Homebrew Has anyone tried to unlock ARM7 by exploiting the running binary?

  • Thread starter Deleted User
  • Start date
  • Views 1,370
  • Replies 6
  • Likes 1
D

Deleted User

Guest
OP
It seems like there could be vulnerabilities in Nintendo's ARM7 IPC code. Has anyone investigated this?
 
  • Like
Reactions: DarkDante
MassExplosion213

MassExplosion213

.
Member
Level 7
Joined
Feb 15, 2015
Messages
1,464
Trophies
0
XP
1,099
Country
United States
Even when booting a cart, SCFG is locked. The only thing that has unlocked SCFG is Launcher, hence RocketLauncher exploiting the launcher. Before booting a game (cart or otherwise), Launcher locks SCFG.
 
Apache Thunder

Apache Thunder

I have cameras in your head!
Member
Level 17
Joined
Oct 7, 2007
Messages
4,426
Trophies
3
Age
36
Location
Levelland, Texas
Website
www.mariopc.co.nr
XP
6,787
Country
United States
Yeah you have to exploit Launcher or the stage2 bootloader on NAND (equivalent to FIRM partitions of 3DS....sorta). No official software besides Launcher runs with unlocked SCFG. Not even a few of the system Dev apps had it. twlNmenu has a few other things unlocked (a dev app that has both slot-1 and nand enabled), but even that app doesn't have unlocked SCFG. That app only is signed for dev hardware anyways so you can't use that one on retail hardware.
 
  • Like
Reactions: thom_tl, MyDePain, Axel-MaV and 2 others

Site & Scene News

Go to forum More news

Popular threads in this forum

Hardware Review  EZ Flash Parallel Warning - Power Strobe When DS Shut

Testing the new EZ-Flash Parallel

What is this strange flashcart? (Ninja DS SmartCard)

Best DS flash Cart?

ROM Hack  Mario Kart DS - Custom Tracks Grand Prix NITRO (CTGP NITRO) v1.1.0 Release

Do Nintendo DS Games Go To Sleep If Not Used For Years?

Metroid Prime Pinball slowdown and audio stutter on EZ-FLASH Parallel

EZ-Flash Parallel Question (Sav files and where to put them)

General chit-chat
Help Users
    Xdqwerty @ Xdqwerty: good night