Posted by Veritas?:
Anyway, this guide requires you to have some knowledge of how the SELF and ELF file formats are laid out. I don't have a quick tool to do this for me, but it takes maybe 5 minutes of my time to do it by hand.
- Open EBOOT.BIN in a hex editor of your preference.
- In EBOOT.BIN, look at the SELF control info, if you see anything resembling the game titleid, it's an NPDRM SELF and this guide won't work, give up.
- Use readself on EBOOT.BIN to get information about the encrypted metadata sections.
- unself EBOOT.BIN eboot.elf
- Open eboot.elf in a hex editor of your preference.
- In eboot.elf, go to every encrypted metadata section (now decrypted), copy its data, and replace the encrypted data in EBOOT.BIN.
- In EBOOT.BIN, change SELF header to indicate it's FSELF.
- In EBOOT.BIN, change SELF section headers that are marked as encrypted to say they are not encrypted.
- If the game is a newer SDK version (like GT5, which is 3.50), in EBOOT.BIN, find the .sys_proc_param segment and change the SDK version to something earlier, such as 3.41. This will probably cause crashes in games that actually use newer SDK features that are not available in earlier SDK versions.
- Save EBOOT.BIN
- Cross fingers, run game, hope it works.