PS VITA / PS TV h-encore: The newly Released Vita Jailbreak (Supporting 3.65, 3.67 & 3.68 Firmware) by TheFlow

Discussion in 'PS Vita News' started by STLcardsWS, Jul 1, 2018.

By STLcardsWS on Jul 1, 2018 at 2:10 PM
  1. 7,365
    5,997
    747
    STLcardsWS

    STLcardsWS Administrator

    Joined:
    Sep 18, 2014
    Messages:
    7,365
    Likes Received:
    5,997
    Trophy Points:
    747
    As expected and promised by TheFlow a new Vita Jailbreak has been delivered to the PS Vita / PlayStation TV (vita tv) community with the release of "h-encore" which is a new exploit that is now supporting 3.65 (Supports Henkaku & Enso), 3.6 7 & 3.68 (Supports Henkaku but does not support Enso) firmware's. The next chapter in the Vita Community has been opened and anyone who missed out on 3.60 now has a new window to exploit your device. TheFlow has plans for a Source Code release but has no intentions on doing so until the bug has been patched by Sony..

    There is a vast amount of homebrew and hacks you can find for the VITA & PSTV. Need help finding Vita Homebrew??? Of course we have our own download section here at psx-place.com >> Link . Then also sites like Brewology.com & also over at the VitaDB contain a huge number of downloads as well for the PS Vita / PlayStation TV / Vita TV...


    H_encore.png

    • h-encore

      h-encore, where h stands for hacks and homebrews, is the second public jailbreak for the PS Vita™ which supports the newest firmwares 3.65, 3.67 and 3.68. It allows you to make kernel- and user-modifications, change the clock speed, install plugins, run homebrews and much more.


      A video demonstration released earlier in the week by TheFlow
      Requirements
      • Your device must be on firmware 3.65, 3.67 or 3.68. Any other is not supported. If you're on a lower firmware, please decide carefully to what firmware you want to update, then search for a trustable guide on /r/vitahacks (if you know how and want to contribute, you can edit this readme and make a pull request, such that fellow readers have got an easier life). Remember that on firmware 3.65 you have got the possibility to install enso, the permanent hack, whereas on 3.67 and 3.68 you don't.
      • If your device is a phat OLED model, you need a Memory Card in order to install. There's no need for a Memory Card on Slim/PS TV models, since they already provide an Internal Storage. Make sure you have got at least 270 MB of free space.
      • Your device must be linked to any PSN account (it doesn't need to be activated though)

    • PSX-Place Note's:
      @Naked_Snake1995 published a "SIMPLE WAY" in the forums for making this process a bit easier:

      Update: (July-7-2018)
      Zexceil has released "Auto-h-encore" that automates the process of installing h_encore

      Update 2 (July-9-2018)
      @TheDemon has published a new guide to "h-hencore how to shrink the size to 11mb guide"

      USE THESE UNOFFICIAL METHODS & GUIDES AT YOUR OWN RISK

      Official Instructions
      Installation
      Note that the following guide is for advanced users and a bit more complicated than the previous hack that only required you to visit a website. If you don't understand the guide below or how to use these tools, you should neither file an issue here nor annoy me on twitter, but rather seek help on /r/vitahacks (check for duplicated questions first!) or wait for an easy installer by somebody else.
      1. Download and install qcma, psvimgtools and pkg2zip (check the releases section for the binaries).
      2. Download the vulnerable DRM-free demo of bitter smile (yes, that's the user entry point).
      3. Download h-encore and extract it on your computer.
      4. Extract the demo using this command in terminal:
        pkg2zip -x PATH_OF_PKG

        This will output the files to app/PCSG90096.
      5. Copy the contents of the output app/PCSG90096 to the folder h-encore/app/ux0_temp_game_PCSG90096_app_PCSG90096 (such that the files eboot.bin and VITA_PATH.TXT are within the same folder).
      6. Copy the license file app/PCSG90096/sce_sys/package/temp.bin to the folder
        h-encore/license/ux0_temp_game_PCSG90096_license_app_PCSG90096 and rename the just pasted file temp.bin to 6488b73b912a753a492e2714e9b38bc7.rif. Again, this file should be in the same folder as VITA_PATH.TXT.
      7. Start qcma and within the qcma settings set the option Use this version for updates to FW 0.00 (Always up-to-date).
      8. Launch Content Manager on your PS Vita and connect it to your computer, where you then need to select PC -> PS Vita System, and after that you select Applications. If you see an error message about System Software, you should simply reboot your device to solve it. This should create a folder at PS Vita/APP/xxxxxxxxxxxxxxxx on your computer (see qcma settings where this folder is), where the folder xxxxxxxxxxxxxxxx represents the AID (account ID that is 16 characters long) that you need to insert here. If the AID is valid, it will yield a key that you can now use to encrypt the demo.
      9. Change directory to the h-encore folder in terminal and use the key to encrypt all folders using (make sure you don't confuse the key with the AID, the key is 64 characters long!):
        psvimg-create -n app -K YOUR_KEY app PCSG90096/app
        psvimg-create -n appmeta -K YOUR_KEY appmeta PCSG90096/appmeta
        psvimg-create -n license -K YOUR_KEY license PCSG90096/license
        psvimg-create -n savedata -K YOUR_KEY savedata PCSG90096/savedata

