For full Tutorial got to:
https://gbatemp.net/threads/aio-ps4-exploit-guide.497858/
https://gbatemp.net/threads/aio-ps4-exploit-guide.497858/
Last edited by sonicdacrack,
Hacking [GUIDE] AIO PS4 Exploit Tutorial
- Thread starter sonicdacrack
- Start date
- Views 108,807
- Replies 315
- Likes 3
- Status
You could add the MD5 hash of both system and recovery PUP (sys MD5: 9c85ce3a255719d56f2aa07f4be22f02, rec MD5: 6c28dbf66f63b7d3953491cc656f4e2d).
If you have a local webserver (like Al-Azif) you don't need the "Permanent Browser Patch", either way when you execute the jailbreak you need to netcat the HEN and/or the Debug payload, until a version of the jailbreak with HEN integrated appears.
So you need to add a step "Netcat payload (HEN or Debug) between the last two steps.
And maybe add numbers and a "???" and "Profit" step to the list (for LULZ). ^__~
Edit: please double check the MD5 hashes, I've cross referenced them only with Google.
If you have a local webserver (like Al-Azif) you don't need the "Permanent Browser Patch", either way when you execute the jailbreak you need to netcat the HEN and/or the Debug payload, until a version of the jailbreak with HEN integrated appears.
So you need to add a step "Netcat payload (HEN or Debug) between the last two steps.
And maybe add numbers and a "???" and "Profit" step to the list (for LULZ). ^__~
Edit: please double check the MD5 hashes, I've cross referenced them only with Google.
Last edited by MostlyUnharmful,
9c85ce3a255719d56f2aa07f4be22f02 is correct for full 4.55 pup
@sonicdacrack Pro tip: format the guide up nicely and make it the definitive guide people will want to bookmark here at GBAtemp
@sonicdacrack Pro tip: format the guide up nicely and make it the definitive guide people will want to bookmark here at GBAtemp
Last edited by KiiWii,
Ok, like i said, i did it all while i was here at work and any news popped up.
I thought al-azif was basicaly netcat only you could do it through the heldguide browser...
and you would load the bins i supplied in the payload folder....
Havent found the permanent browser path for 4.55 either.. or is the browser enabler it?
Still dont get what the fulldebusetting does, i am fairly new to the ps4 scene and trying to give all info i have learn on to everybody else...
So perhaps oyu can edit my list they it would be correct and i belive you would make a lot of people happy
As i said i am doing this without the console in fornt of me at the moment ;-)
--------------------- MERGED ---------------------------
9c85ce3a255719d56f2aa07f4be22f02 is correct for full 4.55 pup
@sonicdacrack Pro tip: format the guide up nicely and make it the definitive guide people will want to bookmark here at GBAtemp
Will do so when i finally know if i have everything together and all the steps are correct, really looking for some held here too
;-)
"Full debug" adds a menu entry to "System settings" that permit to install fpkgs (fake signed packages) from a USB Flash/HDD connected to the PS4 (FAT32, EXFAT filesystems supported).
"Permanent browser patch" and "browser enabler" are the same thing (it's a patch to the system registry), Al-Azif should be a webserver, DNS spoofer and payload sender (never used tho... ^__^; ).
Basically, you put the IP address of the PC where you run the Al-Azif Python script in the PS4 DNS network configuration, it redirects the manual.playstation.net URL to the PC and serves the "document/en/ps4" page with the 4.55 jailbreak to the PS4. If you use Al-Azif script you don't need the "browser enabler" to reach a 3rd party page with the jailbreak. As for the moment you need it to send the payloads, you probably can temporarily avoid the "browser enabler".
I forgot that, every time you need to send a payload, you probably need to reboot you console and re-execute the jailbreak, start with the "Debug menu" to install a fpkg, reboot, send the HEN payload and try to execute the installed package, ???, profit.
"Permanent browser patch" and "browser enabler" are the same thing (it's a patch to the system registry), Al-Azif should be a webserver, DNS spoofer and payload sender (never used tho... ^__^; ).
