Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
PS4 Jailbreaking       Thread starter doron       19      
Status
Not open for further replies.

doron

Developer
Senior Member
Contributor
i have installed ps4console correctly and started poking with the commands..

so far i know that sony did add the kernel ASLR from 1.76 since the modules base address have been changed every startup, but running the "getmodules" command got me all of their base addresses (i sat and watched as the ps4 revealed me his secrets :D)

i dumped some of the modules (what i could and what looked interesting), but i could not dump some of the modules (a module that i really wanted to dump but couldn't is libSceWebKit2.sprx (Index 0x24) this module looks interesting to lookout for)

i am uploading all of my work,including a text file with the data i got (mostly copy/paste form the console) and the dumped modules so you can look into them and you might discover something i didn't...

i will try to dump more modules and examine what i dumped already tomorrow..
 
Thanks for sharing your work with us here @doron, even if a lot of what you said is above my head it's great to see everyone hacking away on the PS4 :love:

I've made you a Developer also, so those following developers here can include your progress in the mix.. keep up the good fight! :D
 
btw if we can get access to the "ptrace" command we might get a kernel exploit (a vulnerability in freeBSD 0.9 which might be useful)

more about it here : https://www.exploit-db.com/exploits/26368/ (copied from cturt)
but we should also look into sony system calls
i have continued to work on the PS4.....

i have thought to myself "if the PS4 is much like a computer,let's try to hack him like a computer..."

so i booted kali linux... like a good hacker, i tried to hack the ps4 over the network by using nmap and metasploit (from kail linux) i thought i would get some results from there (actually i got some,and willing to share) so... i ran an nmap scan to detect open ports and vulnerabilities, some of the exploits identified the PS4 as FreeBSD 6.2 for some reason...

i am sharing the nmap scans and the best metaploit attempt i got so far(most of them didn't display useful data)

you can read the files as you wish
 
Status
Not open for further replies.
Back
Top