PS5 Hack Status:

FW Ranges:
2.XX = KEX+HV: PS4/5 backups, possible keys exploit (WK: 2.50 best / 2.7X max)
3.XX = KEX+HV+Linux: PS4/5 backups, possible keys exploit (WK/BD/LUA: 3.20 best / 3.21 max)
4.XX = KEX+HV+Linux: PS4/5 backups (WK/BD/LUA (Y2/NF/YARPE 4.03+): 4.50 best / 4.51 max)
5.XX = KEX+HV+Linux: PS4/5 backups (WK/BD/Y2/NF/LUA/YARPE: 5.50 best + max)
6.XX = KEX: PS4/5 backups (KEX+HV+Linux: 6.02 max) (BD/Y2/NF/LUA/YARPE: 6.02 for Linux / 6.50 max)
7.XX = KEX: PS4/5 backups, no HV (BD/Y2/NF/LUA/YARPE: 7.61 best + max)
8.XX-10.00 = KEX: PS4/5 backups, no HV (Y2/NF/LUA/YARPE)
10.01-12.70 = KEX: PS4/5 backups, no HV (Y2/NF/LUA/YARPE)
13.XX = No KEX/UL only (Y2/LUA/YARPE)

NOTE 1: Recommended firmware is subjective. Staying low is always recommended.
NOTE 2: Do not update too many major versions (e.g., 4.xx to 5.xx or 7.xx to 8.xx). Remain low unless all you want is backups.
NOTE 3: Do not update past 12.00. P2JB can take over an hour to exploit on FW up to 12.70.

Hypervisor (HV):
Highest known HV exploit: 6.02
Highest theoretical HV exploit: 7.XX
Highest HV exploit: 1.00-4.51 (Cragson/Jordy) / 3.00-6.02 (TheFlow)
*unreleased/unimplemented

Kernel (KEX):
Highest public Release: 12.70
Highest known: 12.70 (P2JB)
UMTX2: 1.00-7.61 (*WK to 5.50 / BDJB to 7.61)
Lapse: 1.00-10.01
Poopsploit: 4.03-12.00
P2JB: 9.00-12.70 (*Use Lapse up to 10.01)

Userland (UL):
LUA (Artemis): 2.00-LATEST (LUA exploit, + Lapse up to 10.01)
Y2JB: 4.03-13.40 (YouTube exploit, + Lapse: 10.01 / P2JB: 12.70)
NFNH: 4.03-12.XX (Netflix exploit, + Lapse: 10.01)
YARPE: 4.03-12.XX (Ren'Py exploit, + Lapse: 10.01 / P2JB: 12.70)
BD-JB: 1.00-7.61 (Blu-Ray exploit + UMTX2, *8.00-13.20 via UN BD-JB + Poops to 12.00)
Webkit: 1.00-5.50 (PSFREE +UMTX2) (*up to 13.XX coming soon)
Mast1C0re: 1.00-7.61 (Depreciated for LuaC0re)
LuaC0re: 1.00-12.70 (Poops: 4.03-12.00/P2JB: 9.00-12.70)

NOTE 1: A userland entry point (UL) chained to kernel exploit (KEX) is required to exploit your console.
NOTE 2: Digital consoles can now use Y2JB+Poops (4.03-12.00) / Y2JB+P2JB (9.00-12.70).

Useful Applications:
Kstuff Lite: 3.00-12.70 HERE
Kstuff Toggle: 3.00-12.00 HERE
PS5 App Dumper: 3.00-12.00 HERE
Dump Runner: 3.00-12.00 HERE
Dump Installer: 3.00-12.00 HERE
Backporting: Possible (backpork / Porkfolio)
PS4/PS5 DLC: Work with Kstuff Lite
Trophies: Work with Kstuff Lite
Compression: Works with Kstuff Lite
Homebrew Enabler: etaHEN (3.00-10.01) latest HERE
PS5 Backup manager: ItemzFlow Compatibility list: HERE
PS4 Backup Loading: Works (rest mode & backports work, can crash).
PS5 Debug NG: 3.XX-13.XX HERE
PS5 Remote Play: Works HERE & HERE
PS5 Trainers/Cheats: Work

UART: HERE
Linux: (3.00-6.02) HERE
Kldload (wip): 3.00-6.50 HERE
Full chain exploit: 1.00-4.51 (byepervisor) HERE (also built into etaHEN up to 2.7X)
PSN access: NEVER
Latest OFW: 13.40 (02/06/26)
Summarised OFW/Model guide: HERE
1.XX-7.61 compatibility list: HERE
PS5 SDK Repo: HERE
Legit PKG Updates: HERE or HERE
OFW Updates: HERE (history HERE)

Preparing Your Console:

It is recommended to either self-host offline or block these addresses in your router to avoid accidental updates or getting an update nag. Using the DNS method is no longer failsafe, as these are not guaranteed to be running 24/7.

Spoiler: Addresses to block to avoid updates:

dau01.ps5.update.playstation.net
dbr01.ps5.update.playstation.net
dcn01.ps5.update.playstation.net
deu01.ps5.update.playstation.net
dhk01.ps5.update.playstation.net
djp01.ps5.update.playstation.net
dkr01.ps5.update.playstation.net
dmx01.ps5.update.playstation.net
dru01.ps5.update.playstation.net
dsa01.ps5.update.playstation.net
dtw01.ps5.update.playstation.net
duk01.ps5.update.playstation.net
dus01.ps5.update.playstation.net
fau01.ps5.update.playstation.net
fbr01.ps5.update.playstation.net
fcn01.ps5.update.playstation.net
feu01.ps5.update.playstation.net
fhk01.ps5.update.playstation.net
fjp01.ps5.update.playstation.net
fkr01.ps5.update.playstation.net
fmx01.ps5.update.playstation.net
fru01.ps5.update.playstation.net
fsa01.ps5.update.playstation.net
ftw01.ps5.update.playstation.net
fuk01.ps5.update.playstation.net
fus01.ps5.update.playstation.net
hau01.ps5.update.playstation.net
hbr01.ps5.update.playstation.net
hcn01.ps5.update.playstation.net
heu01.ps5.update.playstation.net
hhk01.ps5.update.playstation.net
hjp01.ps5.update.playstation.net
hkr01.ps5.update.playstation.net
hmx01.ps5.update.playstation.net
hru01.ps5.update.playstation.net
hsa01.ps5.update.playstation.net
htw01.ps5.update.playstation.net
huk01.ps5.update.playstation.net
hus01.ps5.update.playstation.net
sgst.prod.dl.playstation.net
gs2.ww.prod.dl.playstation.net

Alternative DNS IP:
DNS 1: 172.245.146.114
(Leave DNS 2 blank)

Spoiler: System Update Information

To determine your OFW version:
Go to settings > system > console information.

