[UPDATE] PSP Password Retriever v0.2 - First LUA Flash exploit!

[xmOD]

Hey,

UPDATE: v0.2: Just changed a few changes and now you dont need XFlash!

Changelog:

- No need for dumping registry
- No need for XFlash or any similar homebrew
- Completely noobproof!

This is my first LUA app so i would like to hear from you guys about it...

Quote:

..::PSP Pass Retriever by xmOD::..

Readme:

:: What is it for?
.: If you have lost your PSP's password or wanna know *somebodys* password then this app can be used without resetting the default settings to know to password.

:: How do i use it?
1. Install PSP Pass Retriever by copying the 2 folders to GAME or GAME150, whichever is your 1.50 homebrew folder.
2. Execute PSP Pass Retriever from the XMB and press X after reading the notice.
3. The PSP's password will be displayed in front of you!

:: Can this brick my PSP?
.: PSP Pass Retriever CANNOT brick your PSP.

:: Can i suggest features to be added?
.: Yes! You can send feedback and report any bugs you found by PM'ing me on the QJ Forums.

Have Fun finding passwords!

Download: PSP Password Retriever v0.2
Source: Source code for PSP Password Retriever v0.2

[HeaD_ShOt]

good job
but i dont mind resetting defaults if somebody changes the useless password

[--GT--]

this ok i guess im saying........but without having to worrying about bricking use xflash.......like u said instead of resetting default settings......well i rather reset default setting then try using xflash.......BUT I USE XFLASH FOR EVERYTHING ANYWAYS lol......but yea thats alot of work just to get password

[xmOD]

revved up to v0.2.. now no need to use xflash! get your pass in seconds!

[PSPduh]

Either this application is contradicting or I'm an idiot.

To execute it from the XMB wouldn't you need the password in the first place?

What password are we talking about here? I'm thinking about the one when it boots you enter the password then you can continue.

[xmOD]

no not that password.. its the parental control for example your browser pass.. :-)

[zmathue]

why did you encrypt it. And how did you access flash

[xmOD]

i encrypted it so people could'nt use the same code in their application! and as far is flash is concerned.. well, u can just set the dir to flash1:\ and do wateva u want there...

[the undead]

Quote:

Originally Posted by xmOD

i encrypted it so people could'nt use the same code in their application! and as far is flash is concerned.. well, u can just set the dir to flash1:\ and do wateva u want there...

can i take a look at your code?...if u do and i steall it then you have proof from this post.
so can i?.....i wanna see how you did this.....

[xmOD]

Quote:

can i take a look at your code?...if u do and i steall it then you have proof from this post.
so can i?.....i wanna see how you did this.....

i cant believe that people here with som much LUA experience cant figure out how to access flash! well i'm gonna PM you the code..

[the undead]

Quote:

Originally Posted by xmOD

i cant believe that people here with som much LUA experience cant figure out how to access flash! well i'm gonna PM you the code..

ok thanks, lol....i appreciate it.

[xmOD]

ok.. i'm just curious to know but am i the first one to be able to access flash through LUA?

[MexicanSnake]

Quote:

Originally Posted by xmOD

ok.. i'm just curious to know but am i the first one to be able to access flash through LUA?

Maybe, maybe not .

I dont remeber but its kinda like this...
flash = io.open("flash1:/registry/system.dreg").

[xmOD]

Quote:

Maybe, maybe not

well if i am, then i guess i hit a homerun right on the first release.. but anywayz i'm looking for feedback on the homebrew and any bugs u find, so please come forward and post..

[MexicanSnake]

Quote:

Originally Posted by xmOD

well if i am, then i guess i hit a homerun right on the first release.. but anywayz i'm looking for feedback on the homebrew and any bugs u find, so please come forward and post..

One day a wize Lua coder told me how to open things like this, but Im pretty sure that YOU are the first to release stuff like this!

Congrats .

[zmathue]

can you also send me the source

[HeaD_ShOt]

me three i want the source!

[Yongobongo]

You can read from flash in lua, just not write...

[Crushader]

Nice one though!

[xmOD]

thx all of you.. and BTW MEXICANSNAKE has already let the secret out..lol.. i accessed the flash like this:

file = io.open("flash1:/registry/system.dreg","r")

its important to put the r flag in the command which tells the program that its just reading from the flash.. also dont forget to close the file with file:close() ..

.. i dont understand why this has'nt been put up on PSPU...

[zmathue]

ya this is known i just didn't know that shine included flash0 access programed in

[myschoo]

why is this called lua flash exploit? o_O

[EminentJonFrost]

its cool way to call it myschoo! durf! EVERYone knows that... j/k

it technically is an exploit, it exploited a password that would once stop us. i have to admit though, i have no idea how someone would ever HAVE to use this. maybe a kid who got from his/her parents after they set settings on it could use it. its a very interesting lua app though, never seen one do anything to the flash.

so i guess its the first!
nice work, xmod!

[xmOD]

well.. actually i made this app to get my bros psp's password.. but seeing that its better to call it retriever than cracker so i termed it as a pass retriever.. although its real use maybe to see other people's pass now that you dont have to dump the system.dreg.. i was trying to make another flash exploit but this time with flash0 but it seems that LUA does'nt let you access flash0 :-( .. although just to let everyone know, i was able to write to flash1 and you may expect something which uses that in the future from me..

EDIT: I am able to access Flash0 also now.. a little tinkering was needed..

[Moca]

You were always able to access flash :\

EVERYTHING has flash read access.... EVERYTHING! Its write access that makes things different.

This really isnt anything new... Your not the first BTW

And why is the title "exploit"? There is no exploit here... All your doing is reading the password from flash1... I believe it is as easy as opening a file in notepad and seeing the pass :P

This is a pretty strange release however. Congrats. I suggest you change the title as it isnt an exploit

[the undead]

hmmm, u never pmed me the code

[PSPduh]

Quote:

Originally Posted by xmOD

no not that password.. its the parental control for example your browser pass.. :-)

D'oh, .

I get it now...well very nice.

[youresam]

Ah, interesting concept. Not really useful to many, but an interesting concept.
Well, I will say you are not the first person to access flash in luaplayer. Its been known - and done - for a long time. And yes, you can write to flash1, not sure about flash0.

Also, encrypting such a simple program, thank you. You are really helping the psp homebrew community trying to learn lua.

[Anti-QuickJay]

No need to encrypt this, Its been done before, Theirs no exploit here so change the title, This is really not useful to alot of people.
LUA had had flash read for quite sometime now.

[youresam]

Quote:

Originally Posted by pspgamer81

No need to encrypt this, Its been done before

Theres almost no need to encrypt any lua file

Quote:

Originally Posted by pspgamer81

Theirs no exploit here so change the title, This is really not useful to alot of people.

Bingo. The exploit used is kxploit, which you didnt invent, sorry.

Quote:

Originally Posted by pspgamer81

LUA had had flash read for quite sometime now.

Try first release.