Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
PS4 Jailbreaking       Thread starter PSXHAX       Start date Dec 13, 2021 at 3:03 AM       205,584       459      
Another Festivus miracle... proceeding the PS4 9.00 Payloads, Caturday arrived early for the PS4Scene as ChendoChap (BTC: bc1qswmgpt7akstzrsudefjj88e7caxgmqfaxt59rf) just released the PS4 9.00 Jailbreak Exploit dubbed POOBS4 following @sleirsgoevy's PS4 9.00 Webkit Exploit for use in PlayStation 4 Jailbreaking consoles up to PS4 9.00 OFW as @SpecterDev confirmed it was patched in 9.03 PS4 OFW... to reiterate, this means if you update your PlayStation 4 console software above 9.00 you will NOT be able to jailbreak it at this time! 🎄 :kitty:

Also released in conjunction with today's pOOBs4 PS4 9.00 Kernel Exploit and PS4 Payloads for 9.00 Firmware are a Mira ELF / Loader for enabling homebrew (ELF: port 9021, Loader: port 9020) via SpecterDev and a GoldHEN 9.00 PS4 Payload via _AlAzif to run the latest PS4 PKG Games (Part II). :tree: :santa:

Download: pOOBs4-main.zip (22.6 KB - includes exfathax.img) / GIT / 9.00 Host Live Demo / 9.00 Host GIT / Mira 9.00.zip (116 KB - includes Mira_Orbis_MIRA_PLATFORM_ORBIS_BSD_900.elf and MiraLoader_Orbis_MIRA_PLATFORM_ORBIS_BSD_900.bin) / payloads (3.50.9.00).zip (223.66 KB) / goldhen_2.0b_900.bin (224 KB - Fixed) / ps4-dumper-vtx-900.bin / Al Azif's DNS Exploit Menu IPs / PS4JB pOOBs4 for 9.00 with GoldHEN Autoload / 9.00_kernel.bin (20.08 MB)

Spoiler: Depreciated

:alert: Those interested in exploiting their 9.00 or below PlayStation 4 console can either use @Al Azif's DNS IPs above or host it yourself following the previous guides linked below, keeping in mind our stance on clone hosts remains the same on the forums here... spam them and get banned.
⚠️ Below is pOOBs4's README.md... this requires a specially formatted USB device (ExFAT Bug also affects PS5 🥳) so read it VERY CAREFULLY to ensure developers including Al Azif aren't inundated with questions already covered... @RF0oDxM0Dz reports stability is similar to 5.05 and "better than 6.72 and 7.xx" with @Al Azif stating the success rate from feedback is "already is a world of difference from 6.72, 7.02, and 7.5X" so without further ado:

PS4 9.00 Kernel Exploit

Summary


In this project you will find an implementation that tries to make use of a filesystem bug for the PlayStation 4 on firmware 9.00. The bug was found while diffing the 9.00 and 9.03 kernels. It will require a drive with a modified exfat filesystem. Successfully triggering it will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. will launch the usual payload launcher (on port 9020).

Patches Included

The following patches are applied to the kernel:
  1. Allow RWX (read-write-execute) memory mapping (mmap / mprotect)
  2. Syscall instruction allowed anywhere
  3. Dynamic Resolving (sys_dynlib_dlsym) allowed from any process
  4. Custom system call #11 (kexec()) to execute arbitrary code in kernel mode
  5. Allow unprivileged users to call setuid(0) successfully. Works as a status check, doubles as a privilege escalation.
  6. (sys_dynlib_load_prx) patch
  7. Disable delayed panics from sysVeri
Short how-to

This exploit is unlike previous ones where they were based purely in software. Triggering the vulnerability requires plugging in a specially formatted USB device at just the right time. In the repository you'll find a .img file. You can write this .img to a USB using something like Win32DiskImager.

Note: This will wipe the USB drive, ensure you select the correct drive and that you're OK with that before doing this

POOBS4 PS4 9.00 Jailbreak Exploit via ChendoChap with Updated Payloads! 2.png

When running the exploit on the PS4, wait until it reaches an alert with "Insert USB now. do not close the dialog until notification pops, remove usb after closing it.". As the dialog states, insert the USB, and wait until the "disk format not supported" notification appears, then close out of the alert with "OK".

It may take a minute for the exploit to run, and the spinning animation on the page might freeze - this is fine, let it continue until an error shows or it succeeds and displays "Awaiting payload".

Notes
  • You need to insert the USB when the alert pops up, then let it sit there for a bit until the ps4 storage notifications shows up.
  • Unplug the USB before a (re)boot cycle or you'll risk corrupting the kernel heap at boot.
  • The browser might tempt you into closing the page prematurely, don't.
  • The loading circle might freeze while the webkit exploit is triggering, this means nothing.
  • This bug works on certain PS5 firmwares, however there's no known strategy for exploiting it at the moment. Using this bug against the PS5 blind wouldn't be advised.
Contributors
Special Thanks
🌀 Twitter Tweets
Spoiler: PS4 Alternative USB Flash Drive Method by SMD

:idea: Finally, if you haven't done so yet check out both the Downloading PS4 PKG Games That Are Base64 Encoded or Torrents Guide and PS4 Fake PKG (FPKG) Sharing Guide to become Verified via the 'floating' Discord Channel and get your Blue Verified Badge for the latest PS4 Game PKGs! 🏴‍☠️
POOBS4 PS4 9.00 Jailbreak Exploit via ChendoChap with Updated Payloads!.png
 

Comments

GreenTree2

Member
Contributor
Verified
@PSXHAX Someone asked whether they should upgrade from v5.05 to v9.0 and your advise was to remain on 5.05; however, people here say that 9.0 is just as stable, if not more, than 5.05 and 9.0 also gives so many more playing options of newer titles so I am wondering why the advisory still recommends people stay on 5.05 when 9.0 is so very good?

Thanks for the answer in advance :)
 

PSXHAX

Staff Member
Moderator
Verified
@GreenTree2 For 'scene' stuff lower firmware is usually recommended because inevitably more holes are present. In contrast, those not interested in game backups, homebrew and jailbreaking would want to keep their console updated so they can benefit from the latest bug fixes, etc.

For example, if a PS4 CFW for 5.05 came out those who updated to 9.00 wouldn't be able to use it, however, if it was released for 9.00 the 5.05 console owners could always update then... so staying lower offers a 'safety net' if you don't mind the inconvenience of using backported games as opposed to requiring a 'specially formatted USB device' in 9.00.
 

GreenTree2

Member
Contributor
Verified
Thanks for the detailed answer @PSXHAX. I think I should have made my question clearer; I am currently on 6.72 and it is working fine, around 80% success rate I would say. Since I am in the middle years, I don't really spend much time on console, it is used by my teenager who wants to play the latest games available. Even tried going legit with PS+ but it is not available in my country. The kid also has an XBox Series X which he uses for online play on XBox Game Pass Ultimate (with PC use).

So, I was thinking of upgrading the PS4 Pro console to FW9.0 which is apparently doing great and has an even higher success rate (some say 100%) and it has access to new games too (without backporting). Now, with that picture, what would you advise me to do? Thanks for your responses and guidance on this forum which helps many like myself.
 
Top