Hacking Question Is it possible to find exploit that way?

Noctosphere

Noctosphere

Nova's Guardian
OP
Member
Level 27
Joined
Dec 30, 2013
Messages
6,750
Trophies
3
Age
30
Location
Biblically accurate Hell
XP
18,654
Country
Canada
By comparing the source code of two firmware, is it possible for expert to find exploit?
If it is, how much time should we stay on previous firmware before updating and assuming there are no exploit fixed on the latest firmware?
Thanks
 
TheCyberQuake

TheCyberQuake

Certified Geek
Member
Level 14
Joined
Dec 2, 2014
Messages
5,012
Trophies
1
Age
28
Location
Las Vegas, Nevada
XP
4,432
Country
United States
Noctosphere said:
By comparing the source code of two firmware, is it possible for expert to find exploit?
If it is, how much time should we stay on previous firmware before updating and assuming there are no exploit fixed on the latest firmware?
Thanks
Click to expand...
AFAIK without the previous huge big they don't have as much access and thus can't just compare the source.
 
  • Like
Reactions: Tsubakiandou
M

mark3p

New Member
Newbie
Level 2
Joined
Dec 21, 2008
Messages
3
Trophies
0
XP
192
Country
Technically this is possible given that you can be on an exploited firmware and then download the new firmware to the console without applying it.

With SM access you could write an unpacker to extract the new firmware update and then copy to SD for external reading / modification.

Think back to original Wii days where you were overwriting stubbed iOS with non-stubbed ones from an original firmware.

The tricky part here is efuses and their behaviour in updates. Anyone analysing this has the potential to either update firmware and lose hack or brick if modifying update and efuses blow. Given that the core hackers aren’t bothered about piracy so would have no need to update to a newer firmware I wouldn’t expect there to be much progress in this area.
 
  • Like
Reactions: peteruk
M

mikey420

Well-Known Member
Member
Level 4
Joined
Dec 11, 2015
Messages
911
Trophies
0
Age
30
XP
493
Country
United States
Yeah um no. No hacker/dev has said code. And I guarantee Nintendo won't be sharing. If we had the source for the OS finding an exploit would be way way easier. In short no. You can't just compare source code to do this. Furthermore the chance of anyone sharing an exploit they discovered is small especially if said flaws aren't very plentiful. Hackers have a tendency of waiting for there exploits to be patched before releasing them.
 
T

thla

Active Member
Newcomer
Level 5
Joined
Jul 30, 2017
Messages
36
Trophies
0
XP
677
Country
Denmark
From a purely academic argument, sure it's possible, except you would be comparing machine-readable assembly code, and not human-readable source code.

But in practice it's not that simple, I don't know much about reverse engineering, but from a developer standpoint, code doesn't always do what we expect it to do, and it is not until the point of running the code and feeding it different input that you actually begin to understand how the code works, vs. how it was written to work.
 
D

Deleted User

Guest
thla said:
From a purely academic argument, sure it's possible, except you would be comparing machine-readable assembly code, and not human-readable source code.

But in practice it's not that simple, I don't know much about reverse engineering, but from a developer standpoint, code doesn't always do what we expect it to do, and it is not until the point of running the code and feeding it different input that you actually begin to understand how the code works, vs. how it was written to work.
Click to expand...
I mean, if you're a lazy dev and write spaghetti code in a higher level language or unstable platform, then yeah sure, code doesn't do what you expect it to do. But writing C and compiling or directly writing assembly, you know precisely what it's going to do. It IS an exact science, with a specific intent and purpose behind it. If you ever write code that you don't know the effect of, then you shouldn't be writing it in the first place.

As to the "machine readable assembly code": nah. An executable binary can be viewed directly as assembly, and with the required knowledge and experience of writing standard assembly on that platform, there's no reason you couldn't rewrite the same program in C by hand.

All of this isn't to say that OP has said anything accurate or worthwhile, just making sure that you correcting him was in itself correct.

FAST6191 said:
While I agree I do have to ask has anybody checked to see if it is ground up custom or uses another more known OS as a base?
Click to expand...

It wouldn't particularly matter even if they did. They could use a custom fork of the Darwin kernel, and it wouldn't make a difference if the services, IPC, and executable format were implemented differently. But to answer your question: It's based on *nix.
 
Last edited by ,

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

mig switch not working/updating??

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Emulation Homebrew Tutorial  Building SM64 for Nintendo Switch from sm64ex-alo Repository

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

General chit-chat
Help Users
  • Xdqwerty @ Xdqwerty:
    @K3Nv2, or most "gimmicky" consoles
  • K3Nv2 @ K3Nv2:
    Nah the dual screen makes them better because that's how they were developed for
     +1
  • HiradeGirl @ HiradeGirl:
    Wii U is also great.
  • HiradeGirl @ HiradeGirl:
    For DS games.
  • HiradeGirl @ HiradeGirl:
    Also, 3DS games through NTR streaming on Wii U.
  • HiradeGirl @ HiradeGirl:
    It's very cool.
  • HiradeGirl @ HiradeGirl:
    Even playable.
  • K3Nv2 @ K3Nv2:
    If you can have main game on big screen and touch lay out on wiiu tablet I can see that
  • Xdqwerty @ Xdqwerty:
    @HiradeGirl, I have a broken o3ds xl
  • Psionic Roshambo @ Psionic Roshambo:
    Phones worked great for DS emulation with DraStic and a controller that held your phone
  • Psionic Roshambo @ Psionic Roshambo:
    But sadly that's coming to an end
  • Xdqwerty @ Xdqwerty:
    @Psionic Roshambo, atleast I think the latest version's apk is archived somewhere
     +1
  • K3Nv2 @ K3Nv2:
    Yeah it works great but it's the obvious Ds factor you loose from it it's not like playing atari games on atari because Nintendo actually use to give a reason to buy their hardware
     +1
  • Psionic Roshambo @ Psionic Roshambo:
    Honestly Ken I actually have the hardware and it's hacked and works fine, prefer my phone lol
  • Psionic Roshambo @ Psionic Roshambo:
    Microphone is more sensitive, DraStic has a high res mode, screen is way better just overall a better experience
  • K3Nv2 @ K3Nv2:
    I just like game consoles how they were intended to play if they have a unique enough reason to buy them anything else yeah just download emulation for it
  • Psionic Roshambo @ Psionic Roshambo:
    Oh and touch screen infinity better lol
  • HiradeGirl @ HiradeGirl:
    @Xdqwerty It's still on Play Store.
  • HiradeGirl @ HiradeGirl:
    for free
  • HiradeGirl @ HiradeGirl:
    Install before they remove it.
  • K3Nv2 @ K3Nv2:
    I'd like to see a DS emulator that allows casting top screen to TV then use bottom for the touch screen stuff
     +1
  • HiradeGirl @ HiradeGirl:
    I used a vertical touch 22" monitor for playing some 3DS games through Citra.
  • K3Nv2 @ K3Nv2:
    Can't be that far off from it not like ds requires super hardware
  • HiradeGirl @ HiradeGirl:
    @K3Nv2 I did that using Citra for 3DS games. Bottom screen was my smartphone. Until I got the touch screen.
  • SwordShielder @ SwordShielder:
    Use a TV
    SwordShielder @ SwordShielder: Use a TV