Host Your Own PS4 Webkit Exploit Page on LAN by Al Azif

Inspired by the recent PS4 Webkit Exploit Local Server tutorial, @Al Azif shared a script to cover many of the steps in the guide and has since updated the Easy PS4 Exploit Hosting Tool releasing on Github for those seeking to host their own PS4 Webkit Exploit page on LAN since Sony started blocking them.

Easy PS4 Exploit Hosting Tool Download: ps4-exploit-host.zip / GIT / PS4 Exploit Host Menu (for those who don't want to host their own) / Exploits Folder Browser / PS4 Exploit Host for OpenWRT by irefuse

To quote from the README.md: PS4 Exploit Host

What is this?

This is an easy way for anyone to host their own exploit for the PS4 on their LAN. It blocks PSN to stop accidental updates, it also serves the 4.05 update if you want it to. You can also generate an FTP payload. There is also a simple CLI for sending additional payloads.

So the scope of this has become like an all in one toolkit.

Requirements

• Python 2 (Tested on 2.7.14)
• The Python Directory added to your System Path Environment Variable (Windows Only)
• This should run on Windows, OSX, and Linux (Tested on Windows 7, Windows 10, and Ubuntu 16.04)

How to download

• Download the zip on the releases page
• Download with Git, be sure to grab the submodules

How to run

1. Run python start.py from the command line
   • If it starts with no errors, note the IP given to you
2. On your PS4 use the noted IP as your DNS server
3. On your PS4, go to Settings > User Guide and select it. Boom, the exploit page should load.
4. When you're done use Crtl+C to cleanly close the script

Contributing

You can check the issue tracker for my to do list and/or bugs. Feel free to send a pull request for whatever. Be sure to report any bugs, include as much information as possible.

What if a new exploit is released?

You should just be able to replace the exploit files in the "exploit" folder.

Credits

• crypt0s for FakeDns
• qwertyoruiopz & AN0NY420 for the exploit

Here are some other PS4-related Tweets making their rounds today:

Spoiler

Download: PS4-BETA-1.50-PS4UPDATE.PUP (307.9 MB) / PS4-BETA1-2.50-PS4UPDATE.PUP (233.6 MB) / PS4-BETA2-3.50-PS4UPDATE.PUP (286.5 MB) / PS4-BETA3-4.00-PS4UPDATE.PUP (297.8 MB)

Host Your Own Webkit Exploit & Jailbreak 4.05 Firmware PS4

How to Host the 4.55/4.05 Exploit Locally

Hosting PS4 5.05 Exploit Locally + Adding custom payloads (5.05 Jailbreak)

Hosting 5.05 Exploit Offline (PS4 Jailbreak)

How To Setup Al Azif DNS For Your PlayStation 4 And Run Any Payload Offline!

Cheers to @hyndrid, @SSShowmik and @Wultra for the Easy PS4 Exploit Hosting Tool news tips in the PSXHAX Shoutbox earlier today!

 

[Koh23]

Yes, tutorial will be great.

 

[mschumacher69]

Click README.md in OP and you'll find a tutorial there.

 

[Koh23]

Thanx, but i was referring to Docta design, it woukd be great if he can write little tutorial, just basic stuff (where and what) to create custom host page.

 

[winch03200]

me too, i'm about tutorial for change design

 

[kylum]

@Al Azif
Thank you for your efforts. I was wondering if you could start sharing the contents of your psn.exposed/exploit site for those of us that host it our self. I like to copy your site and put it in the www/ folder of my router. With the latest release it’s blocked from doing it this way, I guess cause it checks first for ps4 version. I like doing this way because it’s a set and forget solution.

Thanks in advance

 

[Al Azif]

The win host is identified as containing malware by several engines on exploit total. When I ran it, it also created some suspicious looking for files in my temp folder - among them what seems to be a .net config file which suggests its launching a .net app. Why is the exe launching a .net app?

Did you actually look at the files? Maybe they are the python runtime or something...

Thanx, but i was referring to Docta design, it woukd be great if he can write little tutorial, just basic stuff (where and what) to create custom host page.

me too, i'm about tutorial for change design

Next release will have a template system for the HTML. Although you can change 99% of it by editing the files in the "html" folder.

@Al Azif
Thank you for your efforts. I was wondering if you could start sharing the contents of your psn.exposed/exploit site for those of us that host it our self. I like to copy your site and put it in the www/ folder of my router. With the latest release it’s blocked from doing it this way, I guess cause it checks first for ps4 version. I like doing this way because it’s a set and forget solution.

Thanks in advance

All the HTML and JS are included in every release. The DNS literally just runs this application. It's all been open source since the beginning. Not sure what else I can give you.

install python3, git clone, cd ps4-exploit-host && python3 ./start.py
If ip wrong interface, it possible to hardcode ip easy too.
before line
try:
check_args(args)

check_update_pup('SYSTEM', SYSTEM_MD5)

insert ip hardcode.
lan = '10.0.0.23'

If you have lots interfaces, simplehttp python server confused and pick wrong interface often...
Think al-azif add static ip flag to later version since we butcher our own...

That's what the --interface arg is for...

 

[valenroy]

Hi Al, I tried downloading your latest Windows version of v0.3.21 and windows 10 is refusing to download it because of warning on the hosted files. Perhaps you would like to have a look at it? Thanks.

 

[Al Azif]

@valenroy It's your a/v, I can't do anything about it. It's a false positive.

 

[mschumacher69]

@kylum Just set your PS4's DNS to 108.61.128.158 and you're good to go. You then visit Help Guide or the PS4's browser and it defaults to the Exploit page. This is as "set and forget solution" as it gets

 

[valenroy]

yeah, that's what i'm doing now actually, setting AL's DNS address... Was just testing out the latest release for him.