Category PS3 Jailbreaking       Thread starter PSXHAX       Start date Apr 30, 2018 at 9:23 PM       12,627       7            
Status
Not open for further replies.
Since the PS3Xploit Tools v3.0 updates, PlayStation 3 developer Derrik (aka @GhzGangster on Twitter) recently made available Zerosense which is an exploit toolkit for the PS3 Browser via ROP exploitation in development with details below. :ninja:

Download: zerosense-master.zip / GIT

To quote from the README.md: zerosense

Zerosense is an exploit toolkit for the PlayStation 3 Browser, based on work by the PS3Xploit team, and the proof-of-concepts which came before. It also takes inspiration other projects, such as PegaSwitch and PS4 Playground.

This project is primarily designed to manipulate files for the SaveMGO MGO2 Revival project, to aid users on official firmware. Additional functionality may be added in the future.

Node.js is used both to bundle the application, and to act as a web server. The JavaScript target is ES3, so additional functionality is added as needed.

Warning

Project is still under heavy development. Things may completely change in the future.

Approach

We create an array a certain size, number of elements, and first element for verification. After searching, we should find the address of the array in memory. Once we have this, we can get the addresses of elements within the array.

Once we have the array, we can create our ROP chains, figure out their addresses, and then trigger the Use-After-Free exploit.

This approach allows us to conduct only one initial, cheap search, as opposed to searching for each chain in memory.

Goals
  • Have a clean and easy-to-understand codebase
  • Be easily extendable
  • Be able to execute quickly and reliably
  • Be able to easily add support for different firmware
Setup

Node.js and NPM should be installed beforehand. See https://docs.npmjs.com/getting-started/installing-node
Code:
npm install
This project has been built using Node 7.10.1 and NPM 4.2.0. There may be some issues that arise for other versions.

Building
Code:
npm run build
Running
Code:
npm start
The web server will be running on port 9000, by default.

Zerosense file manager demo for PS3 4.84 HFW. You can look at your file system and copy files to dev_usb000. It's really slow, like 0.25 MB/s max. I'll see if I can speed it up sometime.

Download: zerosense-master.zip (Exploit library for the PlayStation 3 Browser) / Live Demo / GIT / zerosense-ftpd-master.zip (FTP server in the PS3 browser, not ready for public use) / GIT

Cheers to @HydrogenNGU for the heads up on the news via Twitter below! :beer:
Zerosense PS3 Browser Exploit Toolkit Development by GHzGangster.jpg
 
:idea: Reminder: Those without a Verified Badge yet on Discord to access the private areas we recommend Joining Us! Why? The waiting process takes a week for new Members, and there's a lot we're unable to share on public forums including the latest PS4 PKG Games. 🏴‍☠️

Comments

Status
Not open for further replies.

raul74beta

Member
Contributor
what we need is an exploit that injects a payload ftp on 3xxx and 4xxx models and that converts the converted games directly to the game folder
 

GhzGangster

Developer
Contributor
@Boloul
Between this and PS3xploit? Not really. One big difference is that my project was designed to use and create ROP chains over a longer period of time, so I had to make it faster than PS3xploit. Most of their stuff can just be done with once chain, so it's not a problem for them, but if you want to do something like a file manager, their project would have a harder time.

@vservis
Don't think I could do a proper FTP server, but the plan is for it to effectively be a file manager.
 

raul74beta

Member
Contributor
the important thing is to inject converted games without the need of another unlocked ps3 and neither continue to convert games into pkg and reaffirm them and all that cumbersome business .... only direct connection with something and folder game .. in ps4 there is less scene and there is ftp
 

Hamid007008

Member
Contributor
I have Rebug 4.82, I want play online..... help me install 4.83 Ferrox or spy or wait for Rebug 4.83.

by the way i want delete webman completely help me pls :unsure:
 
Status
Not open for further replies.
Recent Articles
Sony Unveils First Look at Box Art for Upcoming PS5 Games
Topping the PlayStation 5 News today is a PS5 Box Art Unveiling giving everyone a sneak peek at what PS5 games will look like when seen on store shelves this Holiday 2020 season. 🤩 This latest...
Latest Sony PlayStation Store Sale on PSN Games for July 2020
Sony's latest PlayStation Store promotion for July is now underway featuring a sale on a variety of PSN 'thrilling adventure' games including MediEvil, Devil May Cry 5 Deluxe Edition and Call of...
PS4 Webkit Bad_Hoist 6.72 Exploit Port WIP by Sleirsgoevy & 6.72 Dumps
Proceeding his PS4 ROP 8CC Port and the 7.02 PS4 Kernel Exploit (KEX) release, PlayStation 4 scene developer sleirsgoevy added a work-in-progress (WIP) port of the PS4 Webkit Bad_Hoist 6.XX...
DiRT 5, Vampire: The Masquerade & Werewolf: The Apocalypse PS5 Trailers
Following the PS5 hacking-themed Recompile Gameplay footage, today we have some new PlayStation 5 video game trailers for off-roader DiRT 5, Vampire: The Masquerade - Swansong and Werewolf: The...
Top