Before we go any further you should know the risks involved. Most ELF files that you will use with your exploit will require you to swap discs. In order to do this on a PSTwo you will need to exploit your hardware or buy a pre-modded case. Both of which will require you to void your warranty. Modifying your PSTwo is tricky and if done wrong can ruin your console. There is however one method that will not require you to void your warranty and is much safer than the others.


You will be reading various terms in this tutorial that you may not be familiar with. Let’s take a minute to look them over and get acquainted.

.ELF (file extension)- This is a term referring to an Executable and Linkable Format file. This file opens on your PS2 much like an EXE program file does on your computer.
.DAT (file extension)- This is a term referring to a Data file. Some of your ELF files may require you to edit its' corresponding DAT file with a text editing program.
.MAX (file extension)- This is a term referring to an ARMax save file. This file is read by ARMax and uncrushed to your PS2 memory card to create your exploit.
.CBS (file extension)- This is a term referring to a Codebreaker save file. This file is read by Codebreaker and unzipped to your PS2 memory card to create your exploit.
.PS2 (file extension)- This is a term referring to a PS2 extension that is compatible with Gameshark. This file is read by Gameshark and copied to your PS2 memory card to create your exploit.
.BIN(file extension)- This is a term referring to an output format that us used to burn an image file on to a CD-R.
.CUE(file extension)- This is a term referring to an output format used to burn an image file on to a CD-R, the difference between this and .BIN is that this is the file you open into your burning application. It tells the application where the .BIN is located and how to burn it.
Swap - This is a term used meaning to physically replace the current disc in your PS2 with another.
Elf launcher - Elf launchers are ELF files that allow you to launch other ELF files.


For hardware exploit:

-Small Phillips style screwdriver.
-Tape and tissue paper or soldering iron, solder, small lead wires and a small on/off switch -advanced method.
or
-Pre-modded PSTwo case.
or
-Magic Switch Pro V3 (safest method, allows you to keep your warranty seal)

For software exploit creation:

-PS2 Save Builder (PC program available at exploitstation.com in downloads section)
-Independence Compiler (PC program available at exploitstation.com in downloads section).
-Personal ELF library (many are available at exploitstation.com in the ELF library section, plus add your own).

For software exploit installation:

-Cheat device (ARmax, Codebreaker or Gameshark... must be newer version with USB flash drive compatibility).
-Flash drive (aka: pen drive, memory stick).
or
-Swap Magic 3.3 or 3.6.
-CD-R/CD-RW writer and a blank 700mb CD-R disc.
-Nero Burning Rom or Alcohol 120% (both available at exploitstation.com in downloads section).

For booting your exploit:

-Newer version of ARMax with MAX Media Player function (will be detected by DNAS even when no codes are loaded).
or
-Swap Magic ver.3.3 or 3.6 (best method to use, allows for online play and will not be detected as a cheat device by DNAS)



Disable the 3 sensors that stop the CD/DVD from spinning when you press the eject
button. You can find this anywhere on the net, but here's a link to get you started as it
shows graphics. (http://www.geocities.com/PSTwoslimline/tapetissue.htm).

My Method of Disabling Sensor A:

What I did was when I took apart the PSTwo slimline, I used a small piece of twist-tie (metal
only) and jammed Sensor A down and bent it over 90 degrees to hold it in place. To get
the metal part of a twist-tie only, just burn off the plastic and you will have the metal
portion.

My Method of Disabling Sensor B:

For Sensor B, once the cover is off, turn it upside down and just remove this sensor
completely by removing the one screw.

My Method of Disabling Sensor C:

Sensor C is the tricky one. When you remove the 6 screws on your PSTwo, you will notice
there are two small "anti-skid" square pieces that have nothing underneath them. Remove
these and put them together like a sandwich. You will need this "sandwich" to disable
Sensor C.

