Archive through May 14, 2004
|
tdemo Unregistered guest | Wondering if anyone can tell me what i need for the dish hack and the programs as well. Knew direct well enough but was told this is a totally different beast | |
|
ao700 Unregistered guest | calli777 sorry i didnt get back to earlier but we been busy.......tring to go futher with what we have ..thx for the help ....i will be in contact with you today.......wish you had nexgen or any other irc mirc script i could meet you and juss send you all we have, if you do ...tell me ..but anyway i will get incontact with you today. | |
|
SOLRAC Unregistered guest | I am from Mexico, here we get all sorts of pirate cards and systems for very cheap prices, I have a question : Do you think that when the P4 cards get hacked we are going to be able to watch PPV channels for free too? Thanks |
|
|
cali777 Unregistered guest | ao700 sorry i don't have any type of mirc script on this pc,i just got this pc a week or so ago (my other crashed) haven't had the time even to set up mirc on it yet..i will set up mirc tomorrow sometime..is nexgen good software never tried it? let me know threw e-mail | |
|
SOLRAC Unregistered guest | With Nexgen you could do pretty amazing stuff, but i still find has something missing is not like | |
|
SOLRAC Unregistered guest | I GOT THIS FROM OTHER FORUM, MAYBE COULD BE HELP FULL: I have a the entire GX28 package.. The scripts and the AMTEL flash for GX28. It's my understanding that the p4 and gx28 skycard for DTV Latin.. are simular. And that the flash file is in fact compatible for p4 uses too.. Well for all of you that was saying that the P4 is not glichable.. I just proved them wrong. This by no way means that I was able to succesfully program the card.. but I got to do 2 things... for those who know more than me and want to play with this package.. let me know.. I will make it available here to whoever for free. 1. Actual gliched into a p4 card and got ATR from it... yes I gliched and ATR from the card! 2. Actual unmarried the IRD# from the card. Yep. I have dones this! I dont get the INVALID ACCESS CARD Error anymore. I get previews and call 711 Just tell me where to upload the file and how..... , and it is better if you know some spanish too.. I think we can fix this script to get into PPV and unmarry the P4 with more accuracy and success on current Loaders and loopers. Let do this GUYS!!! COMMON! I just uploaded the file GX28.zip. In the public file section. Its not posted yet but it has been done. You will find all you need within. GOOD LUCK! |
|
|
Misty Unregistered guest | Cali How will those of us who are newbies know where to look for help to program our cards when a program becomes available . Are there some reliable sites I can keep track of? |
|
|
SOLRAC Unregistered guest | Actually, I was thinking more along the lines of using the P3 card, which we can totally reprogram if we want, to build the P4 seed information (just before Ins54/ASIC processing) then use our own command (like the Cmd7F) to byte-adjust this seed to get the correct VA keys on return from the Ins54. It would be like reversing the P4 using the P3... Here's the other thread with the basics of the idea: Reprogramming the HU is not the problem - what to load it with is. The information that would be needed is locked up inside the P4 and getting to it is not so simple. With both cards inserted into a bootstrap that has been modified to switch cards at the appropriate time we could use the P4 to decrypt the video keys for the ZKT algorithm and return to the HU card for tier, PPV, etc info. This would allow us to use Dave's own encrypted technology against himself. Why re-invent the wheel when it has been already done? If this could be accomplished it would be extremely difficult for Dave to detect errors in his own technology thus designing an ECM to kill it would be next to impossible. Lets use what we know about the HU card and add what we don't know about the P4 card only when we need it. Possible? |
|
|
New member Username: MosqitoPost Number: 1 Registered: May-04 | solrac, Can you post the link for the file or send it to me? Thanks, mosqito_moe@hotmail.com |
|
|
Unregistered guest | well crazy - took the lid off the hu loader and don't have #85l5 that you spoke of, unfortunately 23l3 - - oh well - waiting for the hack and to see what to get before I buy anything - are you saying if you get one with 85l5 that it will work with the P4 card - thanks for the information | |
|
Anonymous | hey guys i'm new at this ,word is out that you can watch dtv with p4's but you can only get $25 per month but you need to give your card and receiver number think this is wise. | |
|
Anonymous | sound like someone is gonna activate it for u . u need to know that person and be able to count on them | |
|
caveman Unregistered guest | I hear you brothers--- I just sent GX Tech $200 and now they won't answer my emails. Seems I'm having trouble unlocking the Quantum software. I've been waiting a week now. Hmmmm---- I guess it was just too good to be true. | |
|
Ray Lee Unregistered guest | Solrac, I hate to burst your bubble but you are talking about two totally differant cards. You can not even think about using ANY part of an HU card to program a P4 or P5. The prosser on the P4 and P5 are more like an old H card than anything anyone has ever seen. Sorry | |
|
New member Username: ScrachlineSmithers, Wv Usa Post Number: 1 Registered: May-04 | hey people listen up im only gonna say this once the hu card is dead u can use it for an ice scraper the current loader u have is no good trust me on that its a long drawn out explanation there is currently no known hack for the p4 card it may be coming but save all your money all those claims you are reading on those sites saying buy this buy that is a scam if you wanna spend your money send it to me i will buy something worthwhile like beer or alcohol and laff while i am having a good time so please save your money go to any of the dss sites and register and read the forums you will find out there is i repeat no hack for the p4 card as of yet good luck oh you may wanna try dish network for a few months until they send out there new card that is also gonna be a tuff one to hack have fun buy yourself a cheap dtv or dish or cable s ubscription and enjoy until something worthwhile happens cya |
|
|
cali777 Unregistered guest | SOLRAC---yea i seen that post at mili's place, gx28 script is for DTV latin american cards NOT HU/P4/D1...also whoever it was that posted that has something wrong with the statement the P4 has a PLL (Phase Lock Loop). This is what causes the P4/D1 to not be affected in any way by glitching. it is not possible to glitch into the card, however you can get an atr from it with a simple reset.. Because if a slight difference in clock timing is detected, or a slight variation in voltage... the card will enter into a 'lock loop'. This renders the current loaders that are used on the HU card USELESS. I can guarantee you, it will take alot more than an atmel flash to be able to hack the P4. Actually, a total new technology will have to be used as glitching has no affect on the P4/D1 card due to the PLL. so i guess what i'm saying is that i don't see this card getting hacked right at the moment, but i would luv for someone to prove me wrong!! |
