Kirk is one of the crypto processors running on the PlayStation Portable. The engine’s binary has apparently been dumped recently, with Zecoxao announcing the breakthrough a few weeks ago*. Although open source implementations for the Kirk Engine have been floating around for some time, as I understand it, these do not include the full set of operations. A full-fledged reverse engineer would allow to perform all encryption/decryption operations on a PC, without the need for a PSP.

It is nice to see more discoveries still happening for the PSP. With the main crypto engine of the console now fully available, I am not sure if the PSP has any more secrets to reveal?

The hackers behind this have chosen to not disclose for now) how the KIRK binary was accessed.

What is Kirk for the PSP?

The PSP KIRK Crypto Engine is a security hardware device that is embedded into the TACHYON main IC chip. It is a bus master and can DMA to/from main DDR RAM memory, operating independently of the CPU. It is capable of performing AES encryption, decryption, SHA1 Hash, pseudo random number generation, and signature generation and verifications (ECDSA) and CMAC. (source)

Kirk handles most of the encryption/decryption steps on the PSP, including per console content such as the NAND. Other modules on the PSP in charge of encryption/decryption are Lepton and Spock, focusing more on UMD.

About the Kirk Binary Dump

From Zecoxao on PSX-Place:

In a conjoined effort, the APE discord group managed to finally dump the elusive Playstation Portable Kirk Rom. With the knowledge in hand, they were able to decipher most of the kirk commands (kirk0 was assumed to be nonexistant until now) and derive the perconsole keys and seeds used for prng and kirk commands 3,5,6,8,9,0xF,0x10 and 0x12 respectively. The follow up information can be found in the Playstation Portable wiki, under the Kirk section (https://www.psdevwiki.com/psp/Kirk). As for the rom, it can be downloaded from Darthsternie’s site, here: https://darthsternie.net/psp-assorted-firmwares/

The ida processor module can be found here:
https://github.com/ProximaV/kirk
The ghidra processor module can be found here:
https://github.com/LemonHaze420/ghidra_kirk
An alternative version of the ghidra processor module also exists here:
https://github.com/balika011/ghidra_kirk

Credit is given to the following people for the recent Kirk Dump:

• Anonymous, for you know what you have done
• Proxima, for the processor module
• davee, for general purpose RE and more proc opcodes
• LemonHaze, for opcode contrib

Download PSP Kirk ROM

You can download the Kirk dump itself here

Source: Zecoxao

* And yelling at me for not talking about it here when this was announced. Sorry but I had “reasons“!

The post The PlayStation Portable’s Kirk ROM (encryption/decryption engine) has been dumped appeared first on Wololo.net.

Many many years ago, a survey about new PSPgo colours popped up on Sony’s website, which suggested that Sony might be interested in releasing coloured variants of the PSPgo, just like the regular PSPs already had coloured variants.

Unfortunately, due to the PSPgo being a digital-only handheld device and digital-only devices being very unpopular back in the days, the PSPgo ended up flopping and thus Sony canceled the production of the PSPgo prematurely.
This also caused these supposedly upcoming new coloured variants of the PSPgo to never see the light of day, at least officially…

Blue, Yellow and Magenta PSPgo (click to enlarge)

Over the last few years, a few of these coloured variants of the PSPgo have popped up on the internet, which attracted collectors to immediately buy them up.
While we cannot be sure that all of the survey’s different PSPgo colours have actually been produced, even though their serial number heavily suggesting this, we can at least confirm that a blue, yellow and magenta (burgundy) variant actually exists.
These pre-production models were likely created for regulatory testing purposes, as the stickers, found on the back of all Strider2 PSPgos, mention Strider2 Trial and the model’s respective colour, if one translates the Japanese Kanji into English.

We have gotten into contact with Mike H., one of the collectors who has managed to buy all 3 currently known variants of the coloured PSPgos (shown above, credits to the picture also goes to Mike), who was kind enough to let us analyse these coloured variants of the PSPgo, which brings us to Strider2.

Strider2 – The PSPgo’s scrapped revision:

Credits to Freakler (click to enlarge)

Just like the PSP 3000 has received various internal revisions – with the 03g model being the original PSP 3000, the 04g model being its first revision, while the rare China-exclusive 07g and the common international 09g models being its latest revisions – the PSPgo was supposed to get such a revision as well, had it not gotten discontinued prematurely.

The regular retail PSPgo contains the TA-091 motherboard and has Strider(1) as its internal model descriptor, while the scrapped revision of the PSPgo contains the TA-094 motherboards (v1/v2) and is internally referred to as Strider2.
Additionally, similar to the different PSP 3000 revisions being separated into different generations (0Xg), the Strider2 PSPgos are PSPs of the 6th generation (06g), while the regular Strider1 PSPgos are of the 5th generation (05g). This means that Strider2 has its own firmware modules and does not utilise the same modules as the regular PSPgo.

