PS4 (Rumor) Possible Exploit for 8.52
- Thread starter pinky
- Start date
cristi20tgv
Forum Noob
In my opinion it's already patched but not released for everyone...the difference between 7.55 and 8.03 are none.they prefer sell their hack to Sony for 10k bounty and not to release for public
pinky
Retired
I would say 0. hacker one is meant to allow sony to patch the exploit before it's disclosed. well, technically, it says "within a reasonable time frame," so firmware 9.00 will likely be out. I think there's a beta of 9.00 already out. who knows if it's patched anything, but I'm sure the final release will have it patched.
btw, I think it's been confirmed that it is indeed a kernel exploit for all 8.xx firmwares. however, we need a webkit component or some way to implement it before it will be of any use. I think zecoxao mentioned a webkit component specifically, since that's what we've been using. like I mentioned on temp, it's probably going to be at least two months as a minimum before you see anything released. I haven't looked at hacker one yet to see if the exploit has even been disclosed or not. it will probably be a while (possibly a lot longer than two months) before anything is released. they had major issues getting the 7.5x exploits working, so theflow had to give them some pointers iirc. that one took a while, even after disclosure, before it was released, because it was quite unstable.
cristi20tgv
Forum Noob
If you compare with PS3 xploit..you will see that on PS3 was much higher dedication..on ps4 just a few people involved and some just for bounty
pinky
Retired
@Berion , I don't really care about the games either. I dumped a couple more things:
I used orbisman to dump all of it. the idps is only the first 8 bytes or so (it can't dump all of it, not sure why). orbisman only works on 4.55 and 5.05 or it says that it does. don't know what happens with later firmware or how to dump these keys otherwise. also, I strongly suggest you dump these on a regular basis:
I dumped them directly from system_data/priv/mms . if you ever have to rebuild the database, these will save you as all games and dlc won't be in the database anymore. the notification.db can be deleted, and a new one will be created. as the name suggests, it's the notifications section of the home menu.
I used orbisman to dump all of it. the idps is only the first 8 bytes or so (it can't dump all of it, not sure why). orbisman only works on 4.55 and 5.05 or it says that it does. don't know what happens with later firmware or how to dump these keys otherwise. also, I strongly suggest you dump these on a regular basis:
I dumped them directly from system_data/priv/mms . if you ever have to rebuild the database, these will save you as all games and dlc won't be in the database anymore. the notification.db can be deleted, and a new one will be created. as the name suggests, it's the notifications section of the home menu.
pinky
Retired
also, I learned this recently from a dev friend of mine, but apparently the update blocker payload doesn't work correctly on anything above 5.05. if you get a kernel panic, it's deleted from the update partition, so use the al-azif dns instead to prevent automatic downloading of a new update, if you use an online host. I'm completely offline myself, using a wifi stick (the sandisk connect), but you're much more limited on your choice of hosts if you're offline online or self-hosting.
SeanRanklin
Member
I don't even want to go online I just want to finally be able to run home brew on it
nCadeRegal
Senior Member
On 1.76 you were able to dump the full idps or was it only partial also?
pinky
Retired
I read that it was full on 1.76. my system's base firmware was 3.xx iirc, so I was never able to get it. I can't be 100% it was full, but that's what I've heard. I'm not sure what sony did to it afterwards.
cristi20tgv
Forum Noob
Why you think they jump to 8.52..not 8.00 and 8.03?this was the algorithm of jailbraiking...not jailbreak a version that it.s from june
pinky
Retired
there's no guarantee. you just have to dump the kernel to tell if the exploit works on later firmware, which apparently it does. it really depends on the webkit exploit though. 6.72 and 7.02 use the same kernel exploit but a different webkit one. originally, we only had a webkit exploit up to 6.72.
pinky
Retired
not much really. I mean you can't change it or anything or unban yourself. it just would be nice to have though. I think it's best to get all important keys, files, and make nand backup (if possible) for any system you play to exploit or hack just in case something were to happen. I can't tell you how many times I've seen posts where someone was completely unprepared when something bad happened on one of their systems. that should be the first thing you do, before installing any games even.
As far as i know, taking flash back up in PS4 require soldering. I don't know if you can restore this flash. You can't change console id like PS3 sen enabler so no use of PS4 id whether its full or partial. Regarding eid rootkey, i think this might help you to read PS4 hdd on PC. Is that it?
pinky
Retired
I think the erk on the ps3 is the eap key on the ps4. you can dump it, but I don't know if you can really do anything with it presently. it's still nice to have though. one thing I'd definitely suggest is dumping the databases from system_data/priv/mms . if you ever have to rebuild the database, they'll save you. the only alternative is to use the database fixer python script, which only works with the app.db and will make games undeleteable unless you change the canRemove from a 0 to a 1. tedious if you have a lot of games, but I think you can make a record for it to do it all at once.
Similar threads
-
PS1 Special Pico-memcard+/BitFunX PSX Memcard Firmware For FreePSXBoot Users- Started by alexfree
- Replies: 0
-
PS3 Rumors about PS3 online service shutdown - and how to prepare
- Started by NiQ
- Replies: 2
-
PS3 PS3HEN w/ Linux & Overclocking Support? BadHTAB A hardware-software based hypervisor (lv1) exploit- Started by STLcardsWS
- Replies: 52