Basically, you put the IP address of the PC where you run the Al-Azif Python script in the PS4 DNS network configuration, it redirects the manual.playstation.net URL to the PC and serves the "document/en/ps4" page with the 4.55 jailbreak to the PS4. If you use Al-Azif script you don't need the "browser enabler" to reach a 3rd party page with the jailbreak. As for the moment you need it to send the payloads, you probably can temporarily avoid the "browser enabler".
I forgot that, every time you need to send a payload, you probably need to reboot you console and re-execute the jailbreak, start with the "Debug menu" to install a fpkg, reboot, send the HEN payload and try to execute the installed package, ???, profit.
Last edited by MostlyUnharmful,
PS4 4.55 Exploit Guide:
With this guide you will have your PS4 on or updated to 4.55, and you will prep it for running exploits either self-hosted (PC) or using web browser in just 4 steps!
You will need:
USB HDD formatted exFAT (Preferably 64GB+ for even the biggest games, or just a 1GB thumb stick will do for 4.55 update)
PS4 (any model) running 4.55 FW or below. (Linked to FW Bundle Guide by @Scarecrow B )
A PC on same network as PS4.
Preparation:
If you have a PS4 console running 4.50 or below follow the SAFE UPDATE section to upgrade to 4.55 via USB. If you have a PS4 above 4.55 FW you are out of luck for now....
FYI before anyone else asks: 5.x to 1.76/4.05/4.55 "Downgraders" are fake.
NOTE: If you have had ever had HEN on 4.05 and have run the UpdateBlocker v1 or v2 payloads before: you must FTP into your PS4 (port 1337) and delete the PS4UPDATE.PUP.temp.net and the PS4UPDATE.PUP folders in the /update folder. Use XVortex FTP payload on 4.05 (included in Al-Azif exploit host below) and use filezilla on PC. Once these are gone you will be able to update through USB (BE CAREFUL NOT TO UPDATE VIA WIFI)
post.net.playstation.net
get.net.playstation.net
fus01.ps4.update.playstation.net
feu01.ps4.update.playstation.net
deu01.ps4.update.playstation.net
ps4updptl.eu.np.community.playstation.net
tmdb.np.dl.playstation.net
themis.dl.playstation.net
sf.api.np.km.playstation.net
asm.np.community.playstation.net
artcdnsecure.ribob01.net
api-p014.ribob01.net
apicdn-p014.ribob01.net
t-prof.np.community.playstation.net
ps4updptl.eu.np.community.playstation.net
ps4.updptl.sp-int.community.playstation.net
ps4updptl.jp.sp-int.community.playstation.net
ps4-eb.ww.np.dl.playstation.net
ps4-eb.ww.np.dl.playstation.net
4.55 UPDATE PUP: HERE / MIRROR (MD5: 9C85CE3A255719D56f2AA07F4BE22F02) Rename this to PS4UPDATE.PUP
Latest version of Al-Azif's (built in HolyGrail!) PS4-exploit-host-win-X.X.X.zip: HERE
OPTIONAL: EnableWebBrowser Payload: HERE / MIRROR (MD5: B142D6B1C33EEF4634FE12643404684E) = Unlocks web browser without PSN required.
On PC: Format your stick to exFat through windows 7/8/10 built in formatting tool.
Now make a folder on your USB stick called [PS4], inside that a folder called [UPDATE], and put the [PS4UPDATE.PUP] in there.
Now remove the USB from the PC and plug in to the PS4
On PS4: go to [Settings] > [System Software Update] and update via USB.
On PC extract the files from the zip archive you got from Al-Azif's github to your desktop and run the ps4-exploit-host.exe within taking note of the DNS IP it gives you. You can put any additional payload BIN files in the [PS4-Exploit-Host] > [Payloads] folder.
On PS4 disable automatic updates and rest mode features:
First go to [Settings] > [System] > [Automatic Downloads] > Uncheck the boxes next to every option.
