67 |
73 | About System Update 5.05
68 |Main features:
69 |-
70 |
- Improves "system stability" 71 |
22 |
130 |
23 |
38 |
24 |
36 |
37 |
39 |
96 |
40 |
94 |
95 |
97 |
116 |
98 |
114 |
115 |
117 |
129 |
118 |
127 |
128 |
131 |
133 | *
132 |
134 |
145 |
146 |
147 |
148 |
149 |
150 |
151 |
152 |
153 |
175 |
--------------------------------------------------------------------------------
/themes/Default/rpi.js:
--------------------------------------------------------------------------------
1 | "use strict";var _this=void 0;function _classCallCheck(a,b){if(!(a instanceof b))throw new TypeError("Cannot call a class as a function")}function _defineProperties(a,b){for(var c,d=0;d
135 |
141 |
136 |
140 |
137 |
139 | *
138 |
142 |
143 |
144 | No PKGs found on host
":"I/O Error on Host"===c?b="I/O error on host
":"No results"===c?b="No results
":b+=makePkgButtonRPI(c.Filename,c.Filesize,c.File_URL)}),""===b&&(b="Error connecting to host
"),b}function checkPkgLink(){var a,b=/[A-Z]{2}[0-9]{4}-([A-Z]{4}[0-9]{5}_[0-9]{2})-[A-Z0-9]{16}/i,c=/([A-Z]{4}[0-9]{5})/i;b.test($("#installURL").val())?(a=b.exec($("#installURL").val()),a=a[1].toUpperCase(),displayTIDMetaRPI(a)):c.test($("#installURL").val())?(a=c.exec($("#installURL").val()),a="".concat(a[1].toUpperCase(),"_00"),displayTIDMetaRPI(a)):$("#meta-info").hide()}$(function(){var a,b;if(window.Meta=new TMDB,!navigator.onLine)return void $("#offlineOverlay").show();setLastIPRPI("#ip"),clearInputRPI();var c=getPKGListRPI();$("a[data-toggle=\"pill\"]").click(function(){clearInputRPI(),$("#header").text($(_this).text())}),$("#pkgSearch").keyup(function(){a=[],"No PKGs Found"!==c&&"I/O Error on Host"!==c&&(b=$("#pkgSearch").val().toUpperCase(),$.each(c,function(c,d){-1
20 |
22 | Remote Package Installer
21 |
23 |
158 |
159 |
160 |
161 |
162 |
184 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | Exploit Host
2 | ================
3 |
4 | ## What is this?
5 |
6 | This is an easy way for anyone to host their own exploit for the PS4/PS5/Vita/Wii/Switch/etc on their LAN. Features include:
7 |
8 | - Hosts your choice of exploit
9 | - Allows caching of exploits for offline use (Device dependant)
10 | - Sends your choice of payload after a successful exploit
11 | - Blocks update/telemetry domains from resolving
12 | - Serves a specific firmware update to your device (Device dependant)
13 | - Server side application works on just about every platform
14 | - Static Website builder. Compiles the host into a static website to run on HTTP server of your choice (You lose some features using this method, DNS, updater, etc)
15 |
16 | If you do not want to host the package yourself you can use my remote DNS. See the `Using remote DNS` section below.
17 |
18 | **PLEASE READ THIS README AND THE [FAQ](https://github.com/Al-Azif/ps4-exploit-host/blob/master/FAQ.md) BEFORE POSTING AN ISSUE.**
19 |
20 | ## Requirements
21 |
22 | - If you are not using a binary release you will need [Python 3](https://www.python.org/downloads/)
23 | - Root privileges on non-Windows machines
24 |
25 | ## How to download
26 |
27 | - Download the zip on the [releases](https://github.com/Al-Azif/ps4-exploit-host/releases) page
28 | - Download with Git, be sure to grab the submodules. This does not include any exploits or payloads. This is for experts only, download a release if you have issues
29 |
30 | `git clone --recursive https://github.com/Al-Azif/ps4-exploit-host.git`
31 |
32 | ## Using remote DNS (Run Nothing Locally)
33 |
34 | 0. Make sure you are on an exploitable device/firmware (ie. PS4: <=9.00, PS5: <=4.51, etc)
35 | - On the PS4/PS5 this can be found at `Settings > System > System Information`
36 | - If your firmware is too high you are out of luck there is no public exploit available and you cannot downgrade.
37 | 1. On your device go to setup your network as desired but be sure to set the DNS servers to `165.227.83.145` and `192.241.221.79`
38 | - This is typically found when setting up a "custom" network on the device.
39 | - Either IP can be used as the Primary or Secondary DNS. Flip a coin to decide. Randomly selecting with help with load balancing.
40 | 2. On the device visit the internet. If the devices is explicitly supported the online uses manual, internet connection test, and/or the browsers default homepage should be the exploit page. Examples:
41 | - On the PS4/PS5, go to `Settings > User's Guide` and select it the exploit selection should appear.
42 | - On the PS4 uou can also open browser and the default homepage will be the exploit selection.
43 | - On the Nintendo Switch the internet connection test will be the exploit selection.
44 | 3. If you using something like `Bin Loader` you will need to use another program to send the desired payload.
45 |
46 | My Twitter is [@_AlAzif](https://twitter.com/_AlAzif) you can check my recent tweets for know issues/maintenance info.
47 |
48 | **Request forwarding is disabled for non-[sponsors](https://github.com/sponsors/Al-Azif/), due to it being abused. You can read more info about the situation that caused open forwarding to be removed [here](https://gist.github.com/Al-Azif/255479c07006e7614e6bae342c19c44d).**
49 |
50 | ## How to run (Run Locally)
51 |
52 | 1. Download the files (As shown in the "How to download" section above)
53 | 2. Double click the executable (`exploit-host.exe`, `exploit-host.py`, etc). If it starts with no errors, note the IP given.
54 | - Alternatively run it from the command line (`exploit-host.exe`, `./exploit-host`, `python exploit-host.py`, etc)
55 | - If you are not root when running on a non-Windows machine you need to use `sudo`
56 | 3. Follow the `Using remote DNS` section substituting your DNS IP given noted in the previous step for both primary and secondary DNS IP addresses.
57 | 4. When done use `Ctrl+C` to cleanly close the application.
58 |
59 | Note: You can edit `settings.json` to modify the hosts behavior. There is a section below with more info.
60 |
61 | ## Creating a static HTML build
62 |
63 | TBD.
64 |
65 | ## Running on Raspberry Pi
66 |
67 | While the "How to run" section applies to the Pi as well there are some more complex options people may want to use for the Pi like running without any network whatsoever.
68 |
69 | - To run as a standalone device that you plug directly into your device though ethernet go [here](https://gist.github.com/Al-Azif/fe2ae67a2fb06cc136580b1e923c7aac) (Supports any Pi with a ethernet port)
70 | - To run as a WiFi access point for your device go [here](https://gist.github.com/Al-Azif/765740019c45b9a49cbf739609cadda7) (Officially supports RPi 3 currently, may work on others with WiFi adapter)
71 |
72 | ## Running on an ESP device
73 |
74 | TBD.
75 |
76 | ## How to use the built in updater
77 |
78 | Below is an example of how to issue the PS4 5.05 update to PS4s that have a lower FW currently installed.
79 |
80 | **If you already have an official updated above 5.05 downloaded you must delete it first.**
81 |
82 | 0. Make these changes before starting the application in the `How to run` section. Look at the `Update [PS4_No_Update]` setting in the `settings.json` info below.
83 | 1. Put the system update in the `updates` folder as `PS4UPDATE_SYSTEM.PUP`
84 | - Optionally put the recovery update in the `updates` folder as `PS4UPDATE_RECOVERY.PUP`
85 |
86 | **5.05 SYS MD5:** F86D4F9D2C049547BD61F942151FFB55
87 |
88 | **5.05 REC MD5:** C2A602174F6B1D8EF599640CD276924A
89 |
90 | 2. MAKE SURE THE DNS IS SET CORRECTLY!
91 | 3. **SEE #2 I'M SO SERIOUS!**
92 | 4. There should be a different page on the `System Software Update > View Details` option on the PS4. It will be obvious!
93 | - The PS4 is not using the right DNS if you get the standard Sony changelog page. **STOP IMMEDIATELY AND RESTART THE ENTIRE PROCESS**
94 | 5. Run a system update on your PS4 system.
95 | 6. Return to the "How to run" section.
96 |
97 | ## Modifying `settings.json`
98 |
99 | It's probably a good idea to make a backup of the default settings.json just in case. Any invalid settings will throw a warning and use a default value.
100 |
101 | Use valid json formatting. Boolean values should be lower case, integers should not be quoted, etc.