|
|
crazy 4dss Unregistered guest | I just bought an RCA system with a HU card. should i buy the new P4 card and wait for the hack or buy after the hack comes out. | |
|
Anonymous | well if i was u i wouldn't buy any hu cards at all p4 cards only i would buy they still work in ur RCA | |
|
HH Unregistered guest | If P4s are unhackable, why are they sooooo expensive ?? | |
|
Anonymous | I see so many repeat questions. People dont like to start at the beginning. Dont buy a loader, do not buy an iso (at this time) There is no knowledge that either work at this point. No one knows of locks on the p4 card. Everything is speculation. NO known hacks or scripts. Sit back and read on the boards. Get a p4 card since its cheap at ebay and wait. Or simply subscribe to DTV until something comes out. Dont expect any freeware to be out anytime in the near future (once there is a hack) Any leaks will certainly get scooped up by Message boards and removed from their sites almost immediately and sold to their members. No matter what, there is no free tv. You are going to pay someone else instead of directv. And right now, with all the scams you will be paying alot and receiving nothing. Be patient or test charlie or Bev. Totally different puppy but before getting into that do your research and see if its something you can handle. Daves Hu card was too easy to load and test and too many people did it and also profited from it. | |
|
Senorshady Unregistered guest | man i can't wait till somebody figures this out.. | |
|
Unregistered guest | how about cable boxes..? | |
|
New member Username: MarkskipPost Number: 1 Registered: May-04 | This article was sent to me today from a friend of mine and I thought > >that I would pass it on to everyone so that they may get some sort of a > >idea what is going on with regards to the p4-p5 cards. Keep in mind this > >is only one person's view and this stuff changes all the time, sometime > >overnight. Enjoy your reading and hopefully we will be able to get it > >up and going very soon..Take Care Dave T > > > > > > > >THE INFORMATION BELOW IS UNCONFIRMED AND WAS FOUND ON VARIOUS SITES, IT > >IS HERE FOR YOU TO READ AND LEARN MORE ABOUT THE P4 CARD > >------------------------------------------------------------------------ > >--------------------------------- > > > >Enough with the speculation, here is what you need to know. All of the > >following are true based on my own testing, however I use we because > >there is a group of testers working diligently to hack this sucker. > > > >1. We can read certain parts of a p4 card much in the same way as > >we read the HE by using the printed CamID on the back of the card to xor > >a key. On major exception, the 2A command will loop a card. > > > >2. We have not completly dumped the p4 cards rom and therefor do not > >completly understand the inner workings of the card. > > > >3. We can activate a p4 card and set the ppv spending limit hower once > >the card is exposed to the stream the keys are changed and we cannot get > >back in. Furthermore you can do the exact same thing by performing a > >card swap. > > > >4. These cards are VERY easy to loop. You can sneeze near it and it will > >loop (jk), I have a pile of 18 p4's that will not Answer to Reset, just > >from trying to get a read. > > > >5. On the same note as 4, some of the cards were purchased looped. Make > >sure if you are buying one from an individual, that it is a vrgn card. > > > >6. These cards have a glitch detection circuit tat Infineon refers to as > >a "Card Trash Feature" If glitcing is detected the entire card is > >erased. Do not put it in your hu loader. > > > >7. You cannot put the 32k rom image of a p4 card on an 8k hu card. It's > >just not possible so don't fall for that crap. > > > >8. The 03 packet which authorizes video for the HU card is being removed > >from the stream as I type. That means that this card cannot in any way > >shape or form decode video for those channels that are are now black. > >There is no magic fix, there never will be. Its just not possible. > > > >9. The reason nothing has been publically released is that almost > >everything right now will either loop your card or make you an easy > >target for a permanent ECM like Black Sunday. One we can unloop the > >cards the hack will be released. > > > >------------------------------------------------------------------------ > >--------------------------------- > >The P4/D1 Hack (Past, Present and Future) > >I'm writing this document in order to clarify a few things that I keep > >seeing posted on the message boards regarding the P4/D1 card hack. > >OK, Lets look at why we even need to use the DTV issued card in the > >first place? Why can't we just hack the receiver to always give us the > >video signal? It's because of the ASIC that's on every one of DTV's > >access cards. An ASIC is an (A)pplication (S)pecific (I)ntegrated > >(C)ircuit. It does just what it's name implies: it's dedicated circuitry > >(supplemental to the main processor chip) that is designed to do one > >thing, and one thing only. In our case it's set up to generate the key > >values that are used by the receiver to decrypt the satellite signal. > >Without going into great boring detail, the satellite signal is > >extremely secure (using public key encryption) and is actually decrypted > >inside the receiver, not inside the access card. The access card only > >starts the decryption process by using certain specific, but sometimes > >randomly chosen, EEPROM values found on all valid subscriber cards to > >create a "seed" value to send to the card's ASIC. The ASIC > >mathematically crunches this seed value into another value, the key, > >which is transmitted back to the receiver and then sent to its decrypt > >circuitry, which obviously decodes the satellite signal for clear video. > >This happens roughly every 8 seconds while the satellite signal is > >encrypted using a different value for each 8-second period. Without > >going into any more detail, the ASIC is designed in such a way that it > >is EXTREMELY hard to duplicate and that is why it is not possible to do > >away with the access card. By the way, the ASIC is the reason why people > >running emulation must use a card to decrypt the signal when using a > >computer. The card is "auxed" which means it's EEPROM is loaded up to > >run code which simply acts as communication middleware that only sends > >the proper seed value to the ASIC from the computer, then retrieves the > >generated key value and transfers it back to the computer for further > >processing. The computer can only be set up to emulate the EEPROM code > >that handles the stream packets, tier wipes, cmd 82's and other basic > >card functions, but never the ASIC functions. The card is needed for > >it's ASIC circuitry. > > > >Now that we understand why the card is required, let's go over a brief > >explanation of the HU card "hack." First, the HU (or P3, Period Three, > >football) card was NEVER hacked in the strictest sense of the term. The > >"glitching" process by which you are all now so familiar merely BYPASSES > >the security code that was placed on the card to keep intruders out and > >the secrets it contains, safe. This bypassing is done by *glitching* > >either the voltage or the clock signal going to the card when it's > >placed into one of the available loaders flashed with the proper atmel > >code. Without getting into great detail, these glitches drop the voltage > >to some unusually low level momentarily (1/2 a clock cycle) or send > >multiple clock cycles (up to 4X) during the time that ONE should have > >been sent. These glitches must be done at *exactly* the right time > >during the card boot process in order to create malfunctions in the > >security code execution. These "malfunctions" cause very specific > >errors, which alter the original program flow in a desirable way and > >eventually enable the atmel flash code to jam in some code that YOU want > >the card to execute. This code is called the "bootloader." At this > >point, the bootloader has hijacked the card and you can now do > >essentially anything that you want through the bootloader code that is > >executing on the card (read or write to the EEPROM addresses). > > > >A smartcard is designed such that once it is reset, powered up and is > >getting a good clock signal, it begins executing code at a specific, > >hard coded, EEPROM memory address. This is very similar to the way your > >personal computer boots up: once the BIOS tests are complete, your > >computer is instructed by the motherboard BIOS ROM code to go to a > >specific permanent location and begin executing whatever it finds there > >(track 0, sector 0 of your hard drive). In most cases this would be > >initialization code belonging to Windows, Linux or whatever OS, and is > >responsible for getting the rest of the operating system up and running. > >However, it could also be nothing (new hard drive) or maybe even a boot > >sector virus. Anyway, on the HU card, the code located at the startup > >address is mostly security code designed to keep you out. So, by > >resetting the card and then counting how many clock signals have been > >sent to it after the reset (the HU uses an external clock), it is > >possible to determine exactly which instruction the card is performing > >and then send it a clock or voltage glitch at the perfect moment to > >alter the flow of the original code in a way that allows you to load > >your own code (bootloader from the atmel flash). A very important point > >to note is the fact that you *must* know EXACTLY what the card is doing > >BEFORE it's possible to glitch into it. It requires studying an EEPROM > >dump beforehand. THAT is the catch! > > > >It's actually a little more complicated than that, but that's enough > >information for us to continue. Basically, glitching is only possible > >because of oversights that were made during the development of the HU > >card. Also, the HU card does not have provisions to monitor what you are > >doing to it from the outside. It can't detect your attempts at voltage > >or clock glitching. The new P4 card (period 4) can, however. I might > >also mention at this point that the P4 and D1 cards are essentially the > >same card. They both definitely use the same data packet format and > >while there are rumors that the D1 is a version of the P4 that has some > >"security holes" fixed, this has not been verified publicly. One thing > >is for sure though, the D1 (Dave's first in-house card) came about > >because of Dave's "divorce" with NDS who has up until this point been > >the manufacturer of all Dave's smart cards. Suffice it to say that the > >P4 is functionally equivalent to the D1 and from this point forward I > >will refer to both of them as the P4 card. > > > >Something to keep remembering is the fact that the glitching process was > >developed AFTER analyzing the code the HU card was executing after a > >reset. The glitches must occur at specific known decision or branching > >points within the code. Without this prior knowledge, glitching is > >USELESS! I am unsure of the history of how the HU EEPROM was initially > >dumped in order to gain this EEPROM information. It could have been > >through an insider at NDS (the HU card manufacturer) leaking the code or > >by some other physical intrusion method (most likely). This is important > >to remember as we get further into what is required to hack the P4 card > >because getting the EEPROM dump is always step one. > > > >So, what is required to break into the newer P4 card? First off, to all > >you people who say you are "experimenting" and "trying stuff" by placing > >their P4 cards into their HU loaders flashed with UL4S, some other HU > >compatible code or even some of the so called "P4 scripts"...FORGET IT! > >It is NOT going to happen, I promise you. The most likely result is that > >you will ruin your P4 card. I'm sure your efforts are much appreciated > >by those drooling for the P4 hack, but rest assured, an armchair > >"tester" WILL NOT break it by simply sticking their P4 into the same > >setup used for the HU and randomly glitching. I don't mean to sound > >nasty or negative, your intentions are to be applauded, but if you don't > >understand why it's not possible, then you won't understand what you are > >looking at even if you were to crack the card (which again, is NOT going > >to happen). Even if by some infinitesimally remote chance that you were > >to "break" in (and it would require a miracle of biblical proportions), > >there is nothing about the HU EEPROM that is compatible with the P4. OK, > >so you got in, *now* what do you load onto it? An HU bin file? Isn't > >going to work. Oh, so you dumped the P4 EEPROM code? You've still got to > >disassemble it to figure out how it works! Where and how do you 3M it? > >Once somebody finally sees the P4 EEPROM dump, it will take WEEKS to > >analyze it and even begin to understand how it functions (it's all in > >machine language mind you). Then, and only then, will it be possible to > >come up with ways to load activation or 3M code onto a P4. > > > >Furthermore, the P4 incorporates glitch detection (it is a Siemens > >Infineon SLE66P based on the ECO2000 processor). That means if you try > >to use the same methods of getting into the P4 as were used with the HU, > >you run the risk