good luck. they took the somewhat annoying obfuscation they had in the older launchers and brought it to an extreme with the latest one.
Hacking Is their any way to install .CIA files to 3ds
- Thread starter Ryanrocks462
- Start date
- Views 65,917
- Replies 330
- Likes 1
wasn't a decrypted version of GW launcher released a while ago?
maybe erm use that version to install the cci and then restore back to updated launcher
thats if older versions of the launchers work past updated cars? hmmm
maybe erm use that version to install the cci and then restore back to updated launcher
thats if older versions of the launchers work past updated cars? hmmm
I think there's already a tool to inject elf files into a Launcher.dat. I don't know the restrictions or access levels it gets though.
yes thats how clones were made can't believe i forgot about it http://gbatemp.net/threads/gateway-files-succesfully-decrypted.352843/
the elf injector tool you were talking about? I don't particularly see how that's helpful.
Given the amount of obfuscation in the gateway launchers, I don't think it's as simple as "extracting the elf files" and comparing them. From what I've seen, it's a multi-stage process, with each stage being decrypted and loaded into a different section of memory. It would honestly surprise me if this stuff wasn't hand coded arm assembly.
Gateway files are a lost cause. You're better off extracting exefs.bin from DevMenu.csu, running that through exefs2elf, and then injecting the resulting .elf file into a launcher.dat.
Would that actually work? I wouldn't think it would considering the dev menu is made to run straight from the 3DS home menu.
Also, what would you use to go about injecting an elf into a launcher.dat?
better off in that it would work just as well as waiting around for someone to reverse gateway's code AND release a rom/devmenu/cia installer from it.
I think it was part of the old bare metal homebrew tools. since the compilers compile into elf format, the tolls take the code from the elf and load it into the launcher.dat Not useful for what anyone here is wanting to do.
I don't see why not, it would probably load maybe... it should just be the matter of installing the devmenu.cia to the home menu
well since we have a decrypted gateway launcher.dat v1.2 would it be possible to inject into the .dat and run it without any memory lines
wow it seems everyone is figuring out how to install the devmenu i don't see what the problem would be with releasing it, I'm pretty sure Gateway wouldn't go out of business or quit working on emunand.
https://twitter.com/GovanifY/status/510884978214076416
https://twitter.com/GovanifY/status/510884978214076416
It's an overflow used to store a ROP chain payload into the 3DS stack, that eventually decrypts the launcher.dat using bytes from the system menu as the key, then you have another larger ROP chain in the launcher.dat used mostly for obfuscation purposes, which in the end uses the ASIC to decrypt the final payload.
The obfuscation mostly relies on the fact that you need a RAM dump in order to make sense of the ROP chains.
Then you also need to get the actual encrypted payload through the ASIC to have all its decrypts counterpart.
The obfuscation mostly relies on the fact that you need a RAM dump in order to make sense of the ROP chains.
Then you also need to get the actual encrypted payload through the ASIC to have all its decrypts counterpart.
D
Deleted User
Guest
Yeah well.. Gateway is a business and like every business it only stays around if it can make money.
If this CIA installer gets released then it will be a hard blow for Gateway's sales maybe up to the point where it is no longer profitable to keep developing for new features.
Remember some developer needs to get paid for these updates, they don't come for free. And when the cost of developing gets higher than profits coming in, then I don't see Gateway continuing in this avenue.
Should this happen then it will be a hard blow for all of us, because the hard truth is that the scene relies on the Gateway team for updates.
The 7.x encryption for example, Gateway are the only ones that cracked it.
When Nintendo brings the next firmware update who will get emunand back to work if Gateway is no longer around?
As I mentioned before, it only makes sense not to bite the hand that feeds you.
If this CIA installer gets released then it will be a hard blow for Gateway's sales maybe up to the point where it is no longer profitable to keep developing for new features.
Remember some developer needs to get paid for these updates, they don't come for free. And when the cost of developing gets higher than profits coming in, then I don't see Gateway continuing in this avenue.
Should this happen then it will be a hard blow for all of us, because the hard truth is that the scene relies on the Gateway team for updates.
The 7.x encryption for example, Gateway are the only ones that cracked it.
When Nintendo brings the next firmware update who will get emunand back to work if Gateway is no longer around?
As I mentioned before, it only makes sense not to bite the hand that feeds you.
I've made that same point too and people just call me a gateway fanboy. The funny part is it would be the same cheap people who will be complaining the most once they're gone that emunand got stuck at whatever version it was at before gateway closed up shop.
We'll get something soon I feels. If all these people are getting it working, then it's probably not the toughest thing in the world. I've been discussing this behind the scenes a bit. If anything gets revealed on my side, rest assured it'll definitely be thrown to the public.
If they did, and they won't, it would be a dumbed-down piece of crap that you couldn't do anything fancy with.
Similar threads
- No one is chatting at the moment.
