Thread Status:
Not open for further replies.
  1. sonicdacrack

    OP sonicdacrack Advanced Member
    Newcomer

    Joined:
    Oct 7, 2015
    Messages:
    64
    Country:
    Gambia, The
  2. MostlyUnharmful

    MostlyUnharmful GBAtemp Fan
    Member

    Joined:
    Feb 8, 2018
    Messages:
    370
    Country:
    Italy
    You could add the MD5 hash of both system and recovery PUP (sys MD5: 9c85ce3a255719d56f2aa07f4be22f02, rec MD5: 6c28dbf66f63b7d3953491cc656f4e2d).

    If you have a local webserver (like Al-Azif) you don't need the "Permanent Browser Patch", either way when you execute the jailbreak you need to netcat the HEN and/or the Debug payload, until a version of the jailbreak with HEN integrated appears.

    So you need to add a step "Netcat payload (HEN or Debug) between the last two steps.

    And maybe add numbers and a "???" and "Profit" step to the list (for LULZ). ^__~

    Edit: please double check the MD5 hashes, I've cross referenced them only with Google.
     
    Last edited by MostlyUnharmful, Feb 28, 2018
    KiiWii likes this.
  3. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    9c85ce3a255719d56f2aa07f4be22f02 is correct for full 4.55 pup

    @sonicdacrack Pro tip: format the guide up nicely and make it the definitive guide people will want to bookmark here at GBAtemp ;)
     
    Last edited by KiiWii, Feb 28, 2018
  4. sonicdacrack

    OP sonicdacrack Advanced Member
    Newcomer

    Joined:
    Oct 7, 2015
    Messages:
    64
    Country:
    Gambia, The
    Ok, like i said, i did it all while i was here at work and any news popped up.
    I thought al-azif was basicaly netcat only you could do it through the heldguide browser...
    and you would load the bins i supplied in the payload folder....

    Havent found the permanent browser path for 4.55 either.. or is the browser enabler it?

    Still dont get what the fulldebusetting does, i am fairly new to the ps4 scene and trying to give all info i have learn on to everybody else...
    So perhaps oyu can edit my list they it would be correct and i belive you would make a lot of people happy

    As i said i am doing this without the console in fornt of me at the moment ;-)

    — Posts automatically merged - Please don't double post! —

    Will do so when i finally know if i have everything together and all the steps are correct, really looking for some held here too
    ;-)
     
    KiiWii likes this.
  5. MostlyUnharmful

    MostlyUnharmful GBAtemp Fan
    Member

    Joined:
    Feb 8, 2018
    Messages:
    370
    Country:
    Italy
    "Full debug" adds a menu entry to "System settings" that permit to install fpkgs (fake signed packages) from a USB Flash/HDD connected to the PS4 (FAT32, EXFAT filesystems supported).

    "Permanent browser patch" and "browser enabler" are the same thing (it's a patch to the system registry), Al-Azif should be a webserver, DNS spoofer and payload sender (never used tho... ^__^; ).

    Basically, you put the IP address of the PC where you run the Al-Azif Python script in the PS4 DNS network configuration, it redirects the manual.playstation.net URL to the PC and serves the "document/en/ps4" page with the 4.55 jailbreak to the PS4. If you use Al-Azif script you don't need the "browser enabler" to reach a 3rd party page with the jailbreak. As for the moment you need it to send the payloads, you probably can temporarily avoid the "browser enabler".

    I forgot that, every time you need to send a payload, you probably need to reboot you console and re-execute the jailbreak, start with the "Debug menu" to install a fpkg, reboot, send the HEN payload and try to execute the installed package, ???, profit.
     
    Last edited by MostlyUnharmful, Feb 28, 2018
  6. sonicdacrack

    OP sonicdacrack Advanced Member
    Newcomer

    Joined:
    Oct 7, 2015
    Messages:
    64
    Country:
    Gambia, The
    Ok, will play around as soon as i am at home and update this thread
     
  7. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom

    PS4 4.55 Exploit Guide:

    With this guide you will have your PS4 on or updated to 4.55, and you will prep it for running exploits either self-hosted (PC) or using web browser in just 4 steps!

