###################
PI-PWN-All-In-One Section Added to have it Perfektly as All-in-One Package Solution with all Needed Extras
###############################################################################################################
This is a script to Setup PPPwn and PPPwn_cpp on the Raspberry PI.
##GoldHEN Support
#################
latest GoldHEN Releases
Support these Firmware Versions
9.00
9.60
10.00
10.01
11.00
##VTX-HEN Support
#################
PS4-HEN-VTX
Support these Firmware Versions
7.00, 7.01, 7.02
7.50, 7.51, 7.55
8.00, 8.01, 8.03
8.50, 8.52
9.00
9.03, 9.04
9.50, 9.51, 9.60
10.00, 10.01
10.50, 10.70, 10.71
11.00
###############################################
PS4 Recovery Firmware Updates 1.51-11.02 (Online)
If the First Host would be go Down!!! so like Darthsterny Firmware Host, I have here Seperat Upload
PS4 Recovery Firmware 9.00,9.60,10.00,10.01,11.00 with the MD5 Hashes following here. Than my Share
would not be Going Down and must only Fresh Up after 1 Year Public.
FW9.00.zip
MD5 - 7D29B8250EB756695D1032B6B355553C
FW9.00\PS4\UPDATE\PS4UPDATE.PUP
MD5 - 674420F041CB5845AAE85928751CCD0E
FW9.60.zip
MD5 - 898BA3941B70656CDD841ADDFF1880BA
FW9.60\PS4\UPDATE\PS4UPDATE.PUP
MD5 - 4CA1C1DC093563044C620CBF0E7AFA2E
FW10.00.zip
MD5 - 13684C8577AB5D29F1F68FE1B33421FD
FW10.00\PS4\UPDATE\PS4UPDATE.PUP
MD5 - BCC0022F9C9D3261165046339FF33C92
FW10.01.zip
MD5 - 1EE4C216178E9DDECC8AD95A7A5B50D5
FW10.01\PS4\UPDATE\PS4UPDATE.PUP
MD5 - 87668869AF230AC26F859278D10402B1
FW11.00.zip
MD5 - 92221F7D64379287FC8C801D08636B90
FW11.00\PS4\UPDATE\PS4UPDATE.PUP
MD5 - FCD0A674A7D78FDB545EA97344D2F86F
PS4 Recovery Firmware Updates 9.00-11.00 (1&1 Onlinedrive)
##################################
Create a USB Drive with min. 2GB FAT32/exFAT Formated
and Create a Folder in root of USB
PS4
into that Folder PS4 you Create
UPDATE
and into X:\PS4\UPDATE you Copy the
PS4UPDATE.PUP File
Finish!!!!
It also Supports Internet Access after PWN and Access to FTP, Klog and Binloader Servers launched by GoldHEN.
A DNS Blocker is also Installed and used to Prevent Updates.
The Raspberry PI 4B
Raspberry PI 400
Raspberry PI 5
can Pass through a USB drive Inserted into the PI to the Console if the PI is Plugged into the console USB Port
There is also a Webserver to Control the PI, change Settings and send Payloads by Accessing http://pppwn.local/ from the Console or your PC if you have Internet access Enabled.
Raspberry PI OS Lite and Tool github
PI-OS-Lite-armhf-(32Bit)
PI-OS-Lite-arm64-(64Bit)
PI-Imager-1.9.0 Github Release
PS4 Homebrew FPKG Collection 1&1 Link
ps4-apollo-save-wizard.pkg
ps4-goldencheats.pkg
ps4-homebrew-store.pkg
ps4-game-manager-01.06.pkg
ps4-logmein-hamachi.pkg
ps4-orbis-ftp.pkg
ps4-orbis-suite-3.0.pkg
ps4-patch-installer.pkg
ps4-tools.pkg
ps4-webdav-client-1.04.pkg
ps4-webrte.pkg
ps4-icon-mask_v1.15.pkg
ps4-xplorer-2.03.pkg
ps4-ftp-client-1.08.pkg
ps4-cheats-manager-01.22.pkg
ps4-game-bato.pkg
ps4-youtube.pkg
Chiaki-v2.2.0-Windows-x86_64.zip
DS4_Tool.zip
FTP_Dump.zip
GoldHEN_Cheats_Updater.zip
ps4-Fake-PKG-Tools-3.87_V6_MoD_By_System23.zip
ps4-Game-Cheater-1.5.4.7-Rev2-x64.zip
ps4-Game-Cheater-1.5.4.7-Rev2-x86.zip
ps4-Games-Reaper-Beta2.zip
ps4-Games-Reaper-Studio-1.0.4.1.zip
ps4-GoldHEN-Cheats-Updater-and-Converter.zip
A AllInOne Solution to Extract/Repack/Verify/Editing PKG Files, with DLC Creators,Trophy Unlocker and a Video How to Merge Game & Patch in One PKG (100% Working Solution),
this Binarys are Called by Executables they need Manual commands drag&drop copy&paste, all needed Extras are Included!!!!!
Its the only Solution to Merge Game & Patch in One PKG with correct Working and Informations.
(I have Merge all my Games with the Patches, and when someone Release a newer Patch, extract Merged PKG and copy&paste Patch over it and Rebuild PKG)
PS4-Fake-PKG-Tools-3.87_V6_MoD_By_System23
Merge Game & Patch to One PKG Video Tutorial
sudo git clone https://github.com/Systemx23x/payloads-ps4-400-700.git /boot/firmware/PPPwn/payloads
App2USB.bin
Backup.bin
Disable-Updates.bin
Dumper.bin
Enable-Browser.bin
Enable-Updates.bin
Fan-Threshold.bin
FTP.bin
History-Blocker.bin
Kernel-Clock.bin
Kernel-Dumper.bin
Restore.bin
RIF-Renamer.bin
sudo git clone https://github.com/Systemx23x/payloads-ps4-505.git /boot/firmware/PPPwn/payloads
App2USB v3.bin
App2USB v4.bin
App2USB v5.bin
AppCacheDB_USB_Install.bin
Auth_Info_Dumper_v1.bin
Auth_Info_Dumper_v2.bin
Avatar_Dumper.bin
Avatar_Injector.bin
DB_Backup.bin
Db_Restore v2.bin
DB_SG_Backup v2.bin
DB_SG_Backup v3.bin
Disable-Updates.bin
DiscDump_v1.bin
Dumper-vtx 1.8.bin
Enable-Updates.bin
Enable_VR.bin
Fan_Control.bin
FS_Dumper v1.bin
FTP+RW.bin
FTP-vtx 1.3.bin
ftp_server_v1.08a.bin
GoldHEN_v2.4b14.bin
GTA_V_APII_IntenseV2.bin
GTA_V_ArabicGuy.bin
GTA_V_Lamance_08_MOD-Menu.bin
GTA_V_Lamance_Trainer.bin
GTA_V_Lotus_1.00_v1.27.bin
GTA_V_Psyco0s_MOD_Menu.bin
GTA_V_v1.27_APII_IntenseV2_by EROOTIIK.bin
HEN 1.8 VR.bin
HEN 1.8+DebuggerPatch.bin
HEN 1.9.bin
HEN 2.0 by SiSTR0.bin
HEN 2.1 by SiSTR0.bin
HEN 2.1.1 by SiSTR0.bin
HEN 2.1.2 by SiSTR0.bin
HEN 2.1.3 by SiSTR0.bin
HEN 2.1.4 by xXxTheDarkProgrammerxXx.bin
HEN v1.7 MOD by MUXI.bin
HEN-vtx 1.5.bin
HEN-vtx 1.6.bin
HEN-vtx 1.7.bin
History_Blocker v1.bin
History_Blocker v2.bin
Infinix-Package-Installer.bin
KernelDumper v2.bin
Kexec.bin
Linux-Loader-5.05.bin
LinuxLoader-505-2gb.bin
LinuxLoader-505-3gb.bin
LinuxLoader-505-4gb.bin
LinuxLoader-505-5gb.bin
LinuxLoader-505.bin
Linux_HDD_intern.bin
OrbisAFR.bin
payload-linux-505-2gb.bin
payload-linux-505-3gb.bin
payload-linux-505-4gb.bin
payload-linux-505.bin
payload-pro-linux-505-2gb.bin
payload-pro-linux-505-3gb.bin
payload-pro-linux-505-4gb.bin
payload-pro-linux-505.bin
PKG_BACKUP_v1.bin
PKG_BACKUP_v2.bin
PKG_BACKUP_v3.bin
PS4debug_v1.1.16.bin
ps4ren_v1.bin
PsxitarchV2-1GB-VRAM.bin
PsxitarchV2-2GB-VRAM.bin
PsxitarchV2-3GB-VRAM.bin
PsxitarchV2-NO-EDID.bin
reactPSPlus 31May2018 undo.bin
reactPSPlus.bin
Syscall_112_Installer.bin
tlou_Dev-Menu-5.05.bin
Update-Blocker-Extreme-uninstall.bin
Update-Blocker-Extreme.bin
sudo git clone https://github.com/Systemx23x/payloads-ps4-672.git /boot/firmware/PPPwn/payloads
