Inject custom JavaScript into the Netflix PS5 error screen by intercepting Netflix's requests to localhost.

PS5 firmware version: 4.03-12.XX

Lowest working version: https://prosperopatches.com/PPSA01614?v=05.000.000 (Needs to be properly merged)

Recommended download link merged 6.00: https://pkg-zone.com/details/PPSA01615

This project uses a local MITM proxy to inject and execute inject.js on the Netflix error page

Disclaimer: Only works on PS5s that have an activated account. Real PSN account or Fake activated via jailbreak.

Do not update your console to activate! Use System backup method below

The PS4 version of Netflix requires a license.

You may have the license if:

1. You have previously installed Netflix but deleted it.
2. You currently have the retail application installed and can run it without jailbreaking. (Not the one from homebrew store/pkg zone)
3. You have a real PSN account activated as primary.

If you don't know if you have the license, you can still try flashing the extended storage image for your region (region relevant only for PS4) and testing to see if the Netflix app will work. If it stays locked, it means you don't have a license and you will not be able to use the jailbreak.

Requirements to flash the extended storage image:

1. PS4 firmware 9.00-12.02
2. 256GB or larger (up to 8TB) USB drive / External HDD / External SSD
3. Must be USB 3.0 connection

• Download balenaEtcher for Windows, macOS, or Linux from: https://etcher.balena.io

• Download the .7z archive for your region from the Releases section. For PS4 the Images are Netflix_PS4_xx.7z ,US/EU/JP to indicate the region they are for.

• The .7z download size is roughly ~95-200 MB and around 400MB unpacked.

• Extract the downloaded .7z file.
• Inside, you will see a .zip image file.

1. Connect your Drive to your computer (using a dock/enclosure or spare M.2 slot).
2. Open balenaEtcher.
3. Click “Flash from file” and select the extracted .zip image.
4. Click “Select target” and choose your Drive.
5. Click “Flash!” to start the process.

Etcher will appear stuck at 0% for a while, then at 85-99% for several minutes. This is normal, let it finish without interruption! If you encounter damaged image warnings, reboot your pc, redownload the image.

1. Go to Settings -> Storage -> Extended Storage -> Applications -> [Press Options on controller] -> Move To System Storage
2. Press X on the Netflix App to tick and select it.
3. Go to "Move" and press X.
4. Press OK on the prompt to move the app to internal storage. It will then move to internal storage and be usable for the exploit. Accessible from the Media tab of the XMB.

• Download balenaEtcher for Windows, macOS, or Linux from: https://etcher.balena.io

• Download the .7z archive for your desired region from the Releases section. the PS5 Extended Storage Image is PS5_EU_Ext.7z
  • NOTE: ** Extended Storage does not require an exact capacity beyond the minimum of 256GB. Meaning that if your drive is 256GB you can use the image. If your drive is 500GB you can use the image. Or if it is 1TB you can use the image and etc up to 8TB. But if it is 250GB you cannot use the image.**
• The .7z download size is roughly ~95-300 MB and around 500MB unpacked.

• Extract the downloaded .7z file.
• Inside, you will see a .zip image file.

1. Connect your Drive to your computer (using a dock/enclosure or spare M.2 slot).
2. Open balenaEtcher.
3. Click “Flash from file” and select the extracted .zip image.
4. Click “Select target” and choose your Drive.
5. Click “Flash!” to start the process.

Etcher will appear stuck at 0% for a while, then at 85-99% for several minutes. This is normal, let it finish without interruption! If you encounter damaged image warnings, reboot your pc, redownload the image.

1. Go to Settings>Storage>USB Extended Storage>Games and Apps
2. Press X to select the Netflix app.
3. Go to "Select Items to Move" and press X.
4. The Netflix app should be selected now go to "Move" and press X
5. Press OK on the prompt to move the app to internal storage. It will then move to internal storage and be usable for the exploit. Accessible from the Media tab of the XMB.

• Download balenaEtcher for Windows, macOS, or Linux from: https://etcher.balena.io

• Download the .7z archive for your desired capacity from the Releases section.
  • NOTE: Exact capacity matters for M.2 Images only - not all 1TB drives are 1000GB: some are 1024GB, same with 2000/2048, 4000/4096; choose carefully!
• The .7z download size is roughly ~95-200 MB. Unpacked files range from ~95100MB-4GB.

• Extract the downloaded .7z file.

• Inside, you will see a .zip image file, with size depending on the target SSD:

  • 256 GB image: ~380 MB .zip
  • 500 GB image: ~670 MB .zip
  • 1 TB image: ~1.2 GB .zip
  • 2 TB image: ~2.3 GB .zip
  • 4 TB image: ~3.9 GB .zip

  This .zip is what you will flash with balenaEtcher.

Note: When you load this image in balenaEtcher, you may see a Missing partition table warning. This is expected for encrypted PS5 drives. It is safe to click Continue.

1. Connect your M.2 SSD (PCIe Gen 4 NVMe) to your computer (using a dock/enclosure or spare M.2 slot).
2. Open balenaEtcher.
3. Click “Flash from file” and select the extracted .zip image for your chosen capacity.
4. Click “Select target” and choose your M.2 SSD.
5. Click “Flash!” to start the process.

Approximate flashing times (varies depending on M.2 dock/enclosure speed and your CPU):

• 256 GB image: ~10 minutes
• 500 GB image: ~15 minutes
• 1 TB image: ~25 minutes
• 2 TB image: ~45 minutes
• 4 TB image: ~80 minutes

Etcher will appear stuck at 0% for a while, then at 85-99% for several minutes. This is normal, let it finish without interruption! If you encounter damaged image warnings, reboot your pc, redownload the image or use a different enclosure/motherboard slot for the m.2 SSD.

• Power off the PS5 completely.
• Install the imaged M.2 SSD into the PS5’s internal M.2 slot.
• Power the PS5 back on; the console should now see the preinstalled Netflix app, viewable under Storage settings.
• Move app from the M.2 to console storage, then reformat the M.2 drive in under Storage settings to safely continue using it.

1. On your console, go to: Settings > Network > Settings > Set Up Internet Connection

2. Scroll to the bottom and select: Set Up Manually

• Wi-Fi: Select Use Wi-Fi
• LAN Cable: Select Use a LAN Cable

If using Wi-Fi:

1. Choose Enter Manually.
2. Enter your SSID Wi-Fi network name.
3. Set Security Method to WPA-Personal/WPA2.. (or similar).
4. Enter your *Wi-Fi network password.

For either Wi-Fi or LAN, continue the setup:

1. Scroll to the Proxy setting.

2. Change it from Automatic to Manual.

3. Enter the following details:

   • Address: 172.105.156.37
   • Port: 42069

4. Press Done to save your settings.

• Wait for the console to attempt a connection.
• You may see Can't connect to the internet — this is expected and can be ignored after pressing OK.
• The connection will still function normally.

You can now open Netflix safely.

• Python (for mitmproxy)
• Github CLI (for cloning this repo)
• mitmproxy (pip install mitmproxy)
• websockets (pip install websockets)

Open a terminal and type in the following commands. The expectation is that you to have github and python CLI tools installed.

# install mitmproxy
pip install mitmproxy

# clone repository
git clone https://github.com/dragancla/Netflix-N-Hack/
cd Netflix-N-Hack

# run mitmproxy with the provided script, keep this open
mitmproxy -s proxy.py

If you also want p2jb logs to make sure that everything is still working, you probably want to enable the logger in another terminal:

# install websockets
pip install websockets

# Generate Keys
openssl req -x509 -newkey rsa:4096 -nodes -keyout key.pem -out cert.pem -days 365 -subj "/CN=localhost"

# run WebSocket server
python ws.py

On your PS5:

1. Go to Settings > Network > Settings > Set Up Internet Connection.

2. Scroll to the bottom and select Set Up Manually.

3. Choose Connection Type Use Wi-Fi or Use a LAN Cable If using Wi-Fi: Choose Enter Manually, Enter your SSID Wi-Fi network name. Set Security Method to WPA-Personal/WPA2.. (or similar) then Enter your *Wi-Fi network password.

4. Use Automatic for DNS Settings and MTU Settings.

5. At Proxy Server, choose Use and enter:

• IP address: <your local machine IP>
• Port: 8080

6. Press Done and wait for the connection to establish

• You may see Can't connect to the internet — this is expected and can be ignored after pressing OK.

Note: Make sure your PC running mitmproxy is on the same network and reachable at the IP you entered.

In the root of a USB drive (formatted FAT32 or exFAT, preferably exFAT) copy all the files below:

• Download YouTube version 1.03
• Download the download0.dat YouTube update file

Plug the USB stick into the PS5 before starting the jailbreak process.

On your local machine you should have the following:

• The p2jb.js payload file
• The bdj_unpatch payload file
• This repository cloned or downloaded and the files above in the root of this repository

Note: If something happens to the repositories or links above, here's a backup link with all of the necessary files.

We're going to have to run p2jb 3 times for this to work, which at the time of writing this means around 3 hours. Strap in.

1. Make sure you have the USB plugged in to the PS5 and that the proxy (and logger) are running on your machine

2. Run the Netflix app on the PS5

3. Wait ~50 minutes or check the logger for progress

4. Once you reach this step in the logger:

 now closing the fds
 File copied
 Starting infinite loop

the jailbreak is done, you can press the PS button on your controller, go to Settings -> Debug menu at the bottom -> Game -> Install PKG and select the PS5_PPSA01650_v1.03.pkg file on your USB drive.

Note: If you already have a YouTube application installed but the version is higher than 1.000.003, it's better to uninstall it first and then install the one from the USB drive.

5. Shut down/reboot console. It will probably kernel panic anyway.

1. Start the YouTube application once, it will create the folder structure on the internal partition.

2. Run the Netflix app on the PS5

3. Wait ~50 minutes or check the logger for progress

4. Once you reach this step in the logger:

 now closing the fds
 File copied
 Starting infinite loop

the jailbreak is done, the update is downloaded, you can press the PS button on your controller and shut down/reboot console. It will probably kernel panic anyway.

It's basically this video starting from minute 5:30 onwards, but here are the steps:

1. You can close the proxy and the logger terminal windows, they are now useless.

2. Set your DNS to 127.0.0.1

3. Run the YouTube app on the PS5, this will start Y2JB

4. Once you see Remote JS Loader listening at 192.168.1.xxx:50000 on your TV screen you can send your p2jb.js payload by running this command:

python payload_sender.py 192.168.1.xxx 50000 p2jb.js

5. Once you see === Shellcode done === on your TV screen you can send the BDJ unpatch payload by running this command:

python payload_sender.py 192.168.1.xxx 9021 bdj_unpatch_1320_v2.elf

6. Congrats, you can now run BD JB! Reboot your console, put in your disk and run it from the Media tab.

• If the Netflix application crashes shortly after opening it, reopen it to retry.
• If you see a green text error "Exception" press X or O to retry.
• If Lapse fails you will see a notification telling you to reboot the console, you must reboot to retry.

• c0w-ar for complete inject.js userland exploit and lapse port from Y2JB!
• ufm42 for regex sandbox escape exploit and ideas!
• autechre for the idea!
• Dr.Yenyen for testing and coordinating system back up, M.2 Drives, Extended Storage, making PS5 Extended storage Image and much more help!
• Gezine for help with exploit/Y2JB for reference and original lapse.js!
• Rush for creating system backup, 256GB and 2TB M.2 Images, PS4 Extended Storage Images and hours of testing!!
• Jester for testing 2TB and devising easiest imaging method, and gathering all images for m.2!
• TeRex777 for PS5 App Extended Storage method.
• wodz69 for updating n2jb to work with p2jb for firmwares higher than 10.01
• eta-wen for providing a method to install the YouTube app with n2jb