    You will need:
    USB HDD formatted exFAT (Preferably 64GB+ for even the biggest games, or just a 1GB thumb stick will do for 4.55 update)
    PS4 (any model) running 4.55 FW or below. (Linked to FW Bundle Guide by @Scarecrow B )
    A PC on same network as PS4.

    Preparation:
    If you have a PS4 console running 4.50 or below follow the SAFE UPDATE section to upgrade to 4.55 via USB. If you have a PS4 above 4.55 FW you are out of luck for now.... ;)
    FYI before anyone else asks: 5.x to 1.76/4.05/4.55 "Downgraders" are fake.

    NOTE: If you have had ever had HEN on 4.05 and have run the UpdateBlocker v1 or v2 payloads before: you must FTP into your PS4 (port 1337) and delete the PS4UPDATE.PUP.temp.net and the PS4UPDATE.PUP folders in the /update folder. Use XVortex FTP payload on 4.05 (included in Al-Azif exploit host below) and use filezilla on PC. Once these are gone you will be able to update through USB (BE CAREFUL NOT TO UPDATE VIA WIFI)

    post.net.playstation.net
    get.net.playstation.net
    fus01.ps4.update.playstation.net
    feu01.ps4.update.playstation.net
    deu01.ps4.update.playstation.net
    ps4updptl.eu.np.community.playstation.net
    tmdb.np.dl.playstation.net
    themis.dl.playstation.net
    sf.api.np.km.playstation.net
    asm.np.community.playstation.net
    artcdnsecure.ribob01.net
    api-p014.ribob01.net
    apicdn-p014.ribob01.net
    t-prof.np.community.playstation.net
    ps4updptl.eu.np.community.playstation.net
    ps4.updptl.sp-int.community.playstation.net
    ps4updptl.jp.sp-int.community.playstation.net
    ps4-eb.ww.np.dl.playstation.net
    ps4-eb.ww.np.dl.playstation.net
    Files to download:

    4.55 UPDATE PUP: HERE / MIRROR (MD5: 9C85CE3A255719D56f2AA07F4BE22F02) Rename this to PS4UPDATE.PUP
    Latest version of Al-Azif's (built in HolyGrail!) PS4-exploit-host-win-X.X.X.zip: HERE
    OPTIONAL: EnableWebBrowser Payload: HERE / MIRROR (MD5: B142D6B1C33EEF4634FE12643404684E) = Unlocks web browser without PSN required.
    Lets get started:

    On PC: Format your stick to exFat through windows 7/8/10 built in formatting tool.
    Now make a folder on your USB stick called [PS4], inside that a folder called [UPDATE], and put the [PS4UPDATE.PUP] in there.
    Now remove the USB from the PC and plug in to the PS4
    On PS4: go to [Settings] > [System Software Update] and update via USB.

    On PC extract the files from the zip archive you got from Al-Azif's github to your desktop and run the ps4-exploit-host.exe within taking note of the DNS IP it gives you. You can put any additional payload BIN files in the [PS4-Exploit-Host] > [Payloads] folder.

    On PS4 disable automatic updates and rest mode features:
    First go to [Settings] > [System] > [Automatic Downloads] > Uncheck the boxes next to every option.
    Then go to [Settings] > [Power Saving Settings] > [Set Features Available in Rest Mode] > Uncheck the boxes next to every option.

    Now go to [Settings] > [Network] > [Set up Internet Connection] > [LAN / WIFI] (your choice) > [CUSTOM] (must be on same network as your PC)
    Set IP as AUTOMATIC.
    Set DHCP as DO NOT SPECIFY.
    Set Primary DNS as the one specified by Al-Azif Exploit Host in Step 1.
    Set Secondary DNS to 165.227.83.145.
    Do not use Proxy Server.
    When "Test Internet Connection" appears hit Circle to back out.
    Go [Settings] > [Network] > [View Connection Status] to get your IP address.

