Compile with your PC's IP listening on port 9023
On PC you can do to listen:
socat - tcp-listen:9023 > kernelDump.bin
and to send:
socat -u FILE:payload.bin TCP:"PS4 IP":9020
you can then trim out the socket prints or you can adapt it with 2 sockets, one for dumping, another for logging.
To compile for 5.05 you need to use an sdk with changes for 5.05 support, i have used https://www.dekazeta.net/foro/files/file/222-open-source-ps4-sdk/
Payload desarrollado por Stooged que al inyectarlo en PS4 nos permite copiar nuestras copias de seguridad a un disco duro externo y cargarlos desde ahí.
What is this tool?
It re-marries the fake pkg update to the fake pkg game.
When is this useful?
This is needed when the game and the update were dumped on different PS4 consoles. And when you try to install such an update you will get an error. This tool fixes that.
Does this work if game CUSA does not match update CUSA?
It could, but in 99.99% cases it wont. Different CUSA games typically have different file structure (different regions/languages etc), but sometimes same exact game is released in multiple regions under different CUSAs, in those cases it will work, but Ive ever only heard of one such game. So as a general rule. No CUSA of update and the game have to match.
Will this work with not fake pkg dumps of either update or game?
It could, if you have secret information no-one outside of the game developer/SONY has. You need to know the password that the pkg was created with. No one knows this. Dumped fake ones use all zeros for password. So long story short, both game and update have to be fake pkg dumped from a hacked PS4.
How do I use this tool?
Simple. Run it, select update pkg, select game pkg, select output directory (a new folder will be created in this directory) and hit GO. Thats it.
What are those extra options?
Mouse over for tooltips.
What platforms will this run on?
Windows Vista and later, but it requires Microsoft .Net 4.6.1 (released in 2015) or later. If you are on Windows 7 or 10 and keep it updated through Microsoft you probably already have it installed, games will often install this automatically for you as well. You can get it directly from MS as well - https://www.microsoft.com/en-us/download/details.aspx?id=48130
If you get a DLL error!
Install Microsoft Visual Studio Redistributable. It is required to run programs written in C++. Just like .Net this is often installed by games, so most people will already have this installed. https://go.microsoft.com/fwlink/?LinkId=746571
This program is the full version of my PS4 NOR Validator, it is designed solely to validate the NOR flash of your PS4 console!
Why would you need to do this? Well if your console has suddenly died and has what is called the 'BLOD', the NOR can be the reason why.
Using my program will allow you to validate literally every single byte of the NOR (or 1782 specific areas) - allowing you to see where or if it is corrupted.
The most common area of corruption that causes the BLOD is the CID. This is mostly full of perconsole data and thus cannot be repaired.
BUT! My program will show you areas that are fillers and areas that are static (which are unchanging across consoles). You may get lucky!
Other areas can be inter-changed between different consoles and are more suited for repair, the WiFi/BT module is a good example of this.
So fundamentally, this program is for console repairers like myself. If you are indeed a repairer and run a business I can make a custom 'bulk' version for you!
This is the internal revision number 84 (and the first public version, obviously), so hopefully there should'nt be any major bugs!
If you encounter any errors or weird results - or better yet if your NOR is labled danger in any areas, but still runs fine - let me know!
This program is NOT perfect, but it is much better than just using a hex editor or never truely knowing if your BLOD is caused by the NOR!
This also goes above and beyond that of the psdevwiki page regarding the main flash of the PS4. When I have time, I will update it!
Have fun and good luck!
84 revisions 11210 lines of code 585 possible OK results 389 possible WARNING results 227 possible DANGER results 1782 offsets read 1423 if statements 289 regular expressions 2023 print F's by BwE.
Copy content from discs to usb hdd.
It's not very fast, but the files are transferred to a folder named Disc_Dump on a USB drive. Just insert the disc into the drive. then start the payload. If you are using a new game disc if it asks you if you want to update, just select cancel and then run the content.
The controls of the game are very simple: keep pressing any button to go up and release it to go down, it is translated into Spanish and English. The game records the highest score obtained and has an anti-cheat system.
