Hacking [Release] PS-Phive! (For PS4 FW 9.00) Exploit Host Menu

[JustRandom]

Hello.
thank you so much for your amazing work @Leeful.
i have a request and a question if you don't mind.
-could you please add Fan temp control for FW9.00 on your host to save an extra step of running an app to set the temp every time i start the console?
-i can see that there's an option to select a version of goldhen to automatically run right after the exploit , is it possible to do the same with more stuff?
for example: open browser, run exploit, automatically run GH and the fan temp control (when added)?

thanks in advance <3

 

[Leeful]

Hello.
thank you so much for your amazing work @Leeful.
i have a request and a question if you don't mind.
-could you please add Fan temp control for FW9.00 on your host to save an extra step of running an app to set the temp every time i start the console?
-i can see that there's an option to select a version of goldhen to automatically run right after the exploit , is it possible to do the same with more stuff?
for example: open browser, run exploit, automatically run GH and the fan temp control (when added)?

thanks in advance <3

I'm not doing any PS4 stuff at the moment but as a work around you could substitute the Disable ASLR "pl_ASLRdisable.bin" with a fan control payload.

At the moment you can set ASLR to disable or Enable straight after GoldHEN so renaming a fan control bin payload to "pl_ASLRdisable.bin" and replacing the original would auto run the fan control payload after GoldHEN if that setting is enabled.

By the way, the fan control payload setting stays in effect even when you shutdown your PS4 as long as the power cable is still plugged into the back of your PS4.

So if you dont unplug your PS4 from the mains power you dont have to run the fan control payload every time you boot/exploit your PS4.

The fan control setting is only set back to default if you remove the power cable from your PS4.

 

[krzys4x]

I always use king host it give me easly updates at bookmark

 

[JustRandom]

I'm not doing any PS4 stuff at the moment but as a work around you could substitute the Disable ASLR "pl_ASLRdisable.bin" with a fan control payload.

At the moment you can set ASLR to disable or Enable straight after GoldHEN so renaming a fan control bin payload to "pl_ASLRdisable.bin" and replacing the original would auto run the fan control payload after GoldHEN if that setting is enabled.

By the way, the fan control payload setting stays in effect even when you shutdown your PS4 as long as the power cable is still plugged into the back of your PS4.

So if you dont unplug your PS4 from the mains power you dont have to run the fan control payload every time you boot/exploit your PS4.

The fan control setting is only set back to default if you remove the power cable from your PS4.

thank you for responding and for the workaround advice.
i get many power outages during summer so to be safe i usually unplug the ps4 at night and when not being used for a long time.
i'll try the solution you suggested. could you please share the self host files for v4 since i can only find v3 with the older goldhen?

 

[schatzi24]

Are you work on PS5 Leeful?
Hope great things came after the Hardwear.io

 

[killeriq]

^^^ Yes, sorry I forgot to mention I updated the host.

Looking back I should not have named it v4 because the only difference from v3 is the addition of the latest GoldHEN version. Nothing else has changed.
I should have just added the latest GoldHEN to to the v3.

On the upside Its always best not to add to or change a release that is already there because the slightest difference in the code or cache size can throw things off. So I think I did the right thing naming it v4.

Please which version to download? Is the 1st post updated with v4? i see only v3, thanks

 

[Alish]

Hi Leeful, thanks for your work.. is there any chance to change essd wifi name, cause i have 2 ps4. when its use a same time always conflict each other. i using esp32. thanks.

 

[nubie]

@Leeful
Just curious , what advantages we get from disable ASLR ?

I just try to use this now after many months using your PS-Phive and rarely doing anything other than loading goldhen 2.3b2

 

[Mikolaj]

@Leeful
Just curious , what advantages we get from disable ASLR ?

I just try to use this now after many months using your PS-Phive and rarely doing anything other than loading goldhen 2.3b2

Please someone correct me if I'm wrong.

ASLR: Address Space Layout Randomization. Disabling it makes memory addressing 'static', allowing code tracking, debugging and even injection. A more practical use for the regular user: using cheats would be impossible without this, I think.

 

[killeriq]

Please which version to download? Is the 1st post updated with v4? i see only v3, thanks

anyone? or why is not on 1st page? thx

 

[schatzi24]

Can you add Goldhen 2.4b14 on the V4?

 

[x23are]

Can you add Goldhen 2.4b14 on the V4?

yes

download the latest version Goldhen and rename it to any Goldhen you want (for example 2.2.2) then choose it and it will work for you

you can use this method in a selfhost

 

[schatzi24]

How can i insert in Leeful V4 the Goldhen?

 

[warriosbest]

hmm i tried but it always failed

flash v3 for esp mini
open v3 website to cache
connect to esp mini wifi
open web browser, active hack but failed, no matter how (clear cookies,cache, set 6-20s timeout,etc..)


-update: after researching thread once again, i found out cable maybe are problem
cheapass cable vs vention cable,
vention cable have shuttering when i set to 20000ms, it shutter at 16.5s, so i set 3500ms
next power on -> open web browser, and waiting, done, weird asf,

don't know if OTG work or not

 

[Ethelbert]

Lotsa wanting of v4, not enough reading v3 source files to add it yourself.
BTW on the previous page Leeful says updated GoldHen is the only change in v4.

So here's my update from PC selfhost v3 to PC selfhost "v4".
(Nothing for ESP32-S2, I don't even know what that is.)

Changelog:
Added GoldHEN v2.4b14 as an option (selected by default).
Added GoldHEN v2.4b13 as an option.
Updated the separate FTP payload to hippie68's latest v1.08a.

Just unpack and drop over the v3 and overwrite all files.
Normal
For JP or any other PS4s where O is confirm, not X
(This just changes on-screen text to say "Press O After You Have Removed The USB" instead of "Press X...")

Protip:
This works fine for me on my base PS4, but obviously no assurances of anything for anyone else. No responsibility for anything either.

All credits to Leeful, SiSTRo, hippie68.

 

[x23are]

I added the latest v2.4b14 to self-host and can be downloaded from here

Download Link

 

[MainStasiun4]

You can change the SSID and SSID password with 10.1.1.1/config.html

10.1.1.1/config.html not working anymore?

 

[x23are]

10.1.1.1/config.html not working anymore?

you can access to config page by clicking on the esp setting in the main menu or pressing X before running Webkit

but as I remember you can't change ssid in this firmware. maybe you can change it by hex editor

 

[JustRandom]

I'm not doing any PS4 stuff at the moment but as a work around you could substitute the Disable ASLR "pl_ASLRdisable.bin" with a fan control payload.

At the moment you can set ASLR to disable or Enable straight after GoldHEN so renaming a fan control bin payload to "pl_ASLRdisable.bin" and replacing the original would auto run the fan control payload after GoldHEN if that setting is enabled.

Hello. i tried that workaround but something is not right. the .bin file loads fine but it disables the goldhen binloader server, when i try to load a bin after, it says that the binloader server is disabled. and when i try to enable it won't let me. the binloader server works fine until i load the "pl_ASLRdisable.bin" (which is the fan speed bin after rename).
i tried loading the bin with Netcat GUI and loading it that way didn't cause the issue. the issue only happens when loading the fan bin file through the web host. any help is appreciated.

 

[MainStasiun4]

you can access to config page by clicking on the esp setting in the main menu or pressing X before running Webkit

but as I remember you can't change ssid in this firmware. maybe you can change it by hex editor

I just want to add the latest goldhen.bin file to my esp32, can i do that by pressing X before running webkit?