The PlayStation 4 (PS4) firmware of choice for the hacking community has been firmware v1.76, as developer's have taken advantage of that webkit exploit in the firmware and have been able to achieve various things, most notable being able to install Linux on your PS4 with the ability to run apps like the Steam App with graphic acceleration for example However things could change for the PS4 as the recent HENkaku exploit for the PS Vita / PSTV has been ported to the PS4 's 3.55 Firmware by developer Fire30.
So this means a new webkit exploit is now in the wild for the PS4 and provides us code execution in 3.55, The webkit exploit for 3.55 would still need some additional work and exploitation before things would shake out like it is in the current 1.76 firmware on the PS4 with regards to things like Linux Support. However, this HENkaku exploit could bring some intriguing things to 3.55 firmware and being a current firmware will sure be avaiable to much more people then the advancements we seen in v1.76. So, stay tuned to your leader in PlayStation Hacking Coverage the one and only PSX-Place, as this story will is sure to develop and evolve over the next several days / weeks / months..
PS4 3.55 Code Execution
This repo contains a PoC for getting code execution on ps4's with firmware version 3.55 It uses the same webkit vulnerability as the henkaku project. So far there is basic ROP working and returning to normal execution is included. Next steps will be to map a jit page sucessfully and getting actual shellcode executed.
UsageYou need to edit the dns.conf to point to the ip address of your machine, and modify your consoles dns settings to point to it as well.
- python fakedns.py -c dns.conf
Debug output will come from this process.
- python server.py
Navigate to the User's Guide page on the PS4 and information about the exploit and all loaded modules should be printed out. This is an example of what running it will look like: https://gist.github.com/Fire30/2e0ea2d73d3a1f6f95d80aea77b75df8
There are a few notes:
- The exploit is not 100% reliable currently. It is more like 80% which is good enough for our purposes. So if it does not work on first try, try a few more times. Also doing to much allocating after the sort() is called can make it more unstable.
- The process will crash after the rop is done executing.
- xyz - Much of the code is based off of his code used for the henkaku project
- Anonymous contributor - WebKit vulnerability PoC
- CTurt - I basically copied his JuSt-ROP idea
PS4 HENkaku Ported to PlayStation 4 (PS4) - 3.55 Firmware Code Execution POC by Fire30
By STLcardsWS on Aug 6, 2016 at 6:34 PM
Kernel Exploit for FW 5.53 sneak-peek by @Mathieulh --- UPDATE: Latest FW 5.55 as well !!!Remember when we talked about that the PS4 is still in search of it's full potential and that the Developers are still hard-working with Exploits and other cool stuff for newer System Firmwares - like @SpecterDev does with System Firmware 5.05 - then you shouldn't be suprised that other great Developers like @Mathieulh are also using their research for exploiting even newer System Firmwares - as he showed it with his little "sneak-peek" for System Firmware 5.53. This would mean that the lastest System Firmware from Sony would be exploitable and Homebrew would be possible - by the current state of reading. --- UPDATE: @mathieulh gains access to a Kernel Exploit on System Firmware 5.55 as well --- Check Down Below for further information!Continue reading
Mira Project v1.0 - Developer's Release from #TeamOrbisWoW the PS4 Scene is exploding with alot of hard work from many developer's coming together in the scene. the other day TeamOrbis unveiled a preview of Mira Project (CFW Abilities w/ MiraCFW) for the PS4, now the team has made available a Beta version for Developer's. I would caution installing this if your are worried about a potential errors as this is not quite ready for mass adoption yet and missing some aspects that will appear in later releases. The team just recently published a roadmap (seen below) for the upcoming releases and what those updates will provide, lets be honest here its looks very exciting and promising as these developer's are really coming together for some amazing progress on the PS4. @Roxanne covered many aspects of this project already in her preview >> Meet "The Mira Project" - a (kind-of) CFW for your PS4 by #TeamOrbis from the other day so check that out for additional details and then checkout the latest details / release found below from the OpenOrbis Team..Continue reading
Meet "The Mira Project" - a (kind-of) CFW for your PS4 by #TeamOrbisWith the latest achievements regarding Kernel Exploits and other useful things for both System Firmware 5.05 and System Firmware 5.53 together with the older exploits like for System Firmware 4.55 or even for System Firmware 1.76 - you have probably already recognized that compared to the PS3 - a lot of have changed for the PS4 when you wanted to play your backups or to install some Homebrew. Instead of installing a Custom Made Firmware (CFW) from a USB-Device, you will use a bug in the Original System Software (OFW) itself to allow such mentioned things. This method isn't that bad but further investigations from the System itself is very limited compared to a CFW like for the PS3, where you had full access and control about your console by doing things whatever you wanted to do. But this could now change for the PS4 with the interesting Project behind #TeamOrbis called "The Mira Project".Continue reading
Share This Page
- henkaku homebrew
- homebrew game
- playstation 2
- playstation 2 emulator
- playstation 2 resources
- playstation portable
- playstation portable cfw
- playstation portable emulator
- playstation portable resources
- playstation tv
- ps tv
- ps vita
- ps2 emulator
- ps2 resources
- ps3 cfw
- ps3 homebrew
- psp cfw
- psp emulator
- psp resources
- pstv homebrew
- vita homebrew
- vita tv
- webman mod
- User Record:
- Latest Member: