(Question) Decrypting eboot.bin

Discussion in 'PS Vita - Hacking & Homebrew' started by MDashK, Aug 15, 2016.

  1. MDashK
    OP

    MDashK GBAtemp Regular

    Member
    219
    58
    Jul 22, 2011
    Internetus Exploratis
    This may be a stupid question, in a way that maybe someone already tried it evidently, but:

    Has anyone already tried to decrypt the eboot.bin of games following these hypothesis:

    1) Copy the eboot.bin file inside any folder of the game, putting it along with game files
    (Since the decryption method we use decrypts all the game files, maybe it decrypts the BIN if it's in another location that's not "running", different from the console would expect it).

    or

    2) I know there's some list that the console uses to know all the files related to that game?
    Following the above procedure, and also adding the new BIN file location to that list. Maybe the console will grab the BIN file, thinking it's a simple game file (instead of the EXE BIN of the game) and decrypt it?


    Of course, these 2 are just speculations, and the purpose of this thread is to know if someone has already tried these methods. I would try them myself, but if anyone already did, that would be wasting my time, so...
     
  2. Cinnamon

    Cinnamon GBAtemp Regular

    Member
    257
    70
    May 2, 2014
    Norway
    Nope, tried it already. The EBOOT copied over never gets executed, meaning it won't get decrypted to run it. Also, what we bypass is the pfs decryption, the EBOOTs have several other security layers.
     
  3. phant0mg33k

    phant0mg33k Advanced Member

    Newcomer
    69
    16
    Sep 2, 2015
    United States

    I'm mobile so posing a link would be nightmareish, buuuut the old bubble method used a eboot signing method using sign np expert, that was only for psp titles. Wich we really have issues with. There is a version of welcome park decrpted as well floating around and I think we could sign a eboot using it. I have yet to test this but it is how the Twitter guy basically got ARK to work
     
  4. senas8

    senas8 Advanced Member

    Newcomer
    97
    21
    Apr 3, 2011
    United States
    WOW.. this was public knowledge and we don't have a threat about this? looks promising if true.
     
  5. tuxdude143

    tuxdude143 Member

    Newcomer
    46
    20
    Jul 18, 2014
    New Zealand
    Except that twitter guy obviously didn't get ark to work as that tweet doesn't exist anymore and all that.
     
  6. Cinnamon

    Cinnamon GBAtemp Regular

    Member
    257
    70
    May 2, 2014
    Norway
    He was just replacing eboot location for apps from app.db with new ones redirecting them to homebrew instead.
     
  7. doctorgoat

    doctorgoat GBAtemp Advanced Fan

    Member
    624
    234
    Jun 3, 2015
    United States
    jimmyleen likes this.