Hacking PS4 Security Analysis and Question

IndieDeveloper

IndieDeveloper

Active Member
OP
Newcomer
Level 1
Joined
Mar 1, 2020
Messages
25
Trophies
0
Age
34
XP
77
Country
Italy
Hey dudes, questions are being asked about the security of PS4 ( in my mind ). Given that PS4 uses ARM Truszone for memory security, probably key protection too and checking boot-chain after bootrom sets it up.
No one has ever tried to looking what is running on the same security level to see what is possible to do, without go in against hardware security.
With a little research you can see that ARM truszone is also used in IOS systems for kernel r/w.
Ideas ?
 
Last edited by IndieDeveloper,
B

Bergot

Well-Known Member
Member
Level 7
Joined
May 8, 2017
Messages
159
Trophies
0
Age
44
XP
1,153
Country
United States
IndieDeveloper said:
Hey dudes, questions are being asked about the security of PS4 ( in my mind ). Given that PS4 uses ARM Truszone for memory security, probably key protection too and checking boot-chain after bootrom sets it up.
No one has ever tried to looking what is running on the same security level to see what is possible to do, without go in against hardware security.
With a little research you can see that ARM truszone is also used in IOS systems for kernel r/w.
Ideas ?
Click to expand...
Dude, the ps4 scene have the most talented people out there who meddle with exploit..but none of them are willing to release a kexploit to Sony patch it in a few hours or days...wait for the EOL of the console or wait theflow to release a kexploit for a patched firmware ( 6.20..) the current firmware will never have a kex at the moment....
 
Last edited by Bergot,
IndieDeveloper

IndieDeveloper

Active Member
OP
Newcomer
Level 1
Joined
Mar 1, 2020
Messages
25
Trophies
0
Age
34
XP
77
Country
Italy
Bergot said:
Dude, the ps4 scene have the most talented people out there who meddle with exploit..but none of them are willing to release a kexploit to Sony patch it in a few hours or days...wait for the EOL of the console or wait theflow to release a kexploit for a patched firmware ( 6.20..) the current firmware will never have a kex at the moment....
Click to expand...
what does this have to do with my "question/doubt" ? it's a speech about ps4 security, your answer has absolutely nothing to do with ^^
 
IndieDeveloper

IndieDeveloper

Active Member
OP
Newcomer
Level 1
Joined
Mar 1, 2020
Messages
25
Trophies
0
Age
34
XP
77
Country
Italy
Bergot said:
ok..if you think that nobody has thought about what you said..you are being naive..
Click to expand...
no, I'm not naive.
It may be that no one has thought this, since the PS4 scene as an entry point only exploits the webkit (publicly, privately I do not know what and who has uses )
 
M

MostlyUnharmful

Well-Known Member
Member
Level 8
Joined
Feb 8, 2018
Messages
410
Trophies
0
Age
42
XP
1,446
Country
Italy
IndieDeveloper said:
It may be that no one has thought this, since the PS4 scene as an entry point only exploits the webkit (publicly, privately I do not know what and who has uses )
Click to expand...

Two years ago the guys behind fail0verflow posted a PoC on how to achieve permanent(?) code execution on Aeolia and Belize (plus an exploit on the HDMI CEC), so I'm aligning with @Bergot on this one. ^__~

Also attacking the browser is easy because usually is someone else doing the legwork, someone showed another WebKit RCE a few weeks ago IIRC.
 
  • Like
Reactions: Bergot, Mo Poge and IndieDeveloper

Site & Scene News

Go to forum More news

Popular threads in this forum

I have a very simple question

Hacking  Docker PPPwn

Should I buy

Early Build of Mortal Kombat Returns ported to PS4

Beat 'Em & Eat 'Em: RediXXX - A PS4 remake of the 1982 Atari 2600 Classic

Hacking Feedback Gaming Others  Need cheat codes for dragon Ball z kakarot fun PlayStation 4

PS4Pro Jailbreaked 6.72 HD to SSD replace

Hacking Others  il2cppdumper

General chit-chat
Help Users
  • The Real Jdbye @ The Real Jdbye:
    @SylverReZ if you could find a v5 DS ML you would have the best of both worlds since the v5 units had the same backlight brightness levels as the DS Lite unlockable with flashme
  • The Real Jdbye @ The Real Jdbye:
    but that's a long shot
  • The Real Jdbye @ The Real Jdbye:
    i think only the red mario kart edition phat was v5
  • BigOnYa @ BigOnYa:
    A woman with no arms and no legs was sitting on a beach. A man comes along and the woman says, "I've never been hugged before." So the man feels bad and hugs her. She says "Well i've also never been kissed before." So he gives her a kiss on the cheek. She says "Well I've also never been fucked before." So the man picks her up, and throws her in the ocean and says "Now you're fucked."
     +2
  • AncientBoi @ AncientBoi:
    :O:ohnoes::lol::rofl::rofl2:
  • BakerMan @ BakerMan:
    lmao
  • BakerMan @ BakerMan:
    anyways, we need to re-normalize physical media

    if i didn't want my games to be permanent, then i'd rent them
     +1
  • BigOnYa @ BigOnYa:
    Agreed, that why I try to buy all my games on disc, Xbox anyways. Switch games (which I pirate tbh) don't matter much, I stay offline 24/7 anyways.
     +1
  • AncientBoi @ AncientBoi:
    I don't pirate them, I Use Them :mellow:. Like I do @BigOnYa 's couch :tpi::evil::rofl2:
     +1
  • cearp @ cearp:
    @BakerMan - you can still "own" digital media, arguably easier and better than physical since you can make copies and backups, as much as you like.

    The issue is DRM
     +1
  • cearp @ cearp:
    You can buy drm free games / music / ebooks, and if you keep backups of your data (like documents and family photos etc), then you shouldn't lose the game. but with a disk, your toddler could put it in the toaster and there goes your $60

    :rofl2:
  • cearp @ cearp:
    still, I agree physical media is nice to have. just pointing out the issue is drm
     +1
  • rqkaiju2 @ rqkaiju2:
    i like physical media because it actually feels like you own it. thats why i plan on burning music to cds
  • cearp @ cearp:
    It's nice to not have to have a lot of physical things though, saves space
     +1
  • AncientBoi @ AncientBoi:
    Nor clothes 🤮 . Saves on time, soap, water and money having to wash them. :D
  • SylverReZ @ SylverReZ:
    @rqkaiju2, Physical media is a great source for archiving your data, none of that cloud storage shiz.
     +1
  • AncientBoi @ AncientBoi:
    [squeezes @SylverReZ onto a physical media, then archives you in my old stuff box] :tpi::rofl2::tpi:
     +1
  • SylverReZ @ SylverReZ:
    https://www.youtube.com/watch?v=cg4rfeX4m_E
  • SylverReZ @ SylverReZ:
    @AncientBoi, Lmao
     +1
  • BakerMan @ BakerMan:
    guys, should i change my pfp to one of these or keep it the same?
    iu

    iu

    (i guess i could change it to one of my other pfps too, but i just want to see what you guys think first)
  • SylverReZ @ SylverReZ:
    @BakerMan, Up to you.
  • BakerMan @ BakerMan:
    smug sonic time lmao
     +1
  • Psionic Roshambo @ Psionic Roshambo:
    Chronic The HempHog
  • SylverReZ @ SylverReZ:
    @Psionic Roshambo, https://www.youtube.com/watch?v=6oRUCkAbPn0
  • SylverReZ @ SylverReZ:
    https://www.youtube.com/watch?v=EtapU5nI6G4
    SylverReZ @ SylverReZ: https://www.youtube.com/watch?v=EtapU5nI6G4