Version string info:
Year.Half (1st/2nd half of the year)-Major Version No.Minor Version No.Extended info-Further Info.Retail/Debug

21.02-04.03.00.00-00.00.00.0.1

It is recommended to keep your console as low as possible to have access to better jailbreak stability and features. Stay as low as possible within the "Golden" firmware brackets that apply to your current firmware, see the top of this page.

(No jailbreak is ever guaranteed. No developer is obliged to release anything publicly)

WARNING:
Only update OFW manually via USB by getting the firmware file from HERE and installing from <USB>:/PS5/UPDATE/PS5UPDATE.PUP
(Updating with RECOVERY PUP will perform a factory format and will wipe your internal HDD)

KEY SYSTEM UPDATES:

12.70 SYS MD5: 707B15B07085500EB90205565751ECC3 (Exploited + KEX)
10.01 SYS MD5: 68A31944C1867BF9643798FD1C14998E (Exploited + KEX)
7.61 SYS MD5: D5ECA8B171A8D7DF7BA225167F77E645 (Exploited + KEX)
6.02 SYS MD5: 17b271DE081EB6EB25DBF70CB73EF9E8 (Exploited + KEX/HV/Linux)
5.50 SYS MD5: EDB3513EC531B2BD28F3A0B52A82A54F (Exploited + KEX/HV/Linux)
4.51 SYS MD5: 1330B7BF63BF5C93D809B1EB1F4E1F01 (Exploited + KEX/HV/Linux)
4.03 SYS MD5: 3716E4E6E0D223CD94CD4A8E5BD4FB94 (Exploited + KEX/HV/Linux)
3.20 SYS MD5: (F62F0D595D3F00C213D674D4DB2A7E44 (Exploited + KEX/HV/Linux)

PS5 factory mode PUP installation path:
/usb/PROSPERO/UPDATE/PROSPEROUPDATE.PUP

NOTE: Make a system back up before attempting any modifications.
On console: go to [Settings] > [System] > [System Software] > [Back Up and Restore] > [Back Up Your PS5]

Select Your Jailbreak:

WEBKIT:BD-JB:LUA:Y2JB:NFNH:YARPE:LuaC0re:BD-UN-JB:

1. 
   Information:
   Firmware 1.00-5.50 is required for webkit exploit.
   
   Enabling web browser:
   Open [Settings] > select [Users & Accounts] > select [YouTube] > click "Link" > click "use browser" > click "terms" (bottom right) > click google apps icon (top right) > select Google Search.
   
   Exploiting:
   Enter https://zecoxao.github.io/luasauce/ or https://github.com/kmeps4/PSFree into google > "Click Jailbreak" or wait for it to complete.
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
2. 
   Important:
   You will need a BD dive paired to your Slim/Pro console or an OG Phat model . Consoles must be on 1.00-7.61 to run this exploit.
   
   Recommended ISO: Viktorious AIO Auto BD-JB ISO for 4.XX-7.61
   
   Exploiting:
   1, Burn ISO to a blank BD-R or BD-RE > Insert into console > click on the [DISC PLAYER] icon.
   
   2, Highlight [PIPELINE RUNNER] > click option 2 [Normaljailbreak-etaHEN-UMTX1.pipe] to auto load etaHEN ready for ItemzFlow.
   
   ELF Loader uses PS5 IP: port 9021 / BIN loader uses 9020 / Jar loader uses port 9025
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
3. 
   Important:
   LUA entry point works from 2.00 to the latest OFW, but there is no KEX above 12.70 yet.
   (A compatible PS4 game is required to launch the exploit on PS5. See below)
   
   Your PS5 console must be activated to use save copying for PS4 games.
   
   1. Insert your game disc and, as soon as possible, make a save file within it.
   2. Copy the save files to USB, go to [SETTINGS] > [STORAGE] > [CONSOLE STORAGE] > [SAVE DATA] > [PS4 GAMES] > select the game save and copy to a USB drive.
   3. On PC, using a Google Drive account, make a new folder with the GAME ID of your game, and upload the savedata & savedata.bin files to that folder.
   4. Share the folder, set it to editor mode, share with anyone, and click "copy the link".
   5. Join the HTOS Discord group: HERE type "/decrypt", select "FALSE" for including SCE_SYS, paste or type in the Google Drive link, and press enter. The bot should begin mounting your save. (If it doesn't, paste in the link again.)
   6. Click "ENCRYPTED" to remove the Sony PFS layer. Download the generated files and extract the folder to your desktop (you should have 4 files in there and be named dec_savedata_CUSA[GAME ID]).
   7. Using REMOTE LUA LOADER, open the savedata folder, copy the 20 files within into your encrypted save folder on your desktop.
   8. Upload the encrypted save folder (now with 24 files in) to your Google Drive. It should be named "dec_savedata_CUSA[GAME ID]" where GAME ID is your games 5 digit number, and set it to editor mode, share with anyone, and then click "copy the link".
   9. Go back to the HTOS discord server, and type "/encrypt", hit "FALSE" for uploading individually, and "FALSE" to include SCE_SYS. Finally, hit shared_gd_link and paste in your link to the original save (4 files) folder. (If it doesn't, paste in the link again.)
   10. When this is done, paste the link to the decrypted save (24 files) folder, and the bot will encrypt the files.
   11. Resign the files by typing "/resign" followed by your account name on the console, or PSN ID associated with that account if using the latest OFW.
   12. Download the resigned files, extract the files to your USB drive and overwrite them into the savedata folder on your USB or external drive.
   13. Copy the saves back to your console [SETTINGS] > [SAVE DATA AND GAME/APP SETTINGS] > [SAVE DATA PS4] > [COPY OR DELETE FROM USB] > [COPY TO CONSOLE STORAGE] > select your game save folder from the USB drive and copy/overwrite old save data.
   14. Load LUA game again, and you should see the LUA LOADER screen.
   15. You can use "SEND_LUA.PY" to send the UMTX files to the loader.
   (NOTE: Some games require manual loading of save game)
   
