PS4 3.55 Playground
Here you will find various interesting tools and scripts that can be utilized right from your PS4’s web browser. Due to this site depending on WebKit Exploits and javascript ROP, this site will not work on all firmwares.
This Playground was created by Specter (@SpecterDev) with help from Red-EyeX32.
Updated Version 1.1 Includes:
- Basic Information - Firmware Version, Webkit Version and also WebKit Process ID
- Basic Evaluation
- Technical + Module Evaluation
Updated Version 1.2 Includes:
- Added ability to dump memory to a .bin file
- Added functions thanks to Xerpi for managing the stack/memory, reading, writing
- "Technical + Module Evaluation" has now been changed to "Full Evaluation" as it can now fetch the PID as well as the module list.
- Modules now show more information than before
- Fixed minor bugs
As noted in the readme: "You may also get two different PID's in succession when running Basic Eval, this is because WebKit is actually split into two processes. For more information, check out CTurt's article "Introduction to PS4's security, and userland ROP".
Here's the link to the 3.55 WebKit Exploit Website:
(This link is also used for the other Web-kit exploits for other previous and possible future Web-kit Exploits for PS4)
All In one Playground Now Added To Downloads
Features:
* FileManager
* POC Test
* System Information
* Memory/Module Dumper
* JSNES Emulator
And I took some photos so instead of seeing this as labeled in the pictures below
Notice the exploit entry points.
And when you get it to run, you should be prompted to press "OK" a few times, until it finally finishes. Just know that if you see the "there is not enough free system memory" error it did not work.
Pictures By B7U3 C50SS:
PS4 Playground is a project created around the 3.55 Code Execution Userland exploit created by xyz and ported by Fire30. The name and idea is based off CTurt's original "PS4 Playground" developed for FW 1.76. It currently only features a POC test of the exploit and a system information page. The project is still a WIP. A shout out to @Fimo for letting us know in the Shoutbox!
The mirror link is being currently hosted on a free domain, which can be not available all the time due to the CPU limit has been reached, will make the site inaccessible for everyone
NOTE BY B7U3 C50SS: I've taken notice that if you cannot get it to do anything but to "CRASH" or to show an error saying, "There is not enough free system memory"; You can usually get it to work by ERASING the Hashtag at the end of URL bar!
Here's the link to the 3.55 WebKit Exploit Website:
(This link is also used for the other Web-kit exploits for other previous and possible future Web-kit Exploits for PS4)
All In one Playground Now Added To Downloads
Features:
* FileManager
* POC Test
* System Information
* Memory/Module Dumper
* JSNES Emulator
And I took some photos so instead of seeing this as labeled in the pictures below
Notice the exploit entry points.
And when you get it to run, you should be prompted to press "OK" a few times, until it finally finishes. Just know that if you see the "there is not enough free system memory" error it did not work.
Pictures By B7U3 C50SS:
PS4 Playground is a project created around the 3.55 Code Execution Userland exploit created by xyz and ported by Fire30. The name and idea is based off CTurt's original "PS4 Playground" developed for FW 1.76. It currently only features a POC test of the exploit and a system information page. The project is still a WIP. A shout out to @Fimo for letting us know in the Shoutbox!
The mirror link is being currently hosted on a free domain, which can be not available all the time due to the CPU limit has been reached, will make the site inaccessible for everyone
NOTE BY B7U3 C50SS: I've taken notice that if you cannot get it to do anything but to "CRASH" or to show an error saying, "There is not enough free system memory"; You can usually get it to work by ERASING the Hashtag at the end of URL bar!
PS4-Playground-3.55 Version 1.2 / PS4 Playground 3.55 (Mirror)- Added ability to dump memory to a .bin file
- Added functions thanks to Xerpi for managing the stack/memory,
reading, writing - "Technical + Module Evaluation" has now been changed to "Full
Evaluation" as it can now fetch the PID as well as the module list. - Modules now show more information than before
- Fixed minor bugs