App2USB.bin
Backup.bin
Disable-Updates.bin
Dumper.bin
Enable-Browser.bin
Enable-Updates.bin
Fan-Threshold.bin
FTP.bin
ftp_server_v1.08a.bin
GoldHEN_v2.4b14.bin
HEN_v2.1.3.bin
HEN_v2.1.3b.bin
History-Blocker.bin
Kernel-Clock.bin
Kernel-Dumper.bin
LinuxLoader-672-2gb.bin
LinuxLoader-672-3gb.bin
LinuxLoader-672-4gb.bin
LinuxLoader-672-5gb.bin
LinuxLoader-672.bin
payload-linux-672-2gb.bin
payload-linux-672-3gb.bin
payload-linux-672-4gb.bin
payload-linux-672.bin
payload-linux-pro-672-2gb.bin
payload-linux-pro-672-3gb.bin
payload-linux-pro-672-4gb.bin
payload-linux-pro-672.bin
PS4debug_v1.1.16.bin
Restore.bin
RIF-Renamer.bin
tlou_Dev-Menu-6.72.bin
sudo git clone https://github.com/Systemx23x/payloads-ps4-900.git /boot/firmware/PPPwn/payloads
app-dumper.bin
app-dumper_leeful.bin
app2USB.bin
backup.bin
disable-aslr.bin
disable-updates.bin
enable-browser.bin
enable-updates.bin
exit-idu.bin
fakeUSB.bin
fan-speed-50.bin
fan-speed-55.bin
fan-speed-60.bin
fan-speed-65.bin
fan-speed-70.bin
fan-speed-75.bin
fan-speed-80.bin
fan-speed-default.bin
fan-threshold.bin
ftp.bin
game-dumper.bin
GTA5_ArabicGuy127.bin
GTA5_ArabicGuy132.bin
GTA5_ArabicGuy133.bin
GTA5_BeefQueefMod133.bin
GTA5_BeefQueefMod134.bin
GTA5_BeefQueefMod138.bin
GTA5_Expulsion_v2_135.bin
history-blocker.bin
kernel-clock.bin
kernel-dumper.bin
linux1gb.bin
linux2gb.bin
linux3gb.bin
linux4gb.bin
linux5gb.bin
module-dumper.bin
payload-linux-900-2gb.bin
payload-linux-900-3gb.bin
payload-linux-900-4gb.bin
payload-linux-900.bin
payload-linux-pro-900-2gb.bin
payload-linux-pro-900-3gb.bin
payload-linux-pro-900-4gb.bin
payload-linux-pro-900.bin
permanent-uart.bin
pkg-backup.bin
ps4debug_v1.1.16.bin
RDR2_OystersMenu100.bin
RDR2_OystersMenu113.bin
RDR2_OystersMenu119.bin
RDR2_OystersMenu124.bin
restore.bin
rif-renamer.bin
todex.bin
toolbox.bin
webrte.bin
sudo git clone https://github.com/Systemx23x/payloads-ps4-1100.git /boot/firmware/PPPwn/payloads
ps4-app-dumper.bin
ps4-app2USB.bin
ps4-dbbackup.bin
ps4-debug-1.1.16.bin
ps4-disable_updates_11.00.bin
ps4-fan-threshold.bin
ps4-ftp.bin
ps4-GoldHEN-2.4b17.3.bin
ps4-hen-1100-PPPwn-vtx.bin
ps4-history-blocker.bin
ps4-kernel-dumper.bin
ps4-linux-1100-2gb.bin
ps4-linux-1100-3gb.bin
ps4-linux-1100-4gb.bin
ps4-linux-1100.bin
ps4-linux-pro-1100-2gb.bin
ps4-linux-pro-1100-3gb.bin
ps4-linux-pro-1100-4gb.bin
ps4-linux-pro-1100.bin
ps4-module-dumper.bin
ps4-permanent_uart-11.00.bin
ps4-pup-decrypter.bin
ps4-todex.bin
These are models i have tested with but PI-PWN is not limited to these models.
