Join Us and become a Member for a Verified Badge on Discord to access private areas with the latest PS4 FPKGs.
Category PS4 Jailbreaking       Thread starter PSXHAX       Start date Jul 15, 2020 at 9:32 PM       25,372       48            
Proceeding the PS4 EEPROM Dumper, PS4 Serial / Flash Pinouts, PS4 UART to DCSD Project, PS4 Aux Hax Parts 1-3, PS4 Aux Hax Part 4, PS4 Syscon System Controller Firmware Decrypter, recent PS4 Renesas RL78 Debug Protocol Implementation and his Flexible Kernel Dumper PS4 Payload / PS4 Homebrew App Demo releases comes a PS4 SysGlitch Tool and SysCon Glitching Pinout and TEENSY 2.0++ / TEENSY 4.0 Hexcodes by VVildCard777 on Github. 🤩

Download: SYSGLITCH_TEENSY4.0.hex / SYSGLITCH_TEENSY2.0++.hex / SYSGLITCH-master.zip / GIT / SYSGLITCH_DOWNGRADE.pdf (1.3 MB) via MaxLab81

According to his Tweets below, SYSGLITCH is a simplified System Controller glitching tool that will dump the PS4 / PS Vita SysCon flash continuously and is more user-friendly than an FPGA setup (although die hard FPGA lovers like @Chaos Kid may not agree 😜).

:idea: Also of note following the recent OrbisSWU PS4 Update Tool Developer Research in regards to the possibility of PS4 downgrading from his Tweets below, he states the following to quote:

"As for downgrade, I don't know about the process, but f0f hinted at it in their blog, seems to be completely per console-based tho. Someone should try it! :)"

:alert: In the Related Tweets below is more on the PS4 Firmware Downgrading / PS4 Firmware Reverting / Firmware Regression Method, however heavy soldering is required and from to summarize from VVildCard777's Tweets for the majority of end-users:

"Its kinda pointless for eta wen kidz because theyd need hw skills to dump it. and theyd need the foresight to copy everything. But imagine if you are on latest fw now. You know there will be a sploit eventually so you could just revert when its released. :) which is pretty cool!"

And from the README.md: SYSGLITCH

A tool for glitching the on-chip debugger rom located in RL78 devices in order to dump full flash contents

Only compatible with version 3.03 of the OCD rom.

Based on the attack outlined by Fail0verflow https://fail0verflow.com/blog/2018/ps4-syscon/

Setup
  • A Teensy 4.0 or Teesny 2.0++ and the Arduino IDE
  • If using the 2.0++ make sure it is fitted with a 3.3v regulator as instructed at https://www.pjrc.com/teensy/3volt.html
  • A usb serial cable wired to a PC, capturing raw data on RX with Realterm https://sourceforge.net/projects/realterm/
  • An RL78 with version 3.03 of the OCD rom
  • A small diode and ~4K ohm resistor for the RX line pulldown (needed to stabilise signal on syscon TOOL0)
PS4 Glitching Pinout

Teensy 4.0 Glitching Pinout


PS4 SysGlitch Tool and SysCon Glitching Pinout by VVildCard777.png


Teensy 2.0++ Glitching Pinout

PS4 SysGlitch Tool and SysCon Glitching Pinout by VVildCard777 3.png


PS Vita RL78 Pinout

PS4 SysGlitch Tool and SysCon Glitching Pinout by VVildCard777 2.png

Credits:
  • Fail0verflow for the initial Writeup on the attack.
  • droogie for early syscon investigations.
  • juansbeck for his findings on identifying the chip and pinout.
  • Zecoxao, M4j0r, and SSL for their support in all syscon related work.
PS4 SysGlitch Tool and SysCon Glitching Pinout by VVildCard777 2.jpg


Spoiler: Related Tweets

PS4 SysGlitch Tool and SysCon Glitching Pinout by VVildCard777.jpg
 

Comments

jwooh

Staff Member
Moderator
Developer
Senior Member
Verified
You can downgrade a ps4 console if you backed up certain things before you upgraded.
 

jwooh

Staff Member
Moderator
Developer
Senior Member
Verified
Yeah there is a thread here on the site about it. The thread has the pinouts on how to hook up a teensy also in it to dump the sflash.
 

PSXHAX

Staff Member
Moderator
Verified
Current PS4 Firmware downgrading is actually a PS4 Firmware Reverting / Firmware Regression method, however, it isn't something geared towards most end-users.

If anyone is considering attempting it be sure to read ALL the Tweets in the 'Related Tweets' spoiler before beginning as a backup of the PS4's SFlash0, HDD and Syscon Firmware are also required and most people don't have the foresight to back all of them up first.
 

Nino Z

Senior Member
Contributor
Verified
To all confused: with this it may eventually become possible to downgrade higher firmware PS4s and even to make a custom firmware like we have it in the PS3. Potentially.
 
Recent Articles
The PS5 Scene Gets First PlayStation 5 Game Dumps by BigBlueBox!
We've seen official PS5 PKGs, raw PS5 Game RiPs, some more PS5 Game Images and today PlayStation 5 Scene release group BigBlueBox made available the first PS5 Game Dumps for those who enjoy...
PlayStation Black Friday 2020 is Live with Deals on Games & Subscriptions
Last week we shared some Black Friday 2020 Ad Scans, and this weekend Sony put live their PlayStation Black Friday 2020 featuring unmissable deals on PlayStation games including The Last of Us...
Busty & Buster PS4 Homebrew Puzzle Game PKG by Bayagman
Hi, as a follow up to The Great Adventures of NedMapagmahal I created a homebrew game for PS4 and PSVita entitled Busty & Buster which is a puzzle type mirror game with your objective to collect...
WebMSX Running Metal Gear (MSX) on PS5 Browser Demo by BigBoss
Proceeding the PS5 Web Browser Backdoor and PS5Prxy Updates, today PlayStation 5 Scene developer BigBoss (Twitter) shared a demo video of the online MSX Emulator WebMSX running Metal Gear (MSX)...
Top