Live in Your World, HAX in Ours!
Hello World! I've been reporting on Sony PlayStation hacking news since 2000 and started PSXHAX in 2014 to cover PlayStation (PSX), PlayStation 2 (PS2), PlayStation 3 (PS3), PlayStation 4 (PS4), PlayStation Portable (PSP), PlayStation Vita (PS Vita), PlayStation TV (PS TV) and next-gen PlayStation 5 (PS5) platforms along with anything else of interest.
Click on my UserName author link above and you'll be able to view a curated list of all the articles I've contributed thus far to PSXHAX.COM!
Click on my UserName author link above and you'll be able to view a curated list of all the articles I've contributed thus far to PSXHAX.COM!
Uncharted 4: A Thief's End Copies Stolen, Oh The Irony
Believe it or not, this isn't a joke... Sony Worldwide Studios President Shuhei Yoshida reports today that of all new PlayStation 4 titles Uncharted 4: A Thief's End copies have been stolen! 
Below is what he had to say on PS Blog this morning, to quote: "We have some unfortunate news to report that a number of copies of Uncharted 4: A Thief’s End were stolen while in transit.
While we are continuing to work with the police to resolve the matter — which is the subject of an ongoing criminal investigation — it appears that a few copies of the game have surfaced in the UK.
We know that very many of you have been looking forward with great anticipation and excitement to the latest masterpiece from Naughty Dog. From what I have played of Nathan Drake’s latest adventure, I can tell you that it is very much worth the wait.
As with most Naughty Dog games, the unfolding story is such an integral part of the experience and for this reason we wanted to warn you to beware of the potential for spoilers to be posted by people with access to stolen copies of the game.
An extremely talented team has worked long and hard to bring Nathan Drake’s greatest adventure to life and we would urge you to help us prevent this from being spoiled by not purchasing copies of the game ahead of the launch date.
Please rest assured we will be very vigilant to protect you from this as far as we can so you can enjoy Uncharted 4’s experience to its fullest on May 10."
Thanks to ThisGenGaming.com for the back cover box art image.
As of yet I haven't seen a PS4 scene release of it, although I didn't look very hard either but odds are it won't be long
Below is what he had to say on PS Blog this morning, to quote: "We have some unfortunate news to report that a number of copies of Uncharted 4: A Thief’s End were stolen while in transit.
While we are continuing to work with the police to resolve the matter — which is the subject of an ongoing criminal investigation — it appears that a few copies of the game have surfaced in the UK.
We know that very many of you have been looking forward with great anticipation and excitement to the latest masterpiece from Naughty Dog. From what I have played of Nathan Drake’s latest adventure, I can tell you that it is very much worth the wait.As with most Naughty Dog games, the unfolding story is such an integral part of the experience and for this reason we wanted to warn you to beware of the potential for spoilers to be posted by people with access to stolen copies of the game.
An extremely talented team has worked long and hard to bring Nathan Drake’s greatest adventure to life and we would urge you to help us prevent this from being spoiled by not purchasing copies of the game ahead of the launch date.Please rest assured we will be very vigilant to protect you from this as far as we can so you can enjoy Uncharted 4’s experience to its fullest on May 10."
Thanks to ThisGenGaming.com for the back cover box art image.
As of yet I haven't seen a PS4 scene release of it, although I didn't look very hard either but odds are it won't be long
Mamba PRX Loader 2.1.5 & Autoloader (Unofficial) for PS3 4.80 CFW
Today franzes80 announced the release of Mamba PRX Loader v2.1.5 with Autoloader (unofficial) for the recently released PS3 4.80 CFW followed by some revisions below!
Download: MAMBA_PRX_Loader-master.rar (14.9 MB) / GIT
To quote, roughly translated on the changes: The Orion developer has released a new version unofficial application Mamba PRX loader in version 2.1.5 originally developed NZV.
This tool offers all the great features of a CFW Cobra, except the start of ISO PS2-PSP, on any normal CFW.
The homebrew MAMBA also allows you to upload and / or plugins VSH (with MAMBA or PRX Loader) by two different ways: at boot time or later and is compatible with all CFW no cobra up to 4.80.
Mamba PRX Loader 2.1.5 & Autoloader (Unofficial) Changelog:
Update: From Brewology.com comes MAMBA / PRX Loader v3.1.3 followed by v3.1.4 from _NzV_ / Rancid-O (aka @RancidoPS3ita) which now supports 4.81 CEX / DEX CFW.
Download: MAMBA_PRX_Loader_3.1.3.pkg / MAMBA_PRX_Loader_3.1.4.pkg
Mamba / PRX Loader 3.1.3 (Unofficial) Changelog:
MAMBA/PRX Loader 4.84.1
Download: MAMBA_PRX_Loader-master.rar (14.9 MB) / GIT
To quote, roughly translated on the changes: The Orion developer has released a new version unofficial application Mamba PRX loader in version 2.1.5 originally developed NZV.
