PS5 Exploit Guide

django090 · Apr 4, 2026

Hi everyone, I have a PS5 with a Blu-ray drive, running 7.61 with an internal M2. Y2JB runs really smoothly and without any error messages. I used the Y2JB-upload.zip from thomas-hcb v1.1.0 because of the internal M2. My autoload is set up like this: etaHEN-2.5bin, !4000, Backpork.elf, !1000, Shadowmount.elf, !4000, kill_youtube.elf. It works without KPs; 2 out of 10 times I just have to restart the PS5 if it doesn’t work right away.

Now I’ve also gotten a PS5 Pro with 9.60 without a Blu-ray drive. This one also has an internal M2, and I’ve set it up just like my 7.61. However, after running it, I sometimes get KPs, or if it worked, a system error CE-108262-9 is displayed. I can dismiss the system software errors and then restart normally via itemzflow and etaHEN. I’ve also used the itsPLK v.04 version, but it’s worse with that version. I’ve also tried different autoload sequences and timings, the latest etaHEN and Kstuff Lite—none of that helped. I’ve read that this problem is likely due to the internal M2. Without the internal M2, Y2TB actually works fine. Do you have any ideas on how I can get the PS5 Pro with the internal M2 to run without these system software errors? Is it due to firmware 9.60?

Thank you in advance for your support.

le237qk1boglz67w8il1 · Apr 4, 2026

My Dear Friends of xp**itati*ns

Unfortunately I won't come further with J*jb a PS5 FW11.60. Tried the Backup Restore v1.3 and then wanted to send a Pl getting the elf-Loader running. Listening on port 50000 and local IP-address is fine... But sending the Pl is refused at the PS5...
Might it be that this doesn't work because of the FW and I need to go with N-H* or what I am missing here?

Hope someone is so kind and give me a hint what I can try.
Best wishes, Leo

HS2005 · Apr 4, 2026

Davide6 · Apr 4, 2026

django090 said:
Do you have any ideas on how I can get the PS5 Pro with the internal M2 to run without these system software errors? Is it due to firmware 9.60?

Thank you in advance for your support.

le237qk1boglz67w8il1 said:
What I am missing here?
Hope someone is so kind and give me a hint what I can try.
Best wishes, Leo

there are several options.

The first and easiest is to improve Y2JB (github), as we all know Gezine gave up on Y2JB and now he only focuses on star wars.you can try writing to him to improve it or to other devs

The second method is that you ask theFlow to send you CFW in which HV is disabled and then you install this FW. This FW also has an older version of webkit from FW 5.xx

The third option is that you create this CFW yourself but no one will tell you how to do it, you have to figure it out yourself.

Derherrbios · Apr 4, 2026

You mean even if the drive is paired I could not play burned Blu-ray games ?

le237qk1boglz67w8il1 · Apr 4, 2026

Thanks for clarifying David6

psdevwiki.com/ps5/Serial_Number_guide
pointed until 12.00, but first post of this thread states until 10.01. Then I am w8tin'

only digital, wo drive
Best wishes, Leo

Davide6 · Apr 4, 2026

Derherrbios said:
You mean even if the drive is paired I could not play burned Blu-ray games ?

blue ray discs contain protection that cannot be copied by regular blue ray burning, so you cannot play burned games. But you can buy an original disc or search the internet for keys leak for ps5

Rasa39 · Apr 4, 2026

BobaFett_UK said:
Sine you've put it down in writing like that it's definetly msde me think twice if not three or four times and i've not even had a single malt tonight either.... Just a stella

Yeah didn't mean to put you off mate, I just know it can be a nightmare at times, especially with our glorious rules and whatnot. Best be safe and all that. I've had to start recording myself opening any package because people send me broken shit or stuff that isn't remotely what I paid for or what was advertised, then accused me of damage etc. I had to buy a damn phone mount and everything cos I've only got 2 hands innit, bloody rip off!

I'd also just finished watching a GamersNexus video when I saw your message, it was about some guy getting in shit from Sega for buying parts from a scrapyard, and he got arrested and all kinds of shit. Should check it out if you're interested.

It would be a nice thing to do but yeah, for many reasons we can't have nice things in our wonderful little land...shame... (insert Hot Fuzz meme here, I can't cos Imgur is fucking blocked!!!)

HS2005 · Apr 4, 2026

SNESC0RE

SNESC0RE is based on the EMUC0RE NES emulator by EGYDEVTEAM / egycnq, and its usage is basically identical. I'm very happy to be able to contribute in some way to the scene, and I truly hope you enjoy it

I'm also open to bug reports, feedback, and possible improvements.

Requirements

PS5 console (any firmware, tested up to 13.00)
LuaC0re set up and working
Star Wars Racer Revenge - US (CUSA03474) or EU (CUSA03492)
If you're on latest FW you can grab the digital version from the PS Store
Python 3 on your PC
PC and PS5 on the same network

Link: https://github.com/BrinooTk/SnesC0re/releases/tag/SnesC0re

Rasa39 · Apr 4, 2026

Also does voidshell have a timed license like the etahen beta builds?

I've just tried launching my alternate payloads, including voidshell, and I get a debug error saying license invalid or tampered with. I switch backed to standard etahen2.5B just in case it was the beta build from that, but it's still happening.

etahen works, but voidshell doesn't. I'm using the same elf as I've always used from the 2.0 beta.

Ed: It's definitely voidshell, just ran it again on it's own and it says "license invalid or system tampered"

HS2005 · Apr 4, 2026

Rasa39 said:
Also does voidshell have a timed license like the etahen beta builds?

I've just tried launching my alternate payloads, including voidshell, and I get a debug error saying license invalid or tampered with. I switch backed to standard etahen2.5B just in case it was the beta build from that, but it's still happening.

etahen works, but voidshell doesn't. I'm using the same elf as I've always used from the 2.0 beta.

Ed: It's definitely voidshell, just ran it again on it's own and it says "license invalid or system tampered"

Voidwhisper updated VoidShell 2.0 to work until 30th April 2026, meanwhile he is working on VoidShell 3.0.
Support him if you want. I did: https://ko-fi.com/s/99aac5c463

Rasa39 · Apr 4, 2026

Ahh okay, my dumbass didn't realise they also had expiry dates, guess that's what I get for not scrolling down lol

ShintaiUS · Apr 4, 2026

SonGoku78 said:
Please think again, he is modifying a console to bypass security measures.
And i mentioned copied games right?
Which is absolutely illegal to sell!
And even if he installs from disk, modifying the ps5 will make the User able to even use that installed game even if he has no licence or disk!
I wouldnt risk that, lawyers are like blood hounds.
And selling my legit unhacked ps5, Profile removed, but game files still installed is surely no problem, because buyer will have no access to the games aka i didnt make it possible to do so. This is total different story and cant be compared to preparing a console for Bypass security measures. Thats the point that matters.
And why even install swrr, this is bdj unlock service, so the User can use bdj exploit.
If User had the swrr disk, wouldn't even send it in.
Also just google what happened to many switch modders that sold modified consoles.
Different countrys will have different copyright laws.
Just be careful, read into it for uk and dont install unnecessary stuff which can be trouble. Thats what i wanted to say, nothing more, nothing less.

You're thinking too much, bud.

My point is, there is nothing wrong with leaving the game installed whether is intentionally and unintentionally. There is nothing unlawful about it. lol

The patched .jar file must be left in the console otherwise there is no service to be done, the game files and save games, are worthless without the original disc.

The shellcode in the savegame, the patch and the use of the game is a more nuanced than just "bypass security measures", I don't think none of us are equipped to argue the legality of it.

Post automatically merged: Apr 4, 2026

Adam512 said:
Astro Bot has the latest update 1.018... other games have some updates too

----

@BobaFett_UK
How about renting the game SWRR? That would be easier with the transfer.. Of course, the buyer would have to sign a contract remotely that in case of not returning it within a certain period, the deposit will not be refunded or something like that...

