Volodymyr Pikhur to Give PS4 Presentation at Recon Brussels 2018

Similar to GeekPwn, the CCC Conference, Zer0Con and Tencent Security Conference hacker Volodymyr Pikhur who previously shared a demo of his PS4 IPL AES + HMAC Key Recovery Project will be giving a PS4 presentation at Recon Brussels 2018 on February 3rd at 16:00.

Here are the details from their conference page, to quote:

By: Volodymyr Pikhur
Scheduled on: February 3 at 16:00

This presentation will talk about how custom Southbridge silicon, responsible for background downloads while main SoC is off, didn’t help to secure PlayStation 4.

It will explain how a chain of exploits combined with hardware attacks will allow code to run in the context of the secure bootloader, extract private keys, and sign a custom kernel.

From the Github page, to quote: REcon 2018

This presentation will talk about how custom Southbridge silicon, responsibe for background downloads while main SoC is off, didn’t help to secure Playstation 4. It will explain how a chain of exploits combined with hardware attacks will allow code to run in the context of the secure bootloader, extract private keys, and sign a custom kernel.

https://recon.cx/2018/brussels/talks/die_mode.html

• Mess with the best die like the rest mode by Volodymyr Pikhur - REcon Brussels 2018.pdf

PlayStation 4 Rest Mode DEMO REcon Brussels 2018

Download: ps4-hen-vtx.bin (7.20 KB - HEN with rest mode patches enabled) / ps4hen.bin (7.17 KB - test 2 for rest mode)

 

[vampirexx]

The glitch is shown in firmware 5.00 on rest mode Ps4 and ram should be exploited? Someone can make it clear?

 

[salah 360]

volodymyr pikhur Posted a video a little while ago

 

[alen2181]

Fingers crossed

 

[PSXHAX]

Added the video and slides to the OP, my guess is flat_z may do another write-up for devs based on some of these things... we can only hope!

 

[Denisuu]

Thanks PSXHAX! I'll burn a candle for good luck

 

[phaedrus]

presentation show gitch system give full access all privs all sandbox + new vector not webkit which patch extra often later kernel. Extra exciting.

We study lots, hardest exploit one that nobody make work already, once know work, reproduction only. As many. Sony extra stupid not pay bounty for silence. Get reward for stupid think. Or Sony time for want kill ps4, sell ps5 instead.

 

[PS4gamer]

something will come out for 5.00??

 

[Denisuu]

No one knows

I don't even understand the slides and the video although it's very interesting! As far as I understand there's a bug in restmode and with some soldering you can exploit it so you can access the filesysten. Or maybe I completly misunderstand haha

 

[Rnand556]

Been watching the scene for a while now, pretty good progress this year, last year was a bit quiet, but eh.

Hopefully this year we can finally crack it, I have high hopes for a imminent CFW, I only got around to jb'ing my PS3 on 4.82 and I love it.

I will just hang out a bit longer, we wait in silence while people work around the clock, some people get impatient, some say we aren't getting anything out of it.

We are... If we wait long enough, eventually it will turn up, how close are we? Probably close. When it does come though, we can all celebrate.

And maybe sometime in the future, a PS4 emulator might make its way to PC. Who knows when, but its possible. Like the PS3 emulator we may also get 4k patches for them too.

But i'd like to say, keep up the work!

 

[heikkinen]

So I read the PDF and saw the video few times, but I cant seem to understand most of it... Can anyone dumb this down a bit for all us?