of it shutting down completely (permanently?). > >Remember, glitching ONLY works when you know and understand the original > >code that is executing. You MUST have prior knowledge of at least a > >portion of what is on the card before you can even begin. Also, > >smartcards can be designed in such a way that if they detect ANY form of > >tampering, they completely self-destruct (erase the contents of EEPROM). > >That way even if you do get in, there is little, if any, information to > >be gained. Without the original, unaltered, DTV specific EEPROM of a P4, > >just getting into a blank card is next to useless. I do not know whether > >or not the P4 utilizes such powerful countermeasures, but future access > >cards most definitely will. > > > >I see posts where somebody gets an ATR (answer to reset) from a P4 and > >they think they've done something miraculous. Sorry again, but getting > >an ATR doesn't mean much other than the card is executing valid > >instructions internally (meaning it still works, not looped). The ATR is > >a requirement of the smart card specification and all smart cards are > >designed to give an ATR. The ATR is simply a string of characters > >returned from the smart card in response to a reset signal sent by the > >reader. Its primary purpose is to indicate the status of the smart card > >power-up sequence and also convey information which the reader requires > >in order to optimize the speed of communication between the reader and > >the card. Simple as that. Now, the ATR is useful during unlooping > >because of the way the ATR string is "built up" by the program code on > >the card. Unlooping scripts can look at the ATR (or a partial ATR) and > >get a rough idea of what is happening with the card. That's how you know > >if you are using good DAC values with your loader during unlooping - by > >watching the ATR. This is getting into advanced territory so suffice it > >to say that ANY properly operating smart card is going to give you an > >ATR. Seeing one or analyzing one doesn't mean a thing other than what > >was just mentioned. The reason a lot of people get excited when they see > >one is because HU related scripts and programs are programmed to look > >for the HU specific ATR string (ATR's are different for each type of > >card). HU programs will always say that the P4 ATR is invalid. However, > >some of the so called "P4 scripts" floating around will recognize the P4 > >ATR and when someone doesn't understand what the ATR is, they get > >excited and think they have accomplished something. I REPEAT, GETTING AN > >ATR FROM A P4 CARD DOESN'T MEAN NOTHING > >This seems to get posted a lot: "anything that one man can create, > >another man can hack" implying that the P4 card has been or will be > >hacked eventually. And yes, this is very true. However, what is not > >considered, is HOW the P4 is compromised. Just because someone spent 9 > >months and 3 million dollars at a microprocessor lab at Intel and dumped > >the EEPROM of a P4 card does not automatically make it possible to > >create a Mikobu P4 loader with an accompanying atmel flash that will > >allow you to program it in your living room with a notebook computer. I > >don't intend to sound like a naysayer, and there probably will be a > >compact software hack for these new cards someday, I just don't think > >most people can even begin to understand the massive undertaking that is > >involved with defeating modern smartcard security! And just because it > >is compromised once does not mean it's possible for the masses to do it > >with plain software and a serial port loader. There are only a HANDFUL > >of people on this planet with the desire, will, time, financial backing > >and equipment required to break into the P4 cards. Tom Friendly next > >door is NOT going to do it with his HU loader in one hand and a in the > >other... Yes, all the cards leading up to the P4 card have been > >compromised extensively and they were all done with a portable hack. > >However, just because it's been that way in the past, does not > >automatically make that true for the future. D*r*ct TV is losing money > >because of piracy. They will curb this current trend. Make no mistake, > >given enough time they will come up with a tamper proof card. No, it > >won't be so secure that it's unhackable, it will just require so much > >effort and so much money that nobody will want to touch it. Game over... > > > > > >So how does one begin hacking a modern smart card? All attacks on > >smartcards can be classified as social, logical or invasive (or even > >combinations of each): > > > >1.) Social attacks involve getting information from an insider at Dave > >or NDS. These are not exactly hacks since the only thing gained is > >information about what is on the card. Now it is most definitely useful > >info to have, but it is only the beginning of the battle. You still must > >develop a way to defeat the hardware security features of the card and > >be able to read and write to the EEPROM. Furthermore, no insider in his > >right mind would leak information about the P4 cards! Considering what > >happened to that retard Igor Serebryany in March 2003. He leaked some > >documents about the P4 that were at his uncle's law firm that was > >handling the litigation between Dave and NDS. He got busted and they > >FRIED him and charged him with violating the 1996 Economic Espionage > >Act which, not surprisingly, is a felony. By the way, there are very few > >people that have ever been charged with this violation. It's considered > >one of the "big guns" and they only break it out for very special people > >and circumstances. Igor won't see the light of day for quite some > >time... > > > >2.) Logical attacks involve analysis of signals emitted from the card > >while it is in operation or measuring the micro current it draws from a > >power supply while it is operating, or a multitude of other parameters. > >How this information is analyzed to gain useful information is FAR > >beyond what I wish to get into here. Suffice it to say that it requires > >very sensitive, expensive lab equipment, and an incredible amount of > >detailed knowledge about integrated circuits and cryptography to pull > >off. And again, it only yields information about the code that is > >executing, it still doesn't put into your hands the ability to > >arbitrarily read and write to the EEPROM. > > > >3.) Invasive or physical attacks involve destructive analysis of the > >actual microprocessor chip that is embedded into the plastic card. The > >chip is extracted and examined under very powerful microscopes (scanning > >electron) and to the trained eye, can reveal how the chip works and make > >it possible to reverse engineer it. It also can provide the ability to > >probe different sections of the chip while it is operating to gain > >knowledge of how it functions and possibly even dump