During our analysis of Mike’s Strider2 PSPgos, we were able to find out various interesting things about the 6th gen PSP:

– The yellow Strider2 comes pre-shipped with system software 6.00, a firmware which curiously does not exist for the Strider1 PSPgo, but it does exist for the regular PSPs (01g to 04g).
– The blue and magenta Strider2s come pre-shipped with a very early build of system software 6.20, a firmware that does exist for all previous PSP generations, but the release build of firmware lacks the 06g modules, which Strider2 would require to run this retail firmware.

As a matter of fact, none of the public firmwares for the PSP contain 06g modules, not even the most recent firmware 6.61, which suggests that the choice to discontinue the PSPgo prematurely was done around the time the first few Strider2 models got pre-produced for regulatory purposes.

That aside, since some of the Strider2 models are running system software 6.20, we considered running TN HEN, LME CFW or PRO CFW on them, but due to them utilising a different build of the firmware 6.20, those tests have failed and would require these HENs/LCFWs to get modified for them to work on the Strider2s.
So instead we chose to utilise the power of signed Homebrews, which will run on official firmwares as well, even beta builds of official firmwares, and that route turned out to be a huge success!

Using a signed and kxploited version of PSPident allowed to use retrieve the Baryon, Tachyon, Pommel and various other values of the Strider2’s motherboard, which in turn allowed us to update the PSP Development wiki and PSPident’s internal motherboard identification list to correctly identify the Strider2 on following reruns of PSPident.
That way we also managed to dump the entire flash (firmware, ipl, etc) of all Strider2 models, which allowed us to analyse it and that’s how we noticed that the Strider2 does indeed use 06g modules, unlike the regular PSPgo. Unfortunately we are not allowed to share these dumps on this blog due to legal reasons.

The TA-094 motherboards:

Hacking scene veteran and friend of mine Freakler has recently managed to acquire a white Strider2 PSPgo for himself and finally confirmed that the myth-enshrouded TA-094 motherboard does indeed reside in the scrapped Strider2 PSPgo models. Previously it was only assumed that the TA-094 motherboard was limited to an upcoming newer PSPgo (Strider2) model, due to pictures of the motherboard appearing 14 years ago (via Gamergen & Darkhacks), and because there had not been a single report of the existing retail PSPgos containing any other motherboard than the TA-091 one.

While Freakler has managed to provide us with high quality pictures of the TA-094v1 motherboard (dated 11th September 2009), there are unfortunately still no pictures of the TA-094v2 motherboard (dated 24th December 2009, how fitting), which resides in the later variants of the Strider2 PSPgo (such as the blue and magenta ones shown above).
There being 2 variants of the TA-094 motherboard is due to PSPident showing slightly different values for the white/yellow and blue/magenta Strider2 PSPgos.

Which of the scrapped Strider2 colours is your favourite one?
My favourites are the blue and navy grey ones, alongside the classic pearl white model of course.

I’m not sure what you guys are thinking about the recent accomplishments in the PSP scene, but I myself am definitely quite excited about all of them!

The post Strider2: The PSPgo’s new colourful variant that never was appeared first on Wololo.net.

ARK, the Custom Firmware for PSP (compatible with both PSP/Vita) is now renamed ARK-X. This latest release by Acid_Snake introduces a new way to sideload PS1 games onto your PSP/PS Vita, making use of the official PS1 emulator embedded within the PSP OS.

What’s ARK for PSP/PS Vita

The PSP is one of the best homebrew devices. It had a striving community, and a lot of developers pushed it to its limit, in particular with emulators that achieved incredible performance for those days (ok, I won’t pretend it’s the best way to play emulators nowadays though, but it still works great for older generation consoles such as the NES, SNES, GBA…).

Running a Custom firmware on the PSP turned a decent console into an insane beast. And the same remains true on the PS Vita: As the Vita has a full fledged PSP emulator embedded, it is possible (and recommended!) to install a PSP Custom Firmware on the PS Vita.

That’s where ARK comes into play, being a custom firmware that works for both the PSP and the PS Vita. It comes with impressive features (from the readme):

Features:

• Core system heavily updated from traditional CFW with new exclusive features.

• Inferno 2 Driver compatible with all formats (ISO, CSO, ZSO, JSO, CSOv2 and DAX).

• Popcorn controller for custom PS1 games. Compatible with PopsLoader V3 and V4i.

