include this (http://www.free60.org/FATX#.22Josh.22_Sector), I also uploaded my own Josh sector to http://files.aversionmedia.org/JoshSector.bin. I wonder if this is in any way related to how the Xbox determines the partition locations?

I've gone through the dump and extracted the contents of both partitions inside, along with the extended partition, because not all people can understand dumps ;P
You can simply throw the files in the Data partition folder onto any other MU's Data partition, and it will boot.
Download: http://stoker25.com/xbox/ManufacturingMU.7z

I used the server in freestyle dash to try and put files on my nand... it let me delete files, and upload small files, but because I only have a 16mb nand, there isn't much space. Maybe someone could use freestyle, delete all the files on their nand and then replace with xdk stuff... I'm not at my house atm so I can't flash the nand back if anything messes up.