PS4OfflineAccountActivator
PS4OfflineAccountActivator copied to clipboard
charlyzard
porting 9.00
now that the payload has been updated, is it possible to port the program, thanks?
tried a1512ae74f5b50866755a2dd9bdc7e2dceac805c when clicking on get users, the UI respring.
C# error log (before UI respring)
See the end of this message for details on invoking
just-in-time (JIT) debugging instead of this dialog box.
************** Exception Text **************
System.Net.Sockets.SocketException (0x80004005): A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond
at libdebug.PS4DBG.ReceiveStatus()
at libdebug.PS4DBG.CheckStatus()
at libdebug.PS4DBG.Call(Int32 pid, UInt64 rpcstub, UInt64 address, Object[] args)
at PS4OfflineAccountActivator.MainForm.GetStrNative(UInt32 regId, String& strVal, UInt32 strSize)
at PS4OfflineAccountActivator.MainForm.GetUserName(Int32 userNumber)
at PS4OfflineAccountActivator.MainForm.btGetUsers_Click(Object sender, EventArgs e)
at System.Windows.Forms.Control.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
at System.Windows.Forms.Control.WndProc(Message& m)
at System.Windows.Forms.ButtonBase.WndProc(Message& m)
at System.Windows.Forms.Button.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
************** Loaded Assemblies **************
mscorlib
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4400.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.NET/Framework64/v4.0.30319/mscorlib.dll
----------------------------------------
PS4OfflineAccountActivator
Assembly Version: 1.0.0.0
Win32 Version: 1.0.0.0
CodeBase: file:///E:/DL/PS4OfflineAccountActivator.exe
----------------------------------------
System.Windows.Forms
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4400.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Windows.Forms/v4.0_4.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4360.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System/v4.0_4.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
System.Drawing
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4390.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Drawing/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
libdebug
Assembly Version: 1.2.0.0
Win32 Version: 1.2
CodeBase: file:///E:/DL/libdebug.DLL
----------------------------------------
System.Configuration
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4190.0 built by: NET48REL1LAST_B
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Configuration/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll
----------------------------------------
System.Core
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4390.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Core/v4.0_4.0.0.0__b77a5c561934e089/System.Core.dll
----------------------------------------
System.Xml
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4084.0 built by: NET48REL1
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Xml/v4.0_4.0.0.0__b77a5c561934e089/System.Xml.dll
----------------------------------------
************** JIT Debugging **************
To enable just-in-time (JIT) debugging, the .config file for this
application or computer (machine.config) must have the
jitDebugging value set in the system.windows.forms section.
The application must also be compiled with debugging
enabled.
For example:
<configuration>
<system.windows.forms jitDebugging="true" />
</configuration>
When JIT debugging is enabled, any unhandled exception
will be sent to the JIT debugger registered on the computer
rather than be handled by this dialog box.
C# error log (after UI respring)
See the end of this message for details on invoking
just-in-time (JIT) debugging instead of this dialog box.