102 |
103 | | Setting | Notes | Type |
104 | | ------- | ----- | ------- |
105 | | Debug | Will print debug info from the DNS/HTTP servers | boolean |
106 | | Root_Check | Will skip the root user check for Linux/OSX, only disable if you are sure you don't need it. Will cause port errors if set wrong | boolean |
107 | | Public | If the server is listening on a public IP (Disabled payload sending other than "Auto_Payload and disables viewing/editing settings remotely) | boolean |
108 | | DNS | If the DNS server should be run | boolean |
109 | | HTTP | If the HTTP server should be run | boolean |
110 | | HTTPS | If the HTTPS server should be run | boolean |
111 | | DNS_Interface | The IP of the interface to bind the DNS server to | string (IP Address) |
112 | | DNS_Port | The port to bind the DNS server to | int (1-65535) |
113 | | HTTP_Interface | The IP of the interface to bind the HTTP server to | string (IP Address) |
114 | | HTTP_Port | The port to bind the HTTP server to | int (1-65535) |
115 | | HTTPS_Interface | The IP of the interface to bind the HTTPS server to | string (IP Address) |
116 | | HTTPS_Port | The port to bind the HTTPS server to | int (1-65535) |
117 | | Compression_Level | Enables gzip compression on the HTTP server, 0 being disabled, 9 being most compressed | int (0-9) |
118 | | UA_Check | If the UA should be checked against values in the Valid_UA setting | boolean |
119 | | Theme | Which theme to use, themes must be located in the themes folder | string |
120 | | Sticky_Cache | Whether the appcache manifest should be included in itself or not | boolean |
121 | | Auto_Payload | Payload to send to any IP that accesses server at `/success`. Payload must be in the payloads folder | string |
122 | | Payload_Timeout | The timeout, in seconds, to try and send a payload through the payload menu before timing out | int (1-999) |
123 | | DNS_Rules | Fake DNS control block | |
124 | | DNS_Rules [Redirect IP] | The IP address to redirect URLs listed in the Redirect rules to | string (IP Address) |
125 | | DNS_Rules [Redirect] | Array of domains to forwards to DNS_Rules [Redirect IP] | array of strings (regex) |
126 | | DNS_Rules [Block] | Array of domains to block | array of strings (regex) |
127 | | DNS_Rules [Pass_Through] | Array of IP addresses to not modify DNS requests | array of strings (IP Address) |
128 | | Valid_UA | User-Agents to allow access to exploits, only used if UA_Check is enabled | array of strings (regex) |
129 | | Update | Updater control block | |
130 | | Update [PS4_No_Update] | The PS4 version (and lower) listed here will not be served update files | float |
131 | | Update [PS5_No_Update] | The PS5 version (and lower) listed here will not be served update files | float |
132 | | Update [Vita_No_Update] | The PS Vita version (and lower) listed here will not be served update files | float |
133 |
134 | ## Modifying metadata
135 |
136 | TBD.
137 |
138 | ## About offline caching
139 |
140 | - Redirect/Theme info is cached automatically.
141 | - Redirect/Theme info updates and refreshes automatically.
142 | - Exploits can be cached on a per firmware basis or all cached at once with the dropdown menu and/or `[Cache All]` button on the exploit selection menu.
143 | - Exploit updates must be "manually" updated by clicking cache button an update is available or checking the "About" option in the exploit's dropdown menu.
144 | - You will be told if there is no update when clicking the button.
145 | - If you are offline the caching buttons will be hidden as will exploits that require a network connection or are not cached.
146 |
147 | ## About autoload
148 |
149 | - Exploits can be automatically selected by clicking "Autoload" in the exploits dropdown menu.
150 | - When you open the exploit selection it'll automatically select that exploit.
151 | - This can be disabled by clearing your browser's cookies.
152 |
153 | ## Contributing
154 |
155 | You can check the [issue tracker](https://github.com/Al-Azif/ps4-exploit-host/issues) for my to do list and/or bugs. Feel free to send a [pull request](https://github.com/Al-Azif/ps4-exploit-host/pulls) for whatever.
156 | Be sure to report any bugs, include as much information as possible.
157 |
158 | ## What if a new exploit is released?
159 |
160 | You should just be able to place the exploit files in the `exploit` directory. The exploit will automatically add the exploit to the menu.
161 |
162 | ex. exploits/firmware_version/exploit_name/index.html
163 |
164 | ## Why do you commit so many little changes, tweaks, etc?
165 |
166 | I have no self control... it also lets people see the actual development. From barely working chicken scratch to actual code.
167 |
168 | ## Credits
169 |
170 | - Specter, IDC, qwertyoruiopz, Flatz, CTurt, Mistawes, XVortex, LightningMods, CelesteBlue123, Anonymous, neofreno, wolfmankurd, crypt0s, etc
171 | - Build Static Icon: https://icon-icons.com/icon/html-application/2459
172 | - Exploit Host Icon: https://icon-icons.com/icon/redirect-exchange/90870
173 |
--------------------------------------------------------------------------------
/themes/Default/common.js.es6:
--------------------------------------------------------------------------------
1 | function getBasePath() {
2 | // const port = window.location.port !== '' ? `:${window.location.port}` : '';
3 | // let url = `${window.location.origin}${port}${window.location.pathname}`;
4 | let url = `${window.location.origin}${window.location.pathname}`;
5 |
6 | if (url.slice(-1) === '/') {
7 | url = url.slice(0, -1);
8 | }
9 |
10 | return url;
11 | }
12 |
13 | // --- JS Error Logger --------------------------------------------------------
14 |
15 | window.onerror = (msg, errorLocation, lineNo, columnNo, error) => {
16 | if (errorLocation === document.location.href) {
17 | // eslint-disable-next-line no-alert
18 | alert(`User Custom JS Error\n\n${msg}\nLine: ${lineNo}\nColumn: ${columnNo}`);
19 | return; // Assuming this is a user script error
20 | }
21 | const data = JSON.stringify({
22 | message: msg,
23 | line: lineNo,
24 | column: columnNo,
25 | url: errorLocation,
26 | useragent: navigator.userAgent,
27 | stack: error,
28 | });
29 |
30 | const xhr = new XMLHttpRequest();
31 | xhr.open('POST', `${getBasePath()}/debug/jserrorlog`, true);
32 | xhr.setRequestHeader('Content-Type', 'application/json');
33 |
34 | if (navigator.onLine) {
35 | xhr.onload = () => {
36 | if (xhr.status >= 200 && xhr.status < 400) {
37 | // eslint-disable-next-line no-alert
38 | alert(`Successfully Submitted Error Log\n\n${msg}\nFile: ${errorLocation}\nLine: ${lineNo}\nColumn: ${columnNo}`);
39 | } else {
40 | // eslint-disable-next-line no-alert
41 | alert(`Error Submitting Error Log\n\n${msg}\nFile: ${errorLocation}\nLine: ${lineNo}\nColumn: ${columnNo}`);
42 | }
43 | };
44 |
45 | xhr.onerror = () => {
46 | // eslint-disable-next-line no-alert
47 | alert(`Error Submitting Error Log\n\n${msg}\nFile: ${errorLocation}\nLine: ${lineNo}\nColumn: ${columnNo}`);
48 | };
49 | } else {
50 | // eslint-disable-next-line no-alert
51 | alert(`Offline, No Error Log Submitted\n\n${msg}\nFile: ${errorLocation}\nLine: ${lineNo}\nColumn: ${columnNo}`);
52 | }
53 |
54 | xhr.send(data);
55 | };
56 |
57 | // --- Common Functions -------------------------------------------------------
58 |
59 | function int2Hex(value) {
60 | return value.toString(16);
61 | }
62 |
63 | // eslint-disable-next-line no-unused-vars
64 | function uuid() {
65 | let random;
66 | let i;
67 |
68 | let result = '';
69 | let seed = Date.now();
70 |
71 | for (i = 0; i < 32; i += 1) {
72 | // eslint-disable-next-line no-bitwise
73 | random = (seed + Math.random() * 16) % 16 | 0;
74 | seed = Math.floor(seed / 16);
75 |
76 | if (i === 8 || i === 12 || i === 16 || i === 20) {
77 | result += '-';
78 | }
79 |
80 | if (i === 12) {
81 | result += int2Hex(4);
82 | } else if (i === 16) {
83 | // eslint-disable-next-line no-bitwise
84 | result += int2Hex(random & (3 | 8));
85 | } else {
86 | result += int2Hex(random);
87 | }
88 | }
89 | return result;
90 | }
91 |
92 | // eslint-disable-next-line no-unused-vars
93 | function sleep(time) {
94 | return new Promise((resolve) => { setTimeout(resolve, time); });
95 | }
96 |
97 | function getJson(inputURL) {
98 | const xhr = new XMLHttpRequest();
99 | xhr.open('GET', inputURL, false);
100 | xhr.setRequestHeader('Content-Type', 'application/json');
101 |
102 | xhr.send();
103 | if (xhr.readyState === 4 && xhr.status >= 200 && xhr.status < 400) {
