The PlayStation 4 Hacking Scene is evolving each and every day and the latest advancement will excite many as developer kR105 is filling in the missing pieces for everyoner to boot Linux on the PS4. As the developer unleashes a dlclose exploit that is fully functional, while we have seen in recent days news about a dlclose exploit it was not fully operational and was not complete, but now with this release the holes have been filled and the missing pieces provided along with a Linux Loader that comes compiled to make things much easier.
You may recall some of the progress on the BadIRET exploit but the dlclose exploit as Cturt first mentioned is a cleaner exploit overall and seems to be now the path developers are taking. As the exploit appears to be gaining the most momentum at this time. These hacks are still restricted to firmware 1.76, but for those who have been holding on to one these consoles this is the start for you, while things will evolve as we go along and more and more user friendly options come to surface this is certainly the news the PS4 scene has been waiting for since we first heard and seen Linux running on the PS4, the community needed a fully functional exploit and now they have one.. There is no doubt some progression that is going to evolve over the next days, weeks and months so stay tuned as things are sure to get exciting over that span.
PS4-dlcloseFully implemented dlclose exploit for PS4 fw 1.76. Compile it with CTurt's PS4 SDK. https://github.com/CTurt/PS4-SDK This is the bare working exploit, you must add your own payload code to make it do anything useful. Enjoy![/QUOTE]
Kr105 adds some new things to the PS4 Playground such as the Linux Loader
A collection of PS4 tools and experiments using the WebKit exploit. This is for firmware 1.76 only at the moment.
A live demo can be tried here. You should clone the repo and upload it your own server if you wish to make changes:
git clone git://github.com/CTurt/PS4-playground.git You can also download a zip of the latest source here.
Although this is this primarily a framework to help write and execute ROP chains, PS4-playground comes with several experiments for you to try.
After executing a test, you should either refresh the page, or close and reopen the browser entirely; running multiple experiments sequentially is not reliable. If you are using a web browser view in an app which isn't the Internet Browser, you can use the Refresh button under Misc to refresh the page.
Click "Go", and wait for the text "Stage: Waiting for payload..." to appear. Send the desired binary over TCP to your PS4 on port 9023; you can use any standard networking tool to do this, or my custom Windows tool, WiFi-Loader If you're on Linux, the easiest way is probably to use netcat:
After you have sent the binary, it will be executed automatically.Code:nc -w 3 192.168.0.7 9023 < *.bin
You need a FAT32 formatted USB drive plugged in on any PS4's USB port with the following files on the root directory:
The file names must match with the above and you can have more files on the same USB drive. From there you can setup the environment to run from an NFS share or from an external drive via USB (recommended) and boot a complete distro!
- bzImage : Kernel image that will be loaded. Recommended to use this sources to compile it.
- initramfs.cpio.gz : The initial file system that gets loaded into memory during the Linux startup process. This one is recommended.
- Get PID - Get process ID
- Get Login - Get login name and leak a kernel pointer
- Get Loaded Modules - Get a list of currently loaded modules, index and ID
- Dump Loaded Module - Dump a currently loaded module (use Get Loaded Modules to see all available)
- Load Module - Load an additional module from this list
- Once you have loaded a module, refresh the page, and you will be able to dump it.
- Browse - File Browser
- Get PSN username - Read your PSN username from account.dat
- Get Sandbox Directory - Get the name of the current sandbox directory (10 random characters which change each reboot)
- Get Stack Protection - Get stack base, size, and protection
- Get Stack Name - Get stack base, size, and name
- Send Message - Send a TCP message to the specified IP and port
- File and memory dumps will be sent over TCP to the IP and port you specified. You can use a simple tool like TCP-Dump to write the data to a file.
- Method #1 (from Wololo.net)
- Download- -> new dlclose exploit from kR105’s github here.
- Download --> the latest version of PS4-Playground from CTurt’s github here.
- Download --> kR105’s compiled Linux files here.
- (Easier) Method #2 (from Cturt)
PS4 1.76 [PS4 - FW 1.76] Fully Functional dlclose Exploit (w/ Linux Loader) by kR105
By STLcardsWS on Apr 2, 2016 at 1:35 PM
[10x Update Jan. 20] HW Acceleration (RSX) Project Update by RenéRebe10x UPDATE (January 20) - Now the 10th Video Released >>> The next PS3 NVidia RSX accelerated X.org steps
(Original Article from Nov. 14) Is the PS3 a bit closer to gaining Hardware Acceleration (via RSX) in OtherOS (Linux) with a proper driver to enable the GPU chip? We are not there, but we may be getting closer to a reality. Earlier this year (back in April) we detailed some of the progress that the busy dev RenéRebe has made with unlocking the potential of the PlayStation 3's RSX chip and now today we have been greeted with a new video and what we can expect with this project as the developer starts to undertake the challenge of further unlocking one more component of the Ps3 hardware,. The developer has alot of videos on other intresting subjects in his diverse YouTube channel >>> (Bits and More) <<< many very informative video's..Continue reading
ref00d (plugin) Released - Run Games / Apps that require a higher FW from your ownFollowing the big news from Team Molecule several weeks ago and effectively opening the system wide open, it was only a matter of time before we would start to see other developer's start putting the finding to use and we have seen the FAPS Team (team members listed below) have recently released a new (taiHEN) plugin called ref00d, this plugin is a big deal, as it will allows users/devs to use content that would otherwise require a higher firmware to be played/executed on a lower firmware for your exploited PS Vita or PlayStation TV. Typically not an easy task to reach but thanks to Team Molecule's research and the FAPS Team we now have a ready to use simple plugin solution to remove those firmware restrictions, see additional details about this plugin release in the release notes provided below by the development team.
[Update x2] RetroArch (PS2) Preview (includes 2 cores) - Introducing New Nigthly PS2 ReleasesUpdate (2x): Reports are coming in this PS2 Homebrew is also working on PS3 HAN & PS4 (5.05).
With progress making headway on the upcoming PS4 port of RetroArch from a group of developer's, Another developer (fjtrujy) started progress on a PlayStation 2 (PS2) port several months back (view previous progress) and now has a port that progressed enough for a public soft release, Now available in the new RetroArch PS2 Nighties for anyone interested in downloading and trying out the multi-system emulator on your homebrew capable PS2 hardware. @fjtrujy warns that many things need implemented yet and many pending issue remain and only these early release contains two cores currently 2048 and QuickNES. Which is likely to grow and a good gauge to base what is expected for the PS2 port, Would be to view the PSP as that should be a good baseline of what to expect and the PS2 may be able to handy more then the PSP likely.Continue reading
Share This Page
- henkaku homebrew
- homebrew game
- playstation 2
- playstation 2 resources
- playstation portable
- playstation portable cfw
- playstation portable resources
- playstation tv
- ps tv
- ps vita
- ps2 emulator
- ps2 resources
- ps3 cfw
- ps3 homebrew
- ps3xploit 3.0
- psp cfw
- psp emulator
- psp resources
- pstv homebrew
- vita homebrew
- webman mod
- User Record:
- Latest Member: