Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 PKGs.
PS3 Jailbreaking       Thread starter PSXHAX       Start date Aug 7, 2017 at 2:49 AM       532      
Status
Not open for further replies.
Following his PS3 OFW PSID Dump Tool Tutorial and recent d0 / d1 pdb file findings PlayStation 3 developer @esc0rtd3w (Twitter) set up some new work-in-progress Github forks for a PS3 WebKitSploit and PS3 Playground port. :ninja:

Download: ps3-webkitsploit-master.zip / PS3 WebKitSploit GIT / ps3-playground-master.zip / PS3 Playground GIT / Websploit.org / PS3 Playground Test Page / PS3 Webkit POC / PlayStation 3 Browser Investigation

The PS3 WebKitSploit is based on original PS4 code from Cryptogenic and qwertyoruiopz focusing on PS3 3.xx / 4.xx code execution, while the PS3 Playground WebKit exploit port is based on CTurt and Cryptogenics PS4 code. :ninja:

From the README.md file, to quote: PS3 Playground

A collection of PS3 tools and experiments using the WebKit, Flash, and other options.
We are only testing on firmware 4.81 only at the moment.

THIS REPO IS FOR THE PUBLIC PS3 COMMUNITY TO EXPLORE AND TEST ON THEIR OWN

OUR TEAM IS CURRENTLY WORKING ON THIS PROJECT PRIVATELY AND WILL UPDATE WHEN FINISHED!

FOR A LIVE DEMO WITH PUBLIC TESTS TO TRY OUT, PLEASE VISIT: http://www.websploit.org/ps3/ps3-playground/test/

There are a lot of files here for reference and exploration.

Once more testing has been done, these will be cleaned up over time.

CREDITS:

Inspired by original work from CTurt (https://github.com/CTurt/PS4-playground/) and Cryptogenic (https://github.com/Cryptogenic/PS4-Playground-3.55)

Spoiler: Original (Outdated) Information
If anyone can lend him a hand on Github that would be much appreciated, and cheers to @B7U3 C50SS, @Bultra and @spyro2670 for the heads-up in the PSXHAX Shoutbox earlier today! :beer:
PS3 WebKitSploit and PS3 Playground WIP Github Forks by Esc0rtd3w.jpg
 

Comments

Also one more question, does this permit R/W access to the firmware, and probably a JB or code injection ?

in a word....yes.

more specifically, we plan on enabling CFW type features and more on all OFW as an end goal, simply put. But its a bit more complex than that. :confused:

we have to do everything in stages. Stage 1 was finding an entry point, done! Stage 2 was getting userland control and memory dumping, done! Stage 3 was getting access to root syscalls, done! Stage 4 was building working ROP chain to control all registers, done! Stage 5 is tricky and we have several options available currently using syscall chaining and other things......no spoilers, yet! :censored: <-- probably missed a few stages haha

Oh, and did i mention testing and lots and lots of time, blood, sweat, tears from the whole team! :sleep::sleep::sleep::sleep:

Not much to update with yet other than we are still working very hard to get a public release when we can :coffee:
 
So esc0rtd3w is stage 5 the final stage or is there more stages to come and also can you say when will this become public i mean not an exact eta but like in general do you think months or weeks and also I really want to thank you and the team for giving all of this time and hard work just to help the ps3 scene you guys rock.
 
Please but I have a problem with the websploit's page. the webpage show a captcha to resolve but the navigator of the ps3 don't do it please help me
 
hosting down probably?? its free. i gotta check

the SVG thing acts weird, sometimes asks for storage media??

i will add a couple more tests from the private testing page for you guys to play with to keep ya busy while you wait.... at least one good one with a CVE :D or maybe you will find something else cool :cool:
 
Status
Not open for further replies.
Back
Top