Join Us and become a Member for a Verified Badge to access private areas with the latest PS4 / PS5 PKGs.
Not open for further replies.
Following the latest PS5 Scene Game Dump and recent PS4 7.02 / 7.51 / 7.55 Read-Write updates, PS4 Scene developer sleirsgoevy pushed live a 7.02 Netcat-only release utilizing port 9020 alongside a netcat702.html commit on Github with a Netcat 7.02 Test Page available for those on PS4 OFW 7.02 from the 7.02 WebKit port forked via Synacktiv based on the findings of abu_y0ussef and 0xdagger in their BHEU 2020 presentation. 😍

Today @SocraticBliss also released a 7.02 Full Stack of the PS4 7.00-7.02 Kernel Exploit via Twitter thanking contributing developers including ChendoChap, @zezu420 (aka Znullptr), Synacktiv, @KIWIDOGGIE (aka kd_tech_), Fire30_, theflow0 and @SpecterDev (Twitter)... while a test version of 7.00-7.02 PS4HEN arrived via Znullptr as @DEFAULTDNB reminded everyone on Twitter that the FRMCHK database has recently been updated with OFW702-confirmed games, some of which are outlined in the lists HERE and HERE via @irefuse. 🥳

From the PS4 7.00 - 7.02 Kernel Exploit


In this project you will find a full implementation of the "ipv6 uaf" kernel exploit for the PlayStation 4 on 7.00 - 7.02. It will allow you to run arbitrary code as kernel, to allow jailbreaking and kernel-level modifications to the system. will launch the usual payload launcher (on port 9020).

This bug was originally discovered by Fire30, and subsequently found by Andy Nguyen

Patches Included

The following patches are applied to the kernel:
  1. Allow RWX (read-write-execute) memory mapping (mmap / mprotect)
  2. Syscall instruction allowed anywhere
  3. Dynamic Resolving (sys_dynlib_dlsym) allowed from any process
  4. Custom system call #11 (kexec()) to execute arbitrary code in kernel mode
  5. Allow unprivileged users to call setuid(0) successfully. Works as a status check, doubles as a privilege escalation.
  6. (sys_dynlib_load_prx) patch
  • The page will crash on successful kernel exploitation, this is normal
  • There are a few races involved with this exploit, losing one of them and attempting the exploit again might not immediately crash the system but stability will take a hit.
As many are awaiting a Stable Full 7.02 PS4 Jailbreak Exploit before updating from 5.05 or 6.72, reports of new PS4 FPKG Backports using AutoBackPort 1.08 are already surfacing with Video Footage of PS4 Games Dumped on 7.02 including FF7R (140 GB) by @grabman as outlined in the PS4 7.02 How to Dump a Game Guide using the latest PS4 Dumper and PS4 FTP available in the update of the PS4 Payload Repo via @Al Azif in the Tweets below... so for those who haven't done it yet:

:idea: Be sure to follow the PSXHAX Member Verification & PS4 Fake PKG (FPKG) Sharing Guide to become a Verified Member by getting a Blue Verified Badge (FAQ in the spoiler HERE) through our PSXHAX Floating Discord Channel to access private or restricted areas for the latest FPKG game releases! 🏴‍☠️
For PlayStation 4 Scene developers who enjoy reverse-engineering, below are some early holIDAy presents as well. 🎄🎁 :geek:
Finally, cheers to @cedsaill4 on Twitter for sharing the screenshot below! 🍻
PS4 7.02 WebKit Kernel Exploit with Game Dumper and FTP Payloads!.png


Hello my friends. I am on 7.02 firmware at the moment. Does this mean i can play dumped games or we dont have all the necessary files yet?

Sorry if i make silly questions but i am really noob to this procedure. Any help is appreciated!
:) Wow. Awesome, you have rescued X-mas. I celebrate this news more than the release of the PS5. Thanks for keep working on the PS4. :cool: (y)
PS4 7.02 How to Dump a Game Guide

Hi. I think this is one of the hardest things I ever did. There was little to no instructions. I cannot stress this enough. Use this knowledge. It was hard fought. This is how you dump games on 7.02 until things change.

Autobackport ver 0.8 might come in handy though I did not need to use it in my case. So always try first. This is the exploit I used as well as the payload sender. Props to PS4 7.02 Punch Payload Injector Universal!

Gotta get me files:
Once you have this turn on your PS4 and insert the disc you would like to dump. I believe the dumper can dump digital purchases as well but I seem to have misplaced mine. But that's a long story.

Anywho. Make sure to launch your game BEFORE exploiting because if you don't then when you go to launch the game it will simply crash. So launch game first THEN exploit.

Once the game is running go ahead and press the PS button and go to the user guide. This exploit is an acquired taste. It will fail many times. Up to 50. But it WILL work.

If you cannot get the screens shown in video do as I did and clear your data/cache. PS4 should be EMPTY of cache because this can only dump games at the moment. There is no mira or hen. You can FTP though.

The way I have it setup is you go to user guide then 5.05 then original. Once you get waiting for payload use Punch's wonderful tool to send the dumper bin I have provided you. If you have problems feel free to comment below.
Not open for further replies.