Tweet
I've been messing with this technique for a while, and finally got it to some what working... I find it seems to only work during a cut scene of some sort, but never during game play (well GTA3 will work in game play but freezes). I don't have much to choose from when it comes to testing, so it might help if someone else tried a few games. It uses the same joker scanner from LDv3, and uses the same activation joker (R3 + L3).
How it works:
- Main ELF installs the engine (written in CodeDesigner v2) to memory address 0x00080000
- Main ELF installs packed dumper ELF to kernel memory address 0x80030000
- Main ELF loads the game disc ELF manually, then executes the engine
- Engine installs Syscall filter, and performs ExecPS2 to launch game ELF with arguments provided by the main ELF
- Syscall filter modifies the EPC used to return to game after syscall execution completes with MIPS ASM command eret
- In game engine is executed by the ASM command eret, and takes the original EPC and jumps to it after it is done processing
- Joker scanner is called by the in game engine to locate the controller input for the game
- In game engine activates with R3 + L3, and will extract a packed ELF to memory and perform ExecPS2() on it with argument "gt.elf"
- Dumper ELF will reboot the IOP, and load all it's modules it needs (USB, pad, etc.)
- Dumper ELF will dump memory 0x00082000 - 0x02000000 to usb drive when Cross button pressed
For me, I find it only seems to work properly during a cut scene (or fmv sequence whatever you like to call the movie portions). However when it does work properly it dumps RAM directly to the USB drive.
Before anyone mentions it, not this is not a rebuild of jimmy's IGMassDumper application. The USB driver might be the same (I forget where I got the USBD / USBHDFSD IRX modules from). I didn't make the IRX modules used, only the application itself.
The main ELF boot has no GUI, however does take controller inputs:
CROSS - Stop the disc so you can swap and load a backup
START - Launch the game
Remember, there is NO GUI for it (not even a scr_printf() shell), so if you have a total blank screen don't assume it didn't load!
Download is in attachment, I don't expect any good results as the technique isn't very reliable (obviously).
I called this Memory Dropper because it drops off when you enter the memory dump menu. You can't return to game, and if it's pre-load is a success you can press Start button to reboot the PS2 after dumping. I noticed that with the game GUN it dumps perfectly during a cut scene but when you enter during game play it fails to read/write the USB drive every time you hit Cross button... Oh well worth playin' with
How it works:
- Main ELF installs the engine (written in CodeDesigner v2) to memory address 0x00080000
- Main ELF installs packed dumper ELF to kernel memory address 0x80030000
- Main ELF loads the game disc ELF manually, then executes the engine
- Engine installs Syscall filter, and performs ExecPS2 to launch game ELF with arguments provided by the main ELF
- Syscall filter modifies the EPC used to return to game after syscall execution completes with MIPS ASM command eret
- In game engine is executed by the ASM command eret, and takes the original EPC and jumps to it after it is done processing
- Joker scanner is called by the in game engine to locate the controller input for the game
- In game engine activates with R3 + L3, and will extract a packed ELF to memory and perform ExecPS2() on it with argument "gt.elf"
- Dumper ELF will reboot the IOP, and load all it's modules it needs (USB, pad, etc.)
- Dumper ELF will dump memory 0x00082000 - 0x02000000 to usb drive when Cross button pressed
For me, I find it only seems to work properly during a cut scene (or fmv sequence whatever you like to call the movie portions). However when it does work properly it dumps RAM directly to the USB drive.
Before anyone mentions it, not this is not a rebuild of jimmy's IGMassDumper application. The USB driver might be the same (I forget where I got the USBD / USBHDFSD IRX modules from). I didn't make the IRX modules used, only the application itself.
The main ELF boot has no GUI, however does take controller inputs:
CROSS - Stop the disc so you can swap and load a backup
START - Launch the game
Remember, there is NO GUI for it (not even a scr_printf() shell), so if you have a total blank screen don't assume it didn't load!
Download is in attachment, I don't expect any good results as the technique isn't very reliable (obviously).
I called this Memory Dropper because it drops off when you enter the memory dump menu. You can't return to game, and if it's pre-load is a success you can press Start button to reboot the PS2 after dumping. I noticed that with the game GUN it dumps perfectly during a cut scene but when you enter during game play it fails to read/write the USB drive every time you hit Cross button... Oh well worth playin' with
Comment