@LegendaryOSM profile picture
OSM ツ @LegendaryOSM
Joined March 2012
  • Tweets 613
  • Following 50
  • Followers 3,525
82 Photos and videos
Pinned Tweet
OSM ツ@LegendaryOSM
28 Nov 2025
Decided I was fed up with my old blog being clunky so I transitioned it to an Astro blog and so far it's been amazing! Check out the new series page for RetailKit: hackingadventures.ca/series/…

1
3
12
4,339
For anyone curious about the internals, this is the AMD64 Architecture Programmer's Manual Volume 2: System Programming I've been digging through. Truly a wealth of information for AMD SVM! docs.amd.com/v/u/en-US/24593…

OSM ツ@LegendaryOSM
Apr 27
Made some improvements to the GPU DMA and the logic for the page table walk, very happy with the results 😄
5
41
7,049
I also pushed the improvements for the npt walk to my fork of ps5-hen so folks can mess around with it and see what else they can come up with too. github.com/OSM-Made/ps5-hen/…

3
8
56
9,558
Made some improvements to the GPU DMA and the logic for the page table walk, very happy with the results 😄
2
5
39
9,257
I noticed the recent PS5 HEN defeats XOTEXT by just disabling the NPT on all cores. This works, but it comes with a performance tradeoff, without NPT the HV seems to fall back to shadow page tables. Games seem to have 3x slower loads.
0:44
4
22
216
22,059
My solution is to just walk the nested CR3 and clear XOTEXT and set the RW flags. Gives essentially the same effect as the Bypervisor bug did with the QA flags. I'll make a PR on Cragson's repo once I get some time :D
2
2
47
2,765
If you told me I would be writing .NET Framework in 2026 I would not have believed you 🤣 Yet here I am doing just that for the PS4. You can check out what I have so far if you are interested. 😄 github.com/AetherPS/Fusion/t…

1
2
23
3,179
I've been going down my sort of bucket list from when I first started looking at the PS4. Now the real challenge would be if I could get AOT working not just JIT but I think that would require rebuilding the .dll.sprx format 😅 At least this proves it is possible. 😃
1
11
1,117
So I guess I should have spent more time looking at some of the PSM stuff. Turns out you can just make this INI file "/app0/sce_psm.ini" with "mono jit true" in it. That just works to enable JIT as long as PsmIntDevMode is enabled.
2
3
50
8,953
Just noticed it does this as well 👀
1
13
1,223
I had actually forgot I had been working on a POC for folks to test with the RTC. I had some issues because I couldn't find a time authority that worked with the ps4 because of the limited TLS version. If folks can try the following and let me know if it works.
1
3
24
3,952
gist.github.com/OSM-Made/08e… This was tested being called from SceShellCore similar to how the official way does as I traced the code when there was a method to set the clock via official servers. I dont have a machine that has the RTC problem so I'm interested if it works :)

Theoretical RTC update.

Theoretical RTC update. GitHub Gist: instantly share code, notes, and snippets.

gist.github.com
1
6
32
8,317
Simple approach for PS4 kernel driver visibility in jailed vnodes, hook vnode creation and inject your ruleset directly. I had issues with my devfs rule not always getting added to the jails vnode. This is a simple yet effective solution. 😀 github.com/AetherPS/Fusion/b…

Fusion/Fusion/Kernel/source/Driver/FusionDriver.cpp at 3ee632458a9eca984d66097cb6f0b4dfcbbdc342 ·...

Fusion is a minimal kernel utility designed for PlayStation 4 research and development. - AetherPS/Fusion

github.com
1
5
35
4,814
I also made my own take on a FTP server :) I took some time to work on a listener that can handle some of the weird network states that happen on the PS4. github.com/AetherPS/Fusion-F…

GitHub - AetherPS/Fusion-FTP: FTP daemon for the Fusion homebrew enabler on PlayStation 4.

FTP daemon for the Fusion homebrew enabler on PlayStation 4. - AetherPS/Fusion-FTP

github.com
3
6
34
6,424
Thought I would share a project I had been working on for a bit that I use for some research on the PS4. Not really useful for end users but I wanted to publish this open source in case others can learn from it. :) github.com/AetherPS/Fusion

GitHub - AetherPS/Fusion: Fusion is a minimal kernel utility designed for PlayStation 4 research...

Fusion is a minimal kernel utility designed for PlayStation 4 research and development. - AetherPS/Fusion

github.com
2
7
46
7,288
I created an API layer that interfaces with the kernel driver to allow userland processes to do fun things :D github.com/AetherPS/libFusio… Its not all perfect and there is likely some silly mistakes but with so much being closed source anymore I thought I would share. :)

GitHub - AetherPS/libFusionDriver: Userland API for the Fusion Kernel Driver

Userland API for the Fusion Kernel Driver. Contribute to AetherPS/libFusionDriver development by creating an account on GitHub.

github.com
3
22
2,292
OSM ツ retweeted
Satisfactory@SatisfactoryAF
23 Dec 2025
Happy holidays folks 🧡 💙 youtu.be/QNdxE6P2UDU?si=NxGh…

7
7
157
25,224
OSM ツ retweeted
LM@LightningMods_
14 Dec 2025
What do we think about the new Notification?
37
14
298
19,522
Curious for the folks on PS4 would it be useful if I documented how to set the RTC/Kernel Clock? I have sorted the way to set this clock properly.
3
3
29
4,127
Something a bit different from my normal post but I recently put together a blog post on a vulnerability I discovered in Samsung's Account API. With just the username an attacker would get information disclosure that lead to a 2FA bypass. hackingadventures.ca/posts/s…
2
17
4,317
OSM ツ@LegendaryOSM
30 Nov 2025
I created a blog entry on some research I did into the SceAppMessaging check it out :D hackingadventures.ca/posts/p…

Reverse Engineering Playstations App Messaging IPC - Hacking Adventures

I'm Greg, a Senior Reverse Engineer who hunts for security vulnerabilities in protected systems and documents unknown system internals. This is where I walk through my research from security flaws...

hackingadventures.ca
1
13
2,688
Load more