(adsbygoogle = window.adsbygoogle || []).push({}); If 1.76 is supposably hacked why wouldn't we just spoof 4.01 and start building cfw?

Just not that simple yet im afraid but i have not been keeping up with scene so it might could be easier than i think.

1: SAMU <-- unable to decrypt on 1.76 via software need to find exploit for it best way Unsigned.
2: after 1.76 all keys got changed so it's even more difficult to get them.
3: spend 10-30k on decapping the chips get the keys and behold you will have your keys inc private keys

if your wondering why if you have got 1.76 the kernel is not fully dumped it's only 15mb it should be around 40-50mb and it's only functions and symbols, you still have a long way to get anything.

I can get 62 mb dumps from it but still only symbols so if its symbols why can't we send some snippets of the same symbols back to see if we could grab code ?

Or cause something

Lol it's not that simple "you need to know the syscalls is well" anyway best way is do custom syscalls and unsigned code for ps4 then you exploit anything on it even might get fifa 14 to load :-p

and for the record it's just not symbols they are very helpful with security and reversing :-p if you are very good at math that is you can do more to get to the next level.

so you know piracy a very long way off still....

but you never know xmas is just round the corner...

A couple of things;

The elf size of the kernel dump is full 0xEAC180 bytes ( just over 15mb ).

There are people who have decrypted eboots etc using samu commands.

And to answer OP's question.
Firmware spoofing is already possible, by patching a value sysctl returns.
There is a lot that's currently possible, just requires work.
If your just waiting for CFW, you may be waiting awhile. as there is plenty more useful things for developers to look into for the time being.

Now is a good time to spend doing your own research, on things like FreeBSD, Objective C, x86-64 the 1.76 kernel or other dumps.

They decrypted but what about repacking?

I am going to make a thread on this but right now we can't spoof or make cfw because we haven't done the math decrpyt and find keys for the pup files and 1.76 can only do code injection with limited space do to thetype of attack. So we utilized this web kit exploit to install linux... you are free to modify the payload and do much more but no one is taking the time.


Over all we dont have full root acces

check out the psx hacking team there also talking abut this and someone got 4.00 jail broken firmware working if use haven't updated to 4.01 as only 4.0 works not sure abut cfw etc no body knows to much just yet but apprently 4.0 is were there gonna work from not 1.76 thats what iv heard on some post on other sites