PS4 PS4Pro 11.00 Defeat KASLR

teknikaLity

teknikaLity

Forum Noob
System: PS4 Pro
Model: CUH-7115B
FW: 11.00
OS: Windows 11
PPPwn Loader v1.5
GoldHEN v2.4b18.7

Alright boys, I'm struggling here. I've tried multiple times to JB this thing and each time the PS4 crashes/shuts down. I've plugged in the ethernet, plugged in the exFAT/FAT32 USB with GoldHEN, run PPPwn with the stage2.bin file set, set PS4 Network to LAN cable custom, set to PPPoE, set ID/password, Auto DNS, Auto MTU, no Proxy, then test connection. I get to Stage 1 - Sending IPCP configure ACK... and then the PS4 crashes. Once the PS4 is turned back on it rolls into Stage 2 - Defeating KASLR and stops. I've also bridged my network, which also didn't help any. I've tried downloading PPPwn Loader v1.9 from Modded Warfare's YT video, but every link I tried got caught up in virus detection, which I've tried to allow through Windows Defender and still gets caught. What am I missing?

Code: 
2025/01/11 16:21:52 - [+] STAGE 0: Initialization
2025/01/11 16:21:52 - [*] Waiting for PADI...
2025/01/11 16:21:52 - [*] Waiting for PADI...
2025/01/11 16:21:53 - [+] pppoe_softc: 0xffffb00c288fd800
2025/01/11 16:21:53 - [+] Target MAC: f8:46:1c:cd:eb:b8
2025/01/11 16:21:53 - [+] Source MAC: 07:d8:8f:28:0c:b0
2025/01/11 16:21:53 - [+] AC cookie length: 4e0
2025/01/11 16:21:53 - [*] Sending PADO...
2025/01/11 16:21:53 - [*] Waiting for PADR...
2025/01/11 16:21:53 - [*] Sending PADS...
2025/01/11 16:21:53 - [*] Sending LCP configure request...
2025/01/11 16:21:53 - [*] Waiting for LCP configure ACK...
2025/01/11 16:21:53 - [*] Waiting for LCP configure request...
2025/01/11 16:21:54 - [*] Sending LCP configure ACK...
2025/01/11 16:21:54 - [*] Sending IPCP configure request...
2025/01/11 16:21:54 - [*] Waiting for IPCP configure ACK...
2025/01/11 16:21:54 - [*] Waiting for IPCP configure request...
2025/01/11 16:21:55 - [*] Sending IPCP configure NAK...
2025/01/11 16:21:55 - [*] Waiting for IPCP configure request...
2025/01/11 16:21:55 - [*] Sending IPCP configure ACK...
2025/01/11 16:21:55 - [*] Waiting for interface to be ready...
2025/01/11 16:21:55 - [+] Target IPv6: fe80::fa46:1cff:fecd:ebb8
2025/01/11 16:21:55 - [*] Heap grooming...0%
2025/01/11 16:21:56 - [*] Heap grooming...6%
2025/01/11 16:21:56 - [*] Heap grooming...12%
2025/01/11 16:21:56 - [*] Heap grooming...18%
2025/01/11 16:21:56 - [*] Heap grooming...25%
2025/01/11 16:21:57 - [*] Heap grooming...31%
2025/01/11 16:21:57 - [*] Heap grooming...37%
2025/01/11 16:21:57 - [*] Heap grooming...43%
2025/01/11 16:21:57 - [*] Heap grooming...50%
2025/01/11 16:21:57 - [*] Heap grooming...56%
2025/01/11 16:21:58 - [*] Heap grooming...62%
2025/01/11 16:21:58 - [*] Heap grooming...68%
2025/01/11 16:21:58 - [*] Heap grooming...75%
2025/01/11 16:21:58 - [*] Heap grooming...81%
2025/01/11 16:21:58 - [*] Heap grooming...87%
2025/01/11 16:21:59 - [*] Heap grooming...93%
2025/01/11 16:21:59 - [+] Heap grooming...done
2025/01/11 16:21:59 - [+] STAGE 1: Memory corruption
2025/01/11 16:21:59 - [*] Pinning to CPU 0...00%
2025/01/11 16:22:00 - [*] Pinning to CPU 0...06%
2025/01/11 16:22:00 - [*] Pinning to CPU 0...12%
2025/01/11 16:22:01 - [*] Pinning to CPU 0...18%
2025/01/11 16:22:01 - [*] Pinning to CPU 0...25%
2025/01/11 16:22:01 - [*] Pinning to CPU 0...31%
2025/01/11 16:22:02 - [*] Pinning to CPU 0...37%
2025/01/11 16:22:02 - [*] Pinning to CPU 0...43%
2025/01/11 16:22:03 - [*] Pinning to CPU 0...50%
2025/01/11 16:22:03 - [*] Pinning to CPU 0...56%
2025/01/11 16:22:04 - [*] Pinning to CPU 0...62%
2025/01/11 16:22:04 - [*] Pinning to CPU 0...68%
2025/01/11 16:22:05 - [*] Pinning to CPU 0...75%
2025/01/11 16:22:05 - [*] Pinning to CPU 0...81%
2025/01/11 16:22:06 - [*] Pinning to CPU 0...87%
2025/01/11 16:22:06 - [*] Pinning to CPU 0...93%
2025/01/11 16:22:06 - [+] Pinning to CPU 0...done
2025/01/11 16:22:07 - [*] Sending malicious LCP configure request...
2025/01/11 16:22:07 - [*] Waiting for LCP configure reject...
2025/01/11 16:22:09 - [*] Sending LCP configure request...
2025/01/11 16:22:09 - [*] Waiting for LCP configure ACK...
2025/01/11 16:22:09 - [*] Waiting for LCP configure request...
2025/01/11 16:22:10 - [*] Sending LCP configure ACK...
2025/01/11 16:22:10 - [*] Sending IPCP configure request...
2025/01/11 16:22:10 - [*] Waiting for IPCP configure ACK...
2025/01/11 16:22:10 - [*] Waiting for IPCP configure request...
2025/01/11 16:22:11 - [*] Sending IPCP configure NAK...
2025/01/11 16:22:11 - [*] Waiting for IPCP configure request...
2025/01/11 16:22:11 - [*] Sending IPCP configure ACK...
2025/01/11 16:32:58 - [+] Scanning for corrupted object...found fe80::0fff:4141:4141:4141
2025/01/11 16:32:58 - [+] STAGE 2: KASLR defeat
2025/01/11 16:32:58 - [*] Defeating KASLR...
 
