Hacking hidden switch mode on 4.01

  • Thread starter Deleted User
  • Start date
  • Views 17,729
  • Replies 42
  • Likes 1

DELETE THIS?

  • YES

    Votes: 32 62.7%

  • NO

    Votes: 19 37.3%
  • Total voters
    51
JacksonS

JacksonS

Well-Known Member
Member
Level 7
Joined
Feb 13, 2016
Messages
427
Trophies
0
XP
1,232
Country
United States
Looks like the recovery mode on the 3DS, which tries to update the system in case something's corrupted and it can't boot.
 
D

Deleted User

Guest
OP
From what one of the team members of the reswitch Discord said it's a USB debug mode
 
SimonMKWii

SimonMKWii

Professional Idiot
Member
Level 11
Joined
Nov 18, 2017
Messages
666
Trophies
0
Location
Melbourne, Victoria
XP
2,760
Country
Australia
I am almost 100% sure it is not a USB debug mode, as that would make it way too easy for hackers to read/write files from NAND and load exploits.

Nintendo isn't that dumb.

EDIT: It likely just forces the Switch to install a firmware update from an inserted cartridge.
 
Last edited by SimonMKWii,
  • Like
Reactions: BvanBart
D

Deleted User

Guest
OP

Attachments

  • SmartSelectImage_2017-12-02-23-54-06.png
    SmartSelectImage_2017-12-02-23-54-06.png
    21.9 KB · Views: 1,206
guily6669

guily6669

GbaTemp is my Drug
Member
Level 10
Joined
Jun 3, 2013
Messages
2,323
Trophies
1
Age
34
Location
Doomed Island
XP
2,090
Country
United States
SimonMKWii said:
I am almost 100% sure it is not a USB debug mode, as that would make it way too easy for hackers to read/write files from NAND and load exploits.

Nintendo isn't that dumb.

EDIT: It likely just forces the Switch to install a firmware update from an inserted cartridge.
Click to expand...
Yeah, Im thinking a gaming company maker specially nowadays, I don't think they would put a combination of button presses to make it debug :(.

But it's interesting, if anyone finds out what it is, plz report here.
 
M

mikey420

Well-Known Member
Member
Level 4
Joined
Dec 11, 2015
Messages
911
Trophies
0
Age
30
XP
493
Country
United States
It's not impossible that it's a debug mode. I mean the communication protocol could certainly be protected by some form of encryption. And if that's indeed what this is I'm sure it's not unprotected.
 
D

Deleted User

Guest
OP
To me I just find it interesting I don't feel like it will lead to anything major unless Nintendo really fucks up
 
badpix11

badpix11

Active Member
Newcomer
Level 2
Joined
Mar 14, 2017
Messages
40
Trophies
0
Location
Fairy World
XP
127
Country
Serbia, Republic of
mikey420 said:
It's not impossible that it's a debug mode. I mean the communication protocol could certainly be protected by some form of encryption. And if that's indeed what this is I'm sure it's not unprotected.
Click to expand...

It's the safe mode, you can check the documentation here: http://switchbrew.org/index.php?title=Boot
The Switch has an anti-downgrade check and you can't upload unsigned FW anyway.
 
  • Like
Reactions: Deleted User
M

mikey420

Well-Known Member
Member
Level 4
Joined
Dec 11, 2015
Messages
911
Trophies
0
Age
30
XP
493
Country
United States
badpix11 said:
It's the safe mode, you can check the documentation here: http://switchbrew.org/index.php?title=Boot
The Switch has an anti-downgrade check and you can't upload unsigned FW anyway.
Click to expand...

Thank you for the info and we'll yeah it's using efuses to prevent a downgrade either through hardware or software. As for an unsigned FW ha I know Nintendo has messed up in the past with signing software and such. (See for example the trucha signing bug on the Wii) but I'd like to think they wouldn't repeat there mistakes with newer devices. Though I at the same time kind of wish they would lol.
 
  • Like
Reactions: Deleted User
B

boscocraftXD

Well-Known Member
Newcomer
Level 2
Joined
Sep 8, 2017
Messages
89
Trophies
0
Age
25
XP
215
Country
United States
Great. we have safe mode... but I'm wondering something.... I remember when we got the kernel, and when pegaswitch actually worked on 3.0.0 people were talking about downgrading and how eFuses were able to be bypassed if you had the root keys and I think trustzone... could those be implied here to create a possible exploit, or is this just wishful thinking?
 
D

Deleted User

Guest
OP
boscocraftXD said:
Great. we have safe mode... but I'm wondering something.... I remember when we got the kernel, and when pegaswitch actually worked on 3.0.0 people were talking about downgrading and how eFuses were able to be bypassed if you had the root keys and I think trustzone... could those be implied here to create a possible exploit, or is this just wishful thinking?
Click to expand...
I feel like this is more of wishful thinking because Nintendo wouldn't leave a massive vulnerability in a menu like that and only Nintendo has the keys to do everything with the switch unless it's somehow hackers figure it's out but until then I feel like this menus probably not going to be used but but if Nintendo patches this menu out in a firmware update then maybe there is something there because the menu itself works on 4.01but on earlier versions it doesn't work
 
APartOfMe

APartOfMe

( ͡° ͜ʖ ͡°)
Member
Level 11
Joined
Jan 4, 2017
Messages
1,247
Trophies
1
Location
Mt. Celeste
XP
2,564
Country
United States
RaphGamer1256 said:
Can't hear you in the video (and i have a bad English).
Can you give the combo in text please ?
Click to expand...
  1. power completely off
  2. hold the volume down button
  3. while still holding volume down, hold power
  4. let go of volume down, but not power
  5. while still holding power, hold volume up
  6. let go of power, but not volume up
  7. A second after the Nintendo logo appears, let go of volume up
 
Last edited by APartOfMe,
  • Like
Reactions: senas8, NekoMichi, XRaTiX and 2 others
machinoman

machinoman

Well-Known Member
Member
Level 5
Joined
Feb 12, 2011
Messages
322
Trophies
0
XP
611
Country
United States
epickid37 said:
  1. power completely off
  2. hold the volume down button
  3. while still holding volume down, hold power
  4. let go of volume down, but not power
  5. while still holding power, hold volume up
  6. let go of power, but not volume up
  7. when the Nintendo logo appears, let go of volume up
Click to expand...

Although, don't let go of volume up immediately upon seeing the Nintendo logo. You need to wait a full second or so.
 
Shadd

Shadd

Well-Known Member
Member
Level 4
Joined
Jan 27, 2016
Messages
301
Trophies
0
Location
Jeff The Killer's Bathroom
XP
473
Country
United States
badpix11 said:
It's the safe mode, you can check the documentation here: http://switchbrew.org/index.php?title=Boot
The Switch has an anti-downgrade check and you can't upload unsigned FW anyway.
Click to expand...
Boot doesn't necessarily mean that it's this combo. From what I read is that it runs at boot and checks and changes a few things before startup. This is a potential exploit and needs just a bit more research. Let's have our fingers crossed.
 
  • Like
Reactions: MadMageKefka

Site & Scene News

Go to forum More news

Popular threads in this forum

The MIG Switch Thread

Kingdom Come Deliverance Nswitch MOD

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

General chit-chat
Help Users
    Veho @ Veho: https://i.imgur.com/kTzpzBF.mp4