Search results
-
Tutorial How to dump the latest master key (master_key_06) + others
Fusee-secondary does not dump the keys, it only initializes them for internal use. It's OK, I was able to modify the file enough for my use.- Selver
- Post #6
- Forum: Nintendo Switch
-
Tutorial How to dump the latest master key (master_key_06) + others
Can you give a GIT repo link and corresponding GIT commit hash for the source you apply this to? As you know, giving a line number makes the instructions heavily dependent on a specific revision. Giving the git commit hash the instructions are based on removes (future) ambiguity. Thanks!- Selver
- Post #4
- Forum: Nintendo Switch
-
Hacking Question What firmware version are fresh switches from the store on?
All current switches have the same bootrom. The bootrom has a known (but currently private) exploit, allowing arbitrary code to be loaded. While the bootrom exploit is currently private, both Team Executor (TX) and Reswitched wizards have indicated it will be released eventually. Therefore...- Selver
- Post #5
- Forum: Nintendo Switch
-
Hacking Question Find a short to Ground on Nintendo Switch Motherboard
Since the switch came out less than one year ago, and came with a 1 year warranty, it seems "obvious" to ask... why not have the unit repaired under warranty? FAST6191 also mentioned something interesting: At the risk of asking the obvious, have you validated the connectivity of the system's...- Selver
- Post #12
- Forum: Nintendo Switch
-
Hacking jamais vu - a 1.0.0 TrustZone code execution exploit for the Nintendo Switch
IF a given exploit abuses the BPMP sleep/awaken cycle, then yes, every full reboot would revert to non-CFW state. However, as you likely noticed, this is still significantly fewer times that a user would need to initiate the hack. Few people perform a full power cycle of their Switch. (No...- Selver
- Post #188
- Forum: Nintendo Switch
-
Hacking Discussion: What is Xecuter's mod?
Except that each switch has a unique client certificate that is required for talking to their servers. Therefore, if your switch gets banned from online, that client certificate is banned forever... no more online for you. And no sharing of certificates, because they can (and likely will) scan...- Selver
- Post #37
- Forum: Nintendo Switch
-
Hacking Spectre bug affecting the Switch?
Previously, I wrote: Here's some system registers that MIGHT be of interest, if you want to understand the configuration of the system: SP_EL1t, SP_EL1h, SP_EL3t and SP_EL3h - The stack pointer for the given exception level The various exception handling registers - as pointers for...- Selver
- Post #16
- Forum: Nintendo Switch
-
Hacking Spectre bug affecting the Switch?
TLDR: YES to both Spectre and a slight variation of Meltdown. Summarization so far: Spectre includes two vulnerabilities, which ARM describes as Variant 1 and Variant 2. Meltdown is officially one vulnerability which ARM describes as Variant 3, and they ARM describes a slight variation they...- Selver
- Post #8
- Forum: Nintendo Switch
-
Hacking System update, but no connection...
Let's see if we have the scenario right... OP had wifi enabled prior to v4.1 being released, and updated to v4.0.1. (t=0) OP disabled wifi and enabled airplane mode (t=10) v4.1 was released (t=20) OP used (played with) hidden boot method (t=30) OP was prompted to update system (t=50) OP did...- Selver
- Post #133
- Forum: Nintendo Switch
-
-
Hacking AceKard 2i -- Basics of Post-CFW use?
I admit these are basic questions. A search of this forum didn't provide answers. Hopefully, this can become a FAQ. According to https://3ds.guide/ntrboot: Note that the flashcart will not be able to be used for its standard functions while the ntrboot exploit is installed on it (except for...- Selver
- Thread
- Replies: 6
- Forum: Nintendo 3DS
-
Hacking Nintendo Switch bootrom dumped.
Hi V-Temp, I enjoyed following that discussion between yourself and SciresM, and reviewed the SMC call documentation on SwitchBrew. I'm sure my question isn't clear. Switchbrew says that "userspace stores... AES(Ksession, AES(Kkek, K...))", presumably referring to non-trusted userspace...- Selver
- Post #180
- Forum: Nintendo Switch
-
Hacking Nintendo Switch bootrom dumped.
