Hacking GW multirom demo

[Breadwin]

weirdo

well i thought you might be working for gateway since you told huntereb it had stopped

yes it is true i am a weirdo, but i have been told i am a nice weirdo

 

[mathieulh]

Because i don't care for piracy hardware. The FPGA is used since year's. Where do you think come all the DS flashcard clones from? I bet they don't all have their own FPGA firmware and the possibility of flashing some DS flashcards to other flashcards confirms, they use the firmware from other clone companys. It's not like everything is super secure, only because they promise this in their datasheet. Even hardware is not always secure, so let's shut up and see, what happens. You will be surprised, how fast clone company's can clone.

So for you FPGA == DS/3DS flashcard == Piracy ? That's a rather narrow minded perspective if you don't mind my opinion.

As to how the previous DS cards were cloned, it most likely had nothing to do with the FPGA security and more to do with leaks (from factory workers and whatnot), because someone uses a secure hardware profile doesn't mean he is safe from the human error element.

Though some "secure" FPGA have been proven to be failing to actually be as secure as advertised in the past. **cough**XILINX**couch**.

 

[Breadwin]

I should be the next hand model. I have big and soft hands, and I bet that red nail polish would NOT look totally gay in my nails.

you should paint your nails and do a youtube of the gateway bricking , but no hairy knuckles !

 

[qUaK3R]

you should paint your nails and do a youtube of the gateway bricking , but no hairy knuckles !

I don't know how I could brick a gateway.. and I couldn't even brick my 3DS, since I only use GW and, 1.2 xD

And I barely have hair in my hands. They're too pretty.

 

[pwsincd]

stephaniie are you the girl on the left or the right and have you contacted gateway to see if you can be the next hand model in there version 2.0 release youtube video ?

hand model .. you numb... when she looks that good.

 

[Huntereb]

It has stopped .

It's only over when the bricking code is gone, and they tell the truth for once.

 

[the_randomizer]

It's only over when the bricking code is gone, and they tell the truth for once.

Which they won't, because it would hurt their business more so than it already has.

 

[Huntereb]

Which they won't, because it would hurt their business more so than it already has.

If that ends up being the case, then I feel sorry for their company. Either way, it's a dead-end for them.

 

[Breadwin]

hand model .. you numb... when she looks that good.

Scousers think anything looks good aslong as they have big eyebrows ,here i found a pic of your bird on online

LMFAO

P.S Only joking no harm intended

 

[pwsincd]

PMSL ... no i did ... lmfao..

 

[gamesquest1]

bird....how very scouse of ya lid

 

[codezer0]

Is it safe to even consider a Gateway 3DS card at this point?

Also, how much do one of these actually cost? I know when I did a cursory look on Amazon, one seller on there was trying to charge the ridiculous sum of $240 for the Gateway card, which I know has to be a "we don't want the business" price.

 

[Joe88]

Currently going for around $60-80 usd

 

[escherbach]

Where did they say there is no brick code? They never denied it.



You would not understand it like the most of the users here (low level ASM stuff) so you are bound again to what the users say, which understand it. So it's useless.

Are you kidding me? I gave everyone the info and saved some users a lot of money and stress. You can see the fact on the forum. But i know already, what will happen. You try to proof shit like with the ARM9, where you have no proof yourself.

They clearly say in response to 1 "there is no bricking" and in response to 2 "it never happened"

And, FYI I have been involved on hacking arm based systems in the past and I would quite easily understand some disassembly - but if they could find the actual so called brick() routine it would be easy enough to reveal it. They obviously found some code to do with emunand and maybe some code to prevent stuff working on modified launchers (a checksum test) put 2 and 2 together and got 7

 

[mathieulh]

They clearly say in response to 1 "there is no bricking" and in response to 2 "it never happened"

And, FYI I have been involved on hacking arm based systems in the past and I would quite easily understand some disassembly - but if they could find the actual so called brick() routine it would be easy enough to reveal it. They obviously found some code to do with emunand and maybe some code to prevent stuff working on modified launchers (a checksum test) put 2 and 2 together and got 7

Not to kill your optimism, but it's actually there, they hid it cleverly by running it as MIPS instructions running on top of a CPU emulator, itself running from an ARM9 payload.

It is triggered when any of many specific checksums fail. The code itself uses various undocumented eMMC commands in conjunction to the AES hw engine. There is no practical use for these commands in the gateway firmware, other than to trigger the brick.

I could just paste the assembly here but:

1. You wouldn't understand any of it
2. I don't care nearly enough
3. There is going to be a "new" 3dslink/r4i 3ds gold/orange3DS... firmware within the next 24 hours of me doing it and I am certainly not going to do their work for them.
4. Anything that puts a halt to piracy can't be such a bad thing as far as I am concerned.
5. I would probably post it anyway just to shut people up if it wasn't for points 3 and 4

 

[Habbert]

Its funny how "early days" turned into 1/12 of the year... ;P

 

[profi200]

They clearly say in response to 1 "there is no bricking" and in response to 2 "it never happened"

Lol, and where do they say anything about the code? You missed the context.

And, FYI I have been involved on hacking arm based systems in the past and I would quite easily understand some disassembly - but if they could find the actual so called brick() routine it would be easy enough to reveal it. They obviously found some code to do with emunand and maybe some code to prevent stuff working on modified launchers (a checksum test) put 2 and 2 together and got 7

You not even was able to do anything, i told you. I said you should check the CPU ID, instead you claim to know better. If everyone say it's ARM9, then it is. Even well known scene members would tell you it's ARM9. Do they all lie because of a such unimportant thing?

That's not just plaintext ARM disassembly, it's obfuscated MIPS similar code running in a CPU emulator. I know already, what comes now. How have we done it then? Maybe we have something to emulate the code and output, what the code doe's on the hardware/registers? (and to the other reader's: No, it's not a real 3DS emulator. It's made to emulate ARM9 code, but it will never be a real 3DS emulator).

You claim to understand things, but you don't. I put you on my ignore list and everything is fine.

€:
We run the entire code in the emulator, not just the MIPS code. That would be dumb.

 

[dalc789]

Its funny how "early days" turned into 1/12 of the year... ;P

Well a year IS 365 days. I'd still call the first 30 days or so relatively early.

 

[Huntereb]

Its funny how "early days" turned into 1/12 of the year... ;P

Remember when it was supposed to come out before Christmas?

 

[longxa762]

Remember when it was supposed to come out before Christmas?

Why every sentence you make is to talk bad about Gateway? What flashcard are you using?