When you examine Sensor C up-close, right next to it you will see the screw that holds the
laser housing, there is a space about 1cm thick just below the screw and above Sensor C
in which you can push your "sandwich" in so that it will hold the sensor down much more
securely than a piece of tissue.

NOTE: ***** The PSTwo lid wont close with this "sandwich" piece, as the plastic mold on the
lid will touch them. To fix this, examine the PSTwo lid and notice one of the mold "hinges"
is much longer than the other (it's the hinge with the spring beside it). Using an old knife
and your stove, heat up your knife so it's red hot and slice through this molding so it is
the same deepness as the other hinge.. basically just slice it up to the hinge so that the lid
still says on and you can close it. You don't have to do this step, but your lid will not
close if you use the "sandwich" pieces to keep Sensor C down. ******

Once this is all done, reassemble your PSTwo slimline and proceed below.

Now that the 3 sensors are disabled, make sure it works. Put in an original game and start
to play. You will notice the DVD will still be spinning even with the lid open.

Don't worry about part 2 of bloodshot's tutorial as it will be in the "Using your exploit" section.


Things you need:
-15-watt Soldering Iron or similar (Radio Shack #64-2051B)
-60/40 standard Rosin-Core Solder .032 diameter or similar
-Flux-Pen (aids in re-work, although not completely necessary)
-1/4" Split-Point drill bit to make the hole for the toggle switch
-SPST Micromini Toggle Switch (Radio Shack #275-624)
-30AWG Kynar or similar single-strand wire (2pcs x approx 6in ea)
-Small piece of electrical (preferred) or duct tape or equivalent
-Micro Mini Screwdriver set (Phillips and Flat/Slotted Heads)
-Hairdryer is optional, used to aid in bonding the tape better

Steps:
A) Begin by soldering approximately 6-inch wire leads to both of
the terminals on your Toggle Switch as shown HERE.

B) Remove the Warranty Sticker from your PSTwo console... by
doing so you are VOIDING your 90-day warranty remember!

C) Turn your PSTwo console over and then remove these Six (6)
Screw Covers & Screws using your Micro Mini Screwdrivers.

D) Carefully separate and remove the PSTwo top cover from
the bottom shell lifting from the back-left corner forward. If
you hear a slight 'snap' around the back-right corner this is
common, however, be sure to exercise proper judgment so
you do not crack your case. (ie: Do NOT FORCE anything!)

E) Flip over the top cover and take notice of THIS area. Next,
remove THIS spring and unscrew the adjacent pan-head
screw... and then take the Disc Brake out as shown HERE.

F) Next, on the bottom shell half locate the single Phillips Head
screw in front of the GamePad ports and remove it. Then,
carefully remove the main board and attached control board
together from the bottom plastic case making sure NOT to rip
the flex wire attaching the two together... or just unplug it.

G) Now, use your 1/4" Split-Point drill bit to make THIS hole
in the location displayed. If you have having difficulty locating
the place, it is in the upper-left corner of the bottom shell half
when standing it facing you upright ($ONY sticker is at bottom).

H) Once the hole is made, insert your Toggle Switch from the inside
of the bottom shell and secure it with the nut provided as shown.
HERE is a close-up of what it should look like when it's installed.

I) With the Toggle Switch installed, return the PSTwo main board and
control board to the bottom shell and don't forget to secure the
single Phillips Head screw back in the proper place as well.

J) Now it's time to take care of those (2) nasty lid sensors! First, we
will tackle the easy one located HERE on the PSTwo main board.
HERE is a close-up of it, and to bypass this one simply put a tiny
piece of electrical or duct tape over it! If your tape doesn't seem
to stick well, then try heating it a bit with a Hairdryer... followed
by pressing down with your finger on it until it's secured in place.

NOTE: If you can't get the tape to stick at all, or you are seeking a
more permanent means of bypassing this sensor you can remove
the sensor cover by carefully inserting a tiny Flat/Slotted Head
screwdriver under the Sensor Cover Clip to lift it off. Once off,
simply solder the (2) strips together inside as displayed HERE,
and the sensor will then be permanently disabled from triggering.


K) The second (and last) sensor is next, only this one requires being
connected to the Toggle Switch you previously wired up. First,
carefully grasp the control board and FLIP it over while it is
still connected to the main board. Next, if you have a Flux-Pen
use it on terminals 1 & 2 followed by soldering the Toggle Switch
wires to it as shown HERE. It doesn't matter which of the ends
gets soldered to which terminal number as it will function either
way. However, if you prefer your Toggle Switch 'resting' in a
specific position, then feel free to experiment before soldering.

L) When soldering is complete, it's time to flip back over the control
board as shown HERE, making sure to carefully tuck the soldered
wires neatly away before re-installing your PSTwo top cover. If
you recall, re-assembly consists of securing the top cover to the
bottom half... followed by re-inserting the (6) screws and covers.

M) Finally the moment arrives... PSTwo modification completed! :)


There are many pre-modded cases available for purchase over the internet. Search google.com and choose the one that suits you best. Some examples of pre-modded cases can be seen bellow. Pre-modded cases require you to break your warranty seal.


The Magic Switch Pro V3 set comes with everything you need to mod your PSTwo without breaking the warranty seal. For installation instructions please refer to this guide. The Magic Switch Pro V3 set can be seen bellow. Magic Switch Pro V3 can be purchased at swapmagic3.com.


The first thing you want to do is build a personal ELF library. This exploit is pointless without the ELFs to back it up. If you do not know where to find ELF files go down to the 'Using your exploit' section of this tutorial' . Among the ELFs in your personal library be sure to include LaunchELF or KeyLauncher, you will need a way to boot the other ELFs in your collection (Independence Compiler V3 comes with LanchElf 3.4 but if you want to use a different launcher you will need to download it). Once you have all the ELF files you want make a new folder on your computer and name it "Files". This folder is where you will store all of you ELF and DAT files (and a couple others) until it comes time to import them to Independence Compiler.

Next, you want to get PS2 Save builder and Independence Compiler (both available at exploitstation.com). These applications will be the back-bone of creating your save file that will later be installed on your PS2 memory card. If you intend to boot your exploit with Swap Magic 3.3 or 3.6 you will need these files to make your installation disc.

Steps:

- Setting up your DAT files must be done before your continue building your with save file if you are using ELF(s) that require them. To edit your DAT files, open them in Notepad or another text editor of your choice. Some DAT files require a certain format that must be followed (CODE.DAT) so pay attention to the formatting. For this example of DAT editing we will be using KL.DAT (KeyLauncher's DAT file). If you have downloaded KeyLauncher the KL.DAT will be found in the same folder as the KeyLauncher.ELF, If you followed the previous instruction of this tutorial then it will be found in the folder you created entitled "Files". Open KL.DAT in Notepad and look at the formatting of that particular file. When you look at the KL.DAT it should be obvious to you that it follows the formatting of:
[button assignment] = [Drive location] :/ [Folder] / [File name] ; [Display name]
Note: DAT files are case-sensitive, so be sure you enter file names and extensions just as they appear.


note: If you intend to boot your exploit with Swap Magic 3.3 or 3.6 you can choose to make a installation disc with the following steps and a installation disc for specifically for Swap Magic. Or you can chose to make only a Swap Magic installation disc by moving ahead to 'Installation disc for Swap Magic boot'.