Raspberry PI 5
Raspberry PI 4 Model B
Raspberry PI 400
Raspberry PI 3B+
Raspberry PI 2 Model B
Raspberry PI Zero 2 W with USB to ethernet adapter
Raspberry PI Zero W with USB to ethernet adapter
ROCK PI 4C Plus with armbian Image
BIGTREETECH BTT PI V1.2 with armbian minimal
pcDuino3b with armbian Image
You need to install Raspberry PI OS Lite onto a sdcard or a USB-Drive with PI-Imager
PI-Imager_1.9.0_Windows_Download
Raspberry_OS_Lite_arm64_latest
Place the SDCARD/USB-Drive into the Raspberry PI, Boot it and Connect it to the Internet then run the following Commands
sudo su
apt update -y
apt full-upgrade -y
apt install git -y
git clone https://github.com/Systemx23x/PI-PWN-AIO.git ~/PI-PWN
cd ~/PI-PWN
cp -r PPPwn /boot/firmware/
cd /boot/firmware/PPPwn
chmod 777 *
bash install.sh
## Ports (ports.txt is Allready exist)
## Payloads (payloads are Allready exist for Firmware 11.00)
sudo rm -r -f /boot/firmware/PPPwn/payloads
## 11.00
sudo git clone https://github.com/Systemx23x/payloads-ps4-1100.git /boot/firmware/PPPwn/payloads
## 9.00
sudo git clone https://github.com/Systemx23x/payloads-ps4-900.git /boot/firmware/PPPwn/payloads
## 6.72
sudo git clone https://github.com/Systemx23x/payloads-ps4-672.git /boot/firmware/PPPwn/payloads
## 5.05
sudo git clone https://github.com/Systemx23x/payloads-ps4-505.git /boot/firmware/PPPwn/payloads
## 4.00-7.00
sudo git clone https://github.com/Systemx23x/payloads-ps4-400-700.git /boot/firmware/PPPwn/payloads
Games Reaper Studio = 744,755
Games Cheater = 744,755
Chiaki = 987,9295,9296,9297
PS4 Tools = 2811
FTP Server = 1337,2121
BinLoader Server = 8080,9020,9090
Klog Server = 3232,5353,12800
PSLAN = 1235,2811,3074,3075,5069
echo "744,755,987,1235,1337,2121,2811,3074,3075,3232,5069,5353,8080,9020,9090,9295,9296,9297,12800" > /boot/firmware/PPPwn/ports.txt
During the Install Process you will be Asked to set some Options.
If you are using a USB to ethernet adapter for the connection to the console you need to select yes
If your PI has an ethernet port and you are using a USB to ethernet adapter your interface for the USB adapter should be eth1
If you are using something like a PI zero 2 the interface will be eth0
Once the PI reboots PPPwn will run automatically.
- Go to
Settingsand thenNetwork - Select
Set Up Internet connectionand chooseUse a LAN Cable - Choose
Customsetup and choosePPPoEforIP Address Settings - Enter
pppforPPPoE User IDandPPPoE Password - NOTE if you enable internet access you must match the username and password entered during the install or use the default
ppp - Choose
AutomaticforDNS SettingsandMTU Settings - Choose
Do Not UseforProxy Server
For GoldHEN you need to place the GoldHEN.bin File onto the root of a USB Drive Formated as FAT32/exFAT and Plug it into the Console.
Once GoldHEN has been loaded for the first time it will be coPIed to the Consoles Internal HDD and the USB is no longer Required.