• Built-in No-DRM engine Stargate, fixes many anti-CFW games. Compatible with npdrm_free and nploader.

• Plugin support for PSP games, PS1 games and VSH (XMB), including the ability to enable and disable plugins per-game.

• Region Free playback of UMD Video on all PSP models. Change the region of your UMD drive on-the-fly.

• Compatible with all PSP models on firmwares 6.60 and 6.61.

• Compatible with all PS Vita models on firmware 2.10 up to 3.74, either official firmware or via Adrenaline.

• Compatible with 6.60 Testing Tool Firmware and Testkit Units.

• Compatible with 6.60 Development Tool Firmware and Devkit Units.

• Can be fully installed and booted on memory stick in compatible models via Time Machine.

• Can be used to unbrick compatible PSP models using Despertar del Cementerio in combination with a Pandora or Baryon Sweeper.

• Minimalistic: only 6 files installed on PSP flash, CFW extensions are installed on memory stick.

• Resistant to soft-bricks, easy to recover from bad configurations with a new and improved Recovery app.

• Custom game launcher with built-in game categories, file browser, FTP server and client, modernized look and more.

• Fully configurable via the XMB.

• Compatible with PRO Online and Xlink Kai.

• Compatible with Legacy Homebrew via eLoader and Leda. Compatible with the KXploit format.

• Compatible with cIPL and Infinity 2 bootloaders for permanent CFW.

• OTA updates. Fully updateable via the internet.

What’s new in ARK 4.20.68 (ARK-X)

Download and install ARK for PSP/PS Vita

To get Ark 4V20.68, go to this specific release.

Alternatively, if you want the latest and greatest (automated builds with each commit), head over to the release section of the developer’s github to get the latest release.

Installation instructions in the readme.

The post PSP/PS Vita release: ARK 4.20.68 a.k.a. ARK-X introduces improved way to load PS1 games appeared first on Wololo.net.

Following yesterday’s release/leak of the AMD 4800S Bios, PlayStation scene developer SpecterDev has released a plugin for IDA/IDA Pro that will help you load those files in your favorite debugger.

This goes without saying, but if you don’t know what this is about, this tool is probably not for you.

What is IDA ASP Loader and why does it matter?

I have a lengthy explanation on what the AMD 4800S is and why we like it here, but bottom line is that these CPUs are very close to those of the Xbox X, and, to some extent, the PS5. Getting knowledge about their firmware could in return help understanding and reverse-engineer the current gen gaming consoles.

In this context, IDA ASP Loader is just taking the scene one step closer to open the binary files and start reverse engineering them. (Note: ASP here stands for AMD Secure Processor)

From the developer:

Simple loader plugin for IDA to load AMD-SP or PSP firmware binaries. Will try to load bootloader blobs unpacked by PSPTool.

A lot of effort has been put by the hacking community into reverse engineering multiple aspects of the AMD CPUs. This means the Xbox X/PS5 scenes don’t have to start everything from scratch when it comes to digging inside the consoles’ APUs. The PSPReverse repository, in particular, will be useful to anyone wanting to dig into the 4800S, as mentioned by SpecterDev.

Comparison of AMD 4800s and Xbox X APU, picture by Eurogamer

Download and Install IDA ASP Loader

Note: You will need IDA to install this plugin. Most likely IDA Pro is required here, and considering the price tag of this particular piece of software, generally speaking unless you’re a professional security researcher (and your company pays for the license), you’re probably SOL.

You can download the IDA ASP Loader plugin here.

Copy repo contents or script into [ida root]/loaders.

• Load addresses are currently hardcoded as there’s no easy way to dynamically deduce them. It’s possible a given binary doesn’t load at a correct address (open an issue)
• PSP files have some different magics, known ones are supported but there may be some binaries that have currently unsupported magics and won’t be recognized (open an issue)

Source: via Zecoxao

The post Release: IDA ASP Loader by SpecterDev appeared first on Wololo.net.

The folks at the PSP Homebrew Community have announced that the PSPHDC (PSP Homebrew Developer Conference) is right around the corner. It will happen This Saturday, April 6th, at 6PM UTC* (5PM UK; 2PM EST).

The PlayStation Portable turns 20 year old this year so this year’s PSPHDC is kind of a big deal. Looking at the lineup for the conference, it’s exciting to see that people are still very much active on this device (the PSP, PS3, and Nintendo DS to me still represent the “apogee” era of console homebrew), but also all that’s been accomplished on the device, whether it’s on hacks, homebrew games, or features nobody thought would be possible.