- Open Independence compiler and follow the easy steps. I am not going to get into too much detail about this because it is really as easy as following the steps specified in the program. The only things that I will specify in this portion is that if you are using a cheat device to install your exploit you need to choose Memory Card [XPS] for your output format and Yes on the 'Installer Only?' selection. If you will be using a burned disc and Swap Magic to install, you will want to choose CD Image [BIN/CUE] for your output and Yes on the 'Installer Only?' section. Another thing you should know is while doing the independence exploit for a PSTwo you will not need a TITLE.DB. When you save your file it will be saved to the folder C:\AusDigital the name of the file will be ausdigital.xps. If you saved your file as a bin/que file and intend to install with Swap Magic 3.3 or 3.6 scroll down a couple steps till you find 'Creating your installation disc'.
note: The Independence Compiler used in this example is version 4.1 it is available for download here


- Time to build your save. Open PS2 Save Builder (available at exploitstation.com) and open the ausdigital.xps file that you just created. You will notice that all of the ELF files and other required files are displayed in PS2 Save Builder. From here you can add files buy dragging and dropping them in PS2 Save Builder. You can also export files that you wish to modify by right clicking the file name and choosing extract, choose a destination for the file then open it and modify it. Once modified you can drag and drop to replace the unmodified file. When everything looks in order (all the ELF and DAT files you want are accounted for), Save your file as exploit with the corresponding extension to the method of which you are installing (CodeBreaker=.cbs ARMax=.max) in your "Files" folder. If you are using Gameshark to install your exploit you must save it with the file extension .md, using Gameshark is a special case while installing that requires you to rename the file and extension of your save (we will cover that in the installation portion of this tutorial).


For this section of the tutorial we will be using Nero Burning ROM. Alcohol 120% can also be used for this, but will not be covered.

Steps:

-Open Nero Burning ROM, Select File>Burn Image.

-Select Files of Type: drop down menu and choose All Files.

-Find your CUE file that was made with Independence Compiler and open it.

-Choose the following settings: Write speed: 8x (1200 KB/s), Write method: Disc-at-once.

-Burn disc.


Before you begin you will need to download and unzip these files. Once you have those files, you will have some choices to make. To my knowledge this installation will only allow you to copy 7 files to your memory card. Keep in mind that any ELF that requires a DAT will take up 2 of the 7 slots. You must choose your ELFs wisely to make the most of your space if you chose to only do this install. If you chose to do both installation types you will be allowed access to other ELFs that are stored in the BADATA-SYSTEM folder only if you allow LaunchElf.ELF to execute as one of your chosen files. The files that are copied with this method are stored at a new folder called SWAPMAGIC so the two installation choices will not corrupt one another. Once you have decided what methods you will be using and what ELF files are most important to you, continue with the following steps:

- Open the file that you unzipped entitled SMBOOT, inside it you will find a sub-folder with the same name, open it.


- Inside this folder you will find 7 files that we will be working with, and a file list entitled FILE.LST open the list with notepad.


- Once the list is open you will need to edit it to your specifications. You do this by following the pattern seen below.


Notice that the file name of 'launch elf' is set to 'SWAPMAGIC.ELF', any time an ELF is name as such it will automatically boot when Swap Magic is booted on your PSTwo. Note as well that the 'cora' files have been set to the names 'SMBOOT0-3.ELF' this option is used only when you do not have a file set to 'SWAPMAGIC.ELF', it will allow you to hot-key (aka joker) those 4 ELFs so that they can launch at the Swap Magic main menu. We will talk more about this in the 'Booting with Swap Magic 3.3 or 3.6' section of this tutorial. In the mean time decide now if you would rather have an ELF launcher boot when you load Swap Magic or if you would rather have hot-keys at the main menu.

- Once you have finished editing the FILE.LST, save it.

- Now it is time to replace the current 7 files with the files of your choice. To do this you will have to first delete or move (one at a time) the file which you would like to replace. Now you will drag and drop your replacement file into the folder. Rename your replacement file to the same name as the file it is replacing. Make sure that your replacement files match up with your edited FILE.LST.


Several methods will be covered in this tutorial in regards to installing your independence exploit (save file you created) on your PS2 memory card. To save space and to keep from repeating myself I have decided to make a compilation of the instructions for ARMax, Codebreaker and Gameshark. They are all basically the same with very few differences.