This tool offers all the great features of a CFW Cobra, except the start of ISO PS2-PSP, on any normal CFW.
The homebrew MAMBA also allows you to upload and / or plugins VSH (with MAMBA or PRX Loader) by two different ways: at boot time or later and is compatible with all CFW no cobra up to 4.80.
Mamba PRX Loader 2.1.5 & Autoloader (Unofficial) Changelog:
- Added support CFW 4.80
Update: From Brewology.com comes MAMBA / PRX Loader v3.1.3 followed by v3.1.4 from _NzV_ / Rancid-O (aka @RancidoPS3ita) which now supports 4.81 CEX / DEX CFW.Download: MAMBA_PRX_Loader_3.1.3.pkg / MAMBA_PRX_Loader_3.1.4.pkg
Mamba / PRX Loader 3.1.3 (Unofficial) Changelog:
- Added support for CFW 4.81CEX
- Added support for CFW 4.81DEX
MAMBA/PRX Loader 4.84.1- Added support for CFW 3.55 to 4.84 CEX/DEX
- Untested support for CFW 4.78-4.84 DEH
- Updated MAMBA with offsets from ManaGunZ by Zar & littlebalup
- Added some features from Cobra 8.01 by Habib / Joonie
- MAMBA_PRX_Loader_4.84.1.pkg
- Source code (zip)...
PS4 Custom Home Menu Mod PoC by Senaxx
Today PlayStation 4 modder eXtreme shared news of a PS4 Custom Home Menu Mod proof-of-concept and PS4 XMB Hack by Senaxx.
Below are some brief details alongside a video demo and additional screenshots from fx0day and eXtreme, to quote: "Maybe you have saw on twitter that Senaxx posted a screenshot of the first custom home menu on the ps4. for me it's the most interesting progress for end users.
He found a database and was able to edit the file. It would be great if someone can share more information about the method that others can edit the home menu too and search for more ui mods."
Below is one more video by eXtreme demonstrating his PS4 UI Mod 0.05 Alpha:
Below are some brief details alongside a video demo and additional screenshots from fx0day and eXtreme, to quote: "Maybe you have saw on twitter that Senaxx posted a screenshot of the first custom home menu on the ps4. for me it's the most interesting progress for end users.He found a database and was able to edit the file. It would be great if someone can share more information about the method that others can edit the home menu too and search for more ui mods."Below is one more video by eXtreme demonstrating his PS4 UI Mod 0.05 Alpha:
PS4 Webkit Exploit PoC for PlayStation 4 Firmware 2.XX by Fire30
Following news of the PS4 Dlclose Exploit for 1.76 and more recently the Entry Point findings, today Wololo reports that PlayStation 4 developer Fire30 made available on Github a PS4 Webkit Exploit proof-of-concept for PlayStation 4 Firmware 2.XX.
Download: PS4-2014-1303-POC-master.zip / PS4-2014-1303-POC GIT
From the ReadMe file: CVE 2014-1303 Proof Of Concept for PS4
This repository contains a poc for the CVE 2014-1303 originally disclosed by Liang Chen. It has been tested to work on system firmware 2.03, but should work for systems on a firmware < 2.50, the ROP test will however only work on 2.03.
Usage
You need to edit the dns.conf to point to the ip address of your machine, and modify your consoles dns settings to point to it as well. Then run
then
Debug output will come from this process.
Navigate to the User's Guide page on the PS4 and various information should be printed to the console. The ROP test will print what is stored in the rsp register. Continuing execution after rsp is pivoted still needs to be done.
Acknowledgements
Liang Chen
thexyz
dreadlyei
Fire30 also notes, to quote: This implementation will not work on the vita as it uses a different memory allocator. In fact I am using the same exploit that is used in https://github.com/Hykem/vitasploit for 3.36, so that is the farthest this vulnerability will go.
Thanks to CnCore for the tip in the PSXHAX.COM Shoutbox!
Download: PS4-2014-1303-POC-master.zip / PS4-2014-1303-POC GIT
From the ReadMe file: CVE 2014-1303 Proof Of Concept for PS4
This repository contains a poc for the CVE 2014-1303 originally disclosed by Liang Chen. It has been tested to work on system firmware 2.03, but should work for systems on a firmware < 2.50, the ROP test will however only work on 2.03.
Usage
You need to edit the dns.conf to point to the ip address of your machine, and modify your consoles dns settings to point to it as well. Then run
Code:
python fakedns.py -c dns.conf
Code:
python server.pyNavigate to the User's Guide page on the PS4 and various information should be printed to the console. The ROP test will print what is stored in the rsp register. Continuing execution after rsp is pivoted still needs to be done.
Acknowledgements
Liang Chen
thexyz
dreadlyei
Fire30 also notes, to quote: This implementation will not work on the vita as it uses a different memory allocator. In fact I am using the same exploit that is used in https://github.com/Hykem/vitasploit for 3.36, so that is the farthest this vulnerability will go.
Thanks to CnCore for the tip in the PSXHAX.COM Shoutbox!