Congrats!New 3DS U 10.5 to 10.2 and finally 9.2 whit safeSysUpdater
This is crossposted from reddit.
This is a summary / compilation of the information from this thread. Please don't follow any random instructions you find on that thread, there is quite a lot of misinformation going around. This is very much untested and a hardmod is necessary.
Do not ask if you can achieve this without a hardmod, you can't.
This is an apparently working implementation of the "FIRM partitions known-plaintext" exploit detailed here. Reports of successful downgrades are sparse or unconfirmed, but seeing as anyone who tries this has a hardmod and a NAND backup (hopefully multiple backups kept in multiple locations), there isn't really much that can go wrong.
This should work on both a New and Old 3DS.
Keep in mind throughout this that 10.4 and 10.5 use the same NATIVE_FIRM. Also keep in mind that 10.3 does not have a unique NATIVE_FIRM, and we will be using the 10.2 NATIVE_FIRM.
~
What you need:
- Your 10.4 or 10.5 NAND extracted using your hardmod
- Raugo's autofirm pack (Mirror)
- msvcr120d.dll (Mirror)
- The appropriate decrypted NATIVE_FIRM CIAs which can be found on my Github page.
Instructions
1. Extract the autofirm pack to a folder of your choice
2. Place a copy of your NAND file (named "nand.bin") in the autofirm folder
3. Download the appropriate decrypted 10.4/10.5 NATIVE_FIRM and the decrypted 10.2 NATIVE_FIRM as CIA files
4. Rename the 10.4/10.5 NATIVE_FIRM file to "firmoriginal.cia" then put it in the autofirm folder
5. Rename the 10.2 NATIVE_FIRM file to "firmnuevo.cia" then put it in the autofirm folder
6. Place the msvcr120d.dll file in the autofirm folder
7. Run "start.bat"
8. If everything worked, then you will have a modified "nand.bin" containing 10.2 NATIVE_FIRM on 10.4/10.5
9. Flash this "nand.bin"
Where can I get the Nand.bin after running start.bat? Is this nand.bin the same nand.bin I paste inside the autofirm and this one now contain the native firm?
sorry for the noob question...
Yes, it's the same one. Compare the patched one and your back up. There should be a difference between the 2. If not, the patch didn't go correctly.
If reading give it a name for it to appear. If writing make sure the extension is img not binThanks for the info.
What seems to be the problem if the READ and WRITE button from the disk manager is not available?
could it be the card reader or the lock key on the SD card??
Then why on the tutorial use the Nand.bin not Nand.img? Should I rename it though?If reading give it a name for it to appear. If writing make sure the extension is img not bin
The patcher requires .bin , win32 requires. Img just rename it and win32 will see it.Just a sec? Should dump with .img or .bin??? Help!!
--------------------- MERGED ---------------------------
Then why on the tutorial use the Nand.bin not Nand.img? Should I rename it though?
Congrats!
--------------------- MERGED ---------------------------
CONGRATS! to every1 who succeded
yes, if you get errors running your browser on 9.2 then you need to start over from a back up nand(personal experience). but if all is running then yes all browser hax will work for youSame here!!! Cheers!!
But How can I do the CFW now? Will the browserhax work on its browser?
How do you call those connector you installed and where can I buy those??Most modders like myself also give you options as to where you want the mod installed as well. Here are a few example of my work.
4 post JST connector. Ebay. Amazon, etc.How do you call those connector you installed and where can I buy those??
If you read my hardmod guide, you will find a video tutorial at the bottom.Is there a video tutorial for the hard mod? Preferably not in Spanish. All I can find on youtube.
the thing is native firm is stored at a specific offset and its easy to obtain a plaintext version of it to create a xorpad, without knowing exactly where in the nand the corrupt file is and the exact plaintext of the corrupt file its pretty much impossibleSorry if that question is stupid or has been asked already before, but would it be possible to unbrick a 3ds by altering corrupted files that prevent the console from booting just as we can downgrade the NATIVE_FIRM?
the thing is native firm is stored at a specific offset and its easy to obtain a plaintext version of it to create a xorpad, without knowing exactly where in the nand the corrupt file is and the exact plaintext of the corrupt file its pretty much impossible
the thing is native firm is stored at a specific offset and its easy to obtain a plaintext version of it to create a xorpad, without knowing exactly where in the nand the corrupt file is and the exact plaintext of the corrupt file its pretty much impossible