PS4:Alternative Methods of Jailbreaking

This page provides instructions on how to self host on different firmware versions with various methods.

• A method that allows direct access to the previous DNS method via the Internet Browser and self-hosting.
• A method that will allow you to completely stay offline and create your own host website for your jailbroken PS4.
  • If you later decide to go online follow this PS4:Blocking OFW Updates guide to stop game and firmware updates even if a DNS is not an option for you there are alternatives.

For people who can't access DNS

For some people, their ISP (Internet Provider) will not allow the user to use any DNS thus can't jailbreak the same way as everyone else.

1. On your PS4, open Internet Browser and navigate to either site below and select your firmware version:
   • https://cthugha.exploit.menu/ - Direct link to the expoit site without using a custom DNS.
   • https://kar0218.github.io/ - Another all in one host by Karo.
2. FOR 9.00 ONLY: If you see "Insert USB now", plug in your USB drive that Rufus has flashed, wait until the notification pops and disappears, then press OK. If you see "You're all set", it means you now jailbroken the PS4 (also on FW lower than 9.00 this should appear without a USB drive)
3. Additionally, to block PSN connection like the DNS would have done, you can navigate on your PS4, after jailbreaking, to Debug settings > PlayStation Network > NP Environment, and simply change np value to any other word such as block.

• You now have jailbroken your PS4! 9.00 users, you need to remove the USB after you see the "You're all set!" screen.

Self-hosting

Self-hosting involves cloning a website then running it locally using your PC as the server. If you have DNS ISP problem this most likely wont work.

If your chosen exploit menu supports caching, you only need to host the exploit on your PC the first time, as it will display the cached version going forward.

1. First, find a host you want to clone. For example, Karo's 9.00 and lower JB host.
2. Download and extract or install:
   • XAMPP
   • Python
   • FakeDNS script
3. Run XAMPP and open its control panel. Select Start so that Apache turns green.
4. Open a command prompt and run: ipconfig to find your IP Address (IPv4 Address). Take note of it.
5. Put fakedns.py to the folder C:/Python27/
6. In the same folder create a .txt file and write:
   • A manuals.playstation.net IPADDRESS - replace IPADDRESS with your IP Address you took note of.
7. Save the file and rename it to dns.conf. Make sure its a .conf and NOT a .txt file.
8. Back to command prompt, run the command: fakedns.py -c dns.conf. This will start a fake server.
9. On the PS4, navigate to Settings > Network > Check Connect to the Internet, then Set Up Internet Connection and set:

Connection: Wi-Fi or LAN cable
Set Up: Custom
IP Address: Automatic
DHCP Host Name: Do Not Specify
DNS Settings: Manual
Primary DNS: YOUR IP ADDRESS     - Explanation: This DNS will redirect you to the host.
Secondary DNS: 0.0.0.0
MTU Settings: Automatic
Proxy Server: Do Not Use

10. On your PS4, navigate to Settings > User's Guide/Helpful Info > User Guide. Take note of the address it tries to load. It should appear like this:
• http://manuals.playstation.net/document/region/ps4/index.html - Take note of the region code. Could be "Ca" or "en", "eu" etc.
11. Back on the PS4, go to C:/XAMPP/htdocs/. Create folders that will copy the website structure before noted. It should look like this.
• C:/XAMPP/htdocs/document/region/ps4/ - again replace region with your own region code.
12. In the final PS4 folder copy and paste the host cloned before (no archive).
13. Back on the PS4, navigate to Settings > User's Guide/Helpful Info > User Guide and the new host should now load.
14. Select firmware and jailbreak using GoldHEN.

ESP32-S2/S3 Self-hosting 5.05-9.00

1. Download https://github.com/marcelstoer/nodemcu-pyflasher/releases/tag/v5.1.0.
2. Hold down the 0 button on your ESP32 or if you have only a single button hold it down then plug it into your PC.
3. Open nodemcu-pyflasher and select your ESP's COMX port. You can find it in "Device Manager" by seeing the new COM port that appears when you plug in the ESP32.
4. Select your bin file you can download one of the ones below based on their GoldHEN version and features feel free to test a few and see what you like. Or use your own you have found online or on YouTube.
5. After selecting the .bin leave all settings as they are and press "Flash NodeMCU" and wait for it to finish.
6. Connect the ESP32 via a data capable cable or directly to the PS4 depending on the model while it is off then turn it on (restart it if needed) and connect to the WiFi network it creates. WiFi SSID and Password are usually on the host page. Here are some common ones: "password", "12345678", "123456789".
7. On the PS4, navigate to Settings > User's Guide/Helpful Info > User Guide. The website loaded should be an exploit host instead of the user guide. Or in the PS4 Browser go to 10.1.1.1 or your current IP after connecting to the ESP32.

Bins:

• GoldHEN2.4b18.3 - https://github.com/Tribb/Kme900_Auto_ESP32_S2_PSFree/releases
• GoldHEN2.4b18 - https://github.com/kmeps4/Kme900_Auto_ESP32_S2_PSFree/releases/tag/GoldHEN_v2.4b18
• GoldHEN2.16.2 - https://github.com/kmeps4/Leeful900v5_ESP32_S2/releases
• From the 7in1 site go to the download tab and select the bin you want. (See notes there for LilyGO S3.)
• https://es7in1.site/ps4/index.php

Connecting ESP32 to home WiFi

• Once you have flashed a host to your ESP32 if you want to have a seamless internet connection while still having access to the exploit host.
• You will need access to your home WiFi admin page. (Admin login is usually on the router and is at the IP written on the router.)

1. Connect to the WiFi network the ESP32 creates and go to 10.1.1.1/admin.html
2. Go to "Config Editor".
3. Under "WiFi Connection" put in the SSID/Name of your home WiFi network and the password. (Not admin ones)
4. Then tick the box "CONNECT WIFI".
5. Optionally you can change the "WIFI HOST NAME" to whatever you want the ESP32 to show up as on your local network.
6. Optionally you can untick "START AP" and the ESP32 will no longer give out a WiFi network. (Preferably do this only after successgully running the exploit via your home internet connection)
7. Click on "Save Config" at the bottom of the page.
8. Log into your home internet connection admin panel and check the current IP of the ESP32.
9. Connect the ESP32 via a data capable cable or directly to the PS4 depending on the model while it is off then turn it on (restart it if needed).
10. Preferably in the next step set up your internet connection by using the DNS found here: PS4:Blocking OFW Updates so that no updates attempt to install. Although if your ISP blocks you from using a custom DNS there are other options on that page for you.
11. When the PS4 turns on connect to your home WiFi and then in the PS4 browser go to the IP of your ESP32 and run the exploit as usual.

Luckfox Pico/ P4 Tool 9.03-11.00 PPPwn

• The Luckfox Pico (Pro/Max/Plus/Mini) and the PS4 jailbreak tool are functionally basically the same. The P4 Tool is meant to be a plug and play option but can sometimes have issues and needs to be reflashed to resolve issues or update the files.

The retail Luckfox models need to be flashed out of the box and for updates they work just as well.

• NOTICE the P4 Tool is falsely advertised as coming with a library of games and cheats. This is false the only thing the device can do is load the PPPwn exploit and payloads like kernel dumper and etc.

1. The github repo of the original Luckfox script can be used to flash the needed software to your Luckfox or P4 Tool: https://github.com/0x1iii1ii/PPPwn-Luckfox