Compatible with PS4 & PS4 Pro with firmware 5.05.
Geator de archivos para Playstation 4.
Funcionando en los firmwares 4.55, 4.74 y 5.05.
Copy Cut Paste New File New Folder Rename Delete Settings Menu:
Unsafe Partition R/W FTP Hide Local IP SELF Decryption
Patches and hooks to enable fself/fpkg loading for Hen 4.74
FTP server for PS4, with self dumping support
idc Joon xerpi
Aplicación para PS4 con jailbreak en 5.05 que nos permite crear PKGs, desarrollada por SilicaDevs.
Loaders, scripts, and other misc boulsheet ported from IDA
That allows the execution of homebrews and backups on PS4 for versions 4.74 of the latter.
Homebrew enabler for PS4
For firmware v5.05
Make fpkg installer working with external HDD
(kudos to flatz for ShellCore offset) Contributors
Massive credits to the following:
Flatz idc Joon Anonymous
I am developing an open source library for reading and writing PS4 PKG files. This project's goal is to eliminate the need to use proprietary SDK tools. Without a proper open PKG tool, the PS4 homebrew scene cannot flourish.
All code in this repository is licensed under the GNU LGPL version 3, which can be found in LICENSE.txt.
Note - Incomplete!
This is still unfinished software and can only create valid AC (DLC) PKGs.
PkgEditor is a GUI tool with which you can edit GP4 projects, and build PKG and PFS archives. Click File -> Open GP4..., then click Build PKG to create a PKG.
The tool also supports opening PKGs directly. You can see the header, entries, and if the package is a fake PKG or you enter a passcode, you can browse files as well.
PkgTool.exe <verb> <input> <output> Verbs: makepfs <input_project.gp4> <output_pfs.dat> makeouterpfs [--encrypt] <input_project.gp4> <output_pfs.dat> makepkg <input_project.gp4> <output_directory> extractpkg <input.pkg> <passcode> <output_directory> extractinnerpfs <input.pkg> <passcode> <output_pfs.dat> extractouterpfs_e <input.pkg> <output_pfs_encrypted.dat> extractouterpfs <input.pkg> <passcode> <pfs_image.dat> listentries <input.pkg> extractentry <input.pkg> <entry_id> <output.bin> Use passcode "fake" to decrypt a FAKE PKG without knowing the actual passcode. Thanks
Everyone who helped, either directly or indirectly, but especially the following:
flatz by Maxton.
The Mira Project is a set of tools that grants you more power and control over your jailbroken Playstation 4. It is the result of all the hard work by the OpenOrbis team.
It works differently to the custom firmware experience on Playstation 3, where CFW would be installed on the system via modified PUP files (e.g. Rebug), however once the framework is installed and ran it gives users the same functionality they were previously used to.
There are quite a few fake, scam OpenOrbis websites, youtube, twitter etc. Take note, ~~WE DO NOT HAVE A WEBSITE, OR ANY SOCIAL MEDIA. All information will be here on the GitHub repository ONLY!~~ We currently have a [OpenOrbis discord server](https://discord.gg/GQr8ydn) for those who want to help contribute and have no other way of communication. All other outlets about this project are fake, possibly contain viruses, and should be avoided at all costs. Once again, THIS GitHub repository is the only way to get official news, information, and releases about the Mira-Project. Discord bots will pull from this repository.
Formerly known as MiraHEN, this has now been developed into a full custom firmware. Thanks to everyone who helped Mira reach a 1.0 beta goal (May 20, 2018). There will be updated goals placed within the [GitHub issue tracker](https://github.com/OpenOrbis/mira-project/milestones) so the community can follow the internal progress, contribute and help provide the best platform possible for users.
This is the libc implementation ported for PS4. Check the repository for updates and more information. Currently is in development, and may not be ready to use.
This is the linker to be used with newlib-ps4 to create Orbis compatible ELF files. Alternatively, you can use CrazyVoid's elfFixupTool. Currently in development, and may not ready to use.
This is the communications library that will be specialized for operation with the Mira firmware.
### OpenOrbis Store
Community driven store and application that will allow you to download new plugins, payloads, tweaks, trainers from a trusted centralized source without ever leaving the comfort of your console.
