PS4: How to run the PS4 9.00 Jailbreak (full guide with GoldHEN payload)
People who are new to the PS4 scene and joining us on their shiny 9.00 PS4 seem to be a bit confused about how to run the 9.00 Jailbreak, and in particular how to inject payloads. Here’s a full guide on how to run the PS4 9.00 Jailbreak, from start to finish.
0. Upgrade your PS4 to 9.00
First of all, if your PS4 is not running firmware 9.00, you might want to upgrade it to that firmware. Check here our FAQ as to whether you want to upgrade or not, and once you’ve made your decision, you can update to 9.00 following our guide here.
Note: if you’re on firmware 9.03 or higher, you can’t go back to 9.00 and you will not be able to run the Jailbreak. So be careful not to update to 9.03 by mistake
1. Prepare the magic USB stick
Note: This step is only required once. You’ll need to use the USB stick every time you Jailbreak, but this preparation step is only needed the first time.
The PS4 9.00 Jailbreak requires part of the exploit to be injected from a specifically crafted USB stick. You’ll need a dedicated USB stick for this, as it will be required each time you jailbreak the console, so use one that you don’t need for anything else. You don’t need anything huge, the image you’ll copy there is 4MB.
- Download the exfathax.img file from the pOOBs4 Jailbreak’s github.
- Plug your USB stick into your computer. You don’t need to format it, as the next step will do that for you.
- Download and install a tool to write the img file to your usb stick, such as Win32 Disk Manager
- Write the img file you just downloaded onto your USB stick. See the screenshot from the Jailbreak’s github for reference:

- Your magic usb stick is now ready!
2. Note your PS4’s IP Address
You’ll need to know your PS4 IP address in order to send payload to it. Before starting the Jailbreak process, go and note down your console’s IP address:
- Note down your PS4’s IP address in Settings > Network > View Connection Status
3. Run the Jailbreak on your console
With your PS4 running firmware 9.00, and your magic usb stick in hand, let’s proceed to actually running the exploit.
- point your PS4’s browser to any trusted host that has the exploit. This can be a local server that you set up yourself (you’ll need to put the files from the Jailbreak in there) or one of the public hosts we trust. For public hosts, two popular ones are:
- https://cthugha.exploit.menu/ (by Al-Azif)
- https://kameleonreloaded.github.io/900/ (by Kameleon)
- When you reach the exploit page, you will see a loading screen

- If the first step of the exploit (the webkit exploit) works, you will see a message asking you to insert the USB stick.

- Go ahead and plug the usb stick (do not click the “ok” button of the dialog box!). A message saying “This USB Device Storage’s file system is unsupported” should pop up on the upper left of your screen

- After that message has appeared, go ahead and click “ok” on the dialog box. You should now see a message saying “Awaiting payload”.

- Your PS4 is now technically Jailbroken. Remove the usb stick from your PS4.
4. Inject a Payload
You will now be injecting a “payload”, that is, unsigned code that will run on your PS4. This can be something as simple as a bit of code that will be dumping some files from your PS4 firmware onto a disk, or run an ftp server on your PS4, or a full fledged Custom Firmware such as GoldHEN or Mira.
In this example, we’ll be injecting GoldHEN, but note that any compatible payload would work at this point.
Warning: Be sure that you download only payloads from places that you trust, and that you understand what they do, before injecting them. At this point, you have full control of your PS4 and this means you could permanently brick your console if you inject malicious software.
- Make sure your computer is ON, and connected to the same local network as your PS4 (this should generally be the case as long as your PC and PS4 are connected to the same router, and unless you have a complex network configuration at home).
- Download GoldHEN (for firmware 9.00) from the official gihtub.
- You’ll want a way to send payloads through Netcat, from your PC to your PS4. You can use the utility of your choice, NetCat GUI by Modded Warfare is what we’ll be using here.
- Note: The help image from NetCat GUI below says you should run the “binloader” payload. Technically the Jailbreak is already awaiting a payload so you can ignore this, this time (once you’re running e.g. GoldHEN though, you’ll want to run a binloader from the PS4 in order to accept more payloads)

