33 Photos and videos
Everyone has been upset about lack of updates.
I get it. however there is no straightforward solution..
While others have been looking into full control of the PS5. I have worked on a solution that will allow 'some' progress now. A real process for homebrew.
More updates soon.
76
55
459
74,557
The firmware requirement has NOT changed, anything vulnerable to the current kernel exploit will work.
No matter how many times I answer, people keep asking about PS4.. I'm not working on PS4: I've switched to PS5. You know this, because it's been asked thousands of times..
19
10
157
22,853
ASRock Creator x570 UEFI 'Beta 5.01' (internal)
(AGESA Combo V2 PI 1.2.0.8)
fastupload.io/en/pnb0FGDxzKx…
3
17
18,333
Very cool to see public reimplementations of the first part of my mast1c0re exploit chain, especially when tested on the latest PS5 firmware.
24 Jan 2023
PS5 (latest firmware) PoC for mast1c0re vulnerabilities.
Arbitrary PS2 code execution and native PS5 ROP chain execution.
Technical details on
@CTurtE's blog post: cturt.github.io/mast1c0re.ht…
27
73
476
107,811
I'd like to warn people away from purchasing ASRock products: @ASRockInfo @ASRockUSA
Their support is truly awful, and the warranty means nothing. They will simply stop responding, and disregard said warranty without a care. It is the worst experience I've ever had /RMA.
3
3
53
15,254
Context: I purchase an assrock creator-x570 and it's been a problem from day1. Firmware locking up, OS locking up, USB a disaster. Some of these were solved by agesa updates and were known issues. I also discovered some of the features I purchase the board for didn't work.
3
16
8,889
Z retweeted
2 Oct 2022
Here it is. Thanks to everyone mentioned earlier. Be warned stability is not great, something to be improved on for sure.
github.com/Cryptogenic/PS5-4…
88
329
1,462
Z retweeted
2 Oct 2022
For those interested in a webkit PS5 kernel exploit implementation, it's on track to be ready soon - stay on 4.03 :)
Still wanna do some cleanup and such but a lot of the major work is done. Obv without @theflow0 this wouldn't be possible :P. 1/2
78
187
948
Z retweeted
2 Aug 2022
Linux devs have an obsession with unnecessarily creating fresh new areas of vast attack surface in the kernel. And you know what, I can appreciate and respect that as a goal.
is io_uring turing-complete yet?
ALT A screenshot of include/uapi/linux/io_uring.h, showing the io_uring_op enum. There are a lot of opcodes, you can read them here: https://elixir.bootlin.com/linux/latest/source/include/uapi/linux/io_uring.h#L147
3
6
73
So it looks like [PS5] 3.20 will also be supported for userland exploit, should be added to repo sometime this week incase anyone was interested in poking at it security and didn't want to upgrade to 4.03.
PLEASE don't start w. the drama about ps4 9.x or ETA for piracy: NO
109
33
365
Release exploits for PS4, PS5 (user)
Get tons of fun:
- ETA WEN
: ps4/9.03
: ps5
- Whining, bc they can't instantly pirate games.
- Weeks worth of time spent reversing code.
- Large out of pocket expense for req. hardware ( >$400).
Why bother?
Someone else can try nvme/exploit
161
101
756
We've released a small writeup and some code for userland exec on PS5.
DNS redirection to https works.
github.com/ChendoChap/PS5-We…
31
163
663