************** Exception Text **************
System.Exception: libdbg status E71F3B30
at libdebug.PS4DBG.CheckStatus()
at PS4OfflineAccountActivator.MainForm.GetStrNative(UInt32 regId, String& strVal, UInt32 strSize)
at PS4OfflineAccountActivator.MainForm.GetUserName(Int32 userNumber)
at PS4OfflineAccountActivator.MainForm.btGetUsers_Click(Object sender, EventArgs e)
at System.Windows.Forms.Control.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnMouseUp(MouseEventArgs mevent)
at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
at System.Windows.Forms.Control.WndProc(Message& m)
at System.Windows.Forms.ButtonBase.WndProc(Message& m)
at System.Windows.Forms.Button.WndProc(Message& m)
at System.Windows.Forms.NativeWindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)
************** Loaded Assemblies **************
mscorlib
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4400.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.NET/Framework64/v4.0.30319/mscorlib.dll
----------------------------------------
PS4OfflineAccountActivator
Assembly Version: 1.0.0.0
Win32 Version: 1.0.0.0
CodeBase: file:///E:/DL/PS4OfflineAccountActivator.exe
----------------------------------------
System.Windows.Forms
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4400.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Windows.Forms/v4.0_4.0.0.0__b77a5c561934e089/System.Windows.Forms.dll
----------------------------------------
System
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4360.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System/v4.0_4.0.0.0__b77a5c561934e089/System.dll
----------------------------------------
System.Drawing
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4390.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Drawing/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Drawing.dll
----------------------------------------
libdebug
Assembly Version: 1.2.0.0
Win32 Version: 1.2
CodeBase: file:///E:/DL/libdebug.DLL
----------------------------------------
System.Configuration
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4190.0 built by: NET48REL1LAST_B
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Configuration/v4.0_4.0.0.0__b03f5f7f11d50a3a/System.Configuration.dll
----------------------------------------
System.Core
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4390.0 built by: NET48REL1LAST_C
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Core/v4.0_4.0.0.0__b77a5c561934e089/System.Core.dll
----------------------------------------
System.Xml
Assembly Version: 4.0.0.0
Win32 Version: 4.8.4084.0 built by: NET48REL1
CodeBase: file:///C:/Windows/Microsoft.Net/assembly/GAC_MSIL/System.Xml/v4.0_4.0.0.0__b77a5c561934e089/System.Xml.dll
----------------------------------------
************** JIT Debugging **************
To enable just-in-time (JIT) debugging, the .config file for this
application or computer (machine.config) must have the
jitDebugging value set in the system.windows.forms section.
The application must also be compiled with debugging
enabled.
For example:
<configuration>
<system.windows.forms jitDebugging="true" />
</configuration>
When JIT debugging is enabled, any unhandled exception
will be sent to the JIT debugger registered on the computer
rather than be handled by this dialog box.
I just updated the offsets but an updated ps4debug source code is needed.
it works ... I was able to use the program.
i didn't use ps4debug.bin but i used webrte900.bin. everything works perfectly.
for convenience I uploaded the payloads from the site: http://karo218.ir/900/index.html
it works ... I was able to use the program.
i didn't use ps4debug.bin but i used webrte900.bin. everything works perfectly.
for convenience I uploaded the payloads from the site: http://karo218.ir/900/index.html
Glad it worked. Did you recompile something?
I have not recompiled anything. i injected ps4debug and it didn't work. i injected webrte900 and it worked
Steps to get it working, Inject ps4debug, click connect, get users, wait for dashboard to finish restarting, inject webrte, click connect and get users and it should show you user list.
Video
https://user-images.githubusercontent.com/37698908/146613335-27556519-bfc2-4efd-b8a4-f4b97b39df0b.mp4
The problem is an issue with GoldHEN. The issue with the AccountActivator is the same on all FW versions with all versions of GoldHEN.
If you just run the kernel exploit (without loading GoldHEN), load ps4debug payload and run the AccountActivator it will work straight away without crashing when you click on 'Get Users'.
On older FW versions it will also work OK with old versions of HEN but not with GoldHEN.
This doesn't work for 5.05 on HEN or GoldHEN now.
This version is for 9.00 only. For 5.05 use the 5.05 version.
@Leeful , this also doesn't work with goldhen on 9.00? just checking, because as you know, I'm still on 5.05 with xproject. ;)
@Leeful , this also doesn't work with goldhen on 9.00? just checking, because as you know, I'm still on 5.05 with xproject. ;)
This version works on 9.00 if you do not use goldhen or if you do use goldhen you must wait for the PS4 menu to reload after the crash like @illusion0001 mentioned.