the contents of the > >EEPROM. Of course, there are plenty of countermeasures that smartcard > >manufacturers take to shield the chip from these techniques, such as > >light sensors or wire mesh shields, but given enough time even those > >protection methods can usually be defeated. This type of attack tends to > >be the most successful. However it is extremely difficult to get access > >to the required equipment that is typically only found at chip > >manufacturers (Intel, AMD, etc.) or maybe at a university. Not too many > >people are going to have one in their garage as the cost for such > >equipment easily runs into the millions. You would also have to have a > >hefty set of balls to stroll into your local microprocessor company's > >laboratory with a P4 card to "do some work." > > > >Even if one of the methods above yields valuable information about the > >card, a huge task still remains. How do you make it possible to > >arbitrarily read and write to it on a regular basis? Now, if the card > >only contained the access codes for a bank vault that had millions of > >dollars within it, there is no longer a problem. The chip is probed to > >the point where it pukes out the desired access codes, the money is > >stolen and the hack is done. The problem with the Dave cards is that > >whoever hacks it, wants to be able to easily REPRODUCE the hack, > >preferably with software so that it can be distributed and others can do > >the same thing whenever and wherever they want, for a fee of course! > >THAT IS THE PART THAT WILL NEVER BE GUARANTEED FOR FUTURE CARDS AND > >THEIR ASSOCIATED HACKS. "One man can make it, another man can break it" > >says nothing about being able to "break it" using a personal computer > >and a loader the size of a deck of cards! Remember this as we move > >towards the future... > > > >OK, now let's assume that the P4 has been compromised and it's possible > >to repeatedly read and write to it using a loader and an atmel flash. > >"Will my current loader work with the P4?" The P4 is not glitchable by > >the current loaders (and most likely not any glitching type loader) due > >to all the anti-glitching security it contains. Even if it were > >glitchable, the standard clock crystal in an HU loader is not even close > >to being able to deliver the required number of clock glitches to a P4 > >chip (not enough resolution). Remember when we discussed glitching into > >the HU at the beginning? Well, the speed of the crystal in your loader > >MUST be able to deliver up to 4 times the clock pulses as what the > >card's processor chip is normally running at in order to clock glitch or > >even voltage glitch because both are time dependent. The Infineon spec > >sheet indicates that the P4 is running at 12 Mhz which is about three > >times as fast as the HU. If the P4 hack requires glitching of any kind > >then the currently available loaders will not work...period, their > >clocks are too slow to glitch. > > > >Now that's not to say that the hack won't involve some other means of > >gaining access. If the entry method involves some other design flaw > >besides glitching then yes, I'm almost certain that current loaders or > >any ISO-7816 card reader for that matter will work. The P4 atmel flash > >will just basically turn your loader back into a semi-standard ISO-7816 > >reader. > > > >Now, I know I've seen posts where people say "well, if my receiver can > >read both an HU card and a P4 card it stands to reason that my HU loader > >will work with the P4." That is FALSE. It must be remembered that the > >way the pirate loaders and a legitimate card slot in a receiver access a > >card ARE ENTIRELY DIFFERENT. The HU loaders GLITCH into the card by > >sending erroneous signals to it, but the receiver passes legitimate > >signed data packets from Dave to the card, using a standard ISO > >compliant reader (inside your receiver). At this point, we cannot send > >signed packets to the card. In order to understand why, you need to read > >up on how public key encryption works. Breaking public key encryption > >involves math algorithms well beyond what the average person can > >understand and more processing power to break than is available in a > >supercomputer or even distributed computing using the Internet. > > > >Some people have suggested that the communication between the receiver > >and card be "recorded" and played back later to reprogram the card. This > >is not possible because part of the digital signature that's used on the > >data packets involves a timestamp and is only valid for a very short > >period of time. Good idea, but that won't work either. > > > >I personally don't know if the P4 has been compromised yet or not. It's > >really anyone's guess. I know that reliable sources say that it has been > >hacked, but I'll have to witness it myself to believe it. One thing is > >for sure, the public will not know about it until after the HU stream is > >completely turned off. That's when we'll see some action if it exists! |
|
|
New member Username: ChazPost Number: 1 Registered: May-04 | A Little insight for the P4. Depending on the responce on this Post.... I have a bit more to share. If you understand the risk of testing "Have fun". If not I am not responsable if you mess up your card. (New to this board...But not new to testing)
|
|
|
crookedlake04 Unregistered guest | what about the enforcer reciever.... what type of programing would be needed to get that baby up and running... and what gind of programs would you be watching.... | |
|
Desperated Unregistered guest | I have a friend who lives in US. She is subscribed to Dave. She received a letter from Dave attached to the new card saying that they will be replacing a new card EVERY YEAR. Does anybody knows about this??...If this is truth, are we going to be living all this every year????? | |
|
dfbvhksd vjksnuisdnjkldf Unregistered guest | all of you are a bunch of NERDS get a real hobby | |
|
simple minded Unregistered guest | I read almost the entire board and havent seen an answer to the one question I wanted an answer to ... does the silver bullit sat recever work? | |
|
Anonymous | Who owns the atmosphere? No one that I know of. Where do companies sending t.v. signals throught the atmosphere get off telling us that it would be theft for us to pick up these signals. Radio stations send out signals through the atmosphere and we pick them up. They are free. They are out there in the atmosphere available for anyone to who wants to pick them up. We can use a variety of radio equipment to pick them up if we choose. I don't see radio stations advertising "Gee dad, you steal radio signals!" I see no difference between t.v. signals and radio signals and do not understand how anyone can tell me I am not allowed to pick them out of the atmosphere, which they don't. They also don't pay rent for the amount of atmosphere used. I wish someone out there would persue this so I don't have to listen to t.v. stations telling me I might be guilty of something I am not. What basis for these claims are in the law? We are a bunch of sheep and when someone dictates to us on t.v. we are too quick to believe that what they say is true....when it might not me true.Someone please make an issue of this | |
