Jump to content
Tuts 4 You

Analysis of PS4's Security...


Teddy Rogers

Recommended Posts

  • 1 month later...
  • 3 weeks later...

PS4 uses ARM Truszone for memory security(notice how they don't know this) just like IOS9 for kernel read-only protection.. Probably key protection too and checking boot-chain after bootrom sets it up..


 


These "hackers" need to start looking what is running on the same security level to see what they can do without defeating hardware security, but since it took them months to learn to leverage an existing public ROP exploit you'll probably see nothing till some real talents start to RE the PS4..


Link to comment
Share on other sites


PS4 Jailbreak

Our PS4 jailbreak has now been released and is currently compatible with all firmware versions. Unlock the full potential of your PS4 by unlocking extra features, developer menu’s plus much more.
onVwcwa.png

Compatibility

Compatible with all PS4 Versions on the latest firmware and below:
CUH-10xxA
CUH-11xxA
CUH-11xxB
CUH-12xxA
CUH-12xxB
79f87ba266.jpg
You can find out your model version on the back of your PS4

 

http://ps4scene.com/

Link to comment
Share on other sites

All emulators, jailbreaks.. etc at this current time are just click bait.. :) Don't lose your time..

 

True that.

 

 

The above link explains what is available and what is not for ps4. And the only thing now is dumping the PS4 NOR. This method helps in dumping license from PS4 who have official games purchased and copy to another PS4 and play on it. So no real jailbreak and home brew yet. Only one method of pirating games which involves opening up your console and etc...

Link to comment
Share on other sites

I wonder why no one gives a fornication about xone..

Cuz the console sucks? Nah, probably everybody is afraid to lose their multiplayer subscriptions...

Link to comment
Share on other sites

I allways wondered how would be the place to start to pwn a console or a hardware device. Should one dump a bootloader?


 


I wouldn't mind destroying my Dreamcast, trying crazy stuff on it - lulz


Edited by xSRTsect
Link to comment
Share on other sites

I wouldn't mind destroying my Dreamcast, trying crazy stuff on it - lulz

 

I currently have mine pulled apart with wires soldered to the motherboard hanging out from it everywhere. Got a modding project underway!

 

Ted.

Link to comment
Share on other sites

I currently have mine pulled apart with wires soldered to the motherboard hanging out from it everywhere. Got a modding project underway!

 

Ted.

 

 

Really? I would like to replicate the process of reversing a hardware device on my dreamcast, so that I could get some knowledge out of it. But unfortunantly I would have no clue on where to start. Maybe you could hint me? I guess first step would be to dump the bootloader, if there is even one...

Link to comment
Share on other sites

  • 2 weeks later...

The Dreamcast is fairly well documented these days, there are plenty of schematics of the motherboard for hardware modifications. Some good recent hardware projects have been the USB-GDROM, GDEMU and DreamConn. What were you thinking of doing, what information do you need?


 


Ted.


Link to comment
Share on other sites

  • 1 month later...
  • 1 month later...

Xbox 360 and Xbox one have actual security. They hash all RAM write-backs for HV and signing code, for example. PS4 has FreeBSD security which is why noobs jaikbroke it with a public webkit exploit and are now waiting for someone to do the rest of the work..

PS3 had one piece of real embedded security and that was never defeated. It's the bootldr which is checked with CELL secure boot.

 

MS consoles have exponential layers of security that are actually designed for embedded systems..

Link to comment
Share on other sites

  • 2 weeks later...

im gonna have to buy one of these new consoles one of these days..im so out of the game loop :)

do these new comsoles have modded chips for like ps2 etc did??

or is it all done via flashing etc now?

ill have to read up on whats going on these days when time permits

cheers all :)

B

 

Edited by Blah
Link to comment
Share on other sites

  • 4 months later...

Yeah I guess that for xbone to be eXploited with a similar exploit one should have to reverse IExplorer - but the versions may be different though : PC and xbone.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...