@Leeful , this also doesn't work with goldhen on 9.00? just checking, because as you know, I'm still on 5.05 with xproject. ;)
This version works on 9.00 if you do not use goldhen or if you do use goldhen you must wait for the PS4 menu to reload after the crash like @illusion0001 mentioned.
well, when I saw it crash on my system on 5.05, it acted like goldhen wasn't deployed. goldhen settings and debug settings disappeared, but when deploying goldhen again, it said that it was already active. not sure.
does someone have any idea how can i fix this ? for some reason i cant connect my pc to my ps4
does someone have any idea how can i fix this ? for some reason i cant connect my pc to my ps4
I also have this issue, so I essentially cannot do anything.
does someone have any idea how can i fix this ? for some reason i cant connect my pc to my ps4
I also have this issue, so I essentially cannot do anything.
I guess this issue because to loaded 2 payloads webrit and ps4dupig
@ninjakiwii @HelgenX Have you loaded/sent the 9.00 ps4debug payload? If you have and you still get the problem it might be an issue with your firewall.
@Arahvip Just load ps4debug. webrte is not for this.
I have loaded the ps4debug, the software will just not connect to the PS4 unfortunately.
@ninjakiwii @HelgenX Have you loaded/sent the 9.00 ps4debug payload? If you have and you still get the problem it might be an issue with your firewall.
@Arahvip Just load ps4debug. webrte is not for this.
Thanks i will try open firewall
@ninjakiwii @HelgenX Have you loaded/sent the 9.00 ps4debug payload? If you have and you still get the problem it might be an issue with your firewall.
@Arahvip Just load ps4debug. webrte is not for this.
yea ive loaded the ps4debug but for some reason its not working, should i turn off the firewall or what?
edit: Ignore-->I'm trying to get this to work but the PS4OfflineAccountActivator for 9.00 doesn't run on my windows 10. Am I doing something wrong? The version for 6.72 seems to open just fine though.<--
I'm an idiot. I needed to download the whole package and NOT just the .exe file. I'm so sorry.
For people having issues on 9.00, I have added the offline account activator feature to Apollo Save tool: https://github.com/bucanero/apollo-ps4/releases/tag/v0.6.0
if you can run homebrew, Apollo should be able to activate any user with a fake account-id directly on the PS4 (any firmware), no need for ps4debug or PC software:
- open Apollo
- select "User tools"
- click "Activate offline accounts"
- select the user to activate
- once done, just quit the app and reboot
@charlyzard - Apollo will not fix one of the most common use cases: https://github.com/bucanero/apollo-ps4/issues/7
That said, the workaround of letting the UI crash and then hitting Connect -> Get Users again works fine for me. I have to reboot after activating anyway!
Thank you for the port, I will continue to use it.
EDIT: nevermind, thanks bucanero!
for someone who can not get the account id. i've test on my own with these step and success. thank to illusion0001 for the solution.
these step wotk with goldhenv2b2
- connect ps4 to wifi and remember your ps4's ip
- if your ps4 have no local user, just add a local user to ps4.
- jailbreak with goldhenv2b2
- enable binloader in GoldHEN menu on ps4 and remember binloader port (it's 9090 on my ps4)
- on pc, open ps4 account activator and netcat (payload injection)
- inject ps4debug.bin from netcat to ps4 and wait for on screen message on ps4
- on ps4 account activator, click connect and get users
- ps4 account activator is not respond and show error dialog. close the dialog (not a program)
- ps4 launcher will reload, wait until reload finish
- when ps4 comeback to normal homescreen, inject WebRTE.bin from netcat to ps4 and wait for on screen message on ps4
- on ps4 account activator, click connect and get users again
- boom!!! you get all account name and id from ps4
download link netcat: https://wololo.net/downloads/index.php/download/10282 bin file: https://mega.nz/folder/RDpSzagD#2F4e9EFqT9YbUtJdgvQh6A
@charlyzard - Apollo will not fix one of the most common use cases: bucanero/apollo-ps4#7
EDIT: nevermind, thanks bucanero!
Support for user-defined account-ids has been added in Apollo v1.0.0, now you only need to define the owners.xml file with the account-ids you want to use, and Apollo will let you select those IDs when doing an offline activation.
Check the issue link or the project Readme for details on the owners.xml file.