fail0verflow

Method we used (>5 years ago, now) on ps5 to fiddle with mp4 and hv memory: https://t.co/SJ0hyG5YRC hope it helps for linux!

🐧

want to play with the fbsd umtx exploit? check out https://t.co/AARWy9HR4c

https://t.co/Pyo2j8ZCwY

New blog post about hacking PS VR! We managed to find some major flaws - breaking secure boot and extracting all key material: https://t.co/8Qdzr6OMa5

Translation: We got all (symmetric) ps5 root keys. They can all be obtained from software - including per-console root key, if you look hard enough!

Here is our implementation of the Renesas RL78 debug protocol (as requested in a comment on the blog): https://t.co/AYbWwIsgx3

Took a peek at latest PS4 Pro (CUH-72xx, board NVG-001): same southbridge (CXD90046GG), newly marked syscon (A06-C0L2 but still RL78/G13) - so nothing changes in terms of "Aux Hax" stuff :)

Another "PS4 Aux Hax" blog! Using HDMI-CEC to get code exec on all PS4 southbridge versions (including PS4 Pro, etc.), without requiring other parts of the system to be pwned: https://t.co/tLBvMho8W2

Small update to Aux Hax: Nearly same methods are working against devices on recent PS4 Pro board NVB-003: Syscon A05-C0L2 (R5F101LL) Belize southbridge (CXD90046GG) Belize has ROM readout protection and clears stack...they're learning ;)

A trio of new blog posts! Checkout "PS4 Aux Hax": hacking Aeolia, Syscon, and DS4. https://t.co/7nsAMNzPY0

The Tegra X1 flaw that both ShofEL2 and Fusée Gelée exploit now has a name: CVE-2018-6242. https://t.co/4VAd7TUxhd https://t.co/KWUKQPjrxQ