PS4 [Guide] How to decrypt & dump usermodules by grass skeu

Discussion in 'PS4 Tutorials & Guides' started by STLcardsWS, Oct 30, 2016.

  1. 9,043
    9,253
    1,172
    STLcardsWS

    STLcardsWS Administrator

    Joined:
    Sep 18, 2014
    Messages:
    9,043
    Likes Received:
    9,253
    Trophy Points:
    1,172
    Scene Contributor zecoxao has posted a Tutorial by grass seku (@wskeu), for decrypting & dumping PS4 usermodules


    ps4_close.jpg


    • [Guide] How to decrypt & dump PS4 usermodules
      by grass skeu

      First of all i'd like to say thank you to the person who has allowed me (zecoxao) to post this tutorial. His english isn't perfect so he asked me to make this tutorial on his behalf. Thanks, grass skeu :)


    • So for this, you'll need:



    • Steps:
      1- Fire up elf loader on your 1.76 console
      2- Let it load all the way up to stage 5 without memory errors!
      3- Compile the payload source. You can specify in between:
      and
      which module(s) you want to decrypt. if you want, you can even decrypt all modules from 1.76 Dump released a while ago! This includes elf,self,prx,sprx,sexe,sdll and eboot.bin. However, take into notice that you can only decrypt usermodules from disc or psn apps when you have loaded them and minimize them (by pressing ps button), and only from absolute path! (due to npdrm management)

      I have left an example:
      so, the elf will be written to usb0 (rightmost port), but you can specify others

      4. run listener (if you want, this is optional):
      where ps4 ip is your local ip (mine is 192.168.1.72)

      5. finally send payload
      :​
      specifying the path to the payload and the ip. if the payload fails to be executed with out of memory error just stabilize on stage 5 WITHOUT restarting console and try again.

      Any doubts please ask. And all credits go to grass skeu for this awesome trick :)

      Just a small note. segment 0x6fffff01 cannot be "decrypted" from game eboots because... it's a plaintext segment in encrypted file :)
      Just add it to the end of the elf.


    Source:
    playstationhax.xyz
     
    Last edited: Oct 30, 2016
    No0bZiLLa likes this.
  2. 5,904
    2,933
    497
    atreyu187

    atreyu187 Old Hunter Moderator

    Joined:
    Sep 29, 2014
    Messages:
    5,904
    Likes Received:
    2,933
    Trophy Points:
    497
    Gender:
    Male
    Occupation:
    Scholar of Byrgenwerth
    Location:
    Cainhurst Castle
    Home Page:
    Now we just need to figure out the last little part of the eboot to be able to fully decrypt the games and it seems a scene group has done just that but has not made it public knowledge just yet
     
  3. 7,626
    5,798
    872
    kozarovv

    kozarovv Super Moderator

    Joined:
    Nov 8, 2014
    Messages:
    7,626
    Likes Received:
    5,798
    Trophy Points:
    872
    Home Page:
    And what you gonna do with decrypted game? :) As far as i know we can't run anything (homebrew) even while we are having that damn kernel exploit on 1.76...
     
  4. 2,314
    2,246
    372
    Berion

    Berion Developer

    Joined:
    Feb 3, 2015
    Messages:
    2,314
    Likes Received:
    2,246
    Trophy Points:
    372
    Gender:
    Male
    Location:
    Poland
    Editing unprotected external game resources? ;p
     
  5. 7,626
    5,798
    872
    kozarovv

    kozarovv Super Moderator

    Joined:
    Nov 8, 2014
    Messages:
    7,626
    Likes Received:
    5,798
    Trophy Points:
    872
    Home Page:
    This even excluding translations in some not so rare cases.. Not enough for me. But yeah for someone else game modding can be a point.
     

Share This Page