|
Unregistered guest | hey I'm with you all the way - they had me feeling guilty talking about "illegal" tv around my grandkids and that's crap. Well good for you spouting off and wish more people would then these idiots that make these commercials might stop. | |
|
cali777 Unregistered guest | Hey Chazzes, thanks for the scripts, i modified the backdoor one a bit & have actually be able to get a partial dump off of my p4 i'm gonna keep playong to see how far it will go...could use a little more of them insight files if u don't mind.. | |
|
simple minded Unregistered guest | Pontificate loudly about the unfairness of "illegal t.v" but answer me this... DOES THE SILVER BULLIT SAT RECEVER WORK!??!!?!?? man what a choad ..lol | |
|
Rdaddy Unregistered guest | Simple question, hoping for a simple answer. Anyone out there know if there ever will be a hack for the P5 card? And if so when? | |
|
VIRUS Unregistered guest | HaHA,Ha, Ha, sorry guys, but i am in Jamaica and my P4 is Hacked and Working. Only $25 PPV per Month though. Teething pain, but hay its still working.  |
|
|
Unregistered guest | Hey All, just as a comment in south of usa and north of mexico we are working on developing a hackerware, this is we have identifyed 80% of the card on what it does and what it means, the stream, the packets, the code, anything it's processed. So don't give up anything it can come out these days. P.D. Hi Dave, love you so much, thanks for my new house. |
|
|
Anonymous | it's not only working in jamica it still work in maryland give us web site or don't say nothin suportDave ya right ......take ur 80% and put it in where the sun don't shine | |
|
p4hackers.inc Unregistered guest | wow,(mark addario) thats alot of info to be putting out there,not like i would detailifo like that.but one thing for sure ...yes i said sure,you a little bent outta shape about the (compromised p4)so cant do nuthing about it ..that confirm it.thx but we are not done by far.now we know how close you are to our programms and leaked public files on the net ..hhahhaha...we notice this post some place else where..and it was around the same time wineplorer script 60 came out.....now that we can confirm that the authur of this post is a dave mole ..lets look at a few things the post said you know where we are with this p4 card and how much money was used so far to get this far where we couldnt go and if we went there you would be waiting for us ...you know what the end result is dave ...you will loose ...and a lot of money..maybe your job..if you think b/c of NDS screw up,the d1 card that you internally design,is the quickfix of p4 compromised security then dave you dont have aclue whats about to hit you.mark my word you job is next b4..the next card....and also ..those pll at NDS will be doing what they do best..hhheehehehe.dave to be honest ..we went over a few more of your hurdles..no bragging rights or anything,but lets put it this way we wont stop chipping at this untill its over. |
|
|
p4hackers.inc Unregistered guest | dave has restored parts of hu stream to slow progress on p4/d1 cards ....dave we are focused so you putting some of the 500 hundreds and tnt and espn, wont slow or let us loose focus .....like i say .you have no idea whats about to hit you |
|
|
simple minded Unregistered guest | 1...2...3...4...I LOVE THE P4HACKERS CORP!!! 1...2...3...4...I LOVE THE P4HACKERS CORP!!! 1...2...3...4...I LOVE THE P4HACKERS CORP!!! WOOF WOOF WOOF WOOF WOOF <~~~OBSCURE EARLY 90'S TALKSHOW BARK. |
|
|
TonyT Unregistered guest | gx-technologies is a scam ..... they take your money and you get nothing .... I know people who have sent money in for their ver3 loader and never received the product . These people are crooks .The company's owner's name is supposedly SIMON, try writing him and see if you get a response ....If you ask for info , they may hand you a bunch of crap as to how they have a moneyback guarantee. But once they have your money you are guaranteed to get no shipment of what ever you ordered and your money is gone ! | |
|
gumperdss Unregistered guest | anybody know what happened at dssbbs.com? | |
|
Anonymous | simple minded silver bullet works........check out dssevolution.com there you go jmill | |
|
Anonymous | ||
|
Anonymous | Hey people do you think VIRUS is saying the truth? That there's a hack fot the P4 already in Jamaica? What about Mexico does anybody knows whats going on in that country? | |
|
Anonymous | no this guy from Jamaica only THINKS he has a hacked P4....there is such a big underground market here for hobbist that a lot of the people here just don't understand how the whole thing works...the latest thing is to tell people that they have a hacked P4....you have to bring in your receiver...they put in a new P4...get you a 3 months subcription by subscribing with a US address and then make a few dollars extra...the unsuspecting customers are told that they have a guarantee for 3 months....when it goes down, the customers bring back the receiver and they start all over again....so niave....the only problem is that because of their geographic location, the feed isn't that strong and in order to get a good signal, one needs an 11' dish...so they are paying premium $$$ and not getting everything what they are paying for..... | |
|
Jup Unregistered guest | So no one still answered my question. Any Ideas when A hack will be made??? | |
|
Anonymous | nobody answered because it is such a stupid question.....haven't you been reading the posts... | |
|
JUP Unregistered guest | Nope dont have time to read the garbage. Just want a straight up answer. I'm not a programmer or hacker. Just someone who wants to know when I can watch tv again. | |
|
Anonymous | long wait..... | |
|
saltore Unregistered guest | Hi, nobody know exactly what is the future for DirecTV, nobody know what kind of loader or if P4/5 can be unlooped, may be if we read information about of loader and stream.. we can develop, so i want to know architecture for loaders since T6 until ISO ... anybody know? email me zoqui00@hotmail.com thank's |
|
|
Anonymous | Does anyone have a SILVER BULLIT SAT RECEVER? Does it work? | |
|
NOT DAVE Unregistered guest | I have a silver bullet. I paid 450 for it in Regina,Sk. Its going for closer to 100 in Calgary now. Works great with a regular sized dish that rotates to pick up over 1200 channels. Sweet system, yo. | |
|
NOT DAVE Unregistered guest | I have a silver bullet. I paid 450 for it in Regina,Sk. Its going for closer to 1000 in Calgary now. Works great with a regular sized dish that rotates to pick up over 1200 channels. Sweet system, yo. | |
