Hacking (4.x only) CIA CFW Complete Guide

C

Cacacea

Active Member
Newcomer
Level 7
Joined
Nov 4, 2014
Messages
32
Trophies
0
Age
54
XP
1,201
Country
Bulgaria
djalmafreestyler said:
Does anyone tried to install DevMenu on 3DS fw 4.1? It doesn't work. Screen flashes white then black for a second but top screen is blue, then my 3DS just freeze.
I installed DevMenu in my 3DS XL fw 4.2 it worked fine.

- Changed SD Card
- I did the guide 3 times, always same result.

I'm thinking that the exploit doesn't run on fw 4.1.

Now I'm waiting arrive the game Donkey Kong Country Returns, which have fw 4.5, to update this 3DS and try to install cfw again.
Click to expand...

I can confirm is working on 4.1
 
daicon

daicon

Well-Known Member
Member
Level 3
Joined
Feb 16, 2014
Messages
290
Trophies
1
Age
38
XP
313
Country
United States
If the new Gateway exploit gets reversed, any possibility of it being able to be used to launch this CFW?
 
Zidapi

Zidapi

Well-Known Member
Member
Level 11
Joined
Dec 1, 2002
Messages
3,112
Trophies
3
Age
42
Website
Visit site
XP
2,681
Country
daicon said:
If the new Gateway exploit gets reversed, any possibility of it being able to be used to launch this CFW?
Click to expand...
Yeah, because people have so much success in reversing Gateway's work so far. :rolleyes:

In theory yes, but we can't even update the cfw to 9.x, and you wouldn't be able to use a 9.x sysNAND to launch a 4.x cfw.
 
daicon

daicon

Well-Known Member
Member
Level 3
Joined
Feb 16, 2014
Messages
290
Trophies
1
Age
38
XP
313
Country
United States
Zidapi said:
Yeah, because people have so much success in reversing Gateway's work so far. :rolleyes:

In theory yes, but we can't even update the cfw to 9.x, and you wouldn't be able to use a 9.x sysNAND to launch a 4.x cfw.
Click to expand...

No one's trying to update it, because it's only fro 4.5 sysnand and everyone on 4.5 already has a Gateway.

The DS profile exploit gateway launches into Emunand is basically known to all right from the gitgo and it's how we launch this CFW. I think the same might as well happen when the new 9.x exploit gets revealed soon.
 
hippy dave

hippy dave

BBMB
Member
Level 33
Joined
Apr 30, 2012
Messages
9,884
Trophies
2
XP
29,325
Country
United Kingdom
hippy dave said:
In case anyone was interested, I successfully used SaveDataFiler on the CFW to extract the save from the card1 Luigi's Mansion cartridge, but I couldn't restore it to the .cia version on Gateway emunand, it always gave a "Failure" message. Haven't tried doing it as a card2 .3ds rom, not sure it'll help.
Click to expand...
Turns out I'm an utter muppet. Just had to press R+A (import to sd) instead of just A to import.
 
A

Areseru

Member
Newcomer
Level 1
Joined
Aug 17, 2013
Messages
20
Trophies
0
Age
29
XP
125
Country
Italy
Most of you guys can't make the ctrclient work due to your router... This "script" send ACK commands that for most of the routers out there could be target as a brute force attacking. I fixed it using my Android hotspot, that doesn't include any of this safety systems on ACK or ARP requests.

Perhaps you should give it a try ;)
 
  • Like
Reactions: Vappy
Subtle Demise

Subtle Demise

h
Member
Level 13
Joined
Sep 17, 2009
Messages
2,583
Trophies
2
XP
3,804
Country
United States
Areseru said:
Most of you guys can't make the ctrclient work due to your router... This "script" send ACK commands that for most of the routers out there could be target as a brute force attacking. I fixed it using my Android hotspot, that doesn't include any of this safety systems on ACK or ARP requests.

Perhaps you should give it a try ;)
Click to expand...

What sort of settings would you recommend on a household router to get around this issue?
 
nop90

nop90

Well-Known Member
Member
Level 12
Joined
Jan 11, 2014
Messages
1,556
Trophies
0
Location
Rome
XP
3,136
Country
Italy
Misiel said:
how can i transfer this emunand to a bigger SD card?
emunand tool gives "unknown nand size" error.
Click to expand...

Under Windows I did this way:
  1. download bbcopy (similar to dd under linux)
  2. backup all the files on your SD (simply copy all the files and folders in the root of the SD in a convenient palce on your pc disk)
  3. in a dos shell run "bbcopy ifd=1 of=cfwnand.bin count=1931265"
  4. in an hex editor (e.g. HxD) cut the first sector (first 512 bytes) from cfwnand.bin and save the modified file
  5. prepare a new bigger SD formatting the emunand
  6. turn on the 3DS with the new SD inserted ad let create its folders
  7. inject cfwnand.bin with emunand tools
  8. copy back the backuped file and folders in the new SD
  9. enjoy the CFW with your installed CIA
but beware that you have to adjust step #3:
  1. ifd=1 is for reading from the second disk mounted(ifd=0 is c: ), if you have more than a hard disk you have to try a different number for your SD (after creating cfwnand.bin check it with HxD and when the contents is the same of the beginning of your SD, you know the disk number is right)
  2. count=1931265" is for a Toshiba NAND. For a Samsung NAND you have to use count=1931265
To know your NAND type check the size of the file of your sysnand backup.

Toshiba NAND:
1931264 sectors
NAND size 988.807.168 bytes = 943 MB 988807168

Samsung NAND:
1953792 sectors
NAND size 1.000.341.504 bytes = 954 MB

Good luck.
 
  • Like
Reactions: Misiel
piratesephiroth

piratesephiroth

I wish I could read
Member
Level 12
Joined
Sep 5, 2013
Messages
3,453
Trophies
2
Age
103
XP
3,233
Country
Brazil
Misiel said:
i get a file with a size of 2.7gb, called sectordump.bin
Do i just restore this to the new SD card?
Click to expand...

You need to select the number of sectors. Just get your emunand's size and divide by 512.

Then you fill in the sector range accordingly. The dump should start from sector 1.
For example, mine has 988807168 bytes, so it's 1931264 sectors,

08ef3da726.png
 
  • Like
Reactions: Misiel
Zidapi

Zidapi

Well-Known Member
Member
Level 11
Joined
Dec 1, 2002
Messages
3,112
Trophies
3
Age
42
Website
Visit site
XP
2,681
Country
daicon said:
No one's trying to update it, because it's only fro 4.5 sysnand and everyone on 4.5 already has a Gateway.

The DS profile exploit gateway launches into Emunand is basically known to all right from the gitgo and it's how we launch this CFW. I think the same might as well happen when the new 9.x exploit gets revealed soon.
Click to expand...
Your reply starts to fall apart in the middle here as your grasp of the English language begins to fail. I've read it multiple time and still can't decipher it.

I'm not sure if I misinterpreted your initial post or you misinterpreted my reply, but I'll address what I see as the two obvious interpretations.

If you meant that if we took a new 9.x system and used the new exploit to launch the cfw as it exists at present (that being 4.5 based); then no, that would be impossible. This was my initial interpretation of what you wrote and my initial reply reflected that.

*If* however you meant that if you took a 4.5 3DS, created your 4.5 cfw, and then updated your sysNAND to 9.x would you be able to use the new 9.x exploit to launch your 4.5 cfw? Then yes, I believe that this would be possible.

If my current theory about the new vulnerability/exploit is correct then it's going to be a lot quicker to launch the gateway menu this time around. No more delving deep into the settings, and no more getting kicked back into sysNAND if you launch the settings app in gateway mode.

Anyhow, I hope I've been a little clearer with my reply this time around.
 
A

Areseru

Member
Newcomer
Level 1
Joined
Aug 17, 2013
Messages
20
Trophies
0
Age
29
XP
125
Country
Italy
hippy dave said:
In case anyone was interested, I successfully used SaveDataFiler on the CFW to extract the save from the card1 Luigi's Mansion cartridge, but I couldn't restore it to the .cia version on Gateway emunand, it always gave a "Failure" message. Haven't tried doing it as a card2 .3ds rom, not sure it'll help.
Click to expand...

How did you do that? I always get "SD has been removed" error with SaveDataFiler... I really need a backup of my Pokémon X savefile...
 
M

metroid maniac

An idiot with an opinion
Member
Level 11
Joined
May 16, 2009
Messages
2,088
Trophies
2
XP
2,642
Country
I'm using a 3DS on 4.1.0-7E.
I've managed to make it to the final part, but when I try to install my DevMenu_2x.cia no present appears on my home screen.

It may be because I'm getting a ctrclient: failed to connect error.
 
A

Areseru

Member
Newcomer
Level 1
Joined
Aug 17, 2013
Messages
20
Trophies
0
Age
29
XP
125
Country
Italy
metroid maniac said:
I'm using a 3DS on 4.1.0-7E.
I've managed to make it to the final part, but when I try to install my DevMenu_2x.cia no present appears on my home screen.

It may be because I'm getting a ctrclient: failed to connect error.
Click to expand...

Yes.
As said before, make sure that your console actually connects to your router, and try disable built-in firewall on router.
Otherwise, connect PC and Nintendo to an hotspot created by your smartphone, I resolved this way
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

Hacking Hardware  New Nintendo 3DS XL Louvre

Hardware  Why does my 3DS take so long to turn off?

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

What's the best 3DS emulator (especially after Citra's shutdown)?

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Tutorial  How to fix 007-2001

General chit-chat
Help Users
  • No one is chatting at the moment.
    Psionic Roshambo @ Psionic Roshambo: Do I make you randy!!! Lol