   On firmware up to 7.61, you can now load UMTX/2 followed by etaHEN by sending the files to your console IP on PORT 9026.
   On firmware 8.00-LATEST, you can connect with the REMOTE LUA LOADER APP to send debug notifications or FTP on port 1337.
   
   LUA Loader: HERE or HERE
   
   Auto LUA Loader Fork: HERE
   
   Compatible LUA games:
   Aerial Life (CUSA17122)
   Aibeya (CUSA17068)
   Aikagi 2 (CUSA19556)
   Aikagi Kimi to Issho ni Pack (CUSA16229)
   Aikano Yukizora no Triangle (CUSA19370)
   Boku to Nurse no Kenshuu Nisshi (CUSA12049)
   Boku to Joi no Shinsatsu Nisshi (CUSA18107)
   Fuyu Kiss (CUSA29745)
   Hamidashi Creative (CUSA27389)
   Hamidashi Creative Demo (CUSA27390 requires the latest OFW to download from PSN)
   Haruoto Alice (CUSA14324)
   IxSHE Tell (CUSA17112)
   IxSHE Tell Demo (CUSA17126)
   Jinki Resurrection (CUSA25179)
   Jinki Resurrection Demo (CUSA25180 requires the latest OFW to download from PSN)
   Maid-san no Iru Kurashi (CUSA18106)
   Nora Princess and Stray Cat Heart HD (CUSA13303: Rename save9999.dat into nora_01.dat)
   Nora Princess and Strat Cat Heart 2 (CUSA13586)
   Raspberry Cube (CUSA16074)
   Winter Guest (CUSA11977)
   
   WARNING: using demos is free but can become corrupt, and you cannot upgrade your internal HDD either. If you lose the demo you can no longer use the exploit. Disc recommended.
   
   Incompatible LUA games:
   Dokyusei Remake Csver (CUSA47117)
   Dōkyūsei: Bangin' Summer - Home Edition Demo (CUSA47132)
   Kiss Trilogy (CUSA19341)
   Love Clear Demo (CUSA18109)
   Mikagami Sumika no Seifuku Katsudou (CUSA11481)
   Sen no Hatou, Arazone no Hime (CUSA09647)
   Tonari ni Kanojo no Iru Shiawase: Two Farce (CUSA09825)
   Tonari ni Kanojo no Iru Shiawase Summer Surprise (CUSA18998)
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
4. 
   Requirements:
   PS5 console must be on 4.30-12.70 and previously activated through PSN or fake activated to use the YouTube app, unless you're restoring a backup.
   (Note: restoring a backup will factory reset your console).
   
   Information:
   If updating and older installation, download the latest download0.dat > use FTP or PS5 Explorer to place it in the user/download/PPSA01650 folder.
   
   Preparation:
   Download the Y2JB_backup_X.X(4.03) if you're on 4.03-12.40, or the Y2JB_backup_X.X(12.20) if you're on 12.60 or higher from HERE
   On PC: format a USB 3.0 HDD to exFAT, and copy the PS5 folder from the backup to the root, and put the latest nanodnf.efl from nanoDNS to the root too.
   On console: go to [Settings] > [System] > [System Software] > [Back up and Restore] > [Restore] > select the y2JB back up & let it install (the console will reboot when complete).
   (Note: The exploit will now be accessible under the [MEDIA] tab)
   
   Exploiting:
   Going to [Settings] > [Network] > [Settings] > [Set up Internet Connection] > [Set up Manually] > set up a wireless or LAN connection > change [DNS Settings] to manual > change [Primary DNS] to 127.0.0.1 > click [Done] > open the [YouTube App].
   (Note: Ignore and internet connection issue warnings)
   
   Firmware up to 10.01 will use Lapse Kernel Exploit. Firmware 10.20-12.70 and above will use P2JB and could take up to an hour.
   
   You can send payloads using netcat GUI to PS5's IP Address & port 9021.
   
   You can swap the download0.dat to itzPLK version for auto loading and payload manager in future (payload manager accessible through browser on 127.0.0.1:8084)
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
5. 
   Requirements:
   PS5 console must be on 4.30-10.01 and previously activated through PSN or fake activated. You will need a 256GB external HDD (minimum).
   
   Preparation:
   Download balenaEtcher
   Download the latest Extended Storage or M.2 Image (select your m.2's capacity)
   
   EXTERNAL DRIVE METHOD (Netflix_PS5_EU_Ext.7z):
   1a, On PC: connect your 256GB (min) USB drive to your Windows/Mac/Linux PC > extract the image to your computer > open Etcher > click [Flash From File] & select the extracted image *.zip > click [Select Target] & choose the external drive > Click [Flash!] & allow it to complete.
   (Note: 256GB is the smallest drive you can use)
   
   2a, On console: click [Settings] > [Storage] > [USB Extended Storage] > [Games and Apps] > press X on [Netflix] > select [NETFLIX] under items to move > select [Move] > move to internal storage & allow it to complete.
   (Note: The exploit will now be accessible under the [MEDIA] tab)
   
   INTERNAL DRIVE METHOD (Netflix.XXXXGB.7z):
   1b, On PC: connect the M.2 to your Windows/Mac/Linux PC > extract the image to your computer > open Etcher > click [Flash From File] & select the extracted image *.zip > click [Select Target] & choose the external drive > Click [Flash!] & allow it to complete.
   (Note: 4TB will take 80 mins, 2TB 45 mins, 256GB 10 mins)
   
   2b, On console: Power off the console > insert the M.2 SSD > power on the console > click [Settings] > [Storage] > press X on [Netflix] > select [NETFLIX] under items to move > select [Move] > move to internal storage & allow it to complete.
   (Note: The exploit will now be accessible under the [MEDIA] tab).
   
