PS4: Specterdev publishes writeup on the 5.05 exploit
Hacker Specterdev has published an explanation of the 5.05 PS4 Jailbreak, which relies on flaws in the BPF driver, similar to what the 4.55 exploit did (except more complex because Sony strengthened access to BPF since the 4.55 exploit).
The article is extremely well detailed, but deals with a very complex topic, so don’t expect to understand much unless you’re very well versed in system architecture (it’s still an essential read if you expect one day to find your own exploit!).
It shows exploiting techniques have become very advanced, as a reply to the progress made on OS security by Sony and other console manufacturers. In particular, Specter describes how the System regularly checks whether the stack pointer is trying to run userland when it shouldn’t (that is, when it’s running in a kernel context), and how this made implementation of the exploit much more complex.
Of note, among the people credited in this writeup is TheFlow, and I believe this is the first time I’ve seen him being mentioned in the context of PS4 hacking.
You can read the full writeup here.
Source: Specterdev
nice.thanks .first
I really want to help dev on ps4hacking and i dont know someone who make me in correct path. Already im doing 5.05 and some consoles such as 360 , x one … please help me to get good end on console hacking
first of all u must b a coder 2 learn all what is on github – after that u will b able to help with somethin otherwise just sit/wait 4 others;)
i wonder if we will get any more exploit on higher firmware or this is it.
In the old days, we never got explanations of how exploits worked. Why give the heads up to Sony? It’ obvious that these will fix and make it impossible in the future
something makes me think you believe that people in private dev tools dont have multiple entry points on higher firmwares already.
They dont mind of sony patches these holes because they have already moved past them
It’s already been fixed by Sony… This empowers hackers, not hurt them.
it doesnt really matter, sony has official debuggers that would tell them what an exploit is doing anyways.
Well, with all the bug bounty programs that became a thing over the past few years, no wonder that we have to wait such a long time for every new exploit. Hackers are now prioritizing money instead of acknowledgement.
Hi
any comment on below video – not sure if this real or of any use
F#CK YOU! WHO GIVES A F#CK ABOUT THIS, WHAT A PIECE OF GARBAGE, GO AND KYS.
Lead by example and make sure you stream it
F#-CK YOU! WHO GIVES A F#-CK ABOUT THIS, WHAT A PIECE OF GARBAGE, JUST RELEASE THE NEW ONE ALREADY, GO AND K-Y-S.
I like your blog, the content is great and detailed, thanks to it I learned and learned a lot from it.
3 months of waiting without any news of 5.55 jailbreak …