• $0.00
    Your cart is currently empty.

PS4 Webkit hack: SpecterDev explains 4.0x exploit, releases updated PoC with multi-FW support

A few days ago, hacker qwertyoruiop released a Webkit exploit for the PS4, compatible up to firmware 4.07 included. He has since then improved the exploit to include a ROP Chain and basic syscalls, but providing only compatibility for 4.06, the firmware on which he is personally working.

SpecterDev, self described as a programmer interested in exploitation and infosec, and who in the past has provided accurate analysis of other PS4 hacks, has released a writeup of qwertyoruiop’s exploit, and released his own version of the exploit, with added compatibility for multiple firmwares.

SpecterDev’s Proof of concept builds on top of the initial exploit and adds Rop/gadget support for firmwares 3.50, 3.55, 3.70, 4.00, and 4.07 (in addition to 4.06 which was already supported in the initial PoC). Visibly no support for firmware 4.05, but a quick glance at the source tells me it shouldn’t be too difficult to add for people who feel like it.

Additionally, the developer released a writeup about qwertyoruiop,s exploit, and it’s a great read. What’s particularly interesting here is that SpecterDev, as he states himself, is still fairly new to exploits in general and webkit in particular. As a result, the write up is reasonably easy to read because the author makes no unrealistic assumptions on the technical level of the reader. I’d say it’s a great introduction to understanding how the exploit works, if you have basic coding/system knowledge.

You can read SpecterDev’s writeup here.

You can download the source for the exploit on SpecterDev’s github here. Keep in mind that this is a rewrite of qwertyoruiop’s original exploit which will probably remain the source of truth and of major updates for now.

 

 

Similar posts

33 Pings/Trackbacks

  1. proteinpulver on June 20, 2017 at 5:39 pm
  2. panselnas-menpan-go-id 2017 on July 2, 2017 at 2:55 am
  3. Togel Hongkong Tiap Hari on September 3, 2017 at 8:35 am
  4. www.office.com/setup on October 3, 2017 at 5:11 am
  5. Judi Bola Terpercaya on October 3, 2017 at 11:51 am
  6. wikipedia reference on October 4, 2017 at 1:42 pm
  7. Wedding event managers in Hyderabad on October 8, 2017 at 10:00 pm
  8. situs poker on October 25, 2017 at 6:24 am
  9. ADME Services on November 8, 2017 at 4:02 am
  10. Corporate Event Management Company on November 10, 2017 at 9:13 am
  11. look at here now on November 24, 2017 at 8:05 pm
  12. Preclinical DMPK Services on November 29, 2017 at 3:09 am
  13. Coehuman iraq on December 17, 2017 at 2:13 pm
  14. Qanoon on December 20, 2017 at 8:07 am
  15. eng on December 25, 2017 at 6:40 pm
  16. warehouse for sale on January 27, 2018 at 11:10 am
  17. warehouse for sale on February 5, 2018 at 1:34 am
  18. metatrader 4 indicators on February 11, 2018 at 6:26 am
  19. Web Designing Agency on February 18, 2018 at 4:28 pm
  20. Tree of Innovation SEO on February 24, 2018 at 7:43 am
  21. satta king on March 31, 2018 at 4:25 am
  22. Array Questions on April 16, 2018 at 7:48 am
  23. 2uodiyala on April 25, 2018 at 11:23 pm
  24. Java Tutorial on April 30, 2018 at 10:36 am
  25. Timotic on May 28, 2018 at 7:36 am
  26. diskusprolaps on June 2, 2018 at 9:20 am
  27. george eiferman on June 5, 2018 at 12:23 pm
  28. Brand Reputation Management on June 9, 2018 at 2:16 am
  29. cheap online viagra on July 5, 2018 at 1:06 am
  30. online casino list on July 8, 2018 at 6:44 pm
  31. silne krwawienia on August 6, 2018 at 3:06 pm
  32. Best online casino reviews in New Zealand on August 7, 2018 at 9:56 am

Support by mining for us

This will slow down your computer
lower the threads to whatever you're comfortable with.
Thanks for your support!

Loading...

Buy VPN

Older Posts

Submit a News Story
We will thank you for your submission using this alias
Sending