104 | return JSON.parse(xhr.responseText);
105 | }
106 |
107 | return false;
108 | }
109 |
110 | function getJsonAsync(inputURL, callback) {
111 | const xhr = new XMLHttpRequest();
112 | xhr.open('GET', inputURL, true);
113 | xhr.setRequestHeader('Content-Type', 'application/json');
114 |
115 | xhr.onload = () => {
116 | if (xhr.status >= 200 && xhr.status < 400) {
117 | callback(JSON.parse(xhr.responseText));
118 | } else {
119 | callback(false);
120 | }
121 | };
122 |
123 | xhr.onerror = () => {
124 | callback(false);
125 | };
126 |
127 | xhr.send();
128 | }
129 |
130 | // eslint-disable-next-line no-unused-vars
131 | function getMenu() {
132 | const url = `${getBasePath()}/api/menu`;
133 | const result = getJson(url);
134 |
135 | if (result !== undefined && Object.keys(result).length > 0) {
136 | return result;
137 | }
138 | return false;
139 | }
140 |
141 | // eslint-disable-next-line no-unused-vars
142 | function getMenuAsync(callback) {
143 | const url = `${getBasePath()}/api/menu`;
144 |
145 | getJsonAsync(url, (response) => {
146 | if (response && response !== {}) {
147 | callback(response);
148 | } else {
149 | callback(false);
150 | }
151 | });
152 | }
153 |
154 | // eslint-disable-next-line no-unused-vars
155 | function getSettings() {
156 | const url = `${getBasePath()}/api/themes`;
157 | const result = getJson(url);
158 |
159 | if (result !== undefined && Object.keys(result).length > 0) {
160 | return result;
161 | }
162 | return false;
163 | }
164 |
165 | // eslint-disable-next-line no-unused-vars
166 | function getSettingsAsync(callback) {
167 | const url = `${getBasePath()}/api/themes`;
168 |
169 | getJsonAsync(url, (response) => {
170 | if (response && response !== {}) {
171 | callback(response);
172 | } else {
173 | callback(false);
174 | }
175 | });
176 | }
177 |
178 | // eslint-disable-next-line no-unused-vars
179 | function getData(inputURL, cors) {
180 | const xhr = new XMLHttpRequest();
181 | xhr.open('GET', cors ? `https://cors.plus/${inputURL}` : inputURL, false);
182 |
183 | xhr.send();
184 | if (xhr.readyState === 4 && xhr.status >= 200 && xhr.status < 400) {
185 | return xhr.responseText;
186 | }
187 |
188 | return false;
189 | }
190 |
191 | // eslint-disable-next-line no-unused-vars
192 | function getDataAsync(inputURL, callback, cors) {
193 | const xhr = new XMLHttpRequest();
194 | xhr.open('GET', cors ? `https://cors.plus/${inputURL}` : inputURL, true);
195 |
196 | xhr.onload = () => {
197 | if (xhr.status >= 200 && xhr.status < 400) {
198 | callback(xhr.responseText);
199 | } else {
200 | callback(false);
201 | }
202 | };
203 |
204 | xhr.onerror = () => {
205 | callback(false);
206 | };
207 |
208 | xhr.send();
209 | }
210 |
211 | function loadFrame(url) {
212 | const ifrObj = document.getElementById('ifr');
213 |
214 | if (ifrObj !== undefined) {
215 | ifrObj.contentWindow.location.replace(url);
216 | }
217 | }
218 |
219 | // eslint-disable-next-line no-unused-vars
220 | function loadEntry(category, entry, redirect) {
221 | if (redirect) {
222 | window.location.href = `${getBasePath()}/exploits/${category}/${entry}/index.html`;
223 | } else {
224 | loadFrame(`${getBasePath()}/exploits/${category}/${entry}/index.html`);
225 | }
226 | }
227 |
228 | function clearFrame() {
229 | loadFrame(`${getBasePath()}/blank.html`);
230 | }
231 |
232 | // eslint-disable-next-line no-unused-vars
233 | function safeRedirect(url) {
234 | clearFrame();
235 |
236 | document.getElementById('ifr').addEventListener('load', () => {
237 | window.location.href = url;
238 | });
239 | }
240 |
241 | // eslint-disable-next-line no-unused-vars
242 | function cacheTheme() {
243 | loadFrame(`${getBasePath()}/cache/theme/index.html`);
244 | }
245 |
246 | // eslint-disable-next-line no-unused-vars
247 | function cacheCategory(category) {
248 | loadFrame(`${getBasePath()}/cache/category/${category}/index.html`);
249 | }
250 |
251 | // eslint-disable-next-line no-unused-vars
252 | function cacheEntry(category, entry) {
253 | loadFrame(`${getBasePath()}/cache/entry/${category}/${entry}/index.html`);
254 | }
255 |
256 | // eslint-disable-next-line no-unused-vars
257 | function cacheAll() {
258 | loadFrame(`${getBasePath()}/cache/all/index.html`);
259 | }
260 |
261 | // eslint-disable-next-line no-unused-vars
262 | function setStorage(key, value, datatype) {
263 | if (typeof datatype === 'string') {
264 | // Don't need to lint for valid-typeof on next line as we solved the issue above
265 | // eslint-disable-next-line valid-typeof
266 | if (typeof value === datatype) {
267 | localStorage.setItem(key, value);
268 | return true;
269 | }
270 | }
271 | return false;
272 | }
273 |
274 | // eslint-disable-next-line no-unused-vars
275 | function getStorage(key) {
276 | if (localStorage.getItem(key) !== null) {
277 | return localStorage.getItem(key);
278 | }
279 | return false;
280 | }
281 |
282 | // eslint-disable-next-line no-unused-vars
283 | function deleteStorage(key) {
284 | localStorage.removeItem(key);
285 | }
286 |
287 | function setCookie(key, value, days) {
288 | let expires = '';
289 | if (days) {
290 | const date = new Date();
291 | date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
292 | expires = `; expires=${date.toUTCString()}`;
293 | }
294 |
295 | document.cookie = `${key}=${encodeURIComponent(value)}${expires}; domain=${window.location.hostname}; path=${window.location.pathname};`;
296 | }
297 |
298 | function deleteCookie(key) {
299 | document.cookie = `${key}=; expires=Thu, 01 Jan 1970 00:00:00 UTC;`;
300 | }
301 |
302 | function getCookie(key) {
303 | const name = `${key}=`;
304 | const decodedCookie = decodeURIComponent(document.cookie);
305 | const cookies = decodedCookie.split(';');
306 |
307 | for (let i = 0; i < cookies.length; i += 1) {
308 | let cookie = cookies[i];
309 |
310 | while (cookie.charAt(0) === ' ') {
311 | cookie = cookie.substring(1);
312 | }
313 | if (cookie.indexOf(name) === 0) {
314 | return decodeURI(cookie.substring(name.length, cookie.length));
315 | }
316 | }
317 |
318 | return undefined;
319 | }
320 |
321 | // eslint-disable-next-line no-unused-vars
322 | function setAutoload(category, entry) {
323 | setCookie('autoload', `${category}/${entry}`, 100 * 365);
324 | }
325 |
326 | // eslint-disable-next-line no-unused-vars
327 | function autoloadCookie(menu) {
328 | const autoload = getCookie('autoload');
329 |
330 | if (autoload) {
331 | try {
332 | const category = autoload.split('/')[0];
333 | const entry = autoload.split('/')[1];
334 |
335 | if (!(category in menu) || !(entry in menu[category].entries)) {
336 | deleteCookie('autoload');
337 | } else {
338 | return autoload;
339 | }
340 | } catch (e) {
341 | deleteCookie('autoload');
342 | }
343 | }
344 | return false;
345 | }
346 |
347 | // eslint-disable-next-line no-unused-vars
348 | function imageToBackground(inputURL, callback, cors, outputFormat) {
349 | const img = new Image();
350 | img.crossOrigin = 'Anonymous';
351 | img.onload = function onImageLoad() {
352 | const canvas = document.createElement('canvas');
353 | const ctx = canvas.getContext('2d');
354 | canvas.height = this.naturalHeight;
355 | canvas.width = this.naturalWidth;
356 | ctx.drawImage(this, 0, 0);
357 | const dataURL = canvas.toDataURL(outputFormat);
358 | callback(dataURL);
359 | };
360 | img.src = cors ? `https://cors.plus/${inputURL}` : inputURL;
361 | }
362 |
363 | // eslint-disable-next-line no-unused-vars
364 | function checkUAMatch(validUAs) {
365 | const currentUA = navigator.userAgent;
366 |
367 | if (validUAs.indexOf(currentUA) > -1) {
368 | return true;
369 | }
370 |
371 | for (let i = 0; i < validUAs.length; i += 1) {
372 | const pattern = new RegExp(validUAs[i]);
373 | if (pattern.test(currentUA)) {
374 | return true;
375 | }
376 | }
377 |
378 | return false;
379 | }
380 | /*
381 | Copyright (c) 2017-2022 Al Azif, https://github.com/Al-Azif/ps4-exploit-host
382 |
383 | Permission is hereby granted, free of charge, to any person obtaining
384 | a copy of this software and associated documentation files (the
385 | "Software"), to deal in the Software without restriction, including
386 | without limitation the rights to use, copy, modify, merge, publish,
387 | distribute, sublicense, and/or sell copies of the Software, and to
388 | permit persons to whom the Software is furnished to do so, subject to
389 | the following conditions:
390 |
391 | The above copyright notice and this permission notice shall be
392 | included in all copies or substantial portions of the Software.
