Homebrew Switch Hacking & Homebrew Discussion

[qaz015393]

Yes its in the first post, Change the DNS in your switch to 173.255.238.217 and then reboot your switch and go into the eshop right away.

damn I was late & didn't see that. I already updated to 2.3.0. but will no longer update and hope 2.3.0 can get hackable 1 day.

I hope the bypass update still works for 2.3.0 so I won't have to worry about updating again and can keep my fw.

 

[kai_dranzer2003]

I hope will it hack soon, only then would I buy it.

 

[Gamer4647]

HDDs wouldn't really work that well. You'd forget, take the Switch out, then realise that your game crashed or closed.

Back onto hacking, has somebody looked into the part of Android used in the OS? In the intellectual property notices of a game, Stagefright from the Android Open Source Project is listed. Since Android is open source, we might be able to find the code used for Stagefright. It's listed in the notes for Mario Kart 8 Deluxe, Zelda Breath of the Wild, ARMS Global Testpunch, Snipperclips, and probably any and all of Nintendo's games.

You can take a look by highlighting a game and navigating through:
Options > Other > Intellectual Property Notices

Edit: Been living under a rock. I don't really check this stuff often unless something actually gets released. Oh well.

 

[Naendow]

AFAIK there has also been stuff from FreeBSD.

Is it known which OS the Switch uses?

 

[Gamer4647]

AFAIK there has also been stuff from FreeBSD.

Is it known which OS the Switch uses?

Probably not.

I just know that Stagefright is a possible exploit, just like what they did to the older versions of Android to basically wreck someone's phone, and that code from the original projects could be easily looked up on the internet due to the open source nature. Also did a quick lookup that FreeBSD is Unix-based and similar to Linux, and I already knew Android is a fork of Linux.

 

[TotalInsanity4]

AFAIK there has also been stuff from FreeBSD.

Is it known which OS the Switch uses?

The Switch uses a fork of the 3ds OS, so the kernel is all custom

 

[hallo23]

Hey guys,

I know that the best fw to stay on is 2.0.0 atm.
Quick question. I'm getting a switch in two days so should I update to the current fw (2.3.0) if the switch is still on 1.0.0 OR should I stay on 1.0.0 if the console is not on 2.0.0?

 

[BlastedGuy9905]

IF YOU'RE STILL ON 2.0.0 DO NOT UPDATE, YOU CAN STILL ACCESS THE eSHOP BY REBOOTING YOUR SWITCH!

To get rid of the update nag:

• Set 173.255.238.217 as your primary DNS in the settings
• Complete power off the console (hold power button > Power Options > Power Off)
• Turn back on

Spoiler

Like in the "old Wii U days" where we had an active and ever so blooming thread with Homebrew, Discussion, Suggestions, Drama, Trolls and more I'd love to see something like this for the Switch again.
This is the reason for this thread. I'll try and update this post with useful information as much as I can and you guys can help doing so! If something new arises from the hacking community simply post it in here and, if possible, mention me so I'll see it instantly. I can then easily update this post to reflect the newest and hottest Switch news.
Of course, inspired by @filfat and a huge thanks for the Wii U thread he made which sadly over the past few months went more and more inactive.

Useful Links

• ReSwitched (Wiki)
• Switch Exploits (Another Collection): Desktop - Mobile
• Switchbrew (Wiki for Devs)
• SwitchBru (Forum/IRC)

Tools By The Community

• ProxSwitch (Tool to access any webpage on your Switch)
• DNS Redirect (Basically ProxSwitch without any tools needed)
• DNSwitch4All (Userfriendly alternative to DNS Redirect with more options)
• GBATemp's Wikitemp (Wiki Page)

Proof of Concept Exploits
These exploits are of no use for non-developer people and only show what will be possible soon!

• Browser CVE-2016-4657
• PegaSwitch

Current Userfriendly Exploits
Exploits that everyone can easily set up and use.​

• None

FAQ (Frequently Asked Questions)​

• Can we run Homebrew yet?
  No. It's far too early but the hacking community makes steady progress.
  
• Should I stay on FW 1.0.0?`
  Probably not. You'd have no way to run the exploit since there's no browser or anything else helpful.
  
• Should I update to 2.0.0 as soon as possible?
  Most likely yes, since future updates could fix potential entry points we have right now. And we're not yet sure if updating from 1.0.0 forces to 2.0.0 or further on.
• What's with all these Emulator videos popping up online?
  All fake. These are simply videos played via the web browser with some of the above mentioned tools.

HELLO EXPLOITABLE 2.3!

 

[EpicLPer]

HELLO EXPLOITABLE 2.3!

WAIT what

 

[BlastedGuy9905]

WAIT what

Check the thread out, it's on the side of the front page

--------------------- MERGED ---------------------------

WAIT what

http://gbatemp.net/threads/pegaswitch-on-2-3-means-everyone-should-update-now-if-they-havent.473915/

 

[datahoarder]

Just a little breakdown of the title-ids for the Wii U versus the Switch.
Doesn't look like it'll be possible to make all of the combinations to guess on their servers.

WII U: 16 characters
0005000 | $ | 101 | %%% | 00
%%% = 0,1,2,4,5,6,7,8,9,A,B,C,D,E,F
$ = 0(Title),2(Demo),C(DLC),E(Update)

Example: 0005000010130400 = Pilotwings

SWITCH: 16 characters
0100 | %%% | 00 | # | %%% | $00
%%% = 0,1,2,4,5,6,7,8,9,A,B,C,D,E,F
# = 0,1,2,3
$ = 0(Title),8(Update)

Example: 0100E67003A86000 = Disgaea 5 Complete

EDIT LINK: http://switchbrew.org/index.php?title=Title_list/Games

 

[Praxis]

Dumb question:

What are the technical hurdles to making a Switch flashcart? I used DS flashcarts and 3DS flashcarts back in the day. There's a lot of effort towards making a software exploit at the moment. Is it harder to make flashcarts for the Switch?

 

[BlastedGuy9905]

IF YOU'RE STILL ON 2.0.0 DO NOT UPDATE, YOU CAN STILL ACCESS THE eSHOP BY REBOOTING YOUR SWITCH!

To get rid of the update nag:

• Set 173.255.238.217 as your primary DNS in the settings
• Complete power off the console (hold power button > Power Options > Power Off)
• Turn back on

Spoiler

Like in the "old Wii U days" where we had an active and ever so blooming thread with Homebrew, Discussion, Suggestions, Drama, Trolls and more I'd love to see something like this for the Switch again.
This is the reason for this thread. I'll try and update this post with useful information as much as I can and you guys can help doing so! If something new arises from the hacking community simply post it in here and, if possible, mention me so I'll see it instantly. I can then easily update this post to reflect the newest and hottest Switch news.
Of course, inspired by @filfat and a huge thanks for the Wii U thread he made which sadly over the past few months went more and more inactive.

Useful Links

• ReSwitched (Wiki)
• Switch Exploits (Another Collection): Desktop - Mobile
• Switchbrew (Wiki for Devs)
• SwitchBru (Forum/IRC)

Tools By The Community

• ProxSwitch (Tool to access any webpage on your Switch)
• DNS Redirect (Basically ProxSwitch without any tools needed)
• DNSwitch4All (Userfriendly alternative to DNS Redirect with more options)
• GBATemp's Wikitemp (Wiki Page)

Proof of Concept Exploits
These exploits are of no use for non-developer people and only show what will be possible soon!

• Browser CVE-2016-4657
• PegaSwitch

Current Userfriendly Exploits
Exploits that everyone can easily set up and use.​

• None

FAQ (Frequently Asked Questions)​

• Can we run Homebrew yet?
  No. It's far too early but the hacking community makes steady progress.
  
• Should I stay on FW 1.0.0?`
  Probably not. You'd have no way to run the exploit since there's no browser or anything else helpful.
  
• Should I update to 2.0.0 as soon as possible?
  Most likely yes, since future updates could fix potential entry points we have right now. And we're not yet sure if updating from 1.0.0 forces to 2.0.0 or further on.
• What's with all these Emulator videos popping up online?
  All fake. These are simply videos played via the web browser with some of the above mentioned tools.

Erm... You can update the thread now you know. We can update safely to 2.3 since PegaSwitch now works on it...

 

[TimX24968B]

anything new or useful at this point?

 

[xtheman]

anything useful at this point?

No and don't expect anything useful for a while

 

[mikeg504]

I am on the newest version and just had a crash that I am positive is an exploit.. I replicated 3 times. I am not going to post public but..

has anyone worked out user mode API, or has dumps? I'm willing to cross share information... PM me?

Sec and I'll post some evidence..

 

[peteruk]

I am on the newest version and just had a crash that I am positive is an exploit.. I replicated 3 times. I am not going to post public but..

has anyone worked out user mode API, or has dumps? I'm willing to cross share information... PM me?

Sec and I'll post some evidence..

An in-game crash or something on the home menu ?

 

[mikeg504]

It's an OS crash.. not game specific...

 

[Oleboy555]

It's an OS crash.. not game specific...

"vuln.png"

if this is a real exploit vuln i will drink my piss and film it

 

[mikeg504]

"vuln.png"

if this is a real exploit vuln i will drink my piss and film it

I am going to attempt to get the information together for anyone who wants to take a shot.. but i think it'd be smart for people who are already able to exploit the first vuln .. since they would knnow more abouut the internal API, and addresses.. otherwise it'd just go to waste if i post it here...