Inspired by vitaDB <3 Rin
### [Mira Companion](https://github.com/OpenOrbis/mira-toolbox/tree/master/Mira-Companion)
An Android application to control MiraCFW and manage your PS4.
### PS4 Payload Sender
A simple Android application to send payloads to your PS4.
The Mira Project offers two types of plugins: built-in plugins and external plugins. Default plugins are embedded inside Mira firmware and include file transfer, a log server and a debugger. External plugins can be loaded from internal/external HDD, for example PS4 Linux Loader.
### PS4 Linux Loader
A simple plugin that lets you run the Linux kernel from a remote device without webkit.
## User Guide
The users guide can be found at USERS.md. This guide should be followed if you require instructions on how to build, install and use the firmware once it is installed on the console.
## Developer Guide
You will need VS2017, with Linux plugin and WSL (Ubuntu on Windows) or a physical Linux machine or Linux VM to be able to build the project. You may find the documentation for developers at DEVELOPERS.md.
Potential contributors: Please carefully read the DEVELOPERS.md file, especially the section at the bottom for contribution - we have a formalized development pipeline now.
## Special Thanks and Friends
We want to give a special shout out to these people in no particular order.
* flatz * SpecterDev * EvilSperm * Rogero * Joonie * AlexAltea * Mistawes * Abkarino * qwertyoruiop * CTurt * Mathieulh * Senaxx * m0rph3us1987 * CrazyVoid * xvortex * bigboss * ZeraTron * xorloser * AlAzif * masterzorag * fail0verflow * idc * valentinbreiz * Anonymous Contributors (you know who you are)
Thank you to everyone, this is the initial release of Mira for all future developments to continue off of. This was the surprise coming today May 20, 2018 and thank you for all of the contributions!
This should be considered a test release for developers only.
by OpenOrbis Team.
# PS4 SDK
An open source PlayStation 4 SDK for writing userland applications which can be run with the [PS4-playground](https://github.com/CTurt/PS4-playground).
## Building and installing
You will need [LLVM](http://llvm.org/releases/) version 3.7 or later for compiling, and `binutils` for linking (from [MinGW](http://www.mingw.org/) if you are on Windows).
Clone this repository locally, or download and extract a ZIP of the repository [here](https://github.com/CTurt/PS4-SDK/archive/master.zip).
Then create an environment variable called, `PS4SDK` which points to the base directory of the repository, using the Unix path style; for example:
Build the libraries by running `make` on the `libPS4` and `libusbfatfs` directories.
Finally, you can build examples by running `make` on them.
At the moment, it is primarily focused on system calls.
However, using function pointers and the `RESOLVE` macro, we can call functions from other modules. For example, [the socket functions](https://github.com/CTurt/PS4-SDK/blob/master/source/network.c) from `libSceNet.sprx`.
Whilst the SDK isn't capable of most basic functionality yet, such as displaying graphics, or receiving controller input, there are workarounds: rendering to an HTML5 canvas, and using third party USB controllers, or a DS/PSP wirelessly for example.
The SDK is currently in a state where projects like an FTP server, [a mini Pong game](https://github.com/CTurt/PS4-Pong), or [GameBoy emulator](https://github.com/CTurt/Cinoop) could be developed.
`hello` - Load `libc` module and perform `getpid` system call
`sockets` - Send a message over a TCP socket
`modules` - Load and dump a module
`threads` - Create and wait for a thread to increment a variable
`canvas` - Render to an HTML5 canvas
`camera` - Initialise the PlayStation Camera and capture 10 frames
`pad` - Read controller input (not finished)
`jit` - Setting up JIT shared memory
`directories` - List the contents of a directory
`files` - Read a file's size, and its contents
`list_devices` - List information about all USB devices connected
`storage` - Read raw image from a USB flash drive
`usbfatfs` - Read files from USB formatted with FAT
PS4 have an OpenGL ES implementation which is called Piglet and it's used in shell's UI rendering and webkit. Zer0xFF and masterzorag were working on making it usable for homebrew applications but then got stucked with native shader compilation. So I've decided to give it a try.