393 |
394 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
395 | EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
396 | MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
397 | NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
398 | LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
399 | OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
400 | WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
401 | */
402 |
--------------------------------------------------------------------------------
/themes/Default/rpi.js.es6:
--------------------------------------------------------------------------------
1 | class TMDB {
2 | constructor() {
3 | this.url = '';
4 | this.json = '';
5 | }
6 |
7 | update(url) {
8 | if (url !== this.url) {
9 | this.url = url;
10 | this.json = $.ajax({
11 | dataType: 'json',
12 | url: this.url,
13 | async: false,
14 | }).responseJSON;
15 | }
16 | }
17 |
18 | get icon() {
19 | if (this.json !== undefined) {
20 | return this.json.icons[0].icon;
21 | }
22 | return undefined;
23 | }
24 |
25 | get name() {
26 | if (this.json !== undefined) {
27 | return this.json.names[0].name;
28 | }
29 | return undefined;
30 | }
31 | }
32 |
33 | function clearInputRPI() {
34 | $('#meta-info').hide();
35 | $('#installURL').val('http://');
36 | $('#pkgSearch').val('');
37 | $('#uninstallID').val('');
38 | $('#uninstallRadioGame').prop('checked', true);
39 | $('#taskContentID').val('');
40 | $('#taskRadioGame').prop('checked', true);
41 | $('#taskID').val('');
42 | }
43 |
44 | function getPKGListRPI() {
45 | return $.ajax({
46 | dataType: 'json',
47 | url: '/api/pkglist',
48 | async: false,
49 | }).responseJSON;
50 | }
51 |
52 | function showResponseRPI(type, message) {
53 | let color = '';
54 |
55 | if (type === 'fail') {
56 | color = ' text-danger';
57 | } else if (type === 'success') {
58 | color = ' text-success';
59 | }
60 | $('#responseText').html(`
24 |
30 |
25 |
29 |
26 |
28 | Install
27 |
31 |
32 |
33 |
34 |
41 |
35 |
39 |
40 |
42 |
157 |
43 |
49 |
156 |
50 |
155 |
51 |
60 |
52 |
59 |
53 | ![]()
54 |
55 |
56 |
58 | *
57 |
61 |
69 | 70 | 71 |
75 |
62 |
63 |
68 |
64 |
65 |
66 |
67 | 69 | 70 | 71 |
72 |
73 |
74 |
76 |
105 |
77 |
78 |
82 |
79 |
80 |
81 |
83 |
104 |
84 |
103 |
85 |
102 |
86 |
87 |
88 |
89 |
90 |
91 |
92 |
93 |
94 |
95 |
96 |
97 |
98 |
99 |
100 |
101 |
106 |
135 | 136 |
149 |
154 |
107 |
108 |
112 |
109 |
110 |
111 |
113 |
134 |
114 |
133 |
115 |
132 |
116 |
117 |
118 |
119 |
120 |
121 |
122 |
123 |
124 |
125 |
126 |
127 |
128 |
129 |
130 |
131 | 135 | 136 |
137 |
148 |
138 |
147 |
139 |
140 |
141 |
142 |
143 |
144 |
145 |
146 | ${JSON.stringify(message)}
`); 61 | } 62 | 63 | function getTMDBURLRPI(tid) { 64 | let sha1HMAC; 65 | let tmdbHash; 66 | let tmdbURL; 67 | 68 | // Insert key here (In hex format). It will be automatically checked against the correct hash 69 | let key = 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX'; 70 | 71 | key = key.toUpperCase(); 72 | 73 | const sha256 = new jsSHA('SHA-256', 'TEXT'); 74 | sha256.update(key); 75 | const keyHash = sha256.getHash('HEX'); 76 | 77 | if (keyHash.toUpperCase() === '2AB0555FABF50901A5D7CD56962769F0274374FA56C7E81E77EC386B22834AFB') { 78 | sha1HMAC = new jsSHA('SHA-1', 'TEXT'); 79 | 80 | sha1HMAC.setHMACKey(key, 'HEX'); 81 | sha1HMAC.update(tid); 82 | tmdbHash = sha1HMAC.getHMAC('HEX'); 83 | tmdbHash = tmdbHash.toUpperCase(); 84 | 85 | tmdbURL = `https://tmdb.np.dl.playstation.net/tmdb2/${tid}_${tmdbHash}/${tid}.json`; 86 | } else { 87 | tmdbURL = 'http://0.0.0.0'; 88 | } 89 | 90 | return tmdbURL; 91 | } 92 | 93 | function displayTIDMetaRPI(tid) { 94 | window.Meta.update(getTMDBURLRPI(tid)); 95 | if (window.Meta.icon !== undefined) { 96 | $('#meta-icon').attr('src', window.Meta.icon); 97 | } 98 | if (window.Meta.name !== undefined) { 99 | $('#meta-name').text(window.Meta.name); 100 | } 101 | 102 | if (window.Meta.icon === undefined && window.Meta.name === undefined) { 103 | $('#meta-info').hide(); 104 | } else { 105 | $('#meta-info').show(); 106 | } 107 | } 108 | 109 | function setLastIPRPI(element) { 110 | let result; 111 | 112 | const decodedCookie = decodeURIComponent(document.cookie); 113 | const cookies = decodedCookie.split(';'); 114 | 115 | $.each(cookies, (i, field) => { 116 | while (field.charAt(0) === ' ') { 117 | field = field.substring(1); 118 | } 119 | if (field.indexOf('last_ip=') === 0) { 120 | result = field.substring('last_ip='.length, field.length); 121 | } 122 | }); 123 | 124 | if (result !== undefined) { 125 | $(element).val(result); 126 | } else { 127 | $(element).val('0.0.0.0'); 128 | document.cookie = 'last_ip=0.0.0.0; expires=Tue, 19 Jan 2038 03:14:07 UTC;'; 129 | } 130 | } 131 | 132 | function validateInputRPI(inputType, value) { 133 | let pattern; 134 | 135 | if (inputType === 'IP') { 136 | pattern = /^(([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])\.){3}([0-9]|[1-9][0-9]|1[0-9]{2}|2[0-4][0-9]|25[0-5])$/; 137 | } else if (inputType === 'URL') { 138 | pattern = /^http[s]?:\/\/.+/i; 139 | } else if (inputType === 'ContentID') { 140 | pattern = /^[A-Z]{2}[0-9]{4}-[A-Z]{4}[0-9]{5}_[0-9]{2}-[A-Z0-9]{16}$/; 141 | } else if (inputType === 'TitleID') { 142 | pattern = /^[A-Z]{4}[0-9]{5}$/; 143 | } else if (inputType === 'TaskID') { 144 | pattern = /^(?:[1-9][0-9]{3}|[1-9][0-9]{2}|[1-9][0-9]|[0-9])$/; 145 | } else { 146 | return false; 147 | } 148 | return pattern.test(value); 149 | } 150 | 151 | function sendCommandRPI(ip, endpoint, command) { 152 | const compiledURL = `http://${ip}:12800/api/${endpoint}`; 153 | 154 | if (validateInputRPI('IP', ip)) { 155 | document.cookie = `last_ip=${ip}; expires=Tue, 19 Jan 2038 03:14:07 UTC;`; 156 | return $.ajax({ 157 | type: 'POST', 158 | contentType: 'application/json; charset=utf-8', 159 | dataType: 'json', 160 | url: compiledURL, 161 | data: command, 162 | async: false, 163 | beforeSend: () => { 164 | $('#sendingOverlay').show(); 165 | }, 166 | complete: () => { 167 | $('#sendingOverlay').hide(); 168 | }, 169 | }).responseJSON; 170 | } 171 | // eslint-disable-next-line no-alert 172 | alert('Invalid IP'); 173 | return undefined; 174 | } 175 | 176 | function isExistsRPI(ip, tid) { 177 | let response; 178 | let type; 179 | 180 | if (validateInputRPI('TitleID', tid.toUpperCase())) { 181 | response = sendCommandRPI(ip, 'is_exists', `{"title_id": "${tid.toUpperCase()}"}`); 182 | type = response.status; 183 | // TODO: Parse response 184 | showResponseRPI(type, response); 185 | return; 186 | } 187 | // eslint-disable-next-line no-alert 188 | alert('Validation Error'); 189 | } 190 | 191 | function installRPI(ip, urlType, url) { 192 | let response; 193 | let type; 194 | 195 | if (validateInputRPI('URL', url)) { 196 | if (urlType === 'direct') { 197 | response = sendCommandRPI(ip, 'install', `{"type": "direct", "packages": ["${url}"]}`); 198 | } else if (urlType === 'ref_pkg_url') { 199 | response = sendCommandRPI(ip, 'install', `{"type": "ref_pkg_url", "url": "${url}"}`); 200 | } 201 | type = response.status; 202 | // TODO: Parse response 203 | showResponseRPI(type, response); 204 | return; 205 | } 206 | // eslint-disable-next-line no-alert 207 | alert('Validation Error'); 208 | } 209 | 210 | function uninstallRPI(ip, endpoint, uid) { 211 | let response; 212 | let type; 213 | 214 | if (endpoint === 'uninstall_game' || endpoint === 'uninstall_patch') { 215 | if (validateInputRPI('TitleID', uid.toUpperCase())) { 216 | response = sendCommandRPI(ip, endpoint, `{"title_id": "${uid.toUpperCase()}"}`); 217 | type = response.status; 218 | // TODO: Parse response 219 | showResponseRPI(type, response); 220 | return; 221 | } 222 | } else if (endpoint === 'uninstall_ac' || endpoint === 'uninstall_theme') { 223 | if (validateInputRPI('ContentID', uid.toUpperCase())) { 224 | response = sendCommandRPI(ip, endpoint, `{"content_id": "${uid.toUpperCase()}"}`); 225 | type = response.status; 226 | // TODO: Parse response 227 | showResponseRPI(type, response); 228 | return; 229 | } 230 | } 231 | // eslint-disable-next-line no-alert 232 | alert('Validation Error'); 233 | } 234 | 235 | function findTaskRPI(ip, taskType, cid) { 236 | let response; 237 | let type; 238 | 239 | if (validateInputRPI('ContentID', cid.toUpperCase())) { 240 | response = sendCommandRPI(ip, 'find_task', `{"content_id": "${cid.toUpperCase()}", "sub_type": ${taskType}}`); 241 | type = response.status; 242 | // TODO: Parse response 243 | showResponseRPI(type, response); 244 | return; 245 | } 246 | // eslint-disable-next-line no-alert 247 | alert('Validation Error'); 248 | } 249 | 250 | function taskRPI(ip, taskType, taskID) { 251 | let response; 252 | let type; 253 | 254 | if (validateInputRPI('TaskID', taskID)) { 255 | response = sendCommandRPI(ip, taskType, `{"task_id": ${taskID}}`); 256 | type = response.status; 257 | // TODO: Parse response 258 | showResponseRPI(type, response); 259 | return; 260 | } 261 | // eslint-disable-next-line no-alert 262 | alert('Validation Error'); 263 | } 264 | 265 | function makePkgButtonRPI(pkgName, pkgSize, pkgURL) { 266 | let output; 267 | 268 | const truncateLength = 43; 269 | let truncatedName = pkgName.substring(0, truncateLength - 3); 270 | 271 | if (pkgName.length > truncateLength) { 272 | truncatedName += '...'; 273 | } 274 | 275 | const i = pkgSize === 0 ? 0 : Math.floor(Math.log(pkgSize) / Math.log(1024)); 276 | const formattedSize = `${(pkgSize / (1024 ** i)).toFixed(2) * 1} ${['B', 'kB', 'MB', 'GB', 'TB'][i]}`; 277 | output = '`; 280 | 281 | return output; 282 | } 283 | 284 | function makePkgArrayRPI(pkgJson) { 285 | let output = ''; 286 | 287 | if (pkgJson !== undefined) { 288 | $.each(pkgJson, (i, field) => { 289 | if (field === 'No PKGs Found') { 290 | output = 'No PKGs found on host
'; 291 | } else if (field === 'I/O Error on Host') { 292 | output = 'I/O error on host
'; 293 | } else if (field === 'No results') { 294 | output = 'No results
'; 295 | } else { 296 | output += makePkgButtonRPI(field.Filename, field.Filesize, field.File_URL); 297 | } 298 | }); 299 | } 300 | 301 | if (output === '') { 302 | output = 'Error connecting to host
'; 303 | } 304 | return output; 305 | } 306 | 307 | function checkPkgLink() { 308 | let match; 309 | 310 | const patternCID = /[A-Z]{2}[0-9]{4}-([A-Z]{4}[0-9]{5}_[0-9]{2})-[A-Z0-9]{16}/i; 311 | const patternTID = /([A-Z]{4}[0-9]{5})/i; 312 | 313 | if (patternCID.test($('#installURL').val())) { 314 | match = patternCID.exec($('#installURL').val()); 315 | match = match[1].toUpperCase(); 316 | displayTIDMetaRPI(match); 317 | } else if (patternTID.test($('#installURL').val())) { 318 | match = patternTID.exec($('#installURL').val()); 319 | match = `${match[1].toUpperCase()}_00`; 320 | displayTIDMetaRPI(match); 321 | } else { 322 | $('#meta-info').hide(); 323 | } 324 | } 325 | 326 | $(() => { 327 | let searchJson; 328 | let searchTerm; 329 | 330 | window.Meta = new TMDB(); 331 | 332 | if (!navigator.onLine) { 333 | $('#offlineOverlay').show(); 334 | return; 335 | } 336 | 337 | setLastIPRPI('#ip'); 338 | clearInputRPI(); 339 | const pkgJson = getPKGListRPI(); 340 | 341 | $('a[data-toggle="pill"]').click(() => { 342 | clearInputRPI(); 343 | $('#header').text($(this).text()); 344 | }); 345 | 346 | $('#pkgSearch').keyup(() => { 347 | searchJson = []; 348 | if (pkgJson !== 'No PKGs Found' && pkgJson !== 'I/O Error on Host') { 349 | searchTerm = $('#pkgSearch').val().toUpperCase(); 350 | $.each(pkgJson, (i, field) => { 351 | if (field.Filename.toUpperCase().indexOf(searchTerm) > -1) { 352 | searchJson.push(field); 353 | } 354 | }); 355 | 356 | if (pkgJson !== undefined && searchJson.length === 0) { 357 | searchJson = ['No results']; 358 | } 359 | $('#pkg-list').html(makePkgArrayRPI(searchJson)); 360 | } 361 | }); 362 | 363 | $('#installURL').keyup(checkPkgLink); 364 | 365 | $('#btn-exists').click(() => { 366 | isExistsRPI($('#ip').val(), $('#existID').val()); 367 | }); 368 | 369 | $('#btn-install-cdn').click(() => { 370 | installRPI($('#ip').val(), 'ref_pkg_url', $('#installURL').val()); 371 | }); 372 | 373 | $('#btn-install-url').click(() => { 374 | installRPI($('#ip').val(), 'direct', $('#installURL').val()); 375 | }); 376 | 377 | $('#btn-uninstall').click(() => { 378 | uninstallRPI($('#ip').val(), $('input[name=\'uninstallRadios\']:checked').val(), $('#uninstallID').val()); 379 | }); 380 | 381 | $('#btn-task-find').click(() => { 382 | findTaskRPI($('#ip').val(), $('input[name=\'taskRadios\']:checked').val(), $('#taskContentID').val()); 383 | }); 384 | 385 | $('#btn-task-star').click(() => { 386 | taskRPI($('#ip').val(), 'start_task', $('#taskID').val()); 387 | }); 388 | 389 | $('#btn-task-stop').click(() => { 390 | taskRPI($('#ip').val(), 'stop_task', $('#taskID').val()); 391 | }); 392 | 393 | $('#btn-task-pause').click(() => { 394 | taskRPI($('#ip').val(), 'pause_task', $('#taskID').val()); 395 | }); 396 | 397 | $('#btn-task-resume').click(() => { 398 | taskRPI($('#ip').val(), 'resume_task', $('#taskID').val()); 399 | }); 400 | 401 | $('#btn-task-unregister').click(() => { 402 | taskRPI($('#ip').val(), 'unregister_task', $('#taskID').val()); 403 | }); 404 | 405 | $('#btn-task-progress').click(() => { 406 | taskRPI($('#ip').val(), 'get_task_progress', $('#taskID').val()); 407 | }); 408 | 409 | $('#pkg-list').html(makePkgArrayRPI(pkgJson)); 410 | 411 | $('.btn-pkg-list').click((event) => { 412 | $('#installURL').val($(event.target).data('pkg-url')); 413 | checkPkgLink(); 414 | }); 415 | }); 416 | /* 417 | Copyright (c) 2017-2022 Al Azif, https://github.com/Al-Azif/ps4-exploit-host 418 | 419 | Permission is hereby granted, free of charge, to any person obtaining 420 | a copy of this software and associated documentation files (the 421 | "Software"), to deal in the Software without restriction, including 422 | without limitation the rights to use, copy, modify, merge, publish, 423 | distribute, sublicense, and/or sell copies of the Software, and to 424 | permit persons to whom the Software is furnished to do so, subject to 425 | the following conditions: 426 | 427 | The above copyright notice and this permission notice shall be 428 | included in all copies or substantial portions of the Software. 429 | 430 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, 431 | EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF 432 | MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND 433 | NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE 434 | LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION 435 | OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION 436 | WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. 