Then go to [Settings] > [Power Saving Settings] > [Set Features Available in Rest Mode] > Uncheck the boxes next to every option.
Now go to [Settings] > [Network] > [Set up Internet Connection] > [LAN / WIFI] (your choice) > [CUSTOM] (must be on same network as your PC)
Set IP as AUTOMATIC.
Set DHCP as DO NOT SPECIFY.
Set Primary DNS as the one specified by Al-Azif Exploit Host in Step 1.
Set Secondary DNS to 165.227.83.145.
Do not use Proxy Server.
When "Test Internet Connection" appears hit Circle to back out.
Go [Settings] > [Network] > [View Connection Status] to get your IP address.
Go to [Settings] > [User Guide] at the top.
Launch 4.55 exploit. (NOTE: If it fails, just hit CIRCLE until it says "You're all set!") (Thanks @subcon959)
When it says "You're all set!" hit the PS button to get back to XMB.
On PC once HEN is initially loaded simply send any payloads you have in the payloads folder such as EnableWebBrowser payload from your PC by selecting the payload by pressing the corresponding number.
(EnableWebBrowser payload only needs to be launched ONCE EVER and will permanently let you launch web browser without having to sign into PSN)
You can now disable internet setting on PS4 [Settings] > [Network] uncheck the box next to [Connect to Internet].
Don't forget to re-enable after you restart your console to launch exploits!
Go to [Settings] > [Debug Settings] > [Game] > [Package Installer] to install a game. (Game PKG must be fake signed and must be placed on the root of the exFat formatted USB stick)
To start a fake signed game, HEN (HolyGrail) must be running otherwise they will not load.
Pro tips:
+ Use DEFAULTDNB's PlaystationPupCheck+ MD5 tool to quickly check any files MD5 hash: HERE (needs database updating... He knows
)+ Never put PS4 into rest mode, always [Power] > [Turn Off PS4].
+ If you have crashes running payloads then properly reset PS4: hold power for 10-20 seconds to power off, then restart, then [Power] > [Turn Off PS4], then restart again to flush the system and start from scratch.
+ Running payload after payload on the the exploit host webpage can crash the console: shut down in between if you have to run one after another, or find a combo that works.
+ NEVER TOGGLE IDU MODE ON IN DEBUG SETTINGS or you get stuck in demo mode (If you do: disconnect internet and press R1+R2+L1+L2+option+up to fix)
+ To UPGRADE your internal HDD on PS4 running 4.55 use THIS recovery pup (MD5: 6C28DBF66F63B7D3953491CC656f4E2D), and follow Step 0.
+ FTP in and back up /system_data/priv/mms/app.db and /system_data/priv/mms/addcont.db as well as your save game folders periodically in case of "rebuilding database" issue and loss of data (4.55 users can now use this FTP payload too: https://raw.githubusercontent.com/Vultra/PS4_4.55_FTP/master/Payload/Full Root FTP/ps4-ftp-vtx.bin)
+ Set INTERNAL storage as default [Settings] > [Storage] > [Application Install Location] on 4.55 to avoid errors such as CE-30129-5 or CE-41798-9 when installing PKG's.
+ To Move Content to External HDD device (must be USB 3.0 & 8TB max) go to [Settings] > [Storage] > [System Storage] > [Applications] then Press the "Options" button on the title you want to move and select "Move to Extended Storage". Although this saves space fake signed games cannot be played from this location and have to be moved back to internal to avoid CE-38612-0 error. (Thanks @Berserker666)
+ You can dump your own games using xvortex's 4.55 dumper v1.7 beta 1 HERE
+ Find compatible game updates through THIS link using the CUSAXXXXX ID of your game: beware the FW requirement must be 4.55 or below. If a higher update is installed you must delete the entire game, and reinstall the base game again to remove the game update.