   Exploiting:
   1a, for consoles 10.01 and below, on console: go to [Settings] > [Network] > [Settings] > [Set up Internet Connection] > [Set up Manually] > set up a wireless or LAN connection. Go to Proxy > change [Automatic] to [Manual] > enter Address: 172.105.156.37 & port: 42069 > click [Done] > open the [Netflix App].
   (Note: Ignore and internet connection issue warnings)
   
   1b, for consoles 10.20-12.70, COMING SOON.
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
6. 
   Important:
   YARPE works from 4.30 to 12.70 (9.00 - 12.07 via P2JB)
   (A compatible PS4 game is required to launch the exploit on PS5. See below)
   
   Requirements:
   PS5 console must be on 4.30-10.01 to use this exploit.
   
   Exploiting:
   coming soon
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
7. 
   Requirements:
   PS5 console must be on 4.30-12.70 to use this exploit. SWRR
   
   Exploiting:
   coming soon
   
   Debug settings will be loaded, and the package installer can be found under [SETTINGS] > [DEBUG SETTINGS].
   
8. 
   Important:
   This method modifies the BD-J stack to allows BD-JB entry point to be re-enabled on consoles up to 13.40, for conveninece only.
   
   Very Important:
   This method requires your console to be jailbroken by another method first to gain access to alter the files.
   
   https://github.com/Gezine/BD-UN-JB
   
   Preparation:
   Burn the ISO to a blank Blu Ray, insert it into the jailbroken console. Send the bdj_unpatch.elf to elfldr using netcat GUI to PS5's IP Address & port 9021 to unpatch BD-J.
   
   (NOTE: DO NOT REINSTALL/UPDATE FW, IT WILL WIPE THE PATCH AND LOSE BD-JB)
   

Once jailbroken it is recommended to run KSTUFF LITE and SHADOWMOUNTPLUS at minimum to get you up and running.
(ShadowMountPlus: is an automated background auto-mounter payload for jailbroken PS5 consoles. Detects, mounts, and installs game dumps from internal or external storage, with support for UFS, exFAT, PFS, and nested compressed PFS containers)

Additional Information:

Blocking Updated with nanoDNS:
Set primary DNS manually to 127.0.0.1. Send latest elf to BIN LOADER using netcat GUI to PS5's IP Address & port 9021.

PS4 GAME INFORMATION:
OFW 1.xx cannot run PS4 games.
OFW 2.xx runs PS4 games up to 8.03
OFW 3.xx runs PS4 games up to 8.52
OFW 4.xx runs PS4 games up to 9.04
OFW 5.xx runs PS4 games up to 9.60
OFW 6.xx runs PS4 games up to 10.50
OFW 7.xx runs PS4 games up to 11.00
OFW 8.xx/9.xx runs PS4 games up to 11.50
OFW 10.xx runs PS4 games up to 12.00
OFW 11.xx runs PS4 games up to 12.50
OFW 12.xx runs PS4 games up to 13.00

(Note: PS4 backported FPKGs also work perfectly on an exploited PS5 with Kstuff)

You can install free/demo PKGS (legit pkgs) via the debug pkg installer, provided you have all the files/json/licences required.
(Astro’s Playroom has no licences and can be installed and played from official pkgs and updated inline with your firmware)

Warnings:

1: Never enable IDU mode.
If you do, you will need to enter staff mode by holding L1 + L2 and tapping this combo: circle, cross, square, triangle, right D-Pad. Release L1 + L2, and you can access settings to exit IDU.

2: Try to stay on the lowest FW possible and wait for hacks on that firmware.

3: PS5 FPKGs do not work. A hack for the A53 processor does not publicly exist to enable installing PS5 content as FPKG/PKG.

4: Installing legit game PKGs you do not own will never work, even if spoofed.

5: If you get stuck in a boot loop at the PS logo, the SNVS is corrupted (if the hash check fails on boot, this causes a “soft brick”). It’s not “bricked”. Simply reinstall your current firmware RECOVERY PUP in safe mode from USB: PS5 > UPDATE > PS5UPDATE.PUP.

Archived Information

Spoiler

https://github.com/astrelsky/libhijacker

https://github.com/illusion0001/libhijacker

https://github.com/TheOfficialFloW/Presentations/blob/master/2022-hardwear-io-bd-jb.pdf

https://github.com/sleirsgoevy/bd-jb

https://github.com/psxdev/bd-jb

https://gbatemp.net/download/remount-system-with-write-permissions.37807/

https://github.com/john-tornblom/ps5-payload-sdk

https://github.com/john-tornblom/bdj-sdk/actions/workflows/bdjb.yml

 

[cearp]

@cearp IRRC you’ve done some 3ds WebKit stuff right? Or am I high lmao

No real hacking has come from me, sorry. You're high

 

[hotwhelz2005]

Not looking forward to converting all games to the new .phu format but definitly need the hard drive space since they so expensive now. Hope they do a batch tool.

 

[littlemisskittn]

Not looking forward to converting all games to the new .phu format but definitly need the hard drive space since they so expensive now. Hope they do a batch tool.

This honestly is one of the reasons I'm glad to have my backups in folder format, rared up. This way it's a straight conversion to whatever is the prevalent format without hopefully having to redownload the whole game.

 

[schatzi24]

 

[ViRGE]

Nope to both, at least not at this time (who knows what else might come from him in the future).

But do we really need FPKG anymore? This is basically the same thing, it has all the advantages except that it’s in a mountable container versus an installable package.

Compared to an installable package file, patches are going to be a pain in the butt with any containerized format. So things won't be as convenient as with the PS4. But then PS5 piracy already has that problem today with FFPKG and the like.

Just how annoying it is depends on what solutions can be cooked up for loading patches. If entire games have to be repacked with Kraken compression, then that is going to be the moderately painful option. If patch files can be tacked on to the end of a container, then that's the somewhat less painful option. If patches can be loaded alongside game containers (think NSP patches on the Switch), then that wouldn't be so bad.

 

[ThePSGuy]

Compared to an installable package file, patches are going to be a pain in the butt with any containerized format. So things won't be as convenient as with the PS4. But then PS5 piracy already has that problem today with FFPKG and the like.

Just how annoying it is depends on what solutions can be cooked up for loading patches. If entire games have to be repacked with Kraken compression, then that is going to be the moderately painful option. If patch files can be tacked on to the end of a container, then that's the somewhat less painful option. If patches can be loaded alongside game containers (think NSP patches on the Switch), then that wouldn't be so bad.

Indeed, haven't thought of game updates. As of today, we can use the package installer to install DLCs (or at least what is required to unlock them) over compressed formats so maybe patches could be applied that way too in the future?

Either way, this will be a much better solution than what we have today.

 

[mattyxarope]

Lots of new informations from ArkSama regarding his new PHU A53 Kraken:





Look like we are getting closer bois and gals (apparently a week or two remaining from another comment he made answering to a hater).

Nice. Afaik, none of this contradicts my writeup.

I'm excited that this is coming soon!

 

[madbrainx]

 

[xalfie]

anybody can figure about to emulate The Talos Principle 2 DLC?

 

[HS2005]

Updated APR EMU:

Link Debug: https://cdn.discordapp.com/attachme...eddc6f7c2ff2fe41ba5ba88732be5b54ffb469754b20&
Link: https://cdn.discordapp.com/attachme...2347eaf949b6db07ad08996bfee2c8056ad6b5b5c90e&

 

[BobaFett_UK]

Updated APR EMU:

View attachment 579480

Link Debug: https://cdn.discordapp.com/attachme...eddc6f7c2ff2fe41ba5ba88732be5b54ffb469754b20&
Link: https://cdn.discordapp.com/attachme...2347eaf949b6db07ad08996bfee2c8056ad6b5b5c90e&

I wonder if that will fix the SM2 stuttering and audio glitches?

 

[xalfie]

I wonder if that will fix the SM2 stuttering and audio glitches?

I was loading all with last version of apmr emu and that kstuff from idlesauce. All loaded fine and worked. Folders format.

 

[BobaFett_UK]

Can someone link the idlesauce kstff please? Is it better than the Drakmor one?

 

[mattyxarope]

Updated APR EMU:

View attachment 579480

Link Debug: https://cdn.discordapp.com/attachme...eddc6f7c2ff2fe41ba5ba88732be5b54ffb469754b20&
Link: https://cdn.discordapp.com/attachme...2347eaf949b6db07ad08996bfee2c8056ad6b5b5c90e&

Could you remind me which Kstuff version that they're referring to? Was it the one that foregoes the pausing?

 

[HS2005]

Could you remind me which Kstuff version that they're referring to? Was it the one that foregoes the pausing?

NP: https://cdn.discordapp.com/attachme...a48f9352880bfbab508d79207536750fbf14bf4c35f3&

Or https://gofile.io/d/e4BhJl

Post automatically merged: Today at 12:14 PM

Can someone link the idlesauce kstff please? Is it better than the Drakmor one?

^^ Enjoy

 

[smf]

Since when is it required here to prove your knowledge/skill level before any information will be shared?

That's kinda normal for anything non trivial.

You would normally do some research and then ask for explanation by explaining where you are stuck.

AI is pretty good for these "how do I become an astronaut" type questions.

I asked google ai studio pro 3.1 preview the following two questions:


"is there any information on how backports are done for ps5 games on a hacked console, so that you can run games for later os versions"

"is there any information on how to create the fakelib files, if a game needs a newer or different one? or is there already a production line of them being done?"


On a hacked or jailbroken PlayStation 5, a "backport" is a modified version of a newer game (or game update) that allows it to bypass its minimum firmware requirement. Normally, newer PS5 games are compiled using updated Sony SDKs, meaning they rely on system libraries and firmware features that don't exist on older, exploitable firmware versions (such as FW 4.03 or 4.50).



As of mid-2026, the PS5 homebrew scene has developed a sophisticated automated process for backporting games. Here is a technical breakdown of how it is currently achieved[1][2]:

1. Decryption and Extraction
PS5 game executables (EBOOT.BIN) and system modules (commonly .prx files) are originally encrypted in Sony's SELF format. To modify them, the game must first be dumped from a jailbroken console as decrypted ELFs using a payload[1].

2. Modifying Firmware Metadata
The console checks a game's minimum firmware requirement via a configuration file called PARAM.SFO. This file contains the game's metadata, including the SDK version used to compile it[2]. Modding tools patch this file to spoof the minimum requirement, essentially telling the older firmware, "This game is compatible with your version."

3. Implementing "Fakelibs" (Fake Libraries)
The primary reason a newer game crashes on old firmware isn't just the metadata check; it’s because the game code explicitly tries to load newer system modules (like updated graphics APIs or audio libraries) that the older OS simply doesn't have.

To bypass this, backports utilize a concept known as fakelibs[1]. Developers extract the necessary updated system modules from the newer firmware, decrypt them, and package them directly into the game's local application folder (usually in a fakelib or sce_module directory)[1].

4. Binary Patching
The core EBOOT.BIN file is Hex-edited and patched so that instead of querying the PS5's internal operating system for these missing modules, its pointers are redirected to load the local "fakelibs" injected into the game's folder[1].