What’s the PSPHDC (PSP Homebrew Dev conference)

As the name implies, the PSPHDC is an event where Homebrew Developers for the PlayStation Portable will discuss some of their recent work for the device. This year’s lineup looks very promising:

• Kurohyou Translation Project (Team K4L); The story behind a fan-translation for the Kurohyou series of PSP games.
• Project Aether Engine (IridescentRose); The evolution of game engine design into a purpose-built cross-platform game engine.
• TOTP4PSP Authentication (arcyleung); A homebrew project to use the PSP hardware as an offline authentication token generator. A quick overview of the development process.
• ARK-4 (Acid_Snake); The latest and most awesome PSP custom firmware!
• SSL with cURL (Bucanero); Getting secure TLS1.2 networking on PSP with cURL + mbedTLS
• PSP Toolchain (davidgf); A walkthrough of the PSP Toolchain, progress, updates, and exciting new prospects!
• SDL2 (wouter); A talk about getting into porting games to PSP using SDL and other common tools!

I’m personally very excited to hear about SDL2 porting on the PSP, having worked in the past with SDL and SDL2, which I think is a great multi-platform “engine”. It’s also quite surprising and cool to see that the toolchain is apparently still getting updates on a regular basis!

Anyway, if you’re into retro gaming and development (yeah, sorry to break it to you, the PSP *is* a retro console now), do not miss the event!

Everything will be here: https://www.youtube.com/c/PSPHDC

You can also join the PSP Homebrew discord server here: https://discord.gg/bePrj9W

* That unfortunately means 3AM here in Japan but oh well, I’ll catch up on Youtube I guess ;). Also note that a bunch of countries are right in the middle of Daylight Saving changes!

The post Save the date! The PSP Homebrew Dev Conference 2024 is this Saturday, April 6 appeared first on Wololo.net.

I’m a huge fan of old Point and click adventure games, and ScummVM is typically one of the first things I install on a hacked console (that, and Doom, of course). Available for your favorite platforms (Nintendo Switch, PS Vita, PS3, PSP, Windows, and much, much more), ScummVM 2.8.1 has just been released. This is mostly a maintenance release, but I realize I haven’t talked about scummVM in a while!

What is ScummVM

Those of us who grew up in the nineties will probably fondly remember some of the old LucasArts and other point and click adventure games. Others… might still want to check the oddly dated but cute graphics of some of these games!

From the official ScummVM page:

ScummVM is a program which allows you to run certain classic graphical point-and-click adventure games, provided you already have their data files. The clever part about this: ScummVM just replaces the executables shipped with the games, allowing you to play them on systems for which they were never designed!

ScummVM supports many adventure games, including LucasArts SCUMM games (such as Monkey Island 1-3, Day of the Tentacle, Sam & Max, …), many of Sierra’s AGI and SCI games (such as King’s Quest 1-7, Space Quest 1-6, …), Discworld 1 and 2, Simon the Sorcerer 1 and 2, Beneath A Steel Sky, Lure of the Temptress, Broken Sword 1 and 2, Flight of the Amazon Queen, Gobliiins 1-3, The Legend of Kyrandia 1-3, many of Humongous Entertainment’s children’s SCUMM games (including Freddi Fish and Putt Putt games) and many more.

ScummVM 2.8.1. – What’s new

ScummVM 2.8.1 is mostly a maintenance release

This update includes upgrades for the following engines: AGI, AGS, GRIM, SWORD2, MM (which is now enabled — it was skipped 2.8.0 by accident), mTropolis, NANCY, SCUMM, TWINE, Ultima, and V-Cruise.

The Android, Atari and macOS ports received multiple bug fixes, mostly for improving overall stability and preventing some crashes that have been seen under certain circumstances.

See more details on the release notes.

Version 2.8.0, which was released late last year, added support for some new games:

• Added support for macOS versions of Syberia and Syberia II.
• Added support for The Vampire Diaries, Nancy Drew: Secrets Can Kill, Nancy Drew: Stay Tuned for Danger, Nancy Drew: Message in a Haunted Mansion, Nancy Drew: Treasure in the Royal Tower and Nancy Drew: The Final Scene.
• Added support for Reah: Face the Unknown and Schizm: Mysterious Journey.
• Added support for Might and Magic Book One.
• Added support for Muppet Treasure Island.
• Added support for Primordia, Shardlight and Technobabylon.
• Added support for The Excavation of Hob’s Barrow, Strangeland and Whispers of a Machine.
• Added support for Stranga and Cloak and Dagger’s AGS games.
• Added support for Adibou 1.
• Added support for Dark Side.
• Added support for Kingdom: The Far Reaches.
• Added support for Escape From heck.
• Added support for Wrath of the Gods, Gadget: Invention, Travel and Adventure, The Dark Eye, and 4 other Director titles.