+ Alternately you can self host the HolyGrail aka HEN payload via webserver (can use airdisk on IOS), wifi enabled USB stock or wifi SD card methods with USB_455_ HEN or on android with PS4Serve2 (Thanks to Stooged)
+ An increasing list of compatible games 4.55 and under is HERE
+ https://ps4.editzz.net/ is a useful external webhost for exploits if you dont want to self host.
If you can contribute to this or have a mirror for a file, please let me know!
Credits:
Specter, IDC, qwertyoruiopz, Flatz, CTurt, Mistawes, XVortex, LightningMods, CelesteBlue123, Anonymous, neofreno, wolfmankurd, crypt0s, 2much4u, m0rph3us1987, Al-Azif, Modded Warfare,
@sonicdacrack @KiiWii @subcon959 @MostlyUnharmful @skydancer93 @Berserker666 @Scarecrow B
New version of guide is updated over here: [AIO] PS4 Exploit Guide | GBAtemp.net - The Independent Video Game Community
Last edited by KiiWii,
Updated thanks
@sonicdacrack I'm sure this can be slimmed down once there is an AIO for sending payloads through Al-Azif's host, and stooged back up can be added once ported.
Last edited by KiiWii,
NetCatGUI link is bork.@sonicdacrack This is what I have mustered up based on your initial write up: it will need finessing and will need other member's input (@subcon959) to get the netcatgui in STEP 5 correct, as I have only ever sent payloads on 4.05 via SpectreDev's payload and Al-Azif exploit host to send them (also do you need all 3 payloads? or does Holygrail contain HEN + debug?).
Also mirrors need finding/creating as I haven't got time to do that just now, and add more to credit everyone involved no matter what!
IF ANYTHING IS INCORRECT: Please tag myself or @sonicdacrack to update and maintain.
Feel free to copy paste this as you wish to update the OP:
PS4 4.55 Exploit Guide:
With this guide you will have your PS4 on or updated to 4.55, and you will prep it for running exploits either self-hosted (PC) or using web browser.
You will need:
USB hdd formatted exFAT (Preferably 64GB min for even biggest games, or just 1GB will do for 4.55 update)
PS4 (any model) running 4.55 FW or below.
PC on same network as PS4.
Preparation:
If you have a PS4 console running 4.50 or below follow the step 0 to upgrade to 4.55 via USB. If you have a PS4 above 4.55 FW you are out of luck for now....
Files to download:
4.55 UPDATE PUP: HERE / MIRROR (MD5: 9C85CE3A255719D56f2AA07F4BE22F02) Rename this to PS4UPDATE.PUP
Latest version of Al-Azif's Exploit host: HERE
FullDebugSettings Payload: HERE / MIRROR (MD5: 925F22622DB4C987C5D60AF339CADF62) = Unlocks all debug settings.
EnableWebBrowser Payload: HERE / MIRROR (MD5: B142D6B1C33EEF4634FE12643404684E) = Unlocks web browser without PSN required.
HolyGrail Payload: HERE / MIRROR (MD5: 38F5E677A543EF93FB9A75096F983F89) = HEN ported to 4.55.
NetCatGUI: HERE / MIRROR
Lets get started:
0: To update PS4 via USB:
On PC: Format your stick to exFat.
Now make a folder on your USB stick called [PS4], inside that a folder called [UPDATE], and put the [PS4UPDATE.PUP] in there.
Now remove the USB from the PC and plug in to the PS4
On PS4: go to [Settings] > [System Software Update] and update via USB.
1: On PC extract the files from the zip archive you got from Al-Azif's github to your desktop and run the ps4-exploit-host.exe within taking note of the DNS IP it gives you. Put the payload BIN files in the [PS4-Exploit-Host] > [Payloads] folder
2: On PS4 disable automatic updates and rest mode features:
Go to [Settings] > [System] > [Automatic Downloads] > Uncheck the boxes next to every option.
Then go to [Settings] > [Power Saving Settings] > [Set Features Available in Rest Mode] > Uncheck the boxes next to every option.
