Hacking Syscon keys leaked

[isoisoiso]

Since when hashes aren't allowed?

Reminder that certain combinations of 0s and 1s are illegal ^^

 

[tunip3]

I posted the hash and it is allowed as it is not the actual key and is hard to work backfrom

Since when hashes aren't allowed?

 

[SomeGamer]

Reminder that certain combinations of 0s and 1s are illegal ^^

Yes I know but AFAIK hashes of keys were always allowed on GBAtemp.

 

[jammybudga777]

Sweeeeet!

sorry for not being so savy but is this anything in relation of what i asked yesterday about 4k updates exc?

 

[KiiWii]

sorry for not being so savy but is this anything in relation of what i asked yesterday about 4k updates exc?

Not really mate.

 

[jammybudga777]

Not really mate.

i didnt think so but thought ide ask anyway

 

[brollikk]

should we be excited? Ps4 cfw would be so sick.

 

[antiNT]

What can this possibly allow us to do ?

 

[SomeGamer]

I posted the hash and it is allowed as it is not the actual key and is hard to work backfrom

I know it's allowed, I was just asking because @Flame removed it. (Now restored BTW.)

 

[Shah Isah]

What can this possibly allow us to do ?

Possiblly downgrade according to users who have knowledge back from in the ps3 scene..

 

[MoralHD]

Nothing right now. Keep your eyes peeled in the AIO guide I will update of any progress.

Ok.. what Could we do with this in the future? CFWs? Downnnngradding?

 

[antiNT]

Possiblly downgrade according to users who have knowledge back from in the ps3 scene..

Boi hell yes

 

[KiiWii]

Irony being you would need an entry point to use the keys to downgrade.... unless hardware will suffice?

 

[Shah Isah]

Irony being you would need an entry point to use the keys to downgrade.... unless hardware will suffice?

Can't someone build a homebrew app from the ground up? *Cough*PSP HELLCAT FLASHER like*Cough*

 

[KiiWii]

Can't someone build a homebrew app from the ground up? *Cough*PSP HELLCAT FLASHER like*Cough*

Hmm, we barely even have pong native homebrew right now.

 

[tunip3]

Can't someone build a homebrew app from the ground up? *Cough*PSP HELLCAT FLASHER like*Cough*

To execute it you need an attack vector but a hardware atack would be much more likely but you would probably need to re flash the syscon and probably nor but the nor is encrypted so you would probably need a nor back up from a lower firm

 

[smf]

These are the names of the keys that have been leaked.

FW_AES
FW_CMAC
PTCH_AES
PTCH_CMAC
RL78_ID

The PTCH_ keys are likely for "signing" patches. f0f blog says "Knowledge of the firmware updates keys means we can encrypt and sign our own patch files (it’s not explained in depth in this blog post - but syscon on retail PS4s is locked down to only support patching, not full update images)."

One thing to be wary of, they claim to have only looked at the rl78 on the earliest motherboard. The syscon on later motherboards may not have the same keys or schemes.

 

[Joselof96]

These are the names of the keys that have been leaked.

FW_AES
FW_CMAC
PTCH_AES
PTCH_CMAC
RL78_ID

The PTCH_ keys are likely for "signing" patches. f0f blog says "Knowledge of the firmware updates keys means we can encrypt and sign our own patch files (it’s not explained in depth in this blog post - but syscon on retail PS4s is locked down to only support patching, not full update images)."

So we can potentially see cfw?

 

[smf]

So we can potentially see cfw?

These are keys for updates for syscon, not for the ps4. I don't think this is enough on it's own for cfw.

Unless you have a launch ps4 then whatever is possible, may not work for you anyway.

"Most of our experimentation is conducted against the SAA-001 version of the PS4 motherboard. This is the initial hardware revision which was released around the end of 2013."

 

[Joselof96]

Ah okey thanks my man

Sent from my SM-G955F using Tapatalk