This project has moved: https://github.com/ps5-payload-dev/elfldr
This is an ELF loader for PS5 systems that have been jailbroken using either the
BD-J ps5-payload-loader, or the webkit approached from Specter.
Unlike the ELF loaders bundled with those exploits, this one uses the ptrace
syscall to bootstrap itself into the SceRedisServer process, and then will
launch itself into a process that keeps running in the background, even when
playing games. Furthermore, this ELF loader will also resume its execution when
the PS5 returns from rest mode. Payloads that are loaded are executed in
induvidual processes, so if a payload crashes, the ELF loader will keep on
running.
To deploy ps5-payload-elfldr, first launch a kernel exploit that provides a rudimentary ELF loader on port 9020, e.g., BD-J ps5-payload-loader, or the webkit approached from Specter, then run the following:
john@localhost:~$ export PS5_HOST=ps5
john@localhost:~$ wget -q -O - https://github.com/john-tornblom/ps5-payload-elfldr/releases/download/release%2Fv0.11/Payload.zip | gunzip -c -d | nc -q0 $PS5_HOST 9020Note: recent versions of the BD-J ps5-payload-loader includes a binary version of ps5-payload-elfldr which can be launched directly from the menu system.
Assuming you have the ps5-payload-sdk installed on a Debian-flavored operating system, the ELF loader can be compiled using the following commands:
john@localhost:ps5-payload-elfldr$ sudo apt-get install xxd
john@localhost:ps5-payload-elfldr$ export PS5_PAYLOAD_SDK=/opt/ps5-payload-sdk
john@localhost:ps5-payload-elfldr$ makeIf you encounter problems with ps5-payload-elfldr, please file a github issue. If you plan on sending pull requests which affect more than a few lines of code, please file an issue before you start to work on you changes. This will allow us to discuss the solution properly before you commit time and effort.