Tools Used in the Process
The process of backporting has been highly automated by the homebrew community to make it faster and reduce human error[2]:

BackPork: The foundational underlying script and toolset (created by developer BestPig) that handles the complex dependency resolving and patching[3].
GUI Kitchen Tools: Tools like PS5 BackPork Kitchen and Auto-Backpork run on a PC and provide a graphical interface[2][3]. Users select their dumped game folder, and the tool automatically detects the game's SDK, downloads the necessary "fakelib" dependencies, patches the EBOOT.BIN, and repackages the directory[2].
etaHEN & On-Console Payloads: On the PS5 side, running the backported game requires a jailbroken environment. Users rely on modern exploits (such as UMTX2, p2jb, or y2jb) to load etaHEN (a comprehensive homebrew enabler)[1][4]. Before booting the game, a specific payload like ps5-backpork.elf (or an integrated BackPork plugin) must be executed in the console's memory[1][4]. This payload hooks into the system OS and intercepts the game's launch process to ensure the custom libraries load correctly[1].




Yes, there is detailed information on how this process works. In the PS5 homebrew scene, creating a functional "fakelib" from scratch is considered an advanced reverse-engineering task[1]. Because it is so complex, standard users do not create them manually. Instead, there is indeed a "production line" of sorts managed by developers in the community[1][2].

Here is a breakdown of how custom fakelibs are created and how the community distributes them:

1. How Fakelibs are Created (The Developer Process)
If a brand-new game requires a system library that hasn't been backported yet, reverse engineers (like BestPig, idlesauce, and others) have to create a new fakelib for it. The manual process looks like this:

Extraction: Developers first dump the newer system libraries (the .prx or .sprx files) directly from a console running the higher firmware, or they extract them directly from PlayStation 5 firmware update files (.PUP files)[1].
Decryption & SDK Downgrading: The extracted system modules are encrypted. They are decrypted using tools (like idlesauce’s SELF decrypters), and their embedded SDK/firmware headers are downgraded using Python scripts (like ps5_elf_sdk_downgrade.py) so the older PS5 OS doesn't immediately reject them[1].
The Hard Part (Patching Dependencies): You cannot just drop a newer firmware's system library into an older console. Newer libraries often make specific calls to the PS5's kernel that do not exist on older firmware. If the old OS receives a kernel call it doesn't understand, the console will crash or kernel panic[1]. Developers must reverse-engineer the .prx file and manually Hex-edit or patch the code to "stub" (bypass or silence) those missing kernel calls[1].
Once a developer successfully patches a new system module so that it runs safely on older firmware, it becomes a valid "fakelib"[1].

2. The "Production Line" (How Users Get Them)
Because manual patching is tedious and requires coding knowledge, the homebrew scene has standardized a production pipeline so end-users don't have to create fakelibs themselves[1][2].

Centralized Repositories: Developers upload their patched fakelibs and dependency configurations to GitHub repositories[1][3].
fakelibs.json: Backporting tools use a master configuration file often called fakelibs.json[2][3]. Whenever a new game drops that requires a newer or different module, scene developers figure out the patch, create the fakelib, and update this central JSON file[3].
Automated Tools: When you use a PC utility like BackPork or GUI apps like PS5 BackPork Kitchen (or newer community alternatives), the tool reads the game you are trying to backport[3]. It checks the game's metadata, references the online fakelibs.json list, and automatically downloads the exact pre-patched fakelibs you need[2][3].
Summary:

If a game needs a newer fakelib, a few highly skilled reverse engineers in the scene dump the new firmware modules, patch out the kernel calls that cause crashes, and upload them[1]. The rest of the community then just uses automated PC tools to fetch these modules and inject them into their game folders with a single click[1][3].

 

[xalfie]

conforming all the last good solutions, the BackPork payloads seems the most hardcore one ever made.
Congratulations BestPork, I mean BestPig xddddd

 

[mattyxarope]

That's kinda normal for anything non trivial.

You would normally do some research and then ask for explanation by explaining where you are stuck.

AI is pretty good for these "how do I become an astronaut" type questions.

I asked google ai studio pro 3.1 preview the following two questions:


"is there any information on how backports are done for ps5 games on a hacked console, so that you can run games for later os versions"

"is there any information on how to create the fakelib files, if a game needs a newer or different one? or is there already a production line of them being done?"


On a hacked or jailbroken PlayStation 5, a "backport" is a modified version of a newer game (or game update) that allows it to bypass its minimum firmware requirement. Normally, newer PS5 games are compiled using updated Sony SDKs, meaning they rely on system libraries and firmware features that don't exist on older, exploitable firmware versions (such as FW 4.03 or 4.50).



As of mid-2026, the PS5 homebrew scene has developed a sophisticated automated process for backporting games. Here is a technical breakdown of how it is currently achieved[1][2]:

1. Decryption and Extraction
PS5 game executables (EBOOT.BIN) and system modules (commonly .prx files) are originally encrypted in Sony's SELF format. To modify them, the game must first be dumped from a jailbroken console as decrypted ELFs using a payload[1].

2. Modifying Firmware Metadata
The console checks a game's minimum firmware requirement via a configuration file called PARAM.SFO. This file contains the game's metadata, including the SDK version used to compile it[2]. Modding tools patch this file to spoof the minimum requirement, essentially telling the older firmware, "This game is compatible with your version."

3. Implementing "Fakelibs" (Fake Libraries)
The primary reason a newer game crashes on old firmware isn't just the metadata check; it’s because the game code explicitly tries to load newer system modules (like updated graphics APIs or audio libraries) that the older OS simply doesn't have.

To bypass this, backports utilize a concept known as fakelibs[1]. Developers extract the necessary updated system modules from the newer firmware, decrypt them, and package them directly into the game's local application folder (usually in a fakelib or sce_module directory)[1].