If you are using Gameshark to install your exploit you must rename your save file that you made with PS2 Save Builder at this time. Find your save file named exploit.md (if you followed the previous steps in this tutorial it should be located in your "Files" folder). Rename the file to Your SystemConfiguration.PS2 it is very important that you save it exactly like that, case-sensitive and do not forget the space between 'Your' and 'SystemConfiguration'.

Steps:

- Connect your USB flash drive to your computer then drag and drop your save file titled exploit.max, exploit.cbs or Your SystemConfiguration.PS2 to the folder of your flash drive. Some computers will allow you to just right click your file, send to, and choose your flash drive location.

- Turn on your PSTwo and put in your cheat device. In your cheat device menu choose 'Device Manager'. Plug your flash drive in to your PSTwo and make sure the PS2 memory card that you want your exploit on is also plugged in. Choose your flash drive and wait for the files to appear.
note: If your save files comes up as corrupted file, then you must redo it, try less ELFs. If your save file comes up with no name, it is OK in most cases and will still work.

- Using ARMax, highlight and select your save file then choose to uncrush it to the memory card of your choice. Using Codebreaker, highlight and select your save file then choose to unzip it to the memory card of your choice. Using Gameshark, highlight and select your save file and choose to copy it to the memory card of your choice.

- Wait until it has completed, then turn off your PSTwo. Your exploit has now successfully been installed.


Steps:

- Load your Swap Magic 3.3 or 3.6 disc in your PSTWO. Wait for it to say 'Load program' and stop spinning.

- Open the top of your PSTwo and swap the disc out for the installer disc you created earlier (keep top open). Choose 'Load program'.

- Wait for files to finish copying then shut down your PSTwo.


note: You must have a newer ARMax disc that has MAX Media Player.

Fist thing you need to do is burn a boot disc. The files associated will be converted to BIN/CUE files by MAX Media Creator which should have came with your ARMax. If you do not have it you can get it here.

Steps:

-Drag and drop LaunchElf.ELF in MAX Media Creator.

-Now you can choose to burn it with MAX Media Creator, or save as a BIN/CUE which you can burn as an image using Nero Burning ROM or Alcohol 120%. Refer to the 'Creating your installer disc" section of this tutorial for instruction on how to burn an image file.

Now that you have made your boot disc you can use it in the MAX Media Player section of your ARMax disc.
Types of hardware exploits for next step:

- Basic method: Lift the tape with the tissue attached to release the sensor then put it back into place covering the sensor. Next close top and select 'Play'.

- Advanced method: Close top of PSTWO, Flip the switch you added to your PSTWO to the off position then back to the on position. Select 'Play'.

- Pre-modded case: Close top and select 'Play'.

- Magic Switch Pro V3: Remove tool A then put it back then select 'Play'.


If you followed the directions correctly you should have already installed the Swap Magic specified independence exploit on your PS2 memory card. Now depending on how you set it up, when you load your Swap Magic disc it will either boot an ELF launcher automatically or it will take you to the Swap Magic main menu. If you arrived at the main menu, you either messed up the exploit somehow or you chose to hot-key 4 ELFs. The hot keys for those ELFs are as follows:

"UP+L1" buttons to load SMBOOT0.ELF
"UP+L2" buttons to load SMBOOT1.ELF
"UP+R1" buttons to load SMBOOT2.ELF
"UP+R2" buttons to load SMBOOT3.ELF

If you have chosen to do both installations I'm sure you figured out that you will need to boot an ELF launcher during one of the two options above. If you did not add an ELF Launcher to the Swap Magic boot options, you will not be able to boot the ELFs that are in the BADATA-SYSTEM folder of your memory card. If you have done everything correctly move forward to the 'Using your exploit' section of this tutorial to learn more about using your ELF launcher to access ELFs in different folders and drives.


I give all credits where they are due. For the most part I just took pieces of other tutorials I have read and added my own stuff. This is not the end of this tutorial, I will be updating whenever I get the chance to do so.

oh yea i remember doing this back in the day. good stuff

__________________