|
New member Username: CondoboyToronto, Ontario Canada Post Number: 1 Registered: May-04 | Now that the HU is dead, and I must resolve to actually pay for satellite service, at least for the foreseeable future, can anyone tell me what is involved in getting DirectTV as a customer for anyone living in Toronto, Canada. | |
|
Kendra H. Unregistered guest | You cant get Direct TV legally in Canada. It is only offered in the USA. Starchoice and Bell are our lame excuses for Satellite up here. Try getting a Dishnet unit so you can get the same channels you had with DTV. |
|
|
simple minded Unregistered guest | Dear, Dave I'm leaving you...I have found someone better...someone sensitive to my needs my wants...someone who wont leave me in the middle of football season or loop my card in a fit of rage incited by a lack of funds due to the massive losses your sustaining ...your a crule crule thing..yes "THING" dave. your a thing useless to me now ...so go..leave...I'm buying a blackbird silver bullit and you can go STRIGHT TO HELL!! P.S Yo MaMa! |
|
|
mikoo Unregistered guest | f-u-c-k usa with it's DTV. fcukin peacof shitsss. | |
|
New member Username: JamesleiToronto, Ontario Canada Post Number: 3 Registered: Apr-04 | ALLAN R: I'm in Toronto too and have the same problems. I was speaking to a supplier today and he said he could sell me a DSS receiver plus card for $400Cdn, and all I'd have to do is move my dish a little... But I'm thinking of (sigh) taking Rogers Cable until the 2 p4s I have are functional. I'd be interested in what you decide and what the costs are. James (jameslei@enoreo.on.ca) |
|
|
New member Username: JamesleiToronto, Ontario Canada Post Number: 4 Registered: Apr-04 | When I wrote "DSS receiver", I meant 'Dishnet unit'. | |
|
patiently waiting... Unregistered guest | Dear, Dave ... ... P.S Yo MaMa! that was great! Funny as hell. If only he would find it as humorous. I got one channel with my DTV...BRavo. freakin lame!Let me know if this "SilverBullet" works. |
|
|
Anonymous | How hard would it be for DSS to charge $100 U.S per month in order to get every damn channel. Not only would they make a fortune, they would damn near eliminate people like us lookin for free tv. I'd sign up tommorow if that happened, although I live in Canada so that may be a little difficult. Wake me up when there is a fix.... | |
|
truballer Unregistered guest | Thank you for your interest in finding a solution to the P4 Card scripts and or Dish Network! We are running a P4 3M script and its working great! Its very close to being mainstream now and released. please visit us at www.hit2rate.com/joinforum.asp to find out more! You got questions? we have the answers! The fastest growing DSS forum in the WORLD!!!!! |
|
|
Anonymous | Who is Dave? | |
|
kong Unregistered guest | i have a p5 will the programs for the p4 card work on the p5 when it comes out | |
|
NEWGUY Unregistered guest | IF SOMEBODY ASK WHO IS DAVE AGAIN I SWEAR..... | |
|
NewGuy Unregistered guest | somebody tell me if truballer tellin the trurth | |
|
kong Unregistered guest | doues any one have a anser for me? | |
|
Packy Unregistered guest | Ok Boys and Girls be cool. Do you remember when the satellite system came out with a video cyper and no one was able to break it? They finalley did. SO just sit back and listen. |
|
|
JIMMEH! Unregistered guest | Who is DAVE???????????? HAHAHA |
|
|
New member Username: 2much4tvPost Number: 1 Registered: May-04 | SO..., WHO IS DAVE? | |
|
A Little Common Sense Unregistered guest | As for the question "How hard would it be for DSS to charge $100 U.S per month in order to get every damn channel. Not only would they make a fortune, they would damn near eliminate people like us lookin for free" How do you think Directv pays back the studios? Answer - By subscription. They start doing what your suggesting and programming will go right down the tubes (ie, no matter how great or sucky HBO or Showtime is, they'll get their cut every month and the studio that makes crap like ISHTAR or GIGLI will get the same amount of money as the studio that makes a great film like Gladiator or Shrek or whatever, because there's no feedback mechanism (like people ordering a PPV or ordering or canceling a programming package). That's just what I want - a race to the entertainment bottom!!! |
|
|
TZY Unregistered guest | No..Im Dave..... No im Sparticus...No im Sparticus and so's my wife........Ha ha ha | |
|
Gmoney Unregistered guest | I want a Silver Bullet, but man..........the thing cost $400 and I don't know anyone that has one and can tell me if it really works. | |
|
kong Unregistered guest | i have a p5 my dealer wont sell p4 is there a big differance between the two cards and if so what is it. he is telling us to come in to his store on the 30th to get them programed .is this bull or what? confused after reading some of the posts here. frustrated in canada | |
|
Anonymous | Someone please be patient and briefly explain the advantage of having a Silver Bullet. If it works, where can I buy one? | |
|
simple minded Unregistered guest | The silver bullit is a recever and dish combo that can be programed to receve and play all satalite signials. you can have a dish with up to 15 LNB's on it and pulls down a satalite stream from each enableing you to get 1400 channels from countries around the world. Once it's up it's on forever. I have a friend in canada and he mentioned it so i posted a question..got an answer and looked it up on the net.. then i called him and asked him how well it works..it needs programing from time to time just like a card but if you buy it you can get the files from the makers website theres even a lifttime sub so if ya have the money and really want "everything" then here it is. just punch blackbird recever into google. | |
|
simple minded Unregistered guest | The silver bullit is a recever and dish combo that can be programed to receve and play all satalite signials. you can have a dish with up to 15 LNB's on it and pulls down a satalite stream from each enableing you to get 1400 channels from countries around the world. Once it's up it's on forever. I have a friend in canada and he mentioned it so i posted a question..got an answer and looked it up on the net.. then i called him and asked him how well it works..it needs programing from time to time just like a card but if you buy it you can get the files from the makers website theres even a lifttime sub so if ya have the money and really want "everything" then here it is. just punch blackbird recever into google. | |
|
Sonnie Unregistered guest | Packy, You say the videocypher was hacked. OK, but what about the Vidoecypher II? 11 years and no hack pal. There is the possibility the a hack will NOT surface anytime this year. People who say that it will are certainly optimistic. We would all like to believe that it will. But reality is a bitchh. The fact is that people have been working on a P4 hack for over an year now, and all of us are seeing the results. Nothing. Scams are popping up left and right. Even in sites that were at one time trustworthy. The abscence of cash flow combined with the desperation of those without TV has created a monster. THERE IS NO P4 FIX NOW. PERIOD. |
|
|
Unregistered guest | well find it when we do ill make sure you guys get it weve been the first for years thats all dont wanna get caught later bout half a month to a month off till fix peace |
|
|
johndoe Unregistered guest | If the p4 can be made to do a complete dump, could we not put this info into a similar type processor ? One that has no security features and is easy to glitch . |
|
|
Anonymous | <marquee> Anybody have a programer for p4 that really works <marquee> |
|
|
dirty dave Unregistered guest | i live in So Cal and i have a friend the just purchased a p4card w/ a 3m script for $130.00, apparently he got it from someone that works for dave, anyway he got the card and it worked for 2 days, he took it back and they put a new script it has worked ever since (7days) . this guy told him that the P4 will only work till the end of the year and then the P5 will take over. Has anyone heard of this? | |
|
dirty dave Unregistered guest | call me a cheap as+s but i still have doubts if this will keep working for more than a couple of months. | |
|
an Unregistered guest | I did also hear that the p4 was temporary untill the end of the year. | |
|
el piraton Unregistered guest | so is there or is there not a P4 Fix.....!!!!??? | |
|
dirty dave Unregistered guest | apparently yes! what loaders are they using who knows, they won't say anything. greety selfish Mother Fckers | |
|
joojoo Unregistered guest | I am a Direct Tv Subscriber. All I'm looking for is an access card that will give me all the channels for free. I currently have a P4 card. What do I need to do? Where can I buy a card? | |
|
dss dork Unregistered guest | I dont know if any of you heard but this last past weekeend dssfilexchange.com where suppose to finalize the loader/programmer situation they had promised to release the all nessacery hardware/software to get us up and running but on this last past saturday 'dave' busted them...there is also a site 3moffshore.com that is offering programmed cards but i guess you cant wipe out your pay-per-veiw sounds like another scam to me.....so if this thing with dssfilexchange.com was true dave has messed things up again....but not for ever | |
|
Anonymous | I heard that the hu cards are coming back into the mix , will be back up and running in mid june rumors are to many problems with old receivers and new p4 cards are just not compatiable this is just what i heard my friend said he got a call from his dealer in the us. | |
|
Solrac Unregistered guest | Can Any one Tell me who is Dave? Hey here in Mexico they pay big money to anyone that comes up with the P4 hack | |
|
New member Username: 2much4tvPost Number: 2 Registered: May-04 | SOMEONE MENTIONED THE VIDEOCYPHER II, I HAVE ONE OF THESE PACKED IN A BOX IN THE ATTIC, CAN THESE BE HACKED LIKE THE HU CARDS, IF SO, CAN YOU LEAD ME IN THE RIGHT DIRETION. THANX.... |
|
|
More Common Sense Unregistered guest | The HU WILL NOT be reverse engineered to run this stream. It's like running Microsoft Windows 2000 on an APPLE computer. It won't happen. The instruction set is different, the encryption algorithm is different, the speed is different. You can't run Gasoline in a Diesel or boil water with an electric burner running propane. Put it out of your mind. You may be able to engineer the instruction set and emulate the P4 on an Intel CPU, but your looking at a massive undertaking (better than 5000 man hours of disassembly and another 5000 hours of C+ and assembly coding at a MINIMUM). You're more likely to see something where the P4 still does the decryption, and there's a wrapper around it to filter the ECM's, tier data, keys, etc (like Kryptonite did), but it's gonna take a couple of months. And for all of you wondering why we don't already have something since the card was out 2 years ago, the thing was running in a "backwards HU compatibility mode" until April. With only 1 or 2 channels using the P4 mode, you can't really develop a hack against it until the P4 stream went live. So the clock really started running mid April. As for Dave changing out to P5's by end of year, I doubt it, but won't say for sure. This is a business. Even if the hack is widely available by end of year and several thousand people are using it, they won't change until they're losing more revenue because of piracy than the cost of a card swap. Plus, the last swap took damned near two years to complete (15 million+ cards, labor, mail charges, etc). If they do that too often, they'll be uncompetitive and lose more money than they did in the past year. Dave is not the IRS; they won't spend more money on a card swap, then they'll benefit by stomping out piracy (unless Hollywood really leans on them). If you want to break into it, get on IRC and start listening and throwing out ideas. BTW, who is DAVE :-) |
|
|
HH Unregistered guest | Please pull out your d.i.c.ks from Dave's a.s.s and put them into the Bev/Charlie's ! | |
|
Anonymous | DID ANYONE READ TRUBALLER'S POST?, OR GO TO THE SITE HIT2RATE? IS THEIR ANYTHING TO THAT? PLEASE REPLY. | |
|
fatgui Unregistered guest | im just curious...for those that actually subscribed to DAVE...when DAVE made the switch over to p4...do DAVE send them new receiver and p4 card or just a new p4 card...so my question is p4 card compatible with old receiver? does anyone know? | |
|
Unregistered guest | Can I use t911 to program p5??? | |
|
Simple Minded Unregistered guest | Dear ,dave I saw you drive past my house yesterday and I know that was you on the phone last night. So break down dave...leak your code and I'll take ya back....comeon daaaaaaave...you know you want to....you like it. You like it when your pirated dont ya dave... makes ya all warm and gooie in the shorts to catch a few people huh? Dave I know what happened in arizona today...but ya only got them not me....give in dave. give in and I'll take ya back. waiting, Simple Minded P.S Lashing out dave? Thats not nice..shame shame. |
|
|
jammer Unregistered guest | I'm gonna go Bell Express Vu till the hack for the P4 is out | |
|
New member Username: JamesleiToronto, Ontario Canada Post Number: 5 Registered: Apr-04 | JAMMER: I'm thinking of going cable till p4 hack is out... But what would Bell Express cost? Would I need to move my dish - a tricky job, because it's on the roof, and I hate heights! | |
|
JINUN Unregistered guest | WHO IS DAVE????????? |
P4 HelpoutMain Forums
Today's Posts- Home Audio Forum
- Home Video Forum
- Home Theater Forum
- Car Audio Forum
- Accessories Forum
- All Forum Topics