PS4 PPPwn exploit update: stability improvements and new supported firmware + some tips for people having difficulty running the exploit

PPPwn is now compatible with new firmware: FW 7.00 / 7.01 / 7.02 have been added by EchoStretch. Perhaps more importantly, some minor adjustments have been made to the exploit’s build settings (by developer jakiki6) to improve stability and reduce the risk of crashes (commits here and here. These are for stage1. bin and stage2.bin so hopefully we’ll see similar fixes being ported, for example to the stage2.bin used by GoldHEN).

At the same time, it should be mentioned that several people are still having great difficulty executing the exploit on their machine. It appears that some specific PS4 models could cause issues related to the exploit. For those of you in this situation, Zecoxao is discuss it here For example.

What is PPPwn for PS4?

PPPwn is a Jailbreak channel for the PS4 published by TheFloW. It relies on a surprisingly old public vulnerability in one of the FreeBSD network drivers (sppp). The vulnerability was apparently never patched for PS4, nor was it reintroduced incorrectly at some point. Details on the impact of the vulnerability on the PS4 in particular can be found on hackerone.

PPPwn is confirmed to work up to Firmware 11.00, with existing implementations now available for Firmware 7.00 up to and including 11.00. (People using 9:00 or less can still take advantage of the previous Jailbreak, pOOBs4).

Some people are stuck on a certain firmware and cannot upgrade their consoles due to the “NoBD” issue:

Your PS4 is said to be “NoBD” if its BluRay drive is missing or has been damaged. If you own such a “NoBD” console, you probably already know (or will soon find out) that you can no longer update your PS4’s firmware. This is annoying for several reasons, not least because there is no legitimate technical reason for this PS4 firmware limitation. Technically, you can still use the PS4 for a lot of other things, including downloading digital games, but the PlayStation gods have decided otherwise.

It’s up to the community to clean up this mess and make it technically possible to update your firmware to the latest and greatest version, bypassing a few checks during firmware installation. These techniques are generally referred to as “NoBD updates”.

Adding a kernel exploit for lower firmwares, including version 8.50, gives users additional ways to upgrade their console if they need to. This is just one of the benefits of porting a given exploit across multiple firmwares.

In its current implementation, PPPwn is a full jailbreak for PS4 11.00 and earlier, and with Custom Firmware GoldHEN having recently been ported, Firmware 11.00 users can now enjoy all the benefits of a jailbroken PS4. For people running Firmware 11.02 or 11.50, here is the current status.

PPPwn saw various improvements after its release, particularly a port to C++ which significantly improved the speed of the exploit and made it viable to run the exploit from a variety of “attacking” devices, including the Raspberry Pi, or even your own TV or computer. router.

GoldHEN on PPPwn

Sistr0’s custom firmware for the PS4 was recently released for PS4 11.00 and is probably the first thing you’ll want to run on your newly minted PS4.

GoldHEN is a feature-rich Homebrew ENabler for the PS4. For all intents and purposes, you can think of it as PS4 custom firmware. Notably, it offers a remote package installer, an FTP server, and a binLoader, which means it’s pretty much the only thing you need to load when you jailbreak your PS4, to have plenty of options at your disposal.

GoldHEN also supports plugins, cheats and patches, with easy access to online repositories for these game mods.

Download PPPwn

Hardware-specific implementations:

Troubleshooting PPPwn

If you are having trouble running PPPwn in general, you can try one of the many GUI tools that have been released. I mentioned Modded Warfare’s PPPwn GUI here.