4. Binary Patching
The core EBOOT.BIN file is Hex-edited and patched so that instead of querying the PS5's internal operating system for these missing modules, its pointers are redirected to load the local "fakelibs" injected into the game's folder[1].

Tools Used in the Process
The process of backporting has been highly automated by the homebrew community to make it faster and reduce human error[2]:

BackPork: The foundational underlying script and toolset (created by developer BestPig) that handles the complex dependency resolving and patching[3].
GUI Kitchen Tools: Tools like PS5 BackPork Kitchen and Auto-Backpork run on a PC and provide a graphical interface[2][3]. Users select their dumped game folder, and the tool automatically detects the game's SDK, downloads the necessary "fakelib" dependencies, patches the EBOOT.BIN, and repackages the directory[2].
etaHEN & On-Console Payloads: On the PS5 side, running the backported game requires a jailbroken environment. Users rely on modern exploits (such as UMTX2, p2jb, or y2jb) to load etaHEN (a comprehensive homebrew enabler)[1][4]. Before booting the game, a specific payload like ps5-backpork.elf (or an integrated BackPork plugin) must be executed in the console's memory[1][4]. This payload hooks into the system OS and intercepts the game's launch process to ensure the custom libraries load correctly[1].




Yes, there is detailed information on how this process works. In the PS5 homebrew scene, creating a functional "fakelib" from scratch is considered an advanced reverse-engineering task[1]. Because it is so complex, standard users do not create them manually. Instead, there is indeed a "production line" of sorts managed by developers in the community[1][2].

Here is a breakdown of how custom fakelibs are created and how the community distributes them:

1. How Fakelibs are Created (The Developer Process)
If a brand-new game requires a system library that hasn't been backported yet, reverse engineers (like BestPig, idlesauce, and others) have to create a new fakelib for it. The manual process looks like this:

Extraction: Developers first dump the newer system libraries (the .prx or .sprx files) directly from a console running the higher firmware, or they extract them directly from PlayStation 5 firmware update files (.PUP files)[1].
Decryption & SDK Downgrading: The extracted system modules are encrypted. They are decrypted using tools (like idlesauce’s SELF decrypters), and their embedded SDK/firmware headers are downgraded using Python scripts (like ps5_elf_sdk_downgrade.py) so the older PS5 OS doesn't immediately reject them[1].
The Hard Part (Patching Dependencies): You cannot just drop a newer firmware's system library into an older console. Newer libraries often make specific calls to the PS5's kernel that do not exist on older firmware. If the old OS receives a kernel call it doesn't understand, the console will crash or kernel panic[1]. Developers must reverse-engineer the .prx file and manually Hex-edit or patch the code to "stub" (bypass or silence) those missing kernel calls[1].
Once a developer successfully patches a new system module so that it runs safely on older firmware, it becomes a valid "fakelib"[1].

2. The "Production Line" (How Users Get Them)
Because manual patching is tedious and requires coding knowledge, the homebrew scene has standardized a production pipeline so end-users don't have to create fakelibs themselves[1][2].

Centralized Repositories: Developers upload their patched fakelibs and dependency configurations to GitHub repositories[1][3].
fakelibs.json: Backporting tools use a master configuration file often called fakelibs.json[2][3]. Whenever a new game drops that requires a newer or different module, scene developers figure out the patch, create the fakelib, and update this central JSON file[3].
Automated Tools: When you use a PC utility like BackPork or GUI apps like PS5 BackPork Kitchen (or newer community alternatives), the tool reads the game you are trying to backport[3]. It checks the game's metadata, references the online fakelibs.json list, and automatically downloads the exact pre-patched fakelibs you need[2][3].
Summary:

If a game needs a newer fakelib, a few highly skilled reverse engineers in the scene dump the new firmware modules, patch out the kernel calls that cause crashes, and upload them[1]. The rest of the community then just uses automated PC tools to fetch these modules and inject them into their game folders with a single click[1][3].

As others have said - this is a forum where we welcome people of all skills/knowledge levels and just saying, "Google it!" or "Just ask ChatGPT!" is not cool, imo.

 

[TheStonedModder]

That's kinda normal for anything non trivial.

You would normally do some research and then ask for explanation by explaining where you are stuck.

AI is pretty good for these "how do I become an astronaut" type questions.

I asked google ai studio pro 3.1 preview the following two questions:


"is there any information on how backports are done for ps5 games on a hacked console, so that you can run games for later os versions"

"is there any information on how to create the fakelib files, if a game needs a newer or different one? or is there already a production line of them being done?"


On a hacked or jailbroken PlayStation 5, a "backport" is a modified version of a newer game (or game update) that allows it to bypass its minimum firmware requirement. Normally, newer PS5 games are compiled using updated Sony SDKs, meaning they rely on system libraries and firmware features that don't exist on older, exploitable firmware versions (such as FW 4.03 or 4.50).



As of mid-2026, the PS5 homebrew scene has developed a sophisticated automated process for backporting games. Here is a technical breakdown of how it is currently achieved[1][2]:

1. Decryption and Extraction
PS5 game executables (EBOOT.BIN) and system modules (commonly .prx files) are originally encrypted in Sony's SELF format. To modify them, the game must first be dumped from a jailbroken console as decrypted ELFs using a payload[1].

2. Modifying Firmware Metadata
The console checks a game's minimum firmware requirement via a configuration file called PARAM.SFO. This file contains the game's metadata, including the SDK version used to compile it[2]. Modding tools patch this file to spoof the minimum requirement, essentially telling the older firmware, "This game is compatible with your version."

3. Implementing "Fakelibs" (Fake Libraries)
The primary reason a newer game crashes on old firmware isn't just the metadata check; it’s because the game code explicitly tries to load newer system modules (like updated graphics APIs or audio libraries) that the older OS simply doesn't have.

To bypass this, backports utilize a concept known as fakelibs[1]. Developers extract the necessary updated system modules from the newer firmware, decrypt them, and package them directly into the game's local application folder (usually in a fakelib or sce_module directory)[1].

