- Today some PS4 Jailbreak Files were posted in a Pastebin by Reck
entitled PS4 Jailbreaking (with OrbisOS 0day), with details below to quote:
[Register or Login to view code]
I have been away for a while, so my question to you is; did you miss me? I am aware that ya'll were all thirsty for a cup of a fine Reckz0r release, so here I am... with a fine fckin' glass of a RECKZ0R release, yeaaaaaaaaaaaaaaaaaah! (did that sound sarcastic?)
Before I get off started ridiculing Sony, I'd like to pay homage to Sir George Hotz, who looked into the eyes of Sony and made them ejaculate as they bowed down in fear. Very artistic of you, Geohotz.
Now that, George Hotz has resigned from engaging in all types of sexualactivities with an computer, and as all fans of PlayStation are crying for the comeback of GeoHotz.. I'd let you all know, you don't need that lil fckin' faggot. You really don't.
Well, alright... LET'S GET STARTED ALREADY!
As you all know, PS4 runs Orbis OS, that is highly based on FreeBSD (which is a opensource operating system), and as the PS4 is closely identical to a PC, I guess you all knew that PS4 and the Xbox One will probably end up getting pwned soon, and now.. its time.
NOTE: I did not find this vulnerability within PS4, nor did I write the exploit, while I was browsing thru an Brazilian console-hacking forum known as condinh0 (I am sure you all know this if you hang out at TOR).
A person named x-s4nd3r released the devkit of PS4, as well as the exploit within 5 days of PS4 release. Although most of you don't know how to apply that jailbreak on the PS4, I am making this tutorial to sort this sht out for you.
Console: PlayStation 4
Type: Privilege Escalation/Buffer Overflow (allows to run assigned code)
Created on: 25 November 2013
URL: twitter.com/xs4nd3r (feel free to get him v&)
PS4 DevKit: [Register or Login to view links]
Jailbreak Package (exploit): [Register or Login to view links]
IMPORTANT - You need the DAY ONE Update to jailbreak the PS4, otherwise these files will be considered unrecognizable.
1. Create a folder on your USB storage device. This is where you'll put the exploit.
2. Create a "SANDERPS4" folder. Inside that folder, create another folder named "EXP."
3. Extract the PSORBISEXP.PUP file from the package, and save it in the EXP folder.
4. Make sure your PlayStation 4 is turned off.
5. Connect the USB storage device to your PlayStation 4, and press the power button for at least 7 seconds. The PlayStation 4 will start in Safe Mode.
6. Select "Update System Software."
7. Follow the on-screen instructions to install the jailbreak.
8. If your PlayStation 4 doesn't recognize the jailbreaking file, make sure that the folder and file names are correct.
9. Voila! JAILBROKEN!
You now have the ability to run unassigned/assigned code and pirated games on your PS4, but do NOT go online, if you do go online, your console will be immediately banned.
Have fun piratin'
Note: Both Depositfiles links are already dead, stating "This file does not exist, the access to the following file is limited or it has been removed due to infringement of copyright."
: Some guys at HackForums are already playing around with this jailbreak, I saw somebody putting up backups of the jailbreak files in a thread, I'll let you know once I find out again, also considering that this is from x-s4nd3r, the same guy that screwed microsoft and sony years ago (google his name), this might be real. But all I know is, that some people at game-tuts, and other forums are saying they tested this out and it works, I have yet to check it out.
: Sony isn't following him. Therefore they cannot direct message him.
: It's fake... [Register or Login to view links]
[Register or Login to view links]
<- redirects to ^ he's using a twitter "exploit" of sorts ([Register or Login to view links]
: Obvious fake is obvious. His evidence is a Twitter conversation, which is astonishingly easy to fake. Does he really think that's how an international corporation would respond to something like this?
The files never existed. DepositFiles is a 'dumb' website. You can throw anything after the /files path and it'll act as if it's loading a download page. For example: thisfiledoesnotexist. This is 100% a hoax. There was never a download link... it's just a random URL.
Finally, from Wololo
(via wololo.net/2013/12/01/is-this-ps4-hack-real-fake-ps4-exploit-sets-the-scene-on-fire/): Is this PS4 hack real? Fake PS4 exploit sets the scene on fire
Our scam of the day is an interesting one, as it is the first fake PS4 hack claim since the console was out. Don’t worry, many more fake hacks will come along the way, trust me on that. But this one’s special, as it’s the first one. Earlier today, rumors started spreading about a potential PS4 Hack. The initial pastebin for the “exploit” from user Reckz0r claimed a PS4 running on the Day 1 update was able to install and run a “jailbreak” update program.
The pastebin seemingly provided download links to a “PS4 Devkit” (whatever that means) and a Jailbreak package. Of course, the files do not actually exist, and no mirror is to be found anywhere. Confirming the growing suspicions of fake at this point is the fact that no mirror of the files seem to be found anywhere, something that would be a first in the history of the internet for a release that big. Well, at least be glad it does not take you to a “survey”.
If it wasn’t clear at this point that the release is obviously fake (note how you don’t even need to understand anything about hacking to see it at this point, just basic common sense: a release of this importance would have been mirrored on dozens of underground websites by now if the files had ever been online.
But to confirm it further in case you still had doubts, Reckz0r himself posted a “screenshot” of a conversation between him and “playstation” regarding the files, apparently to explain why the files have been taken down.
Here again, everybody who’s had a professional activity in their life knows that an official PR-related twitter account from a respectable company such as Sony would never contact a hacker directly like that on twitter, especially to use such petty intimidation. Anybody also noticed how Direct Messages in Twitter are limited to 140 characters? That didn’t seem to be part of the faker’s plan, that or he is really trying hard to make it obvious this whole thing is a joke.
The announcement however does have a few somewhat convincing elements. Some people claim reckz0r is a respected member of the hacking scene. Unfortunately (for him), just a bit of google surfaces a majority of respectable website calling Reckz0r out on all his fake hacks: fake Xbox live hack last year, copy/pasted leaks from other hacking teams and claiming them as his own, etc... The 23-year old script kiddy Reckz0r pretty much built his “respectability” on the fact that many mainstream blogs don’t even double check their information.
Such will be the case this time too, with already many blogs or mainstream websites reporting the “PS4 hack” without having done the bare minimum of research on the truth of the story. A few scene websites categorized the article as “rumour”, which is a step in the right direction, but far from calling the fake for what it is.
At least this is a good way for you to identify lame sites: if you went to a site that pretends/believes this hack is real, you can stop going there right now because these guys are obviously clueless.
In the “release”, Reckz0r buys himself some credibility by stating he didn’t come up with the hack, just wrote a tutorial for it. He points to another hacker by the name of x-s4nd3r as the “origin” of the hack. x-s4nd3r is a hacker who was known for defacing websites, a category of hacking that requires skills extremely different from the ones required to hack a console. That this person would be behind a PS4 jailbreak is highly unlikely, both because the skillset is different, but also probably because that person has no interest in console hacking.
All these elements add up of course: a known faker releases a pastebin with absolutely no proof of anything whatsoever, links are conveniently missing, none of the “sources” he mentions can be found anywhere, his twitter “proof” is an obvious joke, his tutorial itself is highly suspicious and contains several points that do not make sense.
Verdict: The PS4 Jailbreak by reckz0r is an obvious fake, stay away from it and every site that claims it is real
True to my philosophy of not giving free advertising to fakers, I am not pointing to any of the material posted by reckz0r, but you can easily google for it.