437 | */ 438 | -------------------------------------------------------------------------------- /themes/Default/sha.js: -------------------------------------------------------------------------------- 1 | /* 2 | A JavaScript implementation of the SHA family of hashes, as 3 | defined in FIPS PUB 180-4 and FIPS PUB 202, as well as the corresponding 4 | HMAC implementation as defined in FIPS PUB 198a 5 | 6 | Copyright Brian Turek 2008-2017 7 | Distributed under the BSD License 8 | See http://caligatio.github.com/jsSHA/ for more information 9 | 10 | Several functions taken from Paul Johnston 11 | */ 12 | 'use strict';(function(Y){function C(c,a,b){var e=0,h=[],n=0,g,l,d,f,m,q,u,r,I=!1,v=[],w=[],t,y=!1,z=!1,x=-1;b=b||{};g=b.encoding||"UTF8";t=b.numRounds||1;if(t!==parseInt(t,10)||1>t)throw Error("numRounds must a integer >= 1");if("SHA-1"===c)m=512,q=K,u=Z,f=160,r=function(a){return a.slice()};else if(0===c.lastIndexOf("SHA-",0))if(q=function(a,b){return L(a,b,c)},u=function(a,b,h,e){var k,f;if("SHA-224"===c||"SHA-256"===c)k=(b+65>>>9<<4)+15,f=16;else if("SHA-384"===c||"SHA-512"===c)k=(b+129>>>10<< 13 | 5)+31,f=32;else throw Error("Unexpected error in SHA-2 implementation");for(;a.length<=k;)a.push(0);a[b>>>5]|=128<<24-b%32;b=b+h;a[k]=b&4294967295;a[k-1]=b/4294967296|0;h=a.length;for(b=0;b";c+="
",$("#buttons").html(c)}})}function cacheInterface(a){var b,c,d;if("ondownloading"===a)$("#bar-text").html("Caching..."),showCaching();else if("ondownloading-theme"===a)$("#bar-text").html("Caching Theme..."),showCaching();else{var e=$("#ifr")[0].contentDocument.URL+"",f=/\/cache\/(theme|category|entry|all)\/.*index\.html$/,g=/\/cache\/category\/(.*)\/index\.html$/,h=/\/cache\/entry\/(.*)\/(.*)\/index\.html$/,i=f.exec(e);"category"===i[1]?(b=g.exec(e),c=decodeURIComponent(b[1])):"entry"===i[1]&&(b=h.exec(e),c=decodeURIComponent(b[1]),d=decodeURIComponent(b[2])),clearFrame(),$("#ifr").one("load",function(){clearOverlays(),"oncached"===a?(myAlert("success","Cached Successfully"),addCacheStatus(i[1],c,d),triggerAutoload()):"onupdateready"===a?(myAlert("success","Cache updated"),addCacheStatus(i[1],c,d),triggerAutoload()):"onnoupdate"===a?(myAlert("primary","No update available"),addCacheStatus(i[1],c,d),triggerAutoload()):"onerror"===a?(myAlert("danger","Error caching resources"),removeCacheStatus(i[1],c,d),triggerAutoload()):"onobsolete"===a?(myAlert("danger","Manifest returned a 404, cache was deleted"),removeCacheStatus(i[1],c,d),triggerAutoload()):"oncached-theme"===a||"onnoupdate-theme"===a?buildAfterCaching():"onupdateready-theme"===a?(deleteCookie("newsDate"),window.location.reload(!0)):"onerror-theme"===a?(buildAfterCaching(),myAlert("danger","Error caching theme resources")):"onobsolete-theme"===a?(buildAfterCaching(),myAlert("danger","Manifest returned a 404, theme cache was deleted")):"onerror-appcache-theme"===a?(buildAfterCaching(),myAlert("danger","Browser does not support AppCache, theme was not cached")):"onerror-appcache"==a&&(myAlert("danger","Browser does not support AppCache, nothing was cached"),removeCacheStatus("all",void 0,void 0),triggerAutoload())})}}function cacheProgress(a){$("#bar-load").width("".concat(a,"%")),$("#bar-load").html("".concat(a,"%"))}$(function(){null===window.history.state&&(window.history.replaceState({},null,window.location.hash?window.location.hash:" "),null===window.history.state&&"true"!==getCookie("session-warning")&&(document.cookie="session-warning=true; domain=".concat(window.location.hostname,"; path=").concat(window.location.pathname,";"),alert("This session is bugged. The circle button will close the browser rather than going back in the menu. Use the on screen controls."))),window.Failsafe=null===window.history.state;var a=getCookie("theme");a===void 0?setCookie("theme","Default",36500):"Default"!==a&&(window.location.search+="".concat(a)),randomBackground();var b=getStorage("background-image"),c=getStorage("custom-css"),d=getStorage("custom-js");b&&$("body").css("background-image","url(".concat(b,")")),c&&$("head").append("")),d&&$("head").append("")),$("#ifr").attr("src","".concat(getBasePath(),"/blank.html")),$("#ifr").one("load",function(){navigator.onLine?cacheTheme():buildAfterCaching()})});
2 |
--------------------------------------------------------------------------------
/themes/Default/default.js.es6:
--------------------------------------------------------------------------------
1 | // --- Theme Functions --------------------------------------------------------
2 |
3 | function myAlert(type, message, wait) {
4 | let safeWait;
5 |
6 | const alertID = `alert-${uuid()}`;
7 | let alertString = `",c+="",c+="
",c+="",c+="",c+="
",c+="`;
8 |
9 | if (wait === undefined) {
10 | safeWait = 3000;
11 | } else {
12 | safeWait = wait;
13 | }
14 | alertString += message;
15 | alertString += '';
18 | alertString += '
';
19 | $('#alert-box').append(alertString);
20 | $(`#${alertID}`).collapse('show');
21 | // TODO: Alert systems to show multiple alerts that shift up when closed
22 | // Calculate top
23 | // $(`#alert-${randomID}`).css('top', ($('.alert').length));
24 | if (safeWait !== 0) {
25 | sleep(safeWait).then(() => {
26 | $(`#${alertID}`).alert('close');
27 | // TODO: Shift remaining alerts up
28 | });
29 | }
30 | }
31 |
32 | function newsAlert() {
33 | getJsonAsync(`${getBasePath()}/api/news`, (response) => {
34 | if (response) {
35 | const news = response;
36 | const date = getCookie('newsDate');
37 | if (news !== undefined && (date === undefined || news.Date > date)
38 | && news.Message !== undefined && news.Severity !== undefined) {
39 | if (autoloadCookie(window.Menu)) {
40 | // Alert will pause execution on the autoload redirect allowing users to see new news
41 | // eslint-disable-next-line no-alert
42 | alert(news.Message);
43 | setCookie('newsDate', news.Date, 30);
44 | } else {
45 | myAlert(`${news.Severity} alert-news`, news.Message, 0);
46 | $('.alert-news [data-dismiss="alert"]').on('click', () => {
47 | setCookie('newsDate', news.Date, 30);
48 | });
49 | }
50 | }
51 | }
52 | });
53 | }
54 |
55 | function buildHTML() {
56 | let htmlString = '';
57 |
58 | if ($.isEmptyObject(window.Menu)) {
59 | htmlString = '';
60 | htmlString += '
';
67 | $('#buttons').html(htmlString);
68 | return;
69 | }
70 |
71 | if ('error' in window.Menu && window.Menu.error === true && 'message' in window.Menu) {
72 | htmlString = '';
61 | htmlString += '';
62 | htmlString += '
';
63 | htmlString += '';
64 | htmlString += '';
65 | htmlString += '
';
66 | htmlString += '';
73 | htmlString += '
';
80 | $('#buttons').html(htmlString);
81 | return;
82 | }
83 |
84 | if (window.Menu !== undefined) {
85 | htmlString = '';
105 | $('#buttons').append(htmlString);
106 |
107 | $.each(window.Menu, (i, field) => {
108 | htmlString = `';
74 | htmlString += ``;
75 | htmlString += '
';
76 | htmlString += '';
77 | htmlString += '';
78 | htmlString += '
';
79 | htmlString += '`;
109 | if ('error' in field.entries && field.entries.error === true && 'message' in field.entries) {
110 | htmlString += '
';
114 | } else {
115 | $.each(field.entries, (j, entry) => {
116 | htmlString += '';
111 | htmlString += ``;
112 | htmlString += '
';
113 | htmlString += '';
117 | htmlString += ``;
118 | htmlString += '';
119 | htmlString += '';
127 | htmlString += '
';
128 | });
129 | if (navigator.onLine && field.offline) {
130 | htmlString += '';