4. Binary Patching
The core EBOOT.BIN file is Hex-edited and patched so that instead of querying the PS5's internal operating system for these missing modules, its pointers are redirected to load the local "fakelibs" injected into the game's folder[1].

Tools Used in the Process
The process of backporting has been highly automated by the homebrew community to make it faster and reduce human error[2]:

BackPork: The foundational underlying script and toolset (created by developer BestPig) that handles the complex dependency resolving and patching[3].
GUI Kitchen Tools: Tools like PS5 BackPork Kitchen and Auto-Backpork run on a PC and provide a graphical interface[2][3]. Users select their dumped game folder, and the tool automatically detects the game's SDK, downloads the necessary "fakelib" dependencies, patches the EBOOT.BIN, and repackages the directory[2].
etaHEN & On-Console Payloads: On the PS5 side, running the backported game requires a jailbroken environment. Users rely on modern exploits (such as UMTX2, p2jb, or y2jb) to load etaHEN (a comprehensive homebrew enabler)[1][4]. Before booting the game, a specific payload like ps5-backpork.elf (or an integrated BackPork plugin) must be executed in the console's memory[1][4]. This payload hooks into the system OS and intercepts the game's launch process to ensure the custom libraries load correctly[1].




Yes, there is detailed information on how this process works. In the PS5 homebrew scene, creating a functional "fakelib" from scratch is considered an advanced reverse-engineering task[1]. Because it is so complex, standard users do not create them manually. Instead, there is indeed a "production line" of sorts managed by developers in the community[1][2].

Here is a breakdown of how custom fakelibs are created and how the community distributes them:

1. How Fakelibs are Created (The Developer Process)
If a brand-new game requires a system library that hasn't been backported yet, reverse engineers (like BestPig, idlesauce, and others) have to create a new fakelib for it. The manual process looks like this:

Extraction: Developers first dump the newer system libraries (the .prx or .sprx files) directly from a console running the higher firmware, or they extract them directly from PlayStation 5 firmware update files (.PUP files)[1].
Decryption & SDK Downgrading: The extracted system modules are encrypted. They are decrypted using tools (like idlesauce’s SELF decrypters), and their embedded SDK/firmware headers are downgraded using Python scripts (like ps5_elf_sdk_downgrade.py) so the older PS5 OS doesn't immediately reject them[1].
The Hard Part (Patching Dependencies): You cannot just drop a newer firmware's system library into an older console. Newer libraries often make specific calls to the PS5's kernel that do not exist on older firmware. If the old OS receives a kernel call it doesn't understand, the console will crash or kernel panic[1]. Developers must reverse-engineer the .prx file and manually Hex-edit or patch the code to "stub" (bypass or silence) those missing kernel calls[1].
Once a developer successfully patches a new system module so that it runs safely on older firmware, it becomes a valid "fakelib"[1].

2. The "Production Line" (How Users Get Them)
Because manual patching is tedious and requires coding knowledge, the homebrew scene has standardized a production pipeline so end-users don't have to create fakelibs themselves[1][2].

Centralized Repositories: Developers upload their patched fakelibs and dependency configurations to GitHub repositories[1][3].
fakelibs.json: Backporting tools use a master configuration file often called fakelibs.json[2][3]. Whenever a new game drops that requires a newer or different module, scene developers figure out the patch, create the fakelib, and update this central JSON file[3].
Automated Tools: When you use a PC utility like BackPork or GUI apps like PS5 BackPork Kitchen (or newer community alternatives), the tool reads the game you are trying to backport[3]. It checks the game's metadata, references the online fakelibs.json list, and automatically downloads the exact pre-patched fakelibs you need[2][3].
Summary:

If a game needs a newer fakelib, a few highly skilled reverse engineers in the scene dump the new firmware modules, patch out the kernel calls that cause crashes, and upload them[1]. The rest of the community then just uses automated PC tools to fetch these modules and inject them into their game folders with a single click[1][3].

All of that nonsense was said and only the very last sentence would be somewhat helpful to the user.. AI is VERY good at saying a lot without actually saying anything

 

[HS2005]

All of that nonsense was said and only the very last sentence would be somewhat helpful to the user.. AI is VERY good at saying a lot without actually saying anything

AI can mostly be helpful with the basics.
In-depth techical stuff requires knowledge from personal experiences / testing etc. I sometimes feed and correct AI to give future people better info. Most of the time when it comes to adcaned technical stuff AI is just hallucinating.

Post automatically merged: 5 minutes ago

On another note. I'll prob. wait for this: https://insider-gaming.com/gta-6-disc-release/

Post automatically merged: A moment ago

MkPFS Build Tool v1.45.02​

MkPFS Build Tool v1.45.02

A Windows tool that builds PS5 game dumps into mountable images and compressed
.ffpfsc containers - fully drag & drop, no manual extraction required.

What's new in v1.45.02​

• Password support for encrypted archives (RAR / 7-Zip / ZIP) - build directly without extracting first.
• Cancel during image creation - terminates the work process tree, dismounts the virtual drive, and cleans up partial files.
• Fixed a crash when packing games with non-ASCII titles (e.g. "Ghost of Yotei").
• Builds correctly even when the game is nested several folders deep inside an archive - the game folder is detected automatically.
• Filenames and paths now use the game's content version (contentVersion) instead of the master version, so the correct game version is shown.

License​

• The bundled mkpfs-worker.exe is licensed under the GNU GPL v3.0 (a derivative of MkPFS).
  Source: https://github.com/glorkim/mkpfs_build_tools
• mkpfs-worker uses mkpfs (GPL-3.0, https://github.com/PSBrew/MkPFS).
• See the included NOTICE and LICENSE files for full details.

Usage​

Drag a game folder or file (.rar .zip .7z .zip.001 pfs_image.dat .exfat .ffpkg) onto the app.
Built files can be mounted on PS5 with ShadowMountPlus.

Link: https://github.com/glorkim/mkpfs_build_tools/releases/tag/v1.45.02