Hacking Just an idea: update proxy?

WiiFoundLove

WiiFoundLove

Well-Known Member
OP
Member
Level 3
Joined
Jan 18, 2015
Messages
280
Trophies
0
Age
54
XP
367
Country
Afghanistan
Hi!

This is just an idea, but wouldn't it be possible to create something like an update proxy that stores the downloaded update on hdd instead of sending it to the switch and serve it later on demand? I think of something like this:

Fetch update and store it as X.X (i don't know if it is possible to automaticly get the info about the version since the updates are encrypted):
up1.png
And than serve the update on demand:
up2.png
So we could collect upcoming updates without updating our switch, and if a further firmware get hacked, then just update to it, even if nintendo offers a newer update than the desired update. I know the updates are encrypted, but it shouldn't be the problem to get them if the proxy would store and recognice the raw http requests too?
 

Attachments

  • up1.png
    up1.png
    5.9 KB · Views: 289
  • up1.png
    up1.png
    5.9 KB · Views: 264
D

Deleted User

Guest
WiiFoundLove said:
Hi!

This is just an idea, but wouldn't it be possible to create something like an update proxy that stores the downloaded update on hdd instead of sending it to the switch and serve it later on demand? I think of something like this:

Fetch update and store it as X.X (i don't know if it is possible to automaticly get the info about the version since the updates are encrypted):
View attachment 90226
And than serve the update on demand:
View attachment 90227
So we could collect upcoming updates without updating our switch, and if a further firmware get hacked, then just update to it, even if nintendo offers a newer update than the desired update. I know the updates are encrypted, but it shouldn't be the problem to get them if the proxy would store and recognice the raw http requests too?
Click to expand...
iirc, the switch uses encrypted SSL requests, so this wouldn't work.
 
  • Like
Reactions: Garblant
WiiFoundLove

WiiFoundLove

Well-Known Member
OP
Member
Level 3
Joined
Jan 18, 2015
Messages
280
Trophies
0
Age
54
XP
367
Country
Afghanistan
I don't have any knowledge of SSL encryption, but is this a hardware thing? Or is ist simply encrypted data that is sended over a simply socket connection? Cause if the switch doesn't send anything inside the request that will change the encrypted data it should be possible to teach the proxy by starting the firmware download how the encrypted request for the firmware download looks like, so that it could recognice it and act appropriate.
 
Last edited by WiiFoundLove,
Garou

Garou

Well-Known Member
Member
Level 9
Joined
Jan 13, 2015
Messages
1,213
Trophies
0
XP
1,667
Country
SSL is common for security connection and no it's not hardware thing
Simply put with SSL the client connect to the server at some URL (say nintendo.com) and then the server will pass a certificate stating that it really is a server with URL nintendo.com
This certificate is hard to forge unless you can already tamper the certificate authority in the client, so basically it's not easy to make a fake nintendo.com server using SSL
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

Homebrew  I accidentally updated to fw 18.0 on my switch in cfw and now I am getting an error that says unknown pkg1 version. please help me find a solution

General chit-chat
Help Users
    Sonic Angel Knight @ Sonic Angel Knight: Or, I also heard that if you use flash memory, it can act as more "RAM" at least windows tell me...