131 | htmlString += ``;
132 | htmlString += '
';
133 | }
134 | if (window.Failsafe) {
135 | htmlString += '';
136 | htmlString += '';
137 | htmlString += '
';
138 | }
139 | htmlString += '';
140 | }
141 | $('#buttons').append(htmlString);
142 | });
143 | }
144 | }
145 |
146 | function clearOverlays() {
147 | $('#cache-overlay').hide();
148 | $('#bar-text').hide();
149 | $('#bar-back').hide();
150 | $('#bar-load').hide();
151 | $('#bar-load').html('');
152 | $('#bar-load').width('0%');
153 | $('#exploit-overlay').hide();
154 | $('#exploit-message').hide();
155 | $('#exploit-message').html('');
156 | $('#exploit-loader').hide();
157 | }
158 |
159 | function showCaching() {
160 | $('#cache-overlay').show();
161 | $('#bar-text').show();
162 | $('#bar-back').show();
163 | $('#bar-load').show();
164 | }
165 |
166 | function showLoader() {
167 | $('#exploit-overlay').show();
168 | $('#exploit-loader').show();
169 | $('#exploit-message').show();
170 | }
171 |
172 | // eslint-disable-next-line no-unused-vars
173 | function exploitDone(message) {
174 | $('#exploit-loader').hide();
175 | $('#exploit-message').html(message);
176 | const pattern = /^https?:\/\/.*\/exploits\/(.*)\/(.*)\/index.html/;
177 | const match = pattern.exec($('#ifr')[0].contentDocument.URL);
178 | const category = decodeURIComponent(match[1]);
179 | const entry = decodeURIComponent(match[2]);
180 |
181 | if (window.Menu[category].entries[entry].reload === true) {
182 | sleep(3000).then(() => {
183 | clearFrame();
184 | clearOverlays();
185 | });
186 | }
187 | }
188 |
189 | function displayHome() {
190 | $(document).prop('title', 'Category Selection | Exploit Host by Al Azif');
191 | window.history.replaceState({ location: '', modal: false }, null, ' ');
192 |
193 | $('#title').text('Category Selection');
194 | $('#header').text('Categories');
195 |
196 | $('.category-page').hide();
197 | $('#category-buttons').show();
198 | }
199 |
200 | function displayCategory(category) {
201 | $(document).prop('title', 'Exploit Selection | Exploit Host by Al Azif');
202 | window.history.pushState({ location: category, modal: false }, null, `#${category}`);
203 |
204 | $('#title').text('Exploit Selection');
205 | $('#header').text(category);
206 |
207 | $('#category-buttons').hide();
208 | $('.category-page').hide();
209 |
210 | $('.category-page').each((i, field) => {
211 | if (String($(field).data('category')) === String(category)) {
212 | $(field).show();
213 | }
214 | });
215 | }
216 |
217 | function exploitLoader(category, entry) {
218 | showLoader();
219 | loadEntry(category, entry, window.Menu[category].entries[entry].redirect);
220 | }
221 |
222 | function triggerAutoload() {
223 | const autoload = autoloadCookie(window.Menu);
224 | if (autoload) {
225 | const autoloadCategory = autoload.split('/')[0];
226 | const autoloadEntry = autoload.split('/')[1];
227 | exploitLoader(autoloadCategory, autoloadEntry);
228 | }
229 | }
230 |
231 | function startAutoload(category, entry) {
232 | setAutoload(category, entry);
233 |
234 | if (!navigator.onLine && (!window.Menu[category].offline
235 | || !window.Menu[category].entries[entry].offline)) {
236 | myAlert('danger', 'Could not autoload, payload is online only (Currently offline)');
237 | } else if (navigator.onLine && window.Menu[category].offline
238 | && window.Menu[category].entries[entry].offline) {
239 | cacheEntry(category, entry);
240 | } else {
241 | triggerAutoload();
242 | }
243 | }
244 |
245 | function addCacheStatus(type, category, entry) {
246 | // Unsure if the recursive option is better, looks better, but performance is
247 | // unknown because of ths repeating localStorage access vs all at once
248 | let categoryKeys = [];
249 | let entryKeys = [];
250 | const cacheStatusChanges = {};
251 |
252 | if (!getStorage('cache-status')) {
253 | setStorage('cache-status', '{}', 'string');
254 | }
255 |
256 | const existingCacheStatus = JSON.parse(getStorage('cache-status'));
257 |
258 | if (type === 'all') {
259 | categoryKeys = Object.keys(window.Menu);
260 | for (let i = 0; i < categoryKeys.length; i += 1) {
261 | // Recursive Option:
262 | // addCacheStatus('category', categoryKeys[i], undefined)
263 | entryKeys = Object.keys(window.Menu[categoryKeys[i]].entries);
264 | for (let j = 0; j < entryKeys.length; j += 1) {
265 | $.extend(true, cacheStatusChanges, {
266 | [categoryKeys[i]]: {
267 | [window.Menu[categoryKeys[i]].entries[entryKeys[j]].title]: new Date().toISOString(),
268 | },
269 | });
270 | }
271 | }
272 | setStorage('cache-status', JSON.stringify($.extend({}, existingCacheStatus, cacheStatusChanges)), 'string');
273 | } else if (type === 'category') {
274 | entryKeys = Object.keys(window.Menu[category].entries);
275 | for (let i = 0; i < entryKeys.length; i += 1) {
276 | // Recursive Option:
277 | // addCacheStatus('entry', category, window.Menu[category].entries[entryKeys[i]].title);
278 | $.extend(true, cacheStatusChanges, {
279 | [category]: {
280 | [window.Menu[category].entries[entryKeys[i]].title]: new Date().toISOString(),
281 | },
282 | });
283 | }
284 | setStorage('cache-status', JSON.stringify($.extend(true, {}, existingCacheStatus, cacheStatusChanges)), 'string');
285 | } else if (type === 'entry') {
286 | setStorage('cache-status', JSON.stringify($.extend(true, {}, existingCacheStatus, {
287 | [category]: {
288 | [entry]: new Date().toISOString(),
289 | },
290 | })), 'string');
291 | }
292 | }
293 |
294 | function removeCacheStatus(type, category, entry) {
295 | if (!navigator.onLine) {
296 | return;
297 | }
298 |
299 | if (!getStorage('cache-status')) {
300 | setStorage('cache-status', '{}', 'string');
301 | return;
302 | }
303 |
304 | const existingCacheStatus = JSON.parse(getStorage('cache-status'));
305 |
306 | if (type === 'all') {
307 | setStorage('cache-status', '{}', 'string');
308 | } else if (type === 'category') {
309 | delete existingCacheStatus[category];
310 | setStorage('cache-status', JSON.stringify(existingCacheStatus), 'string');
311 | } else if (type === 'entry') {
312 | delete existingCacheStatus[category][entry];
313 | setStorage('cache-status', JSON.stringify(existingCacheStatus), 'string');
314 | }
315 | }
316 |
317 | function categoryMeta(category) {
318 | let lang;
319 | let modalBody;
320 | let notes;
321 | const meta = window.Menu[category];
322 |
323 | if (typeof meta === 'undefined') {
324 | myAlert('danger', 'Unable to retrieve metadata');
325 | return;
326 | }
327 |
328 | $.extend(true, {
329 | title: '',
330 | device: '',
331 | firmware: '',
332 | user_agents: '',
333 | notes: {
334 | default: '',
335 | },
336 | }, meta);
337 |
338 | const uaMatch = checkUAMatch(meta.user_agents) ? 'Match' : 'Mismatch';
339 |
340 | lang = getCookie('language');
341 | if (typeof lang !== 'string') {
342 | setCookie('language', 'default', 100 * 365);
343 | lang = 'default';
344 | }
345 |
346 | if (typeof meta.notes[lang] === 'string') {
347 | notes = meta.notes[lang];
348 | } else {
349 | notes = meta.notes.default;
350 | }
351 |
352 | modalBody = `Device:
${meta.device}
Firmware:
${meta.firmware}
UA Match?:
${uaMatch}
Notes:
${notes}
Version:
${meta.version}
Updated:
${updatedDate}
Cache:
${cacheCheck}
Device:
${meta.device}
Firmware:
${meta.firmware}
Description:
${description}
Author(s):
${meta.author}
URL:
ERROR: Could not retrieve param options!