I don't know how reliable that exploit is, but the console crashing is a normal happening with PS4 exploits. They're called kernel panics. Some exploits are more reliable than others, but all have the potential to kp.
 
I use the c++ version, using command line options and it works fine. I tested on Linux and windows, on 9.60 and 11.00 pros.

https://github.com/xfangfang/PPPwn_cpp

If you have problems, just use the original python one.

https://github.com/TheOfficialFloW/PPPwn

The best option, IMO is the raspberry pi. I tested on a v1 original and it worked perfect using PI-Pwn. You can use a WiFi adapter (or built-in) to passthru to ps4, for internet access.

https://github.com/stooged/PI-Pwn

Edit:
Charles_n_town said:
I don't know how reliable that exploit is, but the console crashing is a normal happening with PS4 exploits. They're called kernel panics. Some exploits are more reliable than others, but all have the potential to kp.
Click to expand...
It does crash sometimes.
 
Last edited:
esc0rtd3w said:
I use the c++ version, using command line options and it works fine. I tested on Linux and windows, on 9.60 and 11.00 pros.
Click to expand...

So, I have downloaded this version, x86_64-windows-gnu, but whenever I run the .exe all I get is a quick command prompt window that immediately closes. Any ideas?

I do understand crashes happen, but it has happened every single time I've attempted the hack. Also, I do have Visual C++ installed.
 
Update: I have now also tried SoftwareRat's pppwn_live bootable exe and I'm still getting the same result. I saw something on FloW's GitHUB Pull Requests that they had found a fix for a KASLR loop, but their fix is for the Stage 2 crash and mine crashes in Stage 1, then gets stuck on Defeat KASLR after reboot. I know PS4 Pros have been a pain over the past year, but I've seen where some people say they are successful. Just no one explains the steps they were able to use to bypass the crashes. I'm at 100% fail rate still after a week of trying different methods.
 
I dont understand, because my pro works fine on 9.60 and my friends pro works fine on 11.00.

Edit: I use Kali Linux and c version when testing but windows worked too with command line and python.

Make sure you have newest bin for stage1, or compile from source.
 
You must log in or register to reply here.

Similar threads

Back
Top