I created this video tutorial for people having trouble writing a binary loader with a psp exploit.
Now, this tutorial assumes you already have control over $ra (or any other exploit method). I’m not showing you how to find an exploit because it simply differs between games. (Shameless plug by wololo: However you can get a good idea on how to do that in my article here).
This video is a prefect companion to the article explaining how to write a binary loader on a psp game exploit
Anyway, here’s the video: