Sleirsgoevy Announces PS5 Kstuff Porting Tool Complete for Missing Offsets

In PS5Scene news today developer @sleirsgoevy announced on Twitter that the Kstuff PS5 Porting Tool is complete allowing others to dump the offsets for the missing PlayStation 5 Firmware on PS5 versions 3.00 to 4.51 that have a kernel exploit while noting the list of currently supported revisions (3.00, 3.10, 3.20, 3.21, 4.00, 4.02 added thus far to 4.03, 4.50, 4.51 and more) can be found in offsets.c on his Github repository.

This comes proceeding the PS5 Kernel Exploit 4.03 / 4.50 / 4.51 Firmware Version Updates, PS5 Kernel Exploit v1.01 for 4.03 / 4.50 / 4.51, PS5 Kernel Exploit Payload.bin Loader Host, 4.03 PS5 HEN PS4 FPKG Enabler Payload, 4.50 PS5 HEN PS4 FPKG Enabler Payload and 4.51 PS5 HEN PS4 FPKG Enabler Payload with a PS5 Kstuff Porting Tool Guide to dump the offsets of Firmware not yet supported via the README.md:

Instructions for PS5-kstuff porting_tool (original by NotSoTypicalGamer and EchoStretch who also has a kstuff.elf (Kstuff GIT) Fork with the latest Kstuff v1.6.7 and kstuff.elf (Kstuff Lite 1.03) (Kstuff-Lite GIT) available, kstuffSW.plugin & Kstuff-Toggle.zip (Kstuff-Toggle GIT):

1. Make sure PS5 is jailbroken and running your exploit of choice with the ELF loader active
2. Use Linux, this README is focused on Ubuntu specifically (WSL2 doesnt appear to work)
3. Clone this repository locally:
   1. git clone https://github.com/sleirsgoevy/ps4jb-payloads.git --recursive --recurse-submodules -b bd-jb
   2. move into the right folder cd ps4jb-payloads/ps5-kstuff/porting_tool
4. Create symbols.json in the same folder and the contents should be:

   {"allproc": <ALLPROC_OFFSET>}

   1. to find the ALLPROC_OFFSET for your firmware, search on Specter's GitHub
   2. the offsets are located here document/en/ps5/offsets, find the right .js file for your firmware and search for OFFSET_KERNEL_DATA_BASE_ALLPROC. The HEX value you will find needs to be converted to DEC (just use a website online)
   3. you can finally substitute <ALLPROC_OFFSET> with the DEC value you got and save the file
5. Make sure python3 is installed
6. Install gdb-tools either with pip install gdb-tools or sudo apt-get install gdb if the other command doesn't work.
7. Install yasm with sudo apt install yasm
8. Try and run the script with

   python3 main.py symbols.json <your.ps5.ip.address> <elf.loader.port> kernel-data.bin

9. Once complete you should have kernel-data.bin dumped into porting_tool folder.
10. symbols.json will have also been updated to include needed information.

NOTE: This tool isn't complete. This doesn't grab all the data necessary to port "ps5-kstuff" to other firmwares. It's a WIP.

Finally, Sleirsgoevy states, "You can verify the found offsets by running the script test_offsets.py with the same arguments. It should launch a ps5-kstuff that can run fPKG files. If that works, please submit your JSON file either here, or to the testing channel on PS5 R&D Discord."

Spoiler: Related Tweets & Files

 

[hellnight]

Finally we have something at 5.50. So excited

 

[Ray251]

This is definitely a great step forward, thank you @sleirsgoevy and all that are involved in these projects.

 

[verseatility]

The advances that are happening is incredible. I tried the blu-ray JB and it's fairly easily to implement. Can't wait for a stable ESP method to go total offline and automatic.

 

[rhea2003]

waiting for kstuff on 7.60 which might take some time, but surely will get some of these to tingle with ps5.

new things coming up recently with ps5 so good to hear new stuff.

 

[GeneX]

It's out, kstuff up to 7.61. I will finally be able to JB my 7.20 PS5.

So all those patiently waiting can enjoy some nice JB. I can't wait to dust off the PS5 and start playing it again.

 

[testaccount32]

Now that we have Kstuff that was just released for 10.0x. I wonder if it will have any impact on the games that are being dumped. Its gonna be interesting to see what can and cant be played now haha. Looking forward to the months to come.

 

[cherryduck]

I've been sat on the sidelines watching all these lovely backports and dumps come out for far too long. My PS5 mostly sat unused and then a game would come out that I wanted to play (like Horizon Forbidden West) so I'd bite the bullet and update... and then shortly after it always seemed a new jailbreak came out that only works on the firmware I'd just updated from.

Not been able to play around with backups since the old PS4 days, in fact I wrote a tutorial about making original PS4 saves work with FPKG games that got featured on this very site.

Finally though! 10.01 kstuff is out so I can dive in again and (quite literally) dust off the PS5 which has sat unloved and unplugged next to my TV forever. Pleasantly surprised that so many PS5 games were also released on the PS4 so even if I can't get the proper PS5 versions yet I can still play some titles I missed out on, or haven't played in an age.

Most looking forward to being able to play Ghost of Yotei though whenever that is dumped... although I imagine it's got a higher required FW than what we've got jailbreaks for so far, so I might be in for a bit of a wait. Fingers crossed for continued progress and some newer PS5 dumps soon!