'); 748 | $('#param-modal').modal('show'); 749 | } 750 | }, false); 751 | */ 752 | } else { 753 | exploitLoader($(event.target).data('category'), $(event.target).data('entry')); 754 | } 755 | }); 756 | 757 | $('.about-button').on('click', (event) => { 758 | if ($(event.target).data('entry')) { 759 | entryMeta($(event.target).data('category'), $(event.target).data('entry')); 760 | } else { 761 | categoryMeta($(event.target).data('category')); 762 | } 763 | }); 764 | 765 | $('.autoload-button').on('click', (event) => { 766 | startAutoload($(event.target).data('category'), $(event.target).data('entry')); 767 | }); 768 | 769 | $('.cache-button').on('click', (event) => { 770 | if ($(event.target).data('entry')) { 771 | cacheEntry($(event.target).data('category'), $(event.target).data('entry')); 772 | } else { 773 | cacheCategory($(event.target).data('category')); 774 | } 775 | }); 776 | 777 | $('.cache-all-button').on('click', (event) => { 778 | if ($(event.target).data('category')) { 779 | cacheCategory($(event.target).data('category')); 780 | } else { 781 | cacheAll(); 782 | } 783 | }); 784 | 785 | $('.refresh-button').on('click', () => { 786 | window.location.reload(true); 787 | }); 788 | 789 | $('.back-button').on('click', () => { 790 | displayHome(); 791 | }); 792 | 793 | $('#settings-modal').on('show.bs.modal', settingsModal); 794 | $('#url-modal').on('show.bs.modal', urlModal); 795 | } else { 796 | $(document).prop('title', 'Menu Error | Exploit Host by Al Azif'); 797 | 798 | $('#title').text('Menu Error'); 799 | $('#header').text(''); 800 | 801 | let htmlString = '';
802 | htmlString += '
';
809 | $('#buttons').html(htmlString);
810 | }
811 | });
812 | }
813 |
814 | // eslint-disable-next-line no-unused-vars
815 | function cacheInterface(callback) {
816 | let matches;
817 | let categoryMatch;
818 | let entryMatch;
819 |
820 | if (callback === 'ondownloading') {
821 | $('#bar-text').html('Caching...');
822 | showCaching();
823 | } else if (callback === 'ondownloading-theme') {
824 | $('#bar-text').html('Caching Theme...');
825 | showCaching();
826 | } else {
827 | const iFrameURL = String($('#ifr')[0].contentDocument.URL);
828 | const typePattern = /\/cache\/(theme|category|entry|all)\/.*index\.html$/;
829 | const categoryPattern = /\/cache\/category\/(.*)\/index\.html$/;
830 | const entryPattern = /\/cache\/entry\/(.*)\/(.*)\/index\.html$/;
831 | const typeMatch = typePattern.exec(iFrameURL);
832 | if (typeMatch[1] === 'category') {
833 | matches = categoryPattern.exec(iFrameURL);
834 | categoryMatch = decodeURIComponent(matches[1]);
835 | } else if (typeMatch[1] === 'entry') {
836 | matches = entryPattern.exec(iFrameURL);
837 | categoryMatch = decodeURIComponent(matches[1]);
838 | entryMatch = decodeURIComponent(matches[2]);
839 | }
840 |
841 | clearFrame();
842 | $('#ifr').one('load', () => {
843 | clearOverlays();
844 | if (callback === 'oncached') {
845 | myAlert('success', 'Cached Successfully');
846 | addCacheStatus(typeMatch[1], categoryMatch, entryMatch);
847 | triggerAutoload();
848 | } else if (callback === 'onupdateready') {
849 | myAlert('success', 'Cache updated');
850 | addCacheStatus(typeMatch[1], categoryMatch, entryMatch);
851 | triggerAutoload();
852 | } else if (callback === 'onnoupdate') {
853 | myAlert('primary', 'No update available');
854 | addCacheStatus(typeMatch[1], categoryMatch, entryMatch);
855 | triggerAutoload();
856 | } else if (callback === 'onerror') {
857 | myAlert('danger', 'Error caching resources');
858 | removeCacheStatus(typeMatch[1], categoryMatch, entryMatch);
859 | triggerAutoload();
860 | } else if (callback === 'onobsolete') {
861 | myAlert('danger', 'Manifest returned a 404, cache was deleted');
862 | removeCacheStatus(typeMatch[1], categoryMatch, entryMatch);
863 | triggerAutoload();
864 | } else if (callback === 'oncached-theme' || callback === 'onnoupdate-theme') {
865 | buildAfterCaching();
866 | } else if (callback === 'onupdateready-theme') {
867 | deleteCookie('newsDate');
868 | window.location.reload(true);
869 | } else if (callback === 'onerror-theme') {
870 | buildAfterCaching();
871 | myAlert('danger', 'Error caching theme resources');
872 | } else if (callback === 'onobsolete-theme') {
873 | buildAfterCaching();
874 | myAlert('danger', 'Manifest returned a 404, theme cache was deleted');
875 | } else if (callback === 'onerror-appcache-theme') {
876 | buildAfterCaching();
877 | myAlert('danger', 'Browser does not support AppCache, theme was not cached');
878 | } else if (callback === 'onerror-appcache') {
879 | buildAfterCaching();
880 | myAlert('danger', 'Browser does not support AppCache, nothing was cached');
881 | removeCacheStatus('all', undefined, undefined);
882 | triggerAutoload();
883 | }
884 | });
885 | }
886 | }
887 |
888 | // eslint-disable-next-line no-unused-vars
889 | function cacheProgress(percent) {
890 | $('#bar-load').width(`${percent}%`);
891 | $('#bar-load').html(`${percent}%`);
892 | }
893 |
894 | // --- On Ready ---------------------------------------------------------------
895 |
896 | $(() => {
897 | if (window.history.state === null) {
898 | window.history.replaceState({}, null, window.location.hash ? window.location.hash : ' ');
899 | if (window.history.state === null && getCookie('session-warning') !== 'true') {
900 | document.cookie = `session-warning=true; domain=${window.location.hostname}; path=${window.location.pathname};`;
901 | // eslint-disable-next-line no-alert
902 | alert('This session is bugged. The circle button will close the browser rather than going back in the menu. Use the on screen controls.');
903 | }
904 | }
905 |
906 | window.Failsafe = window.history.state === null;
907 |
908 | const setTheme = getCookie('theme');
909 | if (setTheme === undefined) {
910 | setCookie('theme', 'Default', 100 * 365);
911 | } else if (setTheme !== 'Default') {
912 | window.location.search += `${setTheme}`;
913 | }
914 |
915 | randomBackground();
916 | const customBackgroundImage = getStorage('background-image');
917 | const customCSS = getStorage('custom-css');
918 | const customJS = getStorage('custom-js');
919 |
920 | if (customBackgroundImage) {
921 | $('body').css('background-image', `url(${customBackgroundImage})`);
922 | }
923 | if (customCSS) {
924 | $('head').append(``);
925 | }
926 | if (customJS) {
927 | $('head').append(``);
928 | }
929 |
930 | // Blank out iFrame
931 | $('#ifr').attr('src', `${getBasePath()}/blank.html`);
932 |
933 | // Cache theme
934 | $('#ifr').one('load', () => {
935 | if (navigator.onLine) {
936 | cacheTheme();
937 | } else {
938 | buildAfterCaching();
939 | }
940 | });
941 | });
942 | /*
943 | Copyright (c) 2017-2022 Al Azif, https://github.com/Al-Azif/ps4-exploit-host
944 |
945 | Permission is hereby granted, free of charge, to any person obtaining
946 | a copy of this software and associated documentation files (the
947 | "Software"), to deal in the Software without restriction, including
948 | without limitation the rights to use, copy, modify, merge, publish,
949 | distribute, sublicense, and/or sell copies of the Software, and to
950 | permit persons to whom the Software is furnished to do so, subject to
951 | the following conditions:
952 |
953 | The above copyright notice and this permission notice shall be
954 | included in all copies or substantial portions of the Software.
955 |
956 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
957 | EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
958 | MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
959 | NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
960 | LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
961 | OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
962 | WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
963 | */
964 |
--------------------------------------------------------------------------------
';
803 | htmlString += '';
804 | htmlString += '
';
805 | htmlString += '';
806 | htmlString += '';
807 | htmlString += '
';
808 | htmlString += '