Example: You rent a game for 200 euros for 7 days, the period will start counting from the day of collection at the post office and if it is not sent back after 7 days, the fees will be deducted from the prepaid deposit... The deposit will be, for example, 2000 euros, which the buyer must pay in advance along with the price of the loan (i.e. 2000+200). For every single day of delay, there will be a minus of 100 euros.

Simple, right? There are definitely people who would pay this amount and you also have insurance in case they don't want to return the game. If the customer returns the game on time, you will send them back the full deposit (2000) and you will only keep the rental price, which in this theoretical case is only 200 euros.

I thought on something like that, but there is always the concern of someone maliciously keeping the game, while lets say 200 euros is too high of a price for the game, someone may keep it, re-sell it or even offer paid services with it.

Derherrbios · Apr 4, 2026

What i mean is not copy the original but burn a dump from like duplex to the disc , would that work?

solitaire4eva · Apr 4, 2026

Derherrbios said:
What i mean is not copy the original but burn a dump from like duplex to the disc , would that work?

Now that's a lot of wear and tear on your PS5 laser! Also largest blank disc is around 128GB. You ain't playing no Astrobot from no burnt disc!

mattyxarope · Apr 4, 2026

Theone5000 said:
For those who want or are using Linux:

PS4 Linux Loader v24b
Whats new
Fixed small bug that detects the firmware version for sub 10.71

The rest from v24:

No more per firmware payloads. Its all in one, aka firmware agnostic Linux payload. Thanks to @rmuxnet

Introducing runtime Southbridge and PS4 PRO detection, no more separate PRO or Baikal payloads.

Completed PS4 7.xx and 8.xx support.

scans for the files in /user/system/boot/ if they weren't found in the default path /data/linux/boot/

low vram payloads. great for repurposing the PS4 as a server. lowest supported payload is 32mb.

Supported firmware list

Code:

FW 5.05 ✅ FW 6.72 ✅ FW 7.00 / 7.01 / 7.02 ✅ FW 7.50 / 7.51 / 7.55 ✅ FW 8.00 / 8.01 / 8.03 ✅ FW 8.50 / 8.52 ✅ FW 9.00 ✅ FW 9.03 / 9.04 ✅ FW 9.50 / 9.51 / 9.60 ✅ FW 10.00 / 10.01 ✅ FW 10.50 / 10.70 / 10.71 ✅ FW 11.00 ✅ FW 11.02 ✅ FW 11.50 / 11.52 ✅ FW 12.00 / 12.02 ✅ FW 12.50 / 12.52 ✅ FW 13.00 ✅ FW 13.02(?)

What's Changed

feat: unified AIO payload architecture and kexec deduplication by @rmuxnet in #4

Full Changelog: v23...v24b

Link: https://github.com/ArabPixel/ps4-linux-payloads/releases/tag/v24b

My heart almost stopped looking at this firmware list. Turns out it's PS4 not PS5. Dunno why it's posted.

HS2005 · Apr 4, 2026

mattyxarope said:
My heart almost stopped looking at this firmware list. Turns out it's PS5

Yeah I opened the wrong thread. Asked the staff to move my post. I was busy writing 2 posts at the same time.

Post automatically merged: Apr 4, 2026

Regarding my previous post: https://gbatemp.net/threads/ps5-exploit-guide.613891/post-10841106

Holding everything

PS5 MIGHT BOOT INTO SAFE MODE AFTER KERNEL PANIC.** Use at your own risk!!!
I'm seeing multiple guys got system corruption after kernel panic at different moment after jailbreak, not only from BD-UN-JB. You'll have to reinstall firmware when PS5 can only boot into safe mode. It would lose the bdj-unpatch. It would lose disc drive pairing for Slim and Pro models.

It feels everything is still in early stage. So I'm putting everything as pre-releases. I'll put it to general release when I don't see safe mode after kernel panic. I suggest to wait for etaHEN release for now. And I won't update this ISO image until then.