3: Set up your network:
[Settings] > [Network] > [Set up Internet Connection] > [LAN / WIFI] (your choice) > [CUSTOM]
Set IP as AUTOMATIC.
Set DHCP as DO NOT SPECIFY.
Set Primary DNS as the one specified by Al-Azif Exploit Host in Step 1.
Set Secondary DNS to 165.227.83.145.
Do not use Proxy Server.
When "Test Internet Connection" appears hit Circle to back out.
Go [Settings] > [Network] > [View Connection Status] to get your IP address.
4: Go to [Settings] > [User Guide] at the top.
Launch 4.55 exploit. (NOTE: If it fails, just refresh the browser until it says "You're all set")
5: On PC: Open NetCatGUI enter your PS4's IP address and send the FullDebugSettings, and HolyGrail payloads from your PC with port 9020.
Optional: EnableWebBrowser payload only needs to be launched ONCE EVER and will permanently let you launch web browser without having to sign into PSN, so you can go to http://crack.bargains/455/ or another exploit host when theyre updated to be AIO.
NOTE: you can now disable internet setting on PS4 [Settings] > [Network] uncheck the box next to [Connect to Internet]. Don't forget to re-enable when you want to launch exploits.
6: Go to [Settings] > [DEBUG SETTINGS] > [GAME] > [PACKAGE INSTALLER] to install a game. (Game PKG must be on root of exFat formatted USB stick)
Pro tips: Never put PS4 into rest mode, always [Power] > [Turn Off PS4]. If you have crashes running payloads then properly reset PS4: hold power for 10-20 seconds to power off, then restart, then [Power] > [Turn Off PS4], then restart to flush the system and start from scratch.
Credits:
Qwertyuiop, Spectredev, flatz, 2much4u, m0rph3us1987, Al-Azif, Modded Warfare,
@sonicdacrack @KiiWii @subcon959 @MostlyUnharmful
Last edited by KiiWii,
Also, why are we turning off all rest mode options? I use rest mode a lot so I can just suspend my PS4 in case I haven't reached a save or whatever. Is it actually needed or just "to be safe"?Updated thanks
Just to be safe, Rest mode gets borked after running payloads. Normally results in hang during entering rest mode and needs a full flush to regain control.
by all means test rest mode on 4.55 it way be different now, but on 4.05 it messed up every time for me.
Rest mode isn't compatible with the 4.05 HEN (or viceversa, anyway frozen console), probably it's the same with 4.55 HEN.
Updated Netcat Links.
Netcat GUI link is broken again... halp?
edit: https://mega.nz/#!HNQW0S4K!XCfWieaJN95QBx4oLQjxZ7oClAy2laTlEOEc_x3RXeE found a working one, post updated.
Netcat GUI link is broken again... halp?
edit: https://mega.nz/#!HNQW0S4K!XCfWieaJN95QBx4oLQjxZ7oClAy2laTlEOEc_x3RXeE found a working one, post updated.
Last edited by KiiWii,
A curious question! :
Will hacked PS4 with firmware 4.05 keep the installed "backups" after 4.55 update?
Will they be compatible with 4.55 payload?
Thanks.
Will hacked PS4 with firmware 4.05 keep the installed "backups" after 4.55 update?
Will they be compatible with 4.55 payload?
Thanks.
If PS4 crashes then you have to start again. From scratch.
I'm personally not too familiar with Netcat gui...
If its just payload crashes, try just Holygrail payload first, then full debug?
@subcon959 knows how, I'm hoping he replies soon
Last edited by KiiWii,
- Status
Similar threads
-
Sonic Angel Knight
-
Psionic Roshambo
-
BigOnYa
-
BakerMan
The snack that smiles back, Ballsack!
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
@
Psionic Roshambo:
If your not getting your pills from Psi's discount drugs who knows what your swallowing!+1
-
@
Psionic Roshambo:
Shawnita used to get her pills from some other street pharmacist and after switching to The Psi Discount plan she now only has to swallow two things a day!+1
-
-
