PS3 HAN PS3Xploit v3 SSL Certificate Injector/Remover

[esc0rtd3w]

Now Supports 4.88 HFW!

This has the potential to corrupt your system and require you to install OFW (Original Firmware) and possible HDD wipe if a modified certificate is used as a replacement.

This tool will allow you to add new SSL certs to flash, and remove any added ones from flash. This is more for curious people who want to dabble with maybe fixing some cert issues with old WebKit.

SUPPORTS OFW, HFW, and CFW

HAN "DOES NOT" Need Enabled For This!

UPDATE (2019-08-31): ALL HAN TOOLS HAVE BEEN UPDATED TO SUPPORT 4.85 CEX!
UPDATE (2019-03-23): ALL HAN TOOLS HAVE BEEN UPDATED TO SUPPORT 4.84 CEX/DEX!
UPDATE (2018-04-11): ALL HAN TOOLS HAVE BEEN UPDATED TO SUPPORT 4.82 DEX!

Default certificates end at "CA59.cer" and all added ones use "CA60.cer" and higher for both injector and remover.

UPDATE (20180420): Added support for CA_LIST.cer and system default certs

How To Use Injector:​

• 4.82 OFW: Download SSL Certificate Injector/Replacer ZIP archive
• 4.84/4.85 HFW: Download SSL Certificate Injector/Replacer ZIP archive
• Extract the files
• Place desired cert file on USB flash drive or select one of the internal HDD options**
• Select certificate from dropdown box to match filename on USB
• 4.82 OFW: Navigate to this link or use local files above and a webserver
• 4.84/4.85 HFW: Navigate to this link or use local files above and a webserver
• Run the exploit from page
• Done! Browser will exit by default

How To Use Remover:
​

• • Use same archive as injector for files, if hosting locally
  • 4.82 OFW: Navigate to this link or use local files above and a webserver
  • 4.84 HFW: Navigate to this link or use local files above and a webserver
  • Select certificate to remove from dropdown box
  • Run the exploit from page
  • Done! Browser will exit by default

** You can also create a package that holds resources or files to copy using Extra Tools and use this instead of USB as source. Default directories are /dev_hdd0/game/PS3XPLOIT/extras/ and /dev_hdd0/game/HANTOOLBX/files/

Hosted on official site: **ps3xploit.com >Domain no Longer owned by team** (ps3xploit.me =new) (v3 HAN Tools -> Extra Tools -> SSL Certificate Tools)
Source Code: github.com/PS3Xploit/ssl_cert_injector_remover​

 

[chronoss]

SSL Certificate ?

 

[esc0rtd3w]

yup

 

[Olvido]

what is this for ?

 

[esc0rtd3w]

i dont understand the confusion!

its for exactly what the title says lmao

you can add or remove a cert to/from flash that is not one of the default system ones

simple

nothing else

 

[jeka26]

i dont understand the confusion!

its for exactly what the title says lmao

you can add or remove a cert to/from flash that is not one of the default system ones

simple

nothing else

the question is when we can launch a homebrew program like multimen and web men

 

[Crash420]

the question is when we can launch a homebrew program like multimen and web men

Never

 

[esc0rtd3w]

the question is when we can launch a homebrew program like multimen and web men

You are a f#&king idiot!!

 

[junaid]

You are a f#&king idiot!!

There should be an idiot section for these types of questions

 

[Olvido]

@esc0rtd3w will it be possible to inject trophies ?

 

[junaid]

@esc0rtd3w BTW can this be used to fix the issue where some websites don't work cuz of outdated certificates?

 

[esc0rtd3w]

@esc0rtd3w BTW can this be used to fix the issue where some websites don't work cuz of outdated certificates?

That was my thinking with it haha

@esc0rtd3w will it be possible to inject trophies ?

We can technically "inject" any file into any writable mount point. This could be made into a tool later, probably.

 

[jeka26]

There should be an idiot section for these types of questions

write first learn the clown

 

[chronoss]

the question is when we can launch a homebrew program like multimen and web men

multimen --> mod for MultiMan
web men --> mod for Web Man

 

[cyberpunkych]

Hello, I'm trying to use your tool to inject Burp's certificate. First, I converted burpCA cert from Der to Pem format via

openssl x509 -inform der -in burp.der -out burp.pem

, then I format my usb flash drive to fat32 and place renamed cert to CA60.cer to root of my flash drive and insert it to the right USB port on the front panel. Then, after configuring network settings to use my computer with running burp as proxy, I opened web browser, choose /dev_usb000 and try to run the tool. It fails few times, maybe I do something wrong?

Thank you for answer and sry for my bad English skills

P.S. My ps3 has OFW 4.82

P.S.S. Okay, now it says "success", but browser and other connections are still conflict with my proxy, so it seems there is no effect from injecting CA certificate. Maybe I forgot to do something?

 

[masterquest91]

I use my ps3 to access internal services that are often using self-signed certs, so I'm greatly appreciative of this.

On an ironic note: I wish psx-place would fully adopt SSL, especially with authentication...

 

[Md Hesam]

can I inject SSL Cert on ps3 super slim does it change...

 

[Kazama]

Can we browse psx-place forum from ps3 browser after removing all the SSL certificates using the han tool box SSL certificates remover ???

At present I can't browse the psx-place forum on my ps3. I'm using 4.84 HFW.

 

[GSoliz25]

Would this fix a "SSL Handshake error"? I got this error while in Multiman, using the top far right option, homebrew option(not sure exactly what it is at the moment, I am at work.) I am new to all this. Yes, I am an idiot as well.

 

[Reid]

Hey i'm on CFW, trying to inject a SSL Certificate and every time i am just getting failed.