New platforms:

• Added libretro new shiny port.
• Added Atari port.

Download ScummVM

You can download ScummVM for the platform of your choice from the official download page here. Tu run the game on PS Vita or Switch, you’ll need a hacked PS Vita or Hacked Nintendo Switch respectively.

The post Emulation: ScummVM 2.8.1 Released appeared first on Wololo.net.

PSP hacking scene veteran and developer Davee has finally released Aiseirigh, a universal PSP unbricker that supports every PSP model! If used alongside a BaryonSweeper, Aiseirigh can unbrick any PSP and fully restore it to system software 6.61.

Aiseirigh (pronounced: ash-er-eye) is a word from the Scots Gaelic language and means resurrection, so it fits right in with older pandora and unbrick tools such as Despertar del Cementerio.
If etymology is not your cup of tea and instead you are more interested in the technical aspects of Aiseirigh, be sure to head over to Davee’s Github, where you can explore the in-depth details of Aiseirigh’s source code!

Requirements for using Aiseirigh:

To use Aiseirigh you will need to own or download the following things (available here):

– a memory stick for your PSP (Memory Stick Micro for PSPgo, Memory Stick ProDuo for the other models)
– the Aiseirigh IPL file
– The 6.61 firmware file for regular PSPs (661.PBP) or the firmware file for the PSPgo (661GO.PBP)
– a way of entering service mode on the PSP (a physical BaryonSweeper)

The Aiseirigh IPL can be injected via certain PC programs, such as RainsIPL tool (Windows), or by running the PSP Tool homebrew on your PSP and utilising its various memory stick options.

The official documentation included with Aiseirigh should be able to guide you through the installation and usage process.

Additionally, as you need a way of entering the PSP’s service mode, you will most likely need a physical BaryonSweeper and the pysweeper software, as those are mandatory if you’re using a PSP 3000, PSPgo or PSP E1000 (the old PSP 1000 and all PSP 2000s may use an old-school Pandora Battery instead).

Pysweeper software and BaryonSweepers for PSPgo, E1000 and 1k, 2k, 3k (click to expand)

Keep in mind that there are currently 3 separate types of BaryonSweepers, one for each of the different methods of entering a PSP’s service mode, so be sure to get the correct one for your model:

– Battery: PSP 1000/2000/3000
– Mini-USB: PSP E1000
– Go connector: PSPgo

As we mentioned in the last blog post, the BaryonSweepers can be either purchased from dedicated private sellers (such as Peter Lustig on Twitter) or you can simply craft them yourself, following the instructions available on the PSPDev Wiki.

Some Final Words:

Thanks to Davee’s Aiseirigh Unbricker one of the last few frontiers of PSP hacking has finally been conquered!
Gone are the days of accidentally turning your PSP into a permanent paperweight and alongside Infinity 2, Davee’s previous release, you can also enjoy custom firmwares without the hassle of having to manually boot into them.

Even though the PSP has not really been relevant in the last decade, being overshadowed by its big sister the PS Vita and other portable devices, it still fills me with joy when I see that there is some new development for this trusty old handheld.
Other than bringing full custom IPL support to the 04g+ devices, what else is there to conquer about the PSP?!

The post Release: Aiseirigh – A universal Unbricker for every PSP! appeared first on Wololo.net.

After Davee’s Aiseirigh release a few days ago, we’re proud to announce that new CIPL (custom IPL) and Despertar del Cementerio (DC) v10 are now available for every single one of the 8 different PSP models.

Thanks to Davee’s vastly improved and updated IPLSDK, and also balika‘s previous CIPL & DCv9 code for 03g devices, it was possible to bring these old PSP scene staples to the newer devices.

Quickly summarised: Despertar del Cementerio allows you to unbrick any PSP, while the ARK CFW with CIPL allows you to use a fully and truly permanent custom firmware on any PSP (yes, it is better than Infinity).

Acid_Snake, zecoxao, krazynez and their various testers have spent the last few months working on updating DC for firmware 6.61 and also utilised Davee’s IPLSDK, alongside balika’s CIPL code, to allow CIPL support for the formerly so called ‘unhackable’ PSP models (PSP 2000 TA-088v3, all four different PSP 3000s, PSPgo and PSP E1000).

This means that DCv10 now supports flashing a truly permanent and full variant of the 6.61 ARK4 CFW, which is currently the most advanced and versatile custom firmware for any Playstation Portable.

The ARK CFW has matured over the last years and outshines the other popular PSP CFWs, the ME/LME CFW and PRO CFW, by providing more features, a brilliant in-XMB method of configuring its CFW settings and plugins, better and faster iso loader drivers, support for more optimised and also niche iso formats (such as ZSO, JSO, DAX and a newer v2 variant of CSO), more robust safety measurements, and it also offers the most variations of usage (temporary, launchable via an XMB icon, perma patched, new CIPL, entirely off of the memory stick, etc). It even supports the PS Vita’s PSPemulator and Adrenaline!

DC-ARK is the true 10th version of Despertar del Cementerio, as it comes with all features (but based on firmware 6.61) that the traditional DCv8 (5.00 M33) offered.

The new CIPL Installer, the DCv10 tools and the ARK4 CFW are all available via the official ARK repo.

IMPORTANT: Uninstall Infinity (via ChronoSwitch Downgrader) before using the CIPL Installer, as they are not compatible with another and will conflict with each other!

But what actually is Despertar del Cementerio and what advantages does the new CIPL have when compared to a perma patch such as Infinity 2?

Despertar del Cementerio – A legendary unbricking tool:

Despertar del Cementerio running on a PSP 3000 03g

Despertar del Cementerio (up to v8) used to be the staple tool veterans of the PSP hacking scene used on their old PSP 1000 and 2000s to flash a custom firmware, simply unbrick their PSPs or various other things that DC offers.

Despertar del Cementerio is a tool that usually needs to be booted via service mode, which means it either traditionally requires a Pandora Battery and Magic Memory Stick (for the PSP 1000 and PSP 2000), or nowadays a physical BaryonSweeper alongside the pySweeper software and a Magic Memory Stick (this is mandatory for PSP 3000s, PSPgo and PSP E1000, but optionally also works on PSP 1000 and 2000).

The most used features of DC were its capability to unbrick a PSP, flash a custom firmware or simply let you downgrade a PSP’s firmware, back when that mattered. That aside, DC can do much more!

Another neat feature of DC is that it allows you to boot a custom firmware entirely off of the memory stick, which effectively allows you to hotswap between custom firmwares on the fly, simply by booting them from the memory stick, regardless of what firmware is currently installed in the flashes of your PSP.

That aside, DC can also display hardware information about your PSP, re-format and re-partition the PSP’s flashes (which fully wipes the firmware!) and of course shutdown or reboot your PSP.

Additionally, DC also allows you to create and restore a nand dump of your PSP’s flashes, which means you can easily restore its entire firmware to a previous state, if you happen to mess up.

Keep in mind though that nand dumps can be dangerous, as they are entirely unique per PSP and MUST NOT be shared between two different PSPs, not even between two identical models (e.g. two PSP 2000s), otherwise you risk damaging your PSP’s IDStorage, which can lead to severe consequences, such as the inability to play UMDs, broken wireless capabilities, the inability to launch any game or homebrew on your PSP and even flat out full bricks that aren’t even fixable by reflashing the firmware! You have been warned!

The last remaining feature of DC is its ability to regenerate and restore these broken IDStorages, but that feature is still only available to the PSP 1000 and 2000, and remains one of the very last few things that have not been ported to the newer devices yet.

But enough about Despertar del Cementerio, what about the new CIPL support?

CIPL: Custom Initial Program Loader:

The main difference between the old ‘hackable’ PSPs (PSP 1000 and most PSP 2000s) and the new ‘unhackable’ PSPs (2000v3, 3000, PSPgo, E1000) was that the former supported CIPL, while the latter did not.

While I am not going into details about the PSP’s IPL itself, head over to the wiki if you’re interested in it, I will talk about the advantages that a CIPL offers when compared to other permanent methods of installing a CFW.

Other permanent methods of installing a custom firmware, such as the old 6.20 perma patch or even Infinity v2, are technically inferior to CIPL, as these perma patches are effectively just auto-launching the temporary variants of LCFWs (such as LME, ARK or PRO), and makes them appear permanent. This means if you happen to mess around with the PSP’s flash0 and end up corrupting important firmware files, you most likely cannot recover from this issue and end up with a bricked PSP.

CIPL itself is much more powerful, as it replaces the original IPL of the PSP’s firmware and allows you to have lower level access during its boot chain. This allows you to utilise various additional safety measurements, which in turn allow you to recovery from a brick in most cases, without requring a Pandora or BaryonSweeper kit.
Additionally, it also allows you to install plugins and themes directly into the flash0, something that traditionally had only been possible on PSPs (1000/2000) running old CIPL CFWs, as messing with flash0 prx files and some RCO files was nearly always a certain brick, if done on the newer (non-CIPL) PSPs.

The new CIPL has the same features that the old CIPL had, but now also works on all PSP models, old ones and new ones alike!
Additionally, the new CIPL for the ARK CFW has even better safety measurements installed than the old CIPL, as it now allows you to directly unbrick your PSP in most cases, even if the entire firmware itself is corrupted, as long as the already installed new CIPL is still intact.

The ARK CFW with new CIPL allows you to easily boot DC-ARK off of your memory stick, if you keep holding the L trigger while turning on the PSP, without requiring a Pandora or BaryonSweeper kit!
This means even if you currently do not have a Pandora or BaryonSweeper kit, you can take a look at and test DC-ARK yourself, if you install the ARK CFW and its new CIPL onto your PSP.

But if your PSP is already bricked, and you have no means of installing ARK CFW and new CIPL, then you will of course still require a Pandora or BaryonSweeper kit, depending on your model.

Requirements, Installation and Usage:

The installation and usage of the CIPL is quite straightforward, while DC-ARK has multiple ways of installing it.
Let’s start with CIPL:

– The PSP should be running the newest version of the ARK4 CFW
– The PSP must not be running Infinity (if it does, please uninstall it using e.g. the ChronoSwitch Downgrader)
– Optionally you can additionally use the Full Installer for ARK to install the entire CFW to the PSP’s flash0
– Connect your PSP’s memory stick to a computer
– Copy the “ARK_cIPL” folder from the ZIP archive into the /PSP/GAME/ directory of your memory stick
– Boot the ARK CFW on your PSP
– Run the ARK cIPL Flasher homebrew on your PSP and press X

That’s it. Your PSP should now be running the new CIPL alongside the ARK CFW.
Why don’t you turn it off and on again, to see if it worked?

DC-ARK has a few ways of installing it, either directly from your PSP or using a PC tool (requires Python), and its usage has mostly the same requirements that Aiseirigh did (BaryonSweeper, pySweeper, etc). Let’s cover the PSP method first:

– The PSP must be running a custom firmware
– Connect your PSP’s memory stick to a computer
– Copy the 6.61 firmware updater as “661.PBP” to the root of your PSP’s memory stick (for PSP 1000, 2000, 3000, E1000)
– If you are using a PSPgo, you will need to download and copy the 6.61 Go firmware updater as “661GO.PBP” instead
– Copy the ARK_DC folder from the ZIP archive to /PSP/GAME/
– Run the DC-ARK homebrew on your PSP and follow its on-screen instructions

If everything went fine, then your memory stick should be properly prepared to boot DC-ARK via service mode (via Pandora or BaryonSweeper kit), in case your PSP ever happens to get bricked.

The PC method should be quite straightforward to use as well, assuming you have taken care of its requirements (needs Python and also check its requirements.txt file):

– Connect your PSP’s memory stick to your computer
– Execute the main.py directly or run it via the bat file as admin/root
– Select the correct drive for your PSP’s memory stick (make sure to NOT select a wrong one!)
– Optionally tick either of the checkboxes, depending on your PSP’s model
– Press the Run button

The tool should now be preparing your Magic Memory Stick. It automatically downloads the correct firmware file from Sony’s server, extracts the required firmware files, copies all the necessary files over to your memory stick and injects the IPL into it as well, assuming your memory stick has sufficient boot sector space.

If your memory stick does not have sufficient boot sector space, you can use e.g. PSPTool to re-format your memory stick for it to have more boot sector space.

Now that your DC-ARK Magic Memory Stick is properly set up, you can now proceed to actually booting into service mode, by utilising your physical BaryonSweeper and pySweeper software. Please refer to Section Three of the Aiseirigh documentation over here, it will guide you through it, as it can also be used for booting up DC-ARK.

UPDATE: If you happen to be using a PSPgo and end up in a weird “boot loop” (memory stick LED continuously flickers, but DC-ARK doesn’t boot) while attempting to load DC-ARK via BaryonSweeper, you can easily fix this issue by pulling out the BaryonSweeper as soon as the PSPgo’s LEDs turn on. It seems that keeping the BaryonSweeper connected, while the PSPgo tries to boot into DC-ARK, is causing this weird issue.

The PlayStation Portable’s 20th Anniversary:

Initially we considered releasing Despertar del Cementerio v10 (DC-ARK) and the new CIPL support for all PSP models on the day of the PSP’s 20th Anniversary, which would have been the 12th December 2024, exactly 20 years after the PlayStation Portable’s initial release in Japan, but since we have already finished the work on these projects, and finished it a lot faster than we initially anticipated, we decided to release it a bit earlier, today, on the 20th April, or “4/20” if that is more to your liking.

