vitasploit - Exploitation Framework

Post by **Hykem** » Sat Apr 25, 2015 10:44 pm

x86 wrote:Do we know the what the Vita's kernel is based on? I recall somewhere that it was based on FreeBSD? Please correct me if I am wrong.

http://en.wikipedia.org/wiki/PlayStatio ... m_software
http://www.scei.co.jp/psvita-license/freebsd.html

Advertising

x86 · Post by **x86** » Mon Apr 27, 2015 1:15 pm

There are some recently revealed kernel exploits:
https://www.exploit-db.com/exploits/35938/

This is beyond my current understanding of an OS works, but I hope this will help someone else.

Advertising

Post by **Hykem** » Tue Apr 28, 2015 6:16 pm

x86 wrote:There are some recently revealed kernel exploits:
https://www.exploit-db.com/exploits/35938/

This is beyond my current understanding of an OS works, but I hope this will help someone else.

Unfortunately, none of those exploits could work on the Vita. The first exploit described targets the vt console driver, which is not implemented on the Vita's OS and the other two target the SCTP socket option which, again, is not used by the Vita. The getsockopt/setsockopt system calls do exist, but only work with SOL, IP or TCP.

tudisawap · Post by **tudisawap** » Tue May 19, 2015 5:15 am

Can we open - Package Installer (NPXS10031) on 3.36 frimware ?

Avidity_X · Post by **Avidity_X** » Tue May 19, 2015 3:56 pm

How can we test this vitasploit for fw 3.36? I started server.py as the instructions say, but have no idea what to do next.

Post by **smithsf0x** » Sun May 24, 2015 12:38 am

Hykem is currently busy so we have to wait.

Dessel · Post by **Dessel** » Sun May 24, 2015 9:47 am

Avidity_X wrote:How can we test this vitasploit for fw 3.36? I started server.py as the instructions say, but have no idea what to do next.

https://github.com/Hykem/vitasploit#instructions

Post by **Hykem** » Fri May 29, 2015 4:31 pm

I apologize for the long absence, I've been terribly busy. There are indeed a few issues with the 3.36 version, but I'll get to fix them with "smithsf0x" as soon as possible.
Thank you for your patience!

bollafa · Post by **bollafa** » Tue Jun 02, 2015 4:58 pm

Hello, for some reason when I connect my vita to the python server, it gets stuck at loading utils,
I have included document.write("Hello!") to test if initMemoryHole runs but it doesnt get called

Thanks in advance!

Post by **smithsf0x** » Tue Jun 02, 2015 5:57 pm

As mentioned above, the vitasploit for 3.30-3.36 is WIP. I looked over it and with some changes I got the initMemHole and some others to work but there are still some problems.
Stay patient till Hykem and I get enough time to fix the things : )
(I should have time in two weeks or so / I don't know whats about Hykem)

### edit ###
download HERE ...we got some text on the Vita...or so

wololo.net/talk

vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework

Re: vitasploit - Exploitation Framework