Toggle sidebar

Hacking [Release] PS-Phive! (ForPS4 6.72) Exploit Host Menu

  • Thread starter Thread starter Leeful
  • Start date Start date
  • Views Views 170,484
  • Replies Replies 462
  • Likes Likes 57
Leeful said:
You dont need to load the spoof payload with PS-Phive. It is automatically spoofed to v9.00 when you run HEN 2.1.3.

It doesn't display it at the bottom automatically after HEN has loaded but if you exit and re-enter the browser it will show 'Detected Firmware Version: v9.00' at the bottom of the screen to show it has been spoofed.:)
Click to expand...

Leeful,

Just a remark, on your V9.0b on Hen 2.1.3 and HEN 2.1.3b, after successful jailbreak and Hen loaded, if you returned to your host, it showed all the other payloads not related to enabling HEN and jailbreak, but on Goldhen, after sucessful load, if you return to your host to load any payload, it doesn't detect if the ps4 is already jailbroken or not, it goes always to the first option to run jailbreak + hen, never the remaining payloads, is there an explanation for it?
 
  • Like
Reactions: Leeful
Pasqui said:
Ehm, sorry... I was talking about mods in the sense that they took Leeful's version, not because GoldHEN is better. I still use the original :D
Click to expand...
lol
just makes me mad seeing links to different version when the op has its own
and perfectly working
my thinking is if people want to share a link then make a post as when i see other links or people claiming it was fixed
it makes me think that the op is broken
thats all :D
 
  • Like
Reactions: Leeful
When I say fixed, it's only bad ass english.

With GoldHEN you can use 5.05 Exploit and dump 7.55 Games. You only need a Backport Fix, too.
(Sorry, FakeNews, it doesnt work at this time. Special Dumper will be needed.)

With GoldHEN the Rest Mode works under 7.02 and 7.55. Thats amazing, because Not enough memory errors be crazy there.
 
Last edited by JimMayer,
  • Like
Reactions: Leeful
viggen66 said:
Leeful,

Just a remark, on your V9.0b on Hen 2.1.3 and HEN 2.1.3b, after successful jailbreak and Hen loaded, if you returned to your host, it showed all the other payloads not related to enabling HEN and jailbreak, but on Goldhen, after sucessful load, if you return to your host to load any payload, it doesn't detect if the ps4 is already jailbroken or not, it goes always to the first option to run jailbreak + hen, never the remaining payloads, is there an explanation for it?
Click to expand...
That makes sense. GoldHEN does not spoof the firmware in the way the old HEN spoofed it which causes problems.
When PS-Phive! starts it first looks to see if the firmware is spoofed.
If it detects that it is spoofed then that is a sign that the kernel has already been patched so it does not need to run the kernel exploit.
GoldHEN must break this and make it think that the kernel has NOT been patched so it will run the kernel exploit every time.

There is no reason to have GoldHEN with PS-Phive! anyway. It works just fine as it is. (with backports etc..) That is one of the reasons why I have not personally updated anything.
 
  • Like
Reactions: ZeroT21 and schatzi24
Leeful said:
You dont need to load the spoof payload with PS-Phive. It is automatically spoofed to v9.00 when you run HEN 2.1.3.

It doesn't display it at the bottom automatically after HEN has loaded but if you exit and re-enter the browser it will show 'Detected Firmware Version: v9.00' at the bottom of the screen to show it has been spoofed.:)
Click to expand...

That is odd. If I don't go back and run the spoofer after loading hen then my system will crash when trying to install anything that needs 6.72+.
 
Leeful said:
That makes sense. GoldHEN does not spoof the firmware in the way the old HEN spoofed it which causes problems.
When PS-Phive! starts it first looks to see if the firmware is spoofed.
If it detects that it is spoofed then that is a sign that the kernel has already been patched so it does not need to run the kernel exploit.
GoldHEN must break this and make it think that the kernel has NOT been patched so it will run the kernel exploit every time.

There is no reason to have GoldHEN with PS-Phive! anyway. It works just fine as it is. (with backports etc..) That is one of the reasons why I have not personally updated anything.
Click to expand...

Leeful,

You're very right on your saying, in matter of fact tried ps-pshive after running GoldHen and voila, it detects the same firmware, it doesn't spoof to higher firmware, as it can be seen from this picture, hence GoldenHen being incompatible with PS-Pshive, as it will jailbreak the ps4 over and over everytime someone enters the host to load another payload, weird it detects same 6.72 all over, starting to think GoldHen still needs more tweaks before being an real alternative to hen 2.1.3
 

Attachments

  • fw.png
    fw.png
    1 MB · Views: 276
Last edited by viggen66,
  • Like
Reactions: Leeful
godreborn said:
goldhen doesn't spoof, because it doesn't need to. it has a patch that makes it unnecessary.
Click to expand...

On the briefing of the features of GoldHen, it doesn't mention any spoofing at all.

  • Homebrew Enabler
  • Debug Settings
  • VR Support
  • Remote Package Install
  • Rest Mode Support
  • External HDD Support
  • Official External HDD Format Support
  • -Debug Trophies Support
  • sys_dynlib_dlsym Patch
  • UART Enabler
  • Never Disable Screenshot
  • Remote Play Enabler
  • Persistent FTP on 2121 port (Rest Mode Support)
  • FW Update Block
 
it might be that shell code patch that Joonie mentioned to al azif, because al azif's suggestion was nulling the param.sfo to 0.00, but that would be up to the uploader for every game. most uploaders wouldn't know how to do that, so it's now a part of hen itself.
 
  • Like
Reactions: JimMayer
  • Like
Reactions: JimMayer and Leeful
Yes, thats true.
But now you can load GoldHEN v1, if you want.
If you want other payloads, then you can load Hen 2.1.3 or Hen 2.1.3b before.
It's your choose.
 
Apologies to leeful
Soz bud all this goldhen and ps-phive talk probably down to the post I uploaded deleted now
Ps-phive does not include goldhen ps-phive doesn't need it
The original works perfectly well
 
  • Like
Reactions: Leeful
Prb said:
Leeful doesn't do user guide
Only browser - live and selfhost
Click to expand...
can you somehow send payload to ps4 through wifi?
there is an app called payload sender, I'm guessing i only need to be on the same wifi/ip and i can send e.g hen1.2 etc?

what's that new goldhen stuff btw, is it fixing rest mode?
 
Only thing it can be done, is to update Hen 2.1.3b to spoof firmware higher than 7.51, I don't have the knowledge for that.
 
Can you add more linux options please.

7116b here, cant get it to work. Sleirsgoevys works fine.
 
@Leeful several questions.

Can you please show the source from where it comes the payload toretail that you use in this exploit host ? want to compile it for 7.55 but, it's very curious because actually todex isnt working at all...in 7.55 i mean.

Do you remember our conversation the other day about to detect if kernel exploit is already set ?
https://github.com/sleirsgoevy/ps4jb2/blob/3b22dfb1f5bd38f146a251fb511e58832fa24fbf/src/jb.c#L608
.... but current jb.js hasnt that detection, is it ? isnt yet compiled that jb in javascript with the detection in source ? i cant see it...

thx in advance
 
Last edited by xalfie,
  • Like
Reactions: Leeful
arfgh said:
@Leeful several questions.
Can you please show the source from where it comes the payload toretail that you use in this exploit host ? want to compile it for 7.55 but, it's very curious because actually todex isnt working at all...in 7.55 i mean.
Click to expand...
Its the same sorce as todex, todev etc but it uses the offset 0x87 instead of 0x82(dex) 0x81(dev) 0xA0(kratos).
I later found out that 0x87 is for EUR reatail but it doesnt really matter because it still removes todex to set the target id as a retail again and not a dex.

arfgh said:
@Leeful several questions.
Do you remember our conversation the other day about to detect if kernel exploit is already set ?
https://github.com/sleirsgoevy/ps4jb2/blob/3b22dfb1f5bd38f146a251fb511e58832fa24fbf/src/jb.c#L608
.... but current jb.js hasnt that detection, is it ? isnt yet compiled that jb in javascript with the detection in source ? i cant see it...

thx in advance
Click to expand...
The 'is the kernel patched?' detection (if(!setuid(0)) return 179;) is in the jb.c sorce code.
When you compile the jb.c it creates the jb.js which is the file we use on the PS4.

Think of it this way:
jb.c and jb.js are basically the same thing. It's the kernel exploit code.
The jb.c is written in C language (Which the PS4 browser cannot understand)
The jb.js is written in javascript (which the PS4 browser can understand)

When you compile the jb.c it converts the kernel exploit code into javascript which the PS4 can understand.

So the 'if(!setuid(0)) return 179;' is still in the jb.js its just written in a different language.:)
 
  • Like
Reactions: godreborn

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Translation  List of PS4 English Fan Translations

Translation  Yuuna and the Haunted Hot Springs The Thrilling Steamy Maze English Patch

ROM Hack  Resident Evil 3-1.05 update request

Primary and secondary address 5.05