Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
Status
Not open for further replies.
Following his Crypto CoProcessor (CCP) Bug for PS4 Keys, the Gran Turismo 7 PS4 / PS5 Patch Issue Updates and HFW PS4 Extraction Tool today PlayStation 4 Scene developer @flatz released via Twitter a Gran Turismo 7 Unpacker Tool dubbed GT7Tool to decrypt and unpack PS4 files from GT7 archives for examination by modders and researchers including Nenkaai with further details in the Tweets below. :geek:

Download: gt7tool-main.zip / GIT

From the README.md: gt7tool

Gran Turismo 7 unpacker

Decrypts and unpack files from GT7 archives
Bump, Gran Turismo 7 unpacker
e.g.:
Code:
python3 -m gt7tool -v unpack contents/gt.idx scripts/gt7/main.adc
unfortunately we don't have file names inside archive anymore (to locate entry inside archive they use fnv1a hash of its file path)... so you need to collect them during play or grab them from resources, e.g. compiled scripts
i'm doing that on pc entirely
Can't say I didn't want to peek at that GT7 VOL first, alas modern day jailbreaks and exploits are hard to come across, but it does give motivation to understand how those work
Based on flatz's code, the GT7 Volume system is version 3 (GT5P = 0x5B745161, 5/6/SP = 0x5B745162, 7 being 0x5B745163). It's still looks like a brand new volume system however, but it looks easier as-in, using generic crypto that older games already used.
The fact that volume paths are replaced by hashes is annoying, but usually mitigated by the fact that scripts and other files are generally verbose about paths.
It's also interesting to see that the PS4 does use Kraken for compression, where I would expect it to be a PS5-only implementation.

All in all, this is huge, flatz once again starting things up for potentially starting research regarding GT7. Kudos to him.
as i see kraken is mentioned in the code (don't remember if I've seen class to decompress it), but i didn't see such files on ps4 version, and it seems zstd is used here only

Spoiler

GT7Tool Decrypt & Unpack Gran Turismo 7 PS4 Files from GT7 Archives.jpg
 

Comments

This means that there is a JB for Fw 9.00 < or the PS5 as then only as then only the game can be decrypted and the files can be unpacked
 
@tungatung I'm pretty sure there's a private higher exploit than fw 9.00 as Petrgold said the HFW PS4 retail version was dumped. Then there's all the backports that have been released:

9.03 backported:
  • Astria Ascending v1.06
  • Bassmaster Fishing 2022 v1.14
  • Conan Exiles v1.78
  • Days Gone v1.81
  • Demon Slayer v1.31
  • FIFA 22 v1.19
  • Gang Beasts v1.18
  • Horizon Chase Turbo v2.11
  • Nexomon v1.01
9.04 backported:
  • Aragami 2 v1.04
  • Dying Light: The Following v1.34
  • FIFA 22 v1.20
  • Lost Judgment v1.11
9.50 backported:
  • Bassmaster Fishing 2022 v1.20
  • Beat Saber v1.55
  • FIFA 22 v1.22
9.51 backported:
  • FIFA 22 v1.23
 
@JackFlap im pretty sure that it will be released soon. Just waiting for $ony to forget ps4 like they did with the ps3 and then every dev & every security researcher can publish their works to the public. I guess this would happen by the end 2023.

Maybe there are some very awesome things for the ps4 like downgrading, cfw or a permanent coldboot exploit or something more cooler

Btw when i read HFW, i first thought you are saying as in HFW for the PS3 ;)
 
Status
Not open for further replies.
Back
Top