Tutorial  Updated

Quick Tuto : Decrypt your own Native Firmware ! (or any system titles)

I've searched a lot for a way to do that. So firstly, thanks to everybody who helped me, even a little !
Hall of fame : @motezazer, @Ronhero, @AlbertoSONIC, @d0k3, @MassExplosion213, @thaikhoa, @Gadorach, sansnumen !

This method can be applied to any system titles.


And now the great part !


To Decrypt the sysNAND's native-firm, you need :


- Decrypt9 :bow:
- ctrTool
- WinImage (or an equivalent software)

1- Download decrypt9, copy the files to your SDcard and run it on your 3DS.
2- On the menu, search for "CTR Partitions Dump" and do it. Shutdown your console.
3- Copy CTRNAND.bin from the root of your SDcard to your PC and open it with WinImage.
4- Go to \title\00040138\00000002\content, extract "000000XX.app" and rename it to "firm.app".
5- Create a \D9titles folder, copy firm.app into it and run decrypt9 again on your 3DS.
6- This time, on the menu, search for "Decryt Titles" and do it. Shutdown your console and put the SDcard back into your PC.
7- download ctrtool, extract the archive and copy firm.app from the \D9titles folder into the /ctrtool folder.
8- Run "extract-decrypted-ExeFS-x32/64.bat" and go to the \ExeFS folder, here there is a "firm.bin", this is your decrypted native-firm !


To Decrypt the emuNAND's native-firm, you need :

- Decrypt9 :bow:
- ctrTool
- WinImage (or an equivalent software)
- 3DSFat16tool
- emuNANDTool

1- Download emuNANDTool and dump the emuNAND of your SDcard with it, rename this backup to "NAND.bin" !
2- Download 3DSFat16tool exctract the archive and copy the previous NAND.bin into the \3DSFat16tool folder.
3- Download decrypt9, copy the files to your SDcard and run it on your 3DS.
4- On the menu, search for "CTRNAND Padgen" and do it. Shutdown your console.
5- Copy "nand.fat16.xorpad" from the root of your SDcard to the \3DSFat16tool folder on your PC.
6- Run "Decrypt-NAND.bat" and open CTRNAND.bin with WinImage.
7- Go to \title\00040138\00000002\content, extract "000000XX.app" and rename it to "firm.app".
8- Create a \D9titles folder, copy firm.app into it and run decrypt9 again on your 3DS.
9- This time, on the menu, search for "Decryt Titles" and do it. Shutdown your console and put the SDcard back into your PC.
10- download ctrtool, extract the archive and copy firm.app from the \D9titles folder into the /ctrtool folder.
11- Run "extract-decrypted-ExeFS-x32/64.bat" and go to the \ExeFS folder, here there is a "firm.bin", this is your decrypted native-firm !

 

Attachments

  • ctrtool.zip
    257.1 KB · Views: 957
  • 3DSFat16tool.zip
    19.1 KB · Views: 553
Last edited by pakrett,

leerpsp

Well-Known Member
Member
Joined
Feb 22, 2014
Messages
1,742
Trophies
0
Age
33
XP
1,871
Country
United States
I have a 4.5 and 9.0 nand backup of my 3ds just do not have the stuff for the hard mod i need to do yet and the fact iv been holding off hoping something new will come out.
 

pakrett

Well-Known Member
OP
Member
Joined
Apr 6, 2015
Messages
1,519
Trophies
0
Age
34
XP
1,344
Country
France
Yea. Get every update. Even the minor ones.
In 2.1.0-4E, only 4 errors with :

0004013800000002 v3553 : native-firm --> normal, also on 2.1 gamecards
0004001000022000 v1027 : mset --> lol, also on 2.1 gamecards
0004001000022800 v2048 : mii plaza --> wrong title ID/version, WTF
0004003000009D02 v1024 : spider --> normally we don't care
I have a 4.5 and 9.0 nand backup of my 3ds just do not have the stuff for the hard mod i need to do yet and the fact iv been holding off hoping something new will come out.
Do a hardmode or let someone do it for you. Or wait but maybe the solution will never come...
 
Joined
Feb 15, 2015
Messages
1,464
Trophies
0
XP
1,099
Country
United States
In 2.1.0-4E, only 4 errors with :

0004013800000002 v3553 : native-firm --> normal, also on 2.1 gamecards
0004001000022000 v1027 : mset --> lol, also on 2.1 gamecards
0004001000022800 v2048 : mii plaza --> wrong title ID/version, WTF
0004003000009D02 v1024 : spider --> normally we don't care

Do a hardmode or wait but maybe the solution will never come...
There shouldn't be an issue with mii plaza.
 

pakrett

Well-Known Member
OP
Member
Joined
Apr 6, 2015
Messages
1,519
Trophies
0
Age
34
XP
1,344
Country
France
I do... jk. But the browser...did it exist then?
Impossible to recover the ancient browsers with the current method...
But maybe I can re-encrypt the .app that's into the 4.1.0-4U backup of @joex11 but it will be only for USA.
Maybe for mii plaza too...

Also : 0004001000022800, mii plaza EUR :

0: failed
1027: failed
2048: failed
3087: failed
4096: worked !
5121: failed

WTF ^^

Edit : my bad, for EUR it's v5122 and it works !
 

urherenow

Well-Known Member
Member
Joined
Mar 8, 2009
Messages
4,716
Trophies
2
Age
48
Location
Japan
XP
3,593
Country
United States
The instructions in the OP don't exactly work with the latest Decrypt9wip. What do I do with firm.app? Do I now place it in /D9Game?
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    A @ anotherthing: The Nintendo servers are going down in 9 days anyway.