However I have experienced other problems as well, which were solved successfully. Basically they appeared because I decided to implement OpenGL ES application as my own PKG based application. But OpenGL ES in browser didn't work for me too and I don't know if it's because I've used a more recent firmware than guys did or because I did some dumb mistake. So, nevermind, let's begin.
User Interface implementing the OrbisDbg Debugger for Playstation 4
Continue debugging already attached processes Memory Editor Register Editor Disassembly View Processes List Software Breakpoints How to Use
Send OrbisDbg.bin to your console Launch and attach to game process Debug Components
Zydis by Zyantific
HexEditor by jariq
Sabotage for his 4.55 debugger and tons of help on this project
Golden/Xemio for 5.05 patches/kernel offsets and process elf loading
Vortex for his version of ps4 payload sdk for base webkit payloads
CTurt original ps4 payload sdk
Specter 5.05 exploit
Anyone else who has contributed to PS4 exploit
Manager para PS4 que permite dumpear el kernel, spoofear el firmware, gestionar archivos o hacer de servidor FTP, entre otras cosas.
Es necesario tener una PS4 con firmware 4.55 o 5.05 "exploiteada".
P.T., short for Playable Teaser, is a first-person psychological survival horror video game developed by Kojima Productions under the fake pseudonym "7780s Studio", and published by Konami.
P.T. served primarily as an interactive teaser for the game Silent Hills, a cancelled installment in the Silent Hill series. After the cancellation, Konami removed P.T. from the PlayStation Store and eliminated re-installing the game, a decision that later spawned criticism and fan efforts to allow P.T. to be re-downloaded
Originally P.T. was released for the PlayStation 4 exclusively on 12 August 2014 as a free download on the PlayStation Network, following news of the cancellation of Silent Hills, it was announced that P.T. would be removed from the PlayStation Network on 29 April 2015. Originally, it was reported that the demo could be re-downloaded, but in May 2015 it was no longer re-downloadable from the PlayStation Store.
Been a while since i updated this but here you go a big update for the open world ps scene
We can now save param.sfo files without having to use the SCE Tools
I have attached the base for click once which can be installed the same way as my ps2 classics
Use the .application and not the setup.exe file
i have also added a pre built binarry so you can run it without click once if you wish
GUI version of PS4 PKG Tools to handle PS4 PKG (rename/export list)
How to use
Load folder containing PS4 PKG. Select format to change the PKG name or export the PKG list to xlsx sheet
cfwprophet And n1ghty
Usage: flashtool [option(s)]
flashtool --extract dumps -i flashdump.bin flashtool --emcipl patchedipl.bin -k CXD44G.keys --input flashdump.bin --output flashout.bin flashtool --eapkbl patchedkbl.bin -k cec_h4x_sram_dmp_CXD36G.keys --input flashdump.bin --output flashout.bin flashtool -k CXD42G.keys -v -n --input flashdump.bin flashtool --extract dumps -n --input flashdump.bin flashtool --eapkern eapkern_hdd_enc.bin,eapkern_hdd_dec.bin Options:
-h, --help show this help message -v, --verbose verbose output -i [flash], --input [flash] flash file input -o [flash], --output [flash] flash file output -n, --noverify do not verify the flash signatures -k, --keyfile override the default key file --extract [dir] extract files to directory --emcipl [emcipl] replace EMC IPL (initial program loader) --eapkbl [eapkbl] replace EAP KBL (kernel boot loader) --eapkern [input,output] decrypt the EAP kernel Everything you can replace in the flash is resigned when you replace it.
Also, when the extract option is enabled, the files will be extracted after the replacement/resigning.
!! This tool will never overwrite your existing flash dump file! You must specify an output. !!
This release includes no keys and I will never release keys.
You must create your own keyfile if you have keys. Look at keymgr.h for the format.
Look at the fail0verflow article if you want to try and derive the keys yourself. There may be some bugs with this release.
Shoutout to Team Molecule for ARZL decompress, zecoxao for some NVS information on the wiki, SKFU and iqd for SLB2, and many anonymous contributors!