reF00D released for the PSVita / PSTV – You can now play FW 3.69 games on older firmwares without compatibility packs!
On New Year’s Eve, Team Molecule revealed the PSVita’s F00D key which effectively opened the doors to the remaining PSVita security barriers. However, we didn’t fully know what the end-user could get out of their information and tools but now, that’s changed with the release of reF00D!
What is reF00D?
reF00D, by CelesteBlue, dots_tb and Princess of Sleeping, is a kernel plugin that does away with FW requirements of games/apps. It allows you to run games requiring a higher FW than the one you’re currently running, such as FW 3.69 or 3.68 titles on 3.60/3.65, through realtime game decryption using keys.
Other than this, it also bypasses the F00D app blacklist thus allowing depreciated software that Sony decided to revoke, like PSM Dev Unity, to run on newer firmwares that it was never intended to be run on. Furthermore, it lets you run different versions of system applications on your Vita such as running the FW 3.69 web browser on FW 3.65/3.60.
Now, you’re probably thinking that reF00D is a complete alternative to the #LetMaiDie compatibility packs but that’s not fully accurate. Compatibility packs, generated by FAGDec, will apparently still be made since they provide quicker game start times and are decrypted thus allowing for easier modding. Staying on the subject, it’s important to state that reF00D also lets you create compatibility packs, which you could use with rePatch, by holding the L trigger when you open games. These will be stored in ux0:/rePatch
That being said, compatibility packs contain copyrighted content so reF00D brings the advantage of letting you play games that require a higher FW without having to obtain decrypted modules/binaries in a way that’s technically illegal.
Will this still work if Sony releases FW 3.70+? How do I get it?
According to CelesteBlue, the plugin will temporarily cease function with the latest titles (games requiring a firmware newer than 3.69) if Sony decides to change both the NPDRM and SPKG key.
That being said, this isn’t very likely to happen especially when we consider how long it took them to release FW 3.69 after H-Encore was released but even then, Sony didn’t change the aforementioned keys. However, if Sony decides to change the keys, all it would take would be to decrypt the PUP file of the FW update and grab the keys from it as doing such things is now possible thanks to the aforementioned information released by Team Molecule.
To install reF00D on your device, you have to do the following:
- Download the plugin and the keys from here
- Copy the SKPRX file you download to ux0:/tai or ur0:/tai depending on which directory your taiHEN plugins are in
- Place the keys file you downloaded in ur0:/tai EVEN if the plugin is in ux0:/tai
- Open your taiHEN configuration file and add the plugin under the *KERNEL heading
- Enjoy running FW 3.69 games and revoked stuff on your PSVita!
Conclusion
For more information, memes and crazy Vita related stuff, make sure you follow CelesteBlue, dots_tb and Princess of Sleeping on Twitter by following the in-line links above. Other than doing that, you can also check out TheRadziu’s video showing reF00D ina ction found below!
Now, you can go enjoy the latest PSVita games like Chronus Arc without messing around with compatibility packs because believe it or not, games are still being released for the PSVita!
Wow! No more needing to update 😀
You mention the web browser. Has the web browser even been updated at all since 3.60?
Yes. https://doc.dl.playstation.net/doc/psvita-oss/webkit.html
Thats webkit ^ the browser is seperate
TLS 1.2 support
But is there any improvement to that with using the “newer” browser over just the iTLS plugin somehow?
Do you guys think we’re ever going to see a custom UI home screen kind of like the PSP custom theme/UI.
Where is the ref00d.skprx file?
:0
link is in step 1.
I doubt that Sony will leave it at 3.69. Even after 6 years in EOL, they released an update for the PSP. Not that it matters for this hack anyway.
they did, and DIDN”T patch the hack. so what
they released it for brandish: revenant
Not really. It was released to add support for TLSv1 (and new root certificates) in the PSN store.
Sometimes an updated game doesn’t work with the compatiblity pack. WIll reF00d work even after updating a game?
Yes. You should also know that updates have their own, separate compatibility packs
Pure art of work . Absolutely magnificent
Why does the post literally state what $ony could do by using the terms. Im sure $ony knows about this website. Sony decides to change both the NPDRM and SPKG key. Just like how Nintendo changed the keys for the Switch so we can’t use CDN anymore.
Sony knew what they could do before the blog post was made, but it wouldn’t take long at all because the chain of trust is broken so high up and any new keys from new firmware can be found.
not like they developed the console and its security functions, obviously they wouldn’t know how to “fix” this breach. that being said, they probably couldn’t patch it permanently (the article even states that would *temporarily* stop this from working)
Works like a charm. Big thanks to all involved.
so glad im still on 3.60 and never updated for newer games 😀
Patience always pays off on the hacking side of things.
my phat VITA is still on 3.18, lol. all cause i haven’t touched it for years.
rePatch is faster! ref00d bad ***
I can’t get it to work on my 3.65 enso Vita. When I try to open a game it says you must update your system software. It works fine on my non enso Vita.
Any ideas?
Make sure that you have the spoofed version set to 3.69 in HENkaku settings.
Thanks, that did the trick.
in your config file, did you use double O or double 0 (zero) in reF00D.
Needs to be double zero.
Nice info and guide as always Aurora, thanks.
But you forget this little part:
Make sure that reF00D is installed AFTER NoNpDRM in this config.txt.
crashes an reboot on:
– stardew valley
– ocean horn
C1-6703-6 error on start:
– secret of mana
I’ve installed it correctly like the description says. Whats wrong?
THX!
SOLVED: Firmware Spoofing trick by @StepS thx!