Changelog:

Code:

!5000
ftpsrv-ps5-0.18.3.elf
!1000
shadowmountplus-1.6test7-fix2.elf
!3000
kstuff-lite-1.03.elf

'ps5_autoloader' folder loading priority:
/data/ps5_autoloader -> /mnt/USB?/ps5_autoloader -> /mnt/disc/ps5_autoloader.

Thanks to all the creators of these masterpieces. Credits

Disclaimer
This tool is provided as-is for research and development purposes only.
Use at your own risk.
The developers are not responsible for any damage, data loss, or other consequences resulting from the use of this software.

Link: https://github.com/owendswang/BD-UN-JB-Poops-Autoloader/releases

I did a couple of tests and had no issues / kp's etc. The disc loads faster than Y2JB in my case. Your situation may differ.

xalfie · Apr 4, 2026

^that fucked pairing... I hope that finally someone can figure about it in order to backup that pairing shit.

ShintaiUS · Apr 4, 2026

Theone5000 said:
Yeah I opened the wrong thread. Asked the staff to move my post. I was busy writing 2 posts at the same time.

Post automatically merged: Apr 4, 2026

Regarding my previous post: https://gbatemp.net/threads/ps5-exploit-guide.613891/post-10841106

Holding everything

PS5 MIGHT BOOT INTO SAFE MODE AFTER KERNEL PANIC.** Use at your own risk!!!
I'm seeing multiple guys got system corruption after kernel panic at different moment after jailbreak, not only from BD-UN-JB. You'll have to reinstall firmware when PS5 can only boot into safe mode. It would lose the bdj-unpatch. It would lose disc drive pairing for Slim and Pro models.

It feels everything is still in early stage. So I'm putting everything as pre-releases. I'll put it to general release when I don't see safe mode after kernel panic. I suggest to wait for etaHEN release for now. And I won't update this ISO image until then.

Changelog:

Code:

!5000 ftpsrv-ps5-0.18.3.elf !1000 shadowmountplus-1.6test7-fix2.elf !3000 kstuff-lite-1.03.elf

'ps5_autoloader' folder loading priority:
/data/ps5_autoloader -> /mnt/USB?/ps5_autoloader -> /mnt/disc/ps5_autoloader.

Thanks to all the creators of these masterpieces. Credits

Disclaimer
This tool is provided as-is for research and development purposes only.
Use at your own risk.
The developers are not responsible for any damage, data loss, or other consequences resulting from the use of this software.

Link: https://github.com/owendswang/BD-UN-JB-Poops-Autoloader/releases

I did a couple of tests and had no issues / kp's etc. The disc loads faster than Y2JB in my case. Your situation may differ.

If i am understanding correctly this seems like is caused by the autoloader via BR JB disc rather than the POOPS exploit itself.

Post automatically merged: Apr 4, 2026

Although it days "not only from BD-UN-JB" so it may originate from the BR-JB .jar patching?

littlemisskittn · Apr 4, 2026

ShintaiUS said:
If i am understanding correctly this seems like is caused by the autoloader via BR JB disc rather than the POOPS exploit itself.

Post automatically merged: Apr 4, 2026

Although it days "not only from BD-UN-JB" so it may originate from the BR-JB .jar patching?

I have faith that it'll be sorted. It seems like they know what the problem is, it's just a matter of testing it and making sure it's working.

PS5 Hack Status:

Preparing Your Console:

Select Your Jailbreak:

Additional Information:

Warnings:

Archived Information

New Member

Member

The destroyer of worlds

Well-Known Member

Member

Member

Well-Known Member

Pervert Deluxe

The destroyer of worlds

SNESC0RE​

Requirements​

Pervert Deluxe

The destroyer of worlds

Pervert Deluxe

Well-Known Member

Member

Fickly Member

Well-Known Member

PS4 Linux Loader v24b​

Whats new​

The rest from v24:​

Supported firmware list​

What's Changed​

The destroyer of worlds

Well-Known Member

Well-Known Member

SQUIRRELY WRATH!

Similar threads

Popular threads in this forum

SNESC0RE

Requirements

PS4 Linux Loader v24b

Whats new

The rest from v24:

Supported firmware list

What's Changed