Post: [3.55] PS4 Playground Released (Open-Source)
Options
08-09-2016, 02:47 AM
#1
Specter
Pro Memer
So as most of you who read this section probably know, the other day Fire30 ported the PSVita exploit from HENKaku (originally developed by xyz), and I decided to build a project around this exploit. Where the original POC made you setup a python server on your PC and such, with PS4 Playground, everything works straight through your PS4's Web Browser. It was a bit of an annoyance to make everything work, especially when the exploit would crash the webkit process as soon as it was finished executing, however with some magic I made it work.
I stabilized and cleaned up the exploit a bit, and designed the site, however the credit for the exploit goes to Fire30 and xyz, and the original idea for PS4 Playground as well as the JuSt-ROP project all goes to CTurt. If you have anything to contribute, please feel free to fork the repository and submit a pull request.
Requirements
You will need FakeDNS to spoof manuals.playstation.net, you will also need XAMPP to run an apache host for PS4 Playground to run on. To quote the readme;
Originally posted by another user
You will need fakedns. You also need to edit the dns.conf to point to the ip address of your PC (can be found in cmd/terminal by typing ipconfig/ifconfig), and modify your consoles' DNS settings to point to your PC's address. Then type the following in your terminal;
python fakedns.py -c dns.conf
You will also need to setup xampp on your computer and run Apache on port 80. For the easiest method, in /htdocs, create the '/document/en/ps4' directory and place the files from this repo in there.
When your fake dns is running and you've setup your localhost server in xampp, you can navigate to PS4 -> Settings -> User Guide. It should then show PS4 Playground.
python fakedns.py -c dns.conf
You will also need to setup xampp on your computer and run Apache on port 80. For the easiest method, in /htdocs, create the '/document/en/ps4' directory and place the files from this repo in there.
When your fake dns is running and you've setup your localhost server in xampp, you can navigate to PS4 -> Settings -> User Guide. It should then show PS4 Playground.
Notes
The exploit will not run correctly all of the time. Sometimes it will stick at stage 4 or webkit will crash before the script is finished. If it doesn't work at first, keep trying until it does, it shouldn't take long.
Refreshing the page after a successful attempt or going to another page will crash webkit. Just hit OK and it will resume to the next action you wanted to perform.
The project isn't 100% complete, it's an on-going work-in-progress.
Preview Images
Acknowledgements
Fire30 - The porting of the WebKit Exploit to PS4
Xerpi - Functions in his POC edit that I ported over (these functions made things way easier and more efficient)
XYZ - The original exploit for the PSVita
CTurt - JuSt-ROP, the original PS4 Playground, as well as his work with 1.76.
Red-EyeX32 - Assistance in development
Links
You must login or register to view this content. - You must login or register to view this content.
While the exploit and PS4 Playground aren't incredibly useful at the moment, if and when a kernel exploit is found, things will get a lot more interesting
Last edited by
Specter ; 08-11-2016 at 07:16 PM.
The following 39 users say thank you to Specter for this useful post:
/SneakerStreet/, 2much4u, ackendo, ANONY420, anonymous style, Red-EyeX32, BurnMoDzHQ, Creepzoid 0___0, DeezShinyNutz, DMAAR-7777, DMoney750, Dog88Christian, DrZepto, EdiTzZ, EvilDevilReX, Gryphus, Frosty, Geo, Im_YouViolateMe, itzyourboiidann, Joel, Kryptus, LaughTracks, lucasaf01, MOD-RuLeZ, MODZ4FUN420, Mr.Peanut, Nana, 
Darth Saul, seb5594, Kronos, Jon Snow, STVBDKD, User343234, Vondy Supreme, Xx-GIPPI-xX, xxmcvapourxx, yan88
Darth Saul, seb5594, Kronos, Jon Snow, STVBDKD, User343234, Vondy Supreme, Xx-GIPPI-xX, xxmcvapourxx, yan88
09-08-2016, 06:52 PM
#101
ogpayne
Do a barrel roll!
Hello guys, I saw a few of you earlier were having issues with fakedns and I would like to help you solve them. For me what I did was make a folder on my desktop and name it fakedns, inside of that folder you should put your fakedns.py and your dns.conf files. Then I went into my command prompt and navigated to the directory of fakedns. So in the command prompt I typed "cd desktop" then "cd fakedns" which redirected me to the fakedns folder that I had made on my desktop. Inside of that folder are my 2 fakedns.py and dns.conf files. Type again in command prompt "python fakedns.py -c dns.conf" (without the quotes of course). This now will allow you to connect to PS4 Playground through your user guide on the PS4. Leave this command prompt running!
If you are getting an error about python not being a recognized command you should edit your system variables. In Windows 10, just click the start button and type in "system variables" then click "Edit the system environment variables" a system properties box should pop up and you should see and "Environment variables" box on the bottom, click it. On the bottom of this box under the headline "System variables" you should find the variable called "PATH" click it and choose edit. Now you should click the "New" box on the top it will add a new path, inside of this path you should type "C:\Python27" basically this will tell the command prompt to understand python..
If anyone needs any more help with this let me know. Also to whomever had setup the website with how to get xampp working thank you!! I was having troubles with it.
If you are getting an error about python not being a recognized command you should edit your system variables. In Windows 10, just click the start button and type in "system variables" then click "Edit the system environment variables" a system properties box should pop up and you should see and "Environment variables" box on the bottom, click it. On the bottom of this box under the headline "System variables" you should find the variable called "PATH" click it and choose edit. Now you should click the "New" box on the top it will add a new path, inside of this path you should type "C:\Python27" basically this will tell the command prompt to understand python..
If anyone needs any more help with this let me know. Also to whomever had setup the website with how to get xampp working thank you!! I was having troubles with it.
09-18-2016, 04:50 AM
#103
SharkModding
Do a barrel roll!
09-18-2016, 07:32 AM
#104
ProtoBuffers
Bounty hunter
*cough*
I told you spamming the clear command keeps it running a lot smoother.
I told you spamming the clear command keeps it running a lot smoother.
Originally posted by Specter
How are you interfacing with the PS4 via the command prompt? If you are, I wouldn't understand how clearing the command prompt would have any effect on the PS4 with stopping crashing, as all that does is clear your screen, does nothing to the PS4. In regards to the stack overflow, unless you're talking about a different vulnerability, the vulnerability that's exploited by Fire30's POC on 3.55 is a heap overflow :p
It runs smoother if you use a Squid injection proxy instead as well since I will get no credit at all might as well keep talking so other people can enjoy..
It runs smoother if you use a Squid injection proxy instead as well since I will get no credit at all might as well keep talking so other people can enjoy..
Last edited by
ProtoBuffers ; 09-18-2016 at 03:48 PM.
Copyright © 2024, NextGenUpdate.
All Rights Reserved.