To update GoldHEN just Repeat the above Process and the new version will be coPIed to the internal HDD
If the PI-PWN was Setup to allow Internet access you can use the FTP, Klog, and Binloader Servers on the Console
Your PI must be also Connected to your Home Network via WIFI or a second Ethernet Connection
To connect to the servers from your pc just connect to the Raspberry PI
IP/Link [email protected] or [email protected] on your Network and all Requests will be forwarded to the Console
For FTP make sure you Set the Transfer Mode on your FTP Client Software to Active not Passive.
You can put a USB Flash Drive in the PI and that will be Mounted to the Console, you must put a Folder on the root of the Drive called "payloads"
To use this Feature you must Plug the Raspberry PI 4 / 400 / 5 into the Consoles USB Port using the USB-C connection on the PI.
If you have Power issues you can use a USB Y Cable to Inject Power from another Source but in my tests both PI variants run Using a Single Cable.
You can Enable the Option to detect if GoldHEN is running in the Options which will cause PI-PWN to check if GoldHEN is active before running PPPwn, this is useful for rest mode
If you have the PI Powered from the Console USB Port you must Disable "Supply Power to USB Ports" in the rest mode settings of the Console.
The Console must also use the PPPoe User and Password set for the "Console Internet Connection" of PI-PWN or the Defaults if you never changed them which are
user = ppp
password = ppp
If you Install FTP to access the PPPwn Folder for the Exploit Files you must use your root Login user/password to Access the Server.
The FTP Server uses the Standard Ports 21 & 20.
If you Setup Samba to Access the PPPwn Folder for the Exploit Files you can Access the Drive on...
\\PPPwn.local\PPPwn
or
smb:\\PPPwn.local\PPPwn
The Share has no user/password Required to Access it.
Once everything is Setup and the Ethernet Cable is plugged in between the PI and the Console the PI should automatically try and PWN the Console.
The Exploit may fail many Times but the PI will continue to Purge the Console to keep trying to PWN Itself.
Once PWNED the Process will Stop and the PI will shut down if you are not using Internet Access.
The idea is you Boot the Console and the PI together and the PI will keep trying to PWN the Console without any Input from you, just wait on the Home Screen until the Process completes
You can edit the Exploit scripts by putting the SD Card in your Computer and going to the PPPwn Folder.
The commands above can also be run again to Install Updates or Change the Settings.
You can also Click the Update Button on the Web UI.
Interface - this is the lan interface on the PI that is Connected to the Console.
Firmware version - version of Firmware running on the Console.
Time to restart PPPwn if it hangs - a Timeout in Minutes to restart PPPwn if the Exploit hangs mid process.
Led activity - on selected PI Models this will have the Leds flash based on the Exploit Progress.
Use Python version - Enabling this will force the use of the original Python PPPwn Released by TheOfficialFloW PPPwn
Use GoldHEN if available for selected Firmware - if this is not enabled or your Firmware has no GoldHEN available vtx-HEN will be Used.
Use original source IPv6 - this will force PPPwn to use the Original IPv6 Address that was used in PPPwn as on some Consoles it increases the Speed of PWN.
Use USB ethernet Adapter for Console connection - only enable this if you are using a USB to ethernet Adapter to connect to the Console.
Detect if GoldHEN is running - this will make PI-PWN check if GoldHEN is loaded on the Console and skip running PPPwn if it is running.
Detect Console shutdown and restart PPPwn - with this Enabled if the link is lost between the PI and the Console PPPwn will be restarted.
Enable verbose PPPwn - enables debug Output from PPPwn so you can see the Exploit progress.
Enable console internet access - Enabling this will make PI-PWN Setup a Connection to the console allowing Internet access after PPPwn succeeds.
Disable DNS blocker - enabling this will turn off the DNS Blocker that blocks certain Servers that are used for Updates and Telemetry.
Shutdown PI after PWN - if Enabled this will make the PI shutdown after PPPwn succeeds.
Enable USB drive to console - on selected PI models this will allow a USB Drive in the PI to be passed through to the Console.
Ports - this is a list of Ports that are forwarded from the PI to the Console, single Ports or Port ranges can be used.
All credit goes to
Systemx23x
Stooged
TheOfficialFloW
xfangfang
SiSTR0
Vortex
Echo Stretch
and many other people who have made this project possible.