    Go to [Settings] > [User Guide] at the top.
    Launch 4.55 exploit. (NOTE: If it fails, just hit CIRCLE until it says "You're all set!") (Thanks @subcon959)
    When it says "You're all set!" hit the PS button to get back to XMB.

    On PC once HEN is initially loaded simply send any payloads you have in the payloads folder such as EnableWebBrowser payload from your PC by selecting the payload by pressing the corresponding number.

    (EnableWebBrowser payload only needs to be launched ONCE EVER and will permanently let you launch web browser without having to sign into PSN)

    You can now disable internet setting on PS4 [Settings] > [Network] uncheck the box next to [Connect to Internet].
    Don't forget to re-enable after you restart your console to launch exploits!

    Go to [Settings] > [Debug Settings] > [Game] > [Package Installer] to install a game. (Game PKG must be fake signed and must be placed on the root of the exFat formatted USB stick)

    To start a fake signed game, HEN (HolyGrail) must be running otherwise they will not load.

    Pro tips:


    + Use DEFAULTDNB's PlaystationPupCheck+ MD5 tool to quickly check any files MD5 hash: HERE (needs database updating... He knows ;))

    + Never put PS4 into rest mode, always [Power] > [Turn Off PS4].

    + If you have crashes running payloads then properly reset PS4: hold power for 10-20 seconds to power off, then restart, then [Power] > [Turn Off PS4], then restart again to flush the system and start from scratch.

    + Running payload after payload on the the exploit host webpage can crash the console: shut down in between if you have to run one after another, or find a combo that works.

    + NEVER TOGGLE IDU MODE ON IN DEBUG SETTINGS or you get stuck in demo mode (If you do: disconnect internet and press R1+R2+L1+L2+option+up to fix)

    + To UPGRADE your internal HDD on PS4 running 4.55 use THIS recovery pup (MD5: 6C28DBF66F63B7D3953491CC656f4E2D), and follow Step 0.

    + FTP in and back up /system_data/priv/mms/app.db and /system_data/priv/mms/addcont.db as well as your save game folders periodically in case of "rebuilding database" issue and loss of data (4.55 users can now use this FTP payload too: https://raw.githubusercontent.com/Vultra/PS4_4.55_FTP/master/Payload/Full Root FTP/ps4-ftp-vtx.bin)

    + Set INTERNAL storage as default [Settings] > [Storage] > [Application Install Location] on 4.55 to avoid errors such as CE-30129-5 or CE-41798-9 when installing PKG's.

    + To Move Content to External HDD device (must be USB 3.0 & 8TB max) go to [Settings] > [Storage] > [System Storage] > [Applications] then Press the "Options" button on the title you want to move and select "Move to Extended Storage". Although this saves space fake signed games cannot be played from this location and have to be moved back to internal to avoid CE-38612-0 error. (Thanks @Berserker666)

    + You can dump your own games using xvortex's 4.55 dumper v1.7 beta 1 HERE

    + Find compatible game updates through THIS link using the CUSAXXXXX ID of your game: beware the FW requirement must be 4.55 or below. If a higher update is installed you must delete the entire game, and reinstall the base game again to remove the game update.

    + Alternately you can self host the HolyGrail aka HEN payload via webserver (can use airdisk on IOS), wifi enabled USB stock or wifi SD card methods with USB_455_ HEN or on android with PS4Serve2 (Thanks to Stooged)

    + An increasing list of compatible games 4.55 and under is HERE

    + https://ps4.editzz.net/ is a useful external webhost for exploits if you dont want to self host.
    IF ANYTHING IS INCORRECT: Please tag me to update and maintain.
    If you can contribute to this or have a mirror for a file, please let me know!

