Installing the Independence Exploit
The Independence Exploit, also known as the memory card exploit, is a software exploit that uses a bug in the PS2's system programming to essentially overwrite executable memory, and cause it to run whatever program you want it to from the memory card. It is triggered by inserting a PS1 disc with a disc ID matching one on the memory card's title.db file.
The exploit only works with the old style PS2's, not the slimline models, as Sony fixed the bug that made it possible when they created the new models. you will recognise an old PS2 by the expansion bay on the back, which is where a hard drive fits into it. they're also a lot larger, and don't have network adapters built in.
So you have an old PS2? great. you will need to have a method of booting a CD-R disc at least once. possible options are:
Swap Magic CD (or alternative)
HDLoader or HDAdvance
A chipped PS2
If you don't have one of the above, or any other way to run homebrew at least once on a playstation, then you can't continue until you do. I suggest you ask everyone you know if they have or know anyone with a chipped PS2 you can use for 10 minutes.
Installation
You will need:
- A genuine PS1 game or demo that works in your PS2.
- a USB Pendrive
- titleman
- Latest version of uLaunchELF
Preparing the Title.db file
1. Put your PS1 CD into the computer's CD drive.
2. Open notepad.
3. Open your PS1 CD on the computer, and you will see a file inside called SYSTEM
4. Drag this file onto notepad. you will see something that looks like this:
The disc ID is the highlighted
part. Remember it.
5. Start the Titleman Frontend, press create TITLE.DB.
6. Fill in the disc ID, and press add exec. repeat this step for other PS1 discs if you like.
6. You will now have a TITLE.DB file. copy this onto a USB Pendrive
7. Unzip and copy the uLaunchELF BOOT.ELF file onto the USB pendrive in the same place.
Installing the Exploit
1. Download the SMS CD image with uLaunchELF, and burn it, or install it onto HDLoader's hard drive on your computer using WinHIIP.
2. Boot the CD on your playstation. you'll see something like this:
3. Insert your USB drive into the PS2
4. press circle to start the FileBrowser.
5. Browse to MASS:/. you will see all the files on your USB drive.
6. Highlight TITLE.DB. press X. a star should appear next to TITLE.DB
7. Highlight BOOT.ELF and press X. a star should appear next to it.
8. Press R1. choose Copy from the menu.
9. Press triangle to exit the USB drive.
10. Browse to MC0:/
11. Browse to the BEDATA-SYSTEM folder. (BADATA-SYSTEM in USA)
12. Press R1, choose Paste.
Here's an animation of performing steps 3-12 on my PS2
That's it! uLaunchELF should now start instead of the PS1 game whenever you put that PS1 disc and that memory card in the console together. To undo the exploit, you can simply use the PS2 browser, and delete the file called 'Your System Configuration'. this will remove the exploit.
You can use uLaunchELF to copy the latest version of SMS onto the memory card, or just boot it straight from a USB drive. We suggest you boot SMS at least once from the USB drive first, then choosing 'save settings' from SMS's menu. this will create an SMS folder on your memory card, where you can copy the SMS ELF file to.
If you have a hard drive, you could create a partition on it using uLaunchELF's HDDManager tool (found by browsing to MISC:/) and use that to store all of your homebrew programs.
Some related links: