Talk:PS3Cobra Payload Reverse Engineering

From PS3 Developer wiki
Jump to navigation Jump to search

D/L's

COBRA v2.0 boot //mirror (TDC) dumpsource

COBRA v2 objdump disassembly

COBRA v2 IDA disassembly

PSGrooPIC Cobra v2.00 (not working)

cobra 2.0 exit from ps2 game+boot of ps2 game at 185632.rar (4.48 MB)




Updater v1.0

http://www.ps3hax.net/2011/10/cobra-v4-1-cobra-usb-ps3-updater-v1-0-released/


Hardware Dongle

Components

Actel ProASIC3 A3P060 - FPGA

Pinout A3P060 VQ100

12.000 MHz Crystal

CLK for Actel

24.000 MHz Crystal

CLK for Atmel

AMS1117 3.3 1032 - Low Dropout Linear Regulator

Datasheet: http://www.sltdigital.com/product/product_pdf/AMS1117.pdf / http://home1.cyber-labo.co.jp/board/goods/pdf/AMS1117.pdf
File:AMS1117 - SOT-223.png

Atmel ATMEGA 16A

Winbond 25X16AVS1G (SPI Flash 16Mbit)

8-pin TSSOP
Winbond 25X16A
SOIC-8 pinout
W - Winbond
25X - SPI Flash
16 - 16Mbit / 2M-byte (Uniform 4Kbyte sectors/64Kbyte blocks)
AVS1G - 100MHz (200Mbits/sec)

datasheet: W25X16A.pdf (1.3 MB)
Note: can use Bus Ninja or Bus Pirate and FlashROM - ISP is possible, so long as no other devices on the SPI bus are trying to access the device (in that case, you might want to cut Vcc to the FPGA or the regulator for it).

Pin Usage Remarks
1 /CS Chip Select
2 DO Data output
3 /WP Write Protect
4 GND Ground
5 DIO Serial data input/output
6 CLK Serial Clock
7 /HOLD Hold
8 VCC Vcc (min 2.7-max 3.6V)