    Credits:

    Specter, IDC, qwertyoruiopz, Flatz, CTurt, Mistawes, XVortex, LightningMods, CelesteBlue123, Anonymous, neofreno, wolfmankurd, crypt0s, 2much4u, m0rph3us1987, Al-Azif, Modded Warfare,
    @sonicdacrack @KiiWii @subcon959 @MostlyUnharmful @skydancer93 @Berserker666 @Scarecrow B

    New version of guide is updated over here: [AIO] PS4 Exploit Guide | GBAtemp.net - The Independent Video Game Community
     
    Last edited by KiiWii, Mar 3, 2018
  8. MostlyUnharmful

    MostlyUnharmful GBAtemp Fan
    Member

    Joined:
    Feb 8, 2018
    Messages:
    370
    Country:
    Italy
    The step 5, the "EnableWebBrowser" payload only need to be executed one time, it's a persistent registry patch. And sholdn't be 9020 the port to use?
     
    KiiWii likes this.
  9. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    Updated thanks :)

    @sonicdacrack I'm sure this can be slimmed down once there is an AIO for sending payloads through Al-Azif's host, and stooged back up can be added once ported.
     
    Last edited by KiiWii, Feb 28, 2018
  10. Shadowfied

    Shadowfied GBAtemp Addict
    Member

    Joined:
    Dec 6, 2014
    Messages:
    2,361
    Country:
    NetCatGUI link is bork.
     
  11. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    Hmm, need another link
    @subcon959 can you please upload your tool or send me a link please?
     
    Last edited by KiiWii, Feb 28, 2018
    Shadowfied likes this.
  12. Shadowfied

    Shadowfied GBAtemp Addict
    Member

    Joined:
    Dec 6, 2014
    Messages:
    2,361
    Country:
    Also, why are we turning off all rest mode options? I use rest mode a lot so I can just suspend my PS4 in case I haven't reached a save or whatever. Is it actually needed or just "to be safe"?
     
  13. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    Just to be safe, Rest mode gets borked after running payloads. Normally results in hang during entering rest mode and needs a full flush to regain control.

    by all means test rest mode on 4.55 it way be different now, but on 4.05 it messed up every time for me.
     
    MostlyUnharmful likes this.
  14. MostlyUnharmful

    MostlyUnharmful GBAtemp Fan
    Member

    Joined:
    Feb 8, 2018
    Messages:
    370
    Country:
    Italy
    Rest mode isn't compatible with the 4.05 HEN (or viceversa, anyway frozen console), probably it's the same with 4.55 HEN.
     
    KiiWii likes this.
  15. Shadowfied

    Shadowfied GBAtemp Addict
    Member

    Joined:
    Dec 6, 2014
    Messages:
    2,361
    Country:
    Oh damn, that sucks.
     
    KiiWii likes this.
  16. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    Last edited by KiiWii, Feb 28, 2018
  17. depaul

    depaul GBAtemp Advanced Fan
    Member

    Joined:
    May 21, 2014
    Messages:
    836
    Country:
    France
    A curious question! :
    Will hacked PS4 with firmware 4.05 keep the installed "backups" after 4.55 update?
    Will they be compatible with 4.55 payload?

    Thanks.
     
    Green Hypnotic likes this.
  18. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    Yes they will.
     
    depaul likes this.
  19. badger_vm

    badger_vm Member
    Newcomer

    Joined:
    Jan 25, 2015
    Messages:
    24
    Country:
    Hello, on the 5th step, my PS4 crashes when I try to run enable menu and then holy grail, to avoid that I should shut down the ps4 according to your pro tips, but if I do that, the debug settings dissapear, how should I execute them?
     
    KiiWii likes this.
  20. KiiWii

    KiiWii Reporter
    Reviewer

    Joined:
    Nov 17, 2008
    Messages:
    10,327
    Country:
    United Kingdom
    If PS4 crashes then you have to start again. From scratch.

    I'm personally not too familiar with Netcat gui...

    If its just payload crashes, try just Holygrail payload first, then full debug?

    @subcon959 knows how, I'm hoping he replies soon :)
     
    Last edited by KiiWii, Feb 28, 2018
    depaul likes this.
Loading...

Hide similar threads Similar threads with keywords - Tutorial, [GUIDE], Exploit

Thread Status:
Not open for further replies.