- Note: The help image from NetCat GUI below says you should run the “binloader” payload. Technically the Jailbreak is already awaiting a payload so you can ignore this, this time (once you’re running e.g. GoldHEN though, you’ll want to run a binloader from the PS4 in order to accept more payloads)
- Run Netcat GUI on your PC. Make sure the IP address is the one of your PS4, that the port is 9020, and load the .bin file for GoldHen that you just downloaded. Then click “inject payload”.
- If everything works as expected, your PS4 should display that GoldHEN has been loaded successfully:

- To confirm that everything is in order, you can go to the PS4’s “Settings” menu, and you should see GoldHEN in there:


- That’s it! Now google around to see what cool stuff you can do with your Jailbroken PS4 😉
lol
Is this a half cooked write up? The article says its only required one time but stops abruptly on the methos used to do the procedure once.
So whats the method to have it run 1 time only instead of every reboot?
Sorry if that is unclear in the article.
The step you only need to do once is creating the usb key. Everything else needs to be done at each console reboot. To avoid having to rerun the exploit constantly, set the console in rest mode instead of turning it off.
Thanks wololo.
I have a question. If i’ve installed guest payload can i load the payload via guest instead of using a pc? (Assume the payload had been stored in the ps4 during first jb)
I believe so, but I haven’t used guest payload myself yet so not entirely sure what it allows.
No to run payload guest you must have already run the Goldhen Payload.
Payload guest will then allow you to run further payloads without re-running the exploits.
You will have to use the usb, run the exploit and then send the Goldhen payload every time you power down your PS4 otherwise homebrew and pirated games will not work.
Hi Wololo
Thank you for your reply. Is sleep mode stable on this exploit?
Previous exploit I ran on my anniversary base PS4 (6.72) couldn’t run sleep mode properly.
Now this 9.00 exploit I will try on my PS4 Pro and based on your words it sounds like sleep mode works fine?
To be honest I’m not sure how stable it is in sleep mode. We’ll have to wait for people’s feedback after a few days.
I tried it today and my PS4 pro survived sleepmode several times. Haven’t tried a lot yet though as i’m new to it and can’t find a proper lonux payload yet
I’ve done every single step exactly as it is said, but I keep running into a “kernel heap” error message. I have been trying the entire evening but I still couldn’t get past that error
Easy, just buy a Xbox. Then you won’t have that error.
Sorry i have autism idk why I said that. Xbox is *** and PS4 is better.
that is literally the poorest excuse for writing a dumb comment ever lol
No need for the impersonation. The other commenter is jealous that I have a Xbox. They should also go get one.
As well as you too. Go get a xbox.
Try a different flash drive
Just get a Xbox.
why are you literally here if that the advice you want to give? just *** off
No need for profanity. Xbox is the answer, seriously. Just get a Xbox.
I am only saying you won’t get these errors with a Xbox. So get a Xbox.
I also have autism and I’m bi polar. I ran this JB last night and my ocd told me to THROW MY FU..CK..ING PS4 AT MY TV. Now they are both broken and I’m sitting here rocking myself to sleep. Also I WILL SMASH ANYONES PS4 THAT I SEE FOR THE NEXT 10WEEKS FU.. CK.. YOU 5ONY I HOPE YOUR PS6 ALL DIE A MISERABLE DEATH AND YOUR EXECUTIVES ALL HAVE A MASS DIARRHOEA ATTACK AND SH.. IT.. OUT THEIR SPLEENS!!!
Sup bro, same here, now I initialized my ps4 all over again, and the error was fixed, though I’m not really sure whether it was me formatting the usb stick and inserting the files in it again that did the trick or resetting my ps4. Though I would suggest formatting your usb stick first and see what will happen.
Get a Xbox then you don’t need to worry about USBs.
thats true, i agree with xbox fan
i had the same error, turns out the img file was corrupt. mske sure its 4mb before writing to usb
Try a different usb stick. It seems some work better than others
THIIIRRRRDDDDD!!!@!!!
To run the jailbreak, does the ps4 need to be connected to internet?
The first time yes, after you can cache the website for offline use.
I recommend also telling people to use the psn update blocking DNS so they don’t wake up to an updated ps4 or something