While the last decade did not see as many releases for the PSP hacking scene as it did during its first decade, there have certainly been multiple great breakthroughs in the last few months and years, as we were finally able to bring back some of the glory of the old PSP hacking scene to the new PSP models, well if you want to call any of the 15 to 20 year old PSP models “new”, that is.

I’ve been accompanying some of you guys for the last 10 to 15 years on this blog, even if I took off some of those years, and we have experienced some great things together.

After the supposed standstill of the (very) old PSP hacking scene when Dark~AleX left and 5.00 M33 and 5.50 GEN were the only CFWs for quite a while, we got to experience the revitalisation of the PSP hacking scene, when Total_Noob, the PRO team and Neur0n blessed us with 6.20 TN HEN, the 6.xx PRO CFWs and the 6.xx ME/LME CFWs.
Then there was the entire PS Vita chapter from PSPemulator hacks to actual native PS Vita hacks, and in the recent years yet another minor revitalisation of the PSP hacking scene thanks to Davee’s Infinity patch, everyone involved in the BaryonSweeper project and of course everyone from the ARK team, who are still providing us with updates for the PSP and its most feature-rich custom firmware ever created!

I would like to thank everyone involved in the PSP hacking scene, old and new alike, for letting us experience this great time! I’ve certainly enjoyed my time here and in the scene, how about you guys?!

Now that full parity has been achieved between the old PSPs and the new PSPs, what else can be done for this old and trusty handheld console?

The post Release: New CIPL and Despertar del Cementerio v10 for every PSP! appeared first on Wololo.net.

Screenshot source: Zekiu_ on youtube

Acid_Snake and the ARK Development team have released a significant update to the ARK custom Firmware for the Sony PSP. Custom Firmware now allows the Playstation Portable to connect to WPA2 encrypted Wifi networks. This is thanks to the recently released wpa2psp plugin, created by developer Moment and published on the PSP Homebrew discord.

Playstation Portable gets WPA2 Wifi access

The PSP has been out of official support from Sony for years, but lots of enthusiasts keep maintaining this great handheld through homebrew and custom Firmware updates. As technology evolves around us, older devices such as the PlayStation Portable can lose some of their features.

For example, as WPA2 has become the defacto encryption standard for home wifi networks (WPA3’s adoption rate remains low), older devices such as the PSP, that do not support these new* encryption standards become technically unable to access the internet.

Wifi access was a very strong feature of the PSP when it was released, and, although it’s probably less important nowadays, losing that feature because newer networks aren’t compatible is a bummer.

WPA2 support has been a request by many enthusiasts for years on PSP discussion channels, and it seems that the wpa2psp plugin by developer Moment now brings this to life. According to Acid_Snake, the developer was kind enough to provide the source code of the plugin, which allowed the ARK team to embed it into the ARK Custom Firmware for PSP.

History was made

WPA2PSP  limitations

This reddit thread by Nebula_NL covers a lot of details on how to install and use the plugin. But the bottom line is: install the latest release of the ARK CFW on your PSP, and take it from there. (Note that you can also manually install the plugin if you’re using another CFW than ARK)

This is of course the first iteration of this plugin, and it comes with limitations, specifically:

• 2.4 GHz Only
  • WPA2 support works with 2.4 GHz WiFi.
  • If your router uses a single SSID for both 2.4 GHz and 5 GHz, you may need to separate them and connect your PSP to the 2.4 GHz network.
• WPA2 AES Only
  • Requires WPA2 with AES (AES-CCMP) encryption.
  • TKIP is not supported and will not work.
• WEP/WPA Compatibility
  • While WPA2 is active, WEP and WPA encryption will not work.
  • To use WEP or WPA again, disable WPA2, and they will function normally.
• WPA2/WPA3 Mixed Mode
  • If your router is set to WPA2/WPA3 mixed mode, your PSP may struggle to obtain an IP address.
  • Try manually setting the IP address instead of using DHCP in [AUTO] mode.

Download and install ARK-4 + enable WPA2 Support for the PSP

1. Download the latest release from the ARK4 Github releases page. (alternatively, this specific release introduced the wpa2psp plugin)
2. Copy the UPDATE folder from the ARK4 archive to /PSP/GAME/.
3. Run ARK4 Updater on your PSP from the GAME menu.
4. Go to Extras > Custom Firmware Settings and enable WPA2.
5. Reboot VSH/PSP and connect to your WPA2 Wifi network.
6. Done!

* WPA2 was certified in 2004… It’s “new” from the PSP’s perspective which launched the same year and didn’t “need” to support it at the time. WPA3 launched in 2018 but its adoption is taking time

The post The 20 year old PSP can now connect to WPA2 Wifi Networks appeared first on Wololo.net.