The above video goes away if you are a member and logged in, so log in now!

 Would you like to get all the newest Gaming News fromQJ.NET in your email each day? Want to learn more about the team who brings you the QJ news?

## IDStorage brute force

This is a discussion on IDStorage brute force within the PSP Speculation forums, part of the PSP Development, Hacks, and Homebrew category; Hi, Maybe if we could make a plugin that tries all possible combinations for the 0x100 key. Is it possible? ...

 Tweet
1. ## IDStorage brute force

Hi,

Maybe if we could make a plugin that tries all possible combinations for the 0x100 key.
Is it possible?
I mean with a loop like:
i = openfile(txtFile)++;

idFunc = changeID(0x100, i);

if(idFunc) {
Wow, it worked
} else {
reboot
}

savetofile(i);

2. ... No. A IDStorage leaf is 512 bytes, and it'll take forever to bruteforce. Also, checking if the key was correct is a bit weird, you'd need to find a way to "test" if the new IDStorage key works.

3. You can try if it reads a UMD.

4. Originally Posted by basfreak
You can try if it reads a UMD.
Doing that "check" can take about 1 second each key, now let's do some basic maths.
Key 0x0100 = 512 bytes in size. Let's assume we have the 255 ASCII characters. Before this, I'll illustrate it with a 3-byte one, and assuming we only have 3 (three!) ASCII characters (A, B and C):
Code:
```AAA - AAB - AAC - ABA - ABB - ABC - ACA - ACB - ACC
BAA - BAB - BAC - BBA - BBB - BBC - BCA - BCB - BCC
CAA - CAB - CAC - CBA - CBB - CBC - CCA - CCB - CCC```
That are 27 possibilities, 3 bytes and 3 ASCII possibilities: 3 to the power of 3

Now, let's do that math again with a 512 bytes big IDStorage leaf, and 255 ASCII characters, here we go:
255^512 = Oh, wait. My calcuator can't even hold that! Let's do 255^10 then:
1162523670191533212890625 options
That's only 255^10, now try to imagine how amazingly HUGE - really HUGE (it's a few million times more then 255^10) the 255^512 is!

In short, no.

5. Now that my friends is a freaking answer!
High five jumpR.

6. Not to mention how your UMD drive and NAND would be stuffed if you finaly got it.

7. Originally Posted by Art
Not to mention how your UMD drive and NAND would be stuffed if you finaly got it.
You could redirect the ID Storage Key to RAM. That would save the NAND from getting corrupted by this.

However JumpR is right that it will take a very long time to brute force such a key.

#### Posting Permissions

• You may not post new threads
• You may not post replies
• You may not post attachments
• You may not edit your posts
•

All times are GMT -8. The time now is 01:35 PM.

Use of this Web site constitutes acceptance of the TERMS & CONDITIONS and PRIVACY POLICY