is the disable_update.bin payload working correctly on 9.00 ?
and are the DNSs up to date ?
I figured out what the problem was. I was using a false xfat image file. I don’t how, but the one I was using was just a couple hundreds kb in size. I downloaded it from gethub. So, after I tried everything I decided I was gonna re-download all the files needed for the breakjail from the beginning. When downloaded, I noticed the new xfat image was 04mb, different than the one I was using before. And yes, it worked like a charm. Thank you guys.
Work Like a Charm, Now I Have a Jailbroken Ps4 Pro, But not know what to do with it, Were do I put Package Files ? to install with gold hen ? What Software to use with FTP of goldhen.
I’m aways turn my ps4 off, One question, Have to do this all the time, or is already with goldhen in it. ??? I will wait until more is to come.
Tks =D
is this a tethered solution? do i have to apply this again every time i restart my computer?
Just let the PS4 in rest mode If you turn power off then Yes
hey wololo. can you please give a first timer on ps4 9.00 goldhen a tutorial how to install game. please.
Dont think wololo wil make a tut on How to pirate games mate
Just look it up on YouTube
Step 1 – If you have to ask here, you probably shouldn’t
Step 2 – Flies away
Step 1. Throw away the PS4
Step 2. Get a Xbox
You sure have time to waste telling people to get an Xbox …. Some people have both and some don’t want an Xbox
So what? I have an Xbox and you should get one too.
I already have an Xbox. Should I get another?
I was able to use karo218.ir to load hen/payloads without needing to use my computer to send over the hen/payloads. *You have to have a Magic Usb flashed no matter what* because the USB is basically the key to opening the system to install hen. Basically step 1 and step 3.3 are mandatory but step 2 and 4 can be removed with correct guide. https://youtu.be/qKsAjnEf0PI
so what are the best alternate payloads that dont require pc?
There is no such thing as alternate payloads. There are however netcat equivalent tools e.g. on Android, if you’d rather send the payload from your phone than a pc.
actually there are sites that will send goldhen to ur ps4 🙂
Must we repeat this process every time the PS4 is turned off?
perhaps
Yes
Poo ten paw saw see more you pea sue
I will not update until host 9.0 offline without pc
You will have a long wait then. Your loss not ours!
You forgot to mention that the usb needs to be in ex-fat format.
This is not required. The img file contains this information so the disk utility will format accordingly.
This causes issues for some people tho and formatting before writing has fixed that. It doesn’t effect everybody and maybe related to the difference in usb sticks.
omg … I did update yesterday 🙁
Great, then go get the Xbox.
Why are you telling everyone to get an Xbox? What is so great about it? Enlighten me about all the hax.
Simple, it’s a superior console. So go get a Xbox.
i used to be like you, but then i got an xbox. now im happy. listen to xbox fan.
Get switch instead…
I have games with locks on my ps4, after jailbreak with they become open to play?,
yes…perhaps…I don’t know…Why do you have games with locks if you hadn’t jailbroken before?
Questions science still can’t answer…
Can i load payload through a home wifi network shared by pc and ps4
The Goldhen payload yes you can. But not until you have done the usb step first.
After jailbreaking, some of my game savedata are corrupted. Those games in my console when I jailbreak are fine, as they were connected to PSN before. I installed two old games that I deleted months ago, and their old save file are corrupted. Any solution? I ‘m thinking because the pkg I downloaded were fore 5.05, and my save files are created by higher firmware, could that be the problem? Please help, thank you (I already tried rebuilding the database)
So there is talk of this wokring on ps5 … any info on this?
No more details have surfaced yet, but no doubt that a few people are hard at work to try and get it ported to ps5.
https://www.youtube.com/watch?v=1lbPOWGHo0g this is real or fake?
My assumption, completely fake – previous to December 13th,2021.
Fake
Noob question here how to know the Port of my PS4?
A lot of people have had issues with the exploit working and formatting the usb before writing the image has helped with that.
The guide above really should advise to format before writing as it seems it does actually make a difference in some cases.