        The folder h-encore/PCSG90096 should then contain sce_sys and all 4 folders from above, and within these folders you should find files called X.psvimg and X.psvmd, where X has the same name as the folder. Backup this folder, since if everything has been done correctly, you don't need to redo all the steps to install it onto another device with the same PSN account.
      10. Copy the folder h-encore/PCSG90096 to PS Vita/APP/xxxxxxxxxxxxxxxx/PCSG90096 and refresh the database under qcma settings.
      11. The h-encore bubble with a size of around 243 MB should now appear in the Content Manager and that's what you finally need to transfer to your PS Vita. If the size does not match or you get the error C2-12858-4, then it's because you did not do it correctly! Please re-read the instructions more carefully then. If you get the error You can only copy applications that your account is the owner of, then it's because you have used an AID that is not of your account, go back to step 8.
      12. Launch h-encore to exploit your device (if a message about trophies appears, simply click yes). The screen should first flash white, then purple, and finally open a menu called h-encore bootstrap menu where you can download VitaShell and install HENkaku. If it prompts the error Cannot start this application. C0-11136-2, then it's because you did not do step 6. correctly.
      13. Enjoy. Note that you have to relaunch the exploit everytime you reboot or shutdown your device. Of course if you only put your device into standby mode, you don't need to relaunch.


    • Getting rid of the trophy warning

      Since the savedata that I provided is not linked to your account id, launching h-encore would eventually show a warning message about trophies. To get rid of that you must do this on your PS Vita:
      1. Enable Unsafe Homebrews under HENkaku Settings in the Settings application to grant VitaShell full permission.
      2. Launch VitaShell and navigate to ux0:user/00/savedata/.
      3. Press triangle on the folder PCSG90096 and select Open decrypted.
      4. Copy system.dat out of the folder and remove the folder ux0:user/00/savedata/PCSG90096.
      5. Close VitaShell and launch h-encore (this will now not trigger the exploit anymore, since we've removed the savedata).
      6. Close the game after you see the first screen and return back to VitaShell.
      7. A fresh folder of PCSG90096 at ux0:user/00/savedata should have been created.
      8. Copy system.dat back to ux0:user/00/savedata/PCSG90096/system.dat where you need to open the PCSG90096 using Open decrypted.
      9. Now if you launch h-encore you should not see the trophy warning anymore and exploiting your device is therefore even faster.

    • FAQ
      11.jpg

      Exploit
      • "When I launch h-encore, it stays at a white screen." - Due to the nature of the kernel exploit, this can sometimes happen. If it stays white for more than 5 seconds, you can simply close the application which will result in a crash and your device will be rebooted or shutdown after 10 seconds. If it doesn't, hold the power button down for over 30 seconds to force a shutdown. Then try the exploit again. The success rate of the kernel exploit should be at 80%. If I find time I will eventually try to improve the success rate.
      • "When I launch h-encore, it flashes white quickly and then crashes." - Again, this is due to how the kernel exploit works.
      • "I get a C2-12828-1 error when launching h-encore" - This does sometimes (but very rarely) happen. Just retry the exploit.
      • "When I launch h-encore, it launches the bitter smile demo instead." - Your savedata is either corrupted or not installed correctly, please follow the installation guide above to reinstall it.
      • "I have installed a bad plugin and launching h-encore doesn't work anymore, what should I do?" - You can either reset taiHEN config.txt or skip plugins loading by holding the L trigger while exiting the h-encore bootstrap menu.

      HENkaku Settings
      • "I don't see all folders in VitaShell." - Launch the Settings application and select HENkaku Settings, then select Enable unsafe homebrews. This will grant you full permission in VitaShell.
      • "I can't find the HENkaku Settings." - Launch the exploit and reset taiHEN config.txt and reinstall HENkaku.

      Enso / Permanent Hack
      • "Can I install enso on 3.67 or 3.68?" - Not yet, since molecule's bootloader exploit has been patched there.
      • "Can I install enso on 3.65?" - Yes, you can use h-encore to hack your device and then install the permanent hack using this.