Hi V-Temp, Your posts have been technically informative, thank you. Can you help me confirm my understanding (based on your descriptions, switchbrew.org, and ARM manuals)? Are the following stored in memory accessible by trusted world (TZ)? Each session-specific key used to wrap the KEK...- Selver
- Post #164
- Forum: Nintendo Switch
-
Hardware Files larger than 4GB in Switch SD Card?
From https://en.wikipedia.org/wiki/File_Allocation_Table#FAT32: "The maximum possible size for a file on a FAT32 volume is 4 GiB minus 1 byte or 4,294,967,295 (2^32 − 1) bytes." If the Switch is generating invalidly-large files on FAT32, that's scary...- Selver
- Post #13
- Forum: Nintendo Switch
-
Hardware Files larger than 4GB in Switch SD Card?
Are you sure that they are exactly 4 * 1024 * 1024 * 1024 bytes? Or, are they just ever so slightly smaller than that, such as being off by just a few bytes? I ask because I don't believe you can create a file that's a full 4Gb on FAT32.- Selver
- Post #11
- Forum: Nintendo Switch
-
Hardware Files larger than 4GB in Switch SD Card?
Pleng is correct. The SD card specification itself requires exFAT for SD cards larger than 32Gb in size. For 1-32GB, the SD card specification requires FAT32. This is why OP showed FAT32 (using a 32Gb card), and linkinworm showed exFAT (using a 128Gb card). If you want exFAT, use a SD card at...- Selver
- Post #8
- Forum: Nintendo Switch
-
Hardware Updating games without latest firmware
My understanding is that this method no longer works.- Selver
- Post #4
- Forum: Nintendo Switch
-
Homebrew Official [Release] GodMode9 - All Access File Browser for the 3DS
Just tried setting GodMode9.firm as boot.firm, and booting directly to GodMode9.firm via NtrBoot on an N3DS. The goal is to have a flashcart + SD that can trivially boot to GM9. GM9 mostly works, except that the bottom screen does not appear to get initialized. This makes it really hard to do...- Selver
- Post #494
- Forum: Nintendo 3DS
-
-
Hacking Why the 3DS can't be downgraded on 11.4 "For Dummies" (A simple explanation for the rest of us)
Perhaps this should be updated to reflect that downgrades are now possible, regardless of firmware version, using MagnetHax (or NtrBootHax, or whatever it's now called). Since that's exploiting a bug in the bootrom, and the bootrom is non-upgradable, it's definitely possible... and doesn't...- Selver
- Post #237
- Forum: Nintendo 3DS
- No one is chatting at the moment.
-
-
-
-
-
-
-
-
-
-
@
SylverReZ:
@Xdqwerty, People who create revival services for the Wii end up in disaster, same goes for Pretendo lol.+1 -
-
-
-
-
@
SylverReZ:
It got shutdown because somebody "accidentally" leaked the database for the amount of people using the beta.
-
@
SylverReZ:
RiiShop is the laziest way of downloading Wii games. Did somebody not think of this through?
-
@
BakerMan:
although i ended up accidentally changing my nand with no way of going back bc i didn't know you needed a gamecube controller to restore it (i have a wii minus/1.1, which doesn't have gamecube controller support) -
@
SylverReZ:
@BakerMan, I think you're talking about the recovery mode that the SaveMii used, and also was to restore softbricked systems.
-
@
SylverReZ:
If your NAND was hardbricked, then just buy another Wii. Or go with the dirty NAND flasher method.
-
@
BakerMan:
and if i find the sd card i have my NAND backed up on, i can not only restore the NAND if i solder the right part in, but i can also put my NAND on dolphin, then i can play dolphin online, like PMEX Remix or MKWii Riibalanced
-
-
-
-
@
BakerMan:
ngl i feel like if a bunch of my friends have wiis and know how to get wiimmfi and back up their NAND, then we could do a PMEX Remix tournament
-