how remove padlock in all my games?
worth noting it can be very particular about USB sticks, it took me about 4 until I found one that never gave me a k-panic reboot..
Is it only me or every NetCat download is filled with viruses?
NetCat GUI by Modded Warfare wont even open up 90% of time and its detected as a virus.
Same for NetCat GUI 1.2, or even worse…
Virus total hash: be41233a3a7559411b02458ffb45654e2f33b096a7513af4ad1cf685d2b75811
Try using karo.ir
Search for PS4 payload injector.
I need some help. I activated and everything worked. But when i turn on the binload server, i click on “disable updates” and nothing happens. I ve tried everything.
Next on the line PS5!!
Hi, did the jailbreak perfectly, added a few homebrew apps and 2 games aswell, but I can not load any payloads and it keeps saying I have to enable the binloader eventhough I have it checked. I have dynamic IP adress and Im in a cgNAT pool if that helps.
Are you sending the payload to the correct port? On GoldHEN, the binloader port is 9090, which is different from the default 9020 of e.g. Netcat GUI.
I did try both, 9020 did nothing and 9020 straight up makes my console crash everytime I try with each payload
I did try both, 9020 did nothing and 9020 straight up makes my console crash everytime I try with each payload
Well, did everything right and Goldhen even said it worked popped up and everything. Then, the screen says not enough free space and Goldhen isn’t displayed in settings and my system information just shows firmware 9.00. Any advice would be appreciated
Well I tried a third time just today and now GoldHEN shows up, not sure what the hiccup was but it’s all good now. Thanks to all the people who put a lot of hard work into making this possible, yall rock !
Just try again for f… sake it doesn’t work 100% every time.
I know that after test i have to use the USB every time after system restart or power on, is there any update soon to make it better and easier to enable Hen?
For FU.. CKS sake people, learn to read. 99% of all the questions here have either already been answered in this very thread or are answered in the GitHub readme.
For those of you too ignorant to do that…
NO YOU CANNOT JAILBREAK 9.00 WITHOUT USING THE USB STICK.
YES YOU HAVE TO DO IT EVERY TIME YOU POWER ON YOUR PS4 UNLESS YOU USE REST MODE!
GOOGLE IS YOUR FRIEND IF YOU WANT TO KNOW HOW TO INSTALL GAMES
IF YOU CANT FOLLOW SIMPLE INSTRUCTIONS THEN TAKE YOUR PS4 OUTSIDE AND GIVE IT AWAY TO THE FIRST PERSON YOU SEE, THEN BUY A FISH AND SLAP YOURSELF STUPID WITH IT!
Chill bro, it’s just internet. Go get anger management therapy
WHY DONT YOU GO AND GET THERAPY FOR WHAT YOUR DAD DID TO YOU AND YOUR SISTER WHEN YOU WERE YOUNGER!! IT WAS JUST PLAIN WRONG NO CHILD SHOULD BE FORCED TO INJEST HAMSTERS IN THEIR BOTTOMS. EVER!
Hello, It’s work fine ! Thank you a lot !
Just a question, how can I save my game ? I install a game and it cant save anything, error during the save.
The game is It Takes Two
If someone know why ? Thanks 🙂
It’s probably fu.. cked.. mate
You right ! Its only for the first game I tried ! haha others games are fine, thanks for your reply !
PS: the game is “It Takes Two” Impossible to save.
There will be a fix at some point mate.
Darkmodder self-host offline is the best
They are all using the same code. All hosts online or offline. It really doesn’t matter which one you use.
I prefer offline since it is more convenient
Get a Xbox, don’t need to worry about it being online or offline!
Hey guys, i am a noob on ps4 haking, there is anyway of online plaing current on this explit version?
Bonjour,
Après chaque redémarrages la PS4 n’ai plus jailbreaké est-ce normal ? Si oui comment faire pour avoir le jailbreak en permanence après chaque redémarrages hors mi la laisser en veille ce qui est pas top comme solution …si quelqu’un en connais une autre je suis preneur .
C’est le fonctionnement normal, et comme vous le mentionnez le seul moyen est de la laisser en veille. Il n’y a pas de solution de CFW permanente sur PS4 aujourd’hui.
D’accord de laisser la console en veille sans arrêt ça ne risque rien ?
Une fois la console jailbreaker avec le GOLDEN…comment injecter les jeux pkg téléchargé ?
What’s the difference between GoldHEN and Mira? Can either of them be used with ProDG? And can you switch from one to the other after jailbreaking. I’m coming from a PS3 standpoint where I have DEX CFW installed and I want to be able to see game files loading in real time on PS4 for modding purposes.