Spectre will be holding a talk to explain how they managed to bypass the PS5’s hypervisor. In the talk, which they’ve titled “Byepervisor,” they’ll examine the hypervisor’s role in protecting the system from high-privilege attacks and discuss methods to bypass these security measures.
Byepervisor: How we broke the PS5’s hypervisor
Although a PlayStation 5 (PS5) kernel exploit has been public for years, the hypervisor-based security architecture has largely succeeded in preventing reverse engineering of the system and maintaining kernel integrity across all firmware versions, so far.
We will explore methods used to bypass the hypervisor, allowing custom code execution and system library decryption. Additionally, we will reveal two previously undisclosed vulnerabilities in hypervisor firmware versions up to 2.50, which can be exploited to completely compromise the hypervisor and bypass eXecute Only Memory (XOM) protection. Additionally, we will publish scripts to aid in reverse engineering the system, which will be made public after the presentation.
SpecterDev is a security researcher specializing in kernel exploitation and a former contributor to hardwear.io. He began researching consoles six years ago on the PlayStation 4 and has recently focused on the PlayStation 5 and AMD’s Secure Processor. He also co-hosts a weekly podcast and media channel called dayzerosec, which tracks and discusses various recent vulnerabilities, exploits, and research.
The conference days, in which the speakers present their work, will be held on
October 24 and 25, at the Marriott Hotel in Amsterdam, it will cost 200 euros for students, 700 euros for an average person, 800 euros for companies, and 3100 euros for those who want to participate in the 3 days of training. Often this kind of event is surrounded by hack training or tips over 2 or 3 days to also make the event profitable. Specter seems attached to Hardwear.io,
he had already presented many of his works there at previous conferences, notably in 2023. This looks like a fascinating conference for those interested in system security and game console vulnerabilities. Does this topic particularly interest you?
Source: hardwear.io / logic-sunrise.com
Comments