PS3 WebKitSploit and PS3 Playground WIP Github Forks by Esc0rtd3w

Following his PS3 OFW PSID Dump Tool Tutorial and recent d0 / d1 pdb file findings PlayStation 3 developer @esc0rtd3w (Twitter) set up some new work-in-progress Github forks for a PS3 WebKitSploit and PS3 Playground port.

Download: ps3-webkitsploit-master.zip / PS3 WebKitSploit GIT / ps3-playground-master.zip / PS3 Playground GIT / Websploit.org / PS3 Playground Test Page / PS3 Webkit POC / PlayStation 3 Browser Investigation

The PS3 WebKitSploit is based on original PS4 code from Cryptogenic and qwertyoruiopz focusing on PS3 3.xx / 4.xx code execution, while the PS3 Playground WebKit exploit port is based on CTurt and Cryptogenics PS4 code.

From the README.md file, to quote: PS3 Playground

A collection of PS3 tools and experiments using the WebKit, Flash, and other options.
We are only testing on firmware 4.81 only at the moment.

THIS REPO IS FOR THE PUBLIC PS3 COMMUNITY TO EXPLORE AND TEST ON THEIR OWN

OUR TEAM IS CURRENTLY WORKING ON THIS PROJECT PRIVATELY AND WILL UPDATE WHEN FINISHED!

FOR A LIVE DEMO WITH PUBLIC TESTS TO TRY OUT, PLEASE VISIT: http://www.websploit.org/ps3/ps3-playground/test/

There are a lot of files here for reference and exploration.

Once more testing has been done, these will be cleaned up over time.

CREDITS:

Inspired by original work from CTurt (https://github.com/CTurt/PS4-playground/) and Cryptogenic (https://github.com/Cryptogenic/PS4-Playground-3.55)

Spoiler: Original (Outdated) Information

If anyone can lend him a hand on Github that would be much appreciated, and cheers to @B7U3 C50SS, @Bultra and @spyro2670 for the heads-up in the PSXHAX Shoutbox earlier today!

 

[Jaroslav01]

does this actually need explained?

This guy need explained how it jailbreak

 

[k9mo]

So esc0rtd3w what is currently achieved beside the idps dumper i mean what are the other things that are accomplished?

 

[bonayzah]

Hii esc0rtd3w any new founds or process ? i hope we can load homebrew on 4.81 soon do you think i can get my otherOs option back so i can qa downgrade mm maybe if u should make it up with webkit exploit maybe we can enable it it should then easier to downgrade ?

i hope you can get a way that u can downgrade fia webkit exploit should be cool since i cant buy or get a e3 because my mother xd is there a way you can boot in cfw ? with a program would be nice to boot one min in cfw how it looks like

thanks esc0rtd have fun with your findings i'm your verry thankful btw i live in nederlands lol bad at english

 

[Jaroslav01]

This https://www.psxhax.com/threads/ps3-...ub-forks-by-esc0rtd3w.2623/page-27#post-31641 is what he already has done

 

[B7U3 C50SS]

Why would we want to downgrade if we could jailbreak straight from the get-go using WebKit?

 

[Jaroslav01]

maybe some people want to do special stuff on older firmwares, or they don't do research

 

[bonayzah]

with downgrade you should get full system access i think but homebrew direct from browser sounds good to like enable homebrew with a sys call?

 

[Jaroslav01]

DO some research

 

[kevlion]

Hi just made my account to join this forum. the idea of executing code from the web browser is very interesting since the ps3 can be difficult to work with. Ive also been playing around on the ps3-playground freezing and crashing my console with the tests. XD

 

[bonayzah]

i have a clue lol since we cant jailbreak because the safe key change on every boot maybe he should make a sorth boot exploit that let you via webkit boot to unsinged code that let you in cfw or debug mode every time when you use the webkit like you boot on ofw then you go to the webkit exploit page then load via webkit the boot rom exploit or unsinged code that let you in cfw or debug i dont have much mind from it i need to learn but its a funny idea lol