GitHub - cragson/ps5-hen: A Homebrew Enabler (HEN) for PS5 supporting firmware 1.00 to 4.51, based on an HV exploit chain.

Defeats the Hypervisor on firmware <= 4.51 and enables supports for homebrew and ps4 fpkg's.

Supports firmwares:

Download

Download the payload from button above
- its automatically the latest dev build
Start elfldr by running UMTX or Y2JB
Close application
- Y2JB, UMTX etc. to allow pinning to all cores
Send the HEN payload and wait until the notification popup occurs
- netcat, socat, host everything works
Have fun

For full changelog see CHANGELOG.md
Latest 1.3 (04/15/26)
- PR: replace std::print with printf macro
- PR: Simplify compilation on platforms other than x86_64
- Feature: Added Testkit/Devkit support

All firmwares have crashes after launching multiple ps4 fpkgs (needs to be investigated)
Currently does not support Restmode
Speed can be improved for ps4 fpkg loading (already commented out logging)

Thanks to every single one of you - without your help it wouldn't be possible.

Stage	Name	Description
0	Discovery	Detect firmware, locate kernel base, map HV structures
1	TMR Relaxation	Patch IOMMU for unrestricted memory access
2	VMCB Discovery	Locate Virtual Machine Control Blocks
3	VMCB Patching	Disable HV intercepts and nested paging
3b	XOTEXT Removal	Remove execute-only page protections
4	Verification	Confirm successful HV bypass
5	Kernel Patching	Apply firmware-specific kernel patches
6	Kexec Install	Install kernel execution primitive
7	HEN Payload	Load HEN kernel module for homebrew/ps4 fpkg support

Requires the PS5 Payload SDK. Set PS5_PAYLOAD_SDK to your SDK path.

make          # build everything
cd hen && make  # build HEN module only

make test     # send payload to PS5
make debug    # deploy with GDB support