      Compatibility
      • "Are Adrenaline/NoNpDrm/Download Enabler supported on 3.65/3.67/3.68?" - Yes, check them in my repositories >>> LINK.
      • "Can I use SD2VITA using this hack?" - Yes, I have made a pull request on gamecard-microsd that fixed the freeze when using it without enso. If you're using an other plugin and it freezes on exitting h-encore bootstrap menu, then there's the trick where you can simply press the PS Button and return back to finish the boot process.
      • "Can I use psvsd using this hack?" - It should, but I'm not sure, as I haven't tested it. If it doesn't, then the driver must be updated, but that's not my task.
      • "Does this work, does that work? Is this compatible, is that compatible?" - I don't know, and it is not my task to update these tools for you, so don't dare and file an issue here.

      General
      • "Can I switch the PSN account after having h-encore installed?" - Yes, since the demo is DRM-free it does not depend on your account.
      • "Are there any risks involved in using h-encore?" - No, since it does not modify the OS, but only insert temporary patches into the system.
      • "Can I install it without USB connection?" - You can also connect your PS Vita with your computer using Wi-Fi (there's an option in the Content Manager).

    • Donation
      If you like my work and want to support future projects, you can make a donation:

      Source code

      The source code and the kernel exploit will be made public after Sony has fixed the bugs used in h-encore.

      Credits

      • Thanks to Freakler for finding the crash in the demo and designing the h-encore icon.
      • Thanks to molecule for their initial work on the PS Vita.
      • Thanks to xyz for giving me some tips on choosing an exploit target.
      • Thanks to Davee and Proxima for http://cma.henkaku.xyz/.
      • Thanks to yifanlu for psvimgtools.
      • Thanks to codestation for qcma.
      • Thanks to mmozeiko for pkg2vita.
      • Thanks to the PS Vita hacking community.
      • Thanks to Sony for this awesome device.

    • auto h-encore: (by noahc3)
      • A C# (.NET) application to automate (most of) the process of getting h-encore running on your PS Vita system! More Information via GitHub >>> LINK

    Useful Links:


     
    Last edited: Jul 9, 2018
    jolek, svotib, Johnnie and 4 others like this.

Comments

Discussion in 'PS Vita News' started by STLcardsWS, Jul 1, 2018.

    1. Berion
      Berion
      Too much effort, and wasting around 300MiB. I'll stay on 3.60. ^^

      But of course thanks for the exploit, a holy grail for everyone who updated by accident or just get Vita with 3.68 (and for everyone who was unaware to update to 3.65 months ago without any recovery solution... ;p).
      STLcardsWS likes this.
    2. complexusername
      complexusername
      Is it worth upgrading from 3.60 to 3.65 at this time? I haven't touched my Vita or PSTV's in ages.
    3. Berion
      Berion
      @complexusername Only if You want playing games for 3.63 and newer (or games with patches for those obligatory system version), or want connect to SEN for some bad reason. If You focus only on homebrew there is nothing advantage in upgarde.
      complexusername and STLcardsWS like this.
    4. complexusername
      complexusername
      I've been interested in PSO2 online which has a higher minimum software version than 3.60 but since there hasn't been any translations available, i'll wait it out. Thanks @Berion
    5. Berion
      Berion
      Using online services on hacking device == high chance of ban (for NPAID and *all* IDPS stick to it) today, tomorrow or in the future (or never...). Just FYI. ;)
      complexusername likes this.
    6. complexusername
      complexusername
      Would never play on my main PSN account. I have a few spare PSTV's that could get banned without me caring much thanks to my local Target's clearance bin!
    7. Neal Cullum
      Neal Cullum
      I think i will stay on 3.60 Enzo for now. I'll see if any bugs/issues are found. Apart from being able to play backups 3.60+ i don't see a reason to use this
    8. TheDemon
      TheDemon
      Any that uses enkaku i acidentaly clicked on the option to disassociate memory card, will have any problems? think it should have option to confirm it done it as soon as i clicked on it on HENkaku settings.
      Just to clear this doubt out.

      think im going to create a new psn account before i login there and get banned with all my purchased games and do the exploit again.
    9. jabbbar
      jabbbar
      we can't uninstall h-enocore on 3.65, when henkaku, vitashell and enso is installed? i'm asking because i want to update to enso 3.65. installed h-enocore on 3.67-3.68 is needed for sure, but not in 3.65, at least in theory
    10. Kretek
      Kretek
      Thank you The Flow ... Just finished the tutorial, pretty easy to follow ... looking forward to play with homebrew (Moonlight) and Psx/Psp.. Rejoice :)
    11. Kretek
      Kretek
      I dont think you need to worry, the message that popped up after do that was that you can use your original Sony Memory card now in any other ps vita (normaly this cannot be done because the psn/psvita is tied to your mem card)... you jailbreaked your mem card :)
      Im not experience any problems after jailbreaking my memcard (although i also have an vita2sd) ...
      TheDemon likes this.
    12. TheDemon
      TheDemon
      Ok thanks for the info, im good to go then, just created a new psn account, tomorrow will make the switch and testing some homebrews i want specialy those quake ports
    13. Berion
      Berion
      In case of H-Encore, entry point is save data exploit (judge from files) for specific game. It has nothing to do with current TaiHENkaku, Enso and especially VitaShell. I'm pretty sure that You can prepare environment on 3.60 then update to 3.65 - but better wait for confirmation and follow the tutorials. ;)

      Enso *past* 3.65 don't work until someone find another way to patch the system on start. TaiHENkaku don't work *past* 3.60 without new way to "load it" (and this new way is H-Encore).
    14. morimori
      morimori
      Successfully installed h-encore on my 3.65 (updated from 3.60), one question is, in order to play 3.67-3.68 games is to update to 3.68 and ditch Enso right, cause spoofer 3.68 isn't doing anything, launching a 3.67 game will just result in error
    15. pinky
      pinky
      I've updated to 3.65 as well. I've rid myself of my banned account (FINALLY!). this is only on the pstv which is actually trickier, since I can't exactly navigate the recovery menu to rebuild the database if I'm using a usb device, than the vita, but I want to make that a seamless transition if possible. it's taken a while to get everything back in order, then, I'll back up everything on to a new pc. :)

      all three white list hacks (vs0, ur0, and app.db) were removed and installing molecular shell for the first time again deleted everything (plugins) in the tai folder in favor of its original files. those old files were still present, but they were deleted when I installed molecular shell.

      also, a new app.db means rearranging everything again. my psp games were also in the wrong order which was easily fixable by opening hb sorter, where they were sorted correctly, and pressing start. my psp theme was still present though. that was the one from @Berion , so not everything is reverted to default by restoring the system. my ps vita theme, also by Berion, was removed, so I"ll have to reinstall that.

      I'm probably leaving some things out, but it's been a lot of restoration. to fix everything, I believe I did a system restore while on 3.60 in order to install molecular shell for use on 3.65. updating to 3.65 = fucked when it comes to getting rid of a banned account since qcma requires an aid (your new one), so you have to sign in to psn first with the system spoofed to 3.68 before it will connect. molecular shell is a must!

      edit: I just need a 3.61+ game to test. I thought about Ys VIII, but I don't own it. I plan to buy that game for the switch since it was released last week or so.
    16. morimori
      morimori
      @pinky I'm on 3.65 and i just tested "Rose in the Twilight", man i've been waiting so long to play this, it works, "Mercenary Kings Reloaded" didn't work cause it's 3.67, i guess i'll just go 3.68 when the Persona dancing games are out :), re-enabling HENkaku is really easy anyway from h-encore
    17. TheDemon
      TheDemon
      I just think the game to make this xploit is to big, im almost sure it can be ripped since its only used to trigger the save wich is what trigger the xploit if im not mistaken.

      intro movie alone is 54mb
      voices 35mb
      background music 37mb
      tachie folder wich is a bunch of png files 67 mb

      UPDATE:
      i knew we could do it shrinked the size to 35 mb :)
      think i can take out more 10 mb
      2018-07-02-202407.jpg

      How to:
      After the step to extract the game files with pkg2zip go to where were the game is extracted and enter in this folders:

      app\PCSG90096\resource\movie\ "delete the mp4 video file"
      app\PCSG90096\resource\sound\bgm\ "delete everything inside this folder"
      app\PCSG90096\resource\sound\voice\ "delete everything inside this folder"
      app\PCSG90096\resource\image\bg\ "delete everything inside this folder"
      app\PCSG90096\resource\image\tachie\ "delete everything inside this folder"

      After all these are deleted keep following the next steps of the guide right after pkg2zip.

      im almost sure we can delete the files inside this folder below but i forgot this folder, its more 10mb:
      app\PCSG90096\resource\sound\se\
      Last edited: Jul 2, 2018
    18. Kitsumi
      Kitsumi
      Thanks, @TheDemon. _ have just deleted these files directly on the Vita using VitaShell and shrinked it down to 16 MB. Works just fine. :D
    19. morimori
      morimori
      Any of you guys in 3.68?, i'd like to know what you guys think of it cause i want to update to the latest as well and play the new games like Bloodstained, IMO, Enso at this point is just a convenience in 3.65 but still can't play the new games, also, it's just me but i don't like edited 3.67-3.68 MaiDump games to work on 3.65, i prefer my games untouched and as original as possible, except for Undubs and English patched ones that will never get a US/EU release lol!

Share This Page