[Tutorial] Using "smashhax" with Linux

Discussion in '3DS - Tutorials' started by ihaveamac, Sep 13, 2015.

  1. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    If you can use the browser, I suggest that you use the new browserhax (up to 11.0.0-33!) in the meantime.

    Try out Ubuntu 15.04: http://old-releases.ubuntu.com/releases/15.04/

    This requires a New 3DS. The demo version doesn't work and is patched. If you have 1.1.3 or newer delete/disable the update data.

    officially called smashbroshax sometimes smashax
    Here is a new tool I call smashbroshax-helper. It is a graphical interface for the exploit which simplifies most of the process of broadcasting the packet. It requires almost no setup outside of creating a bootable Linux USB/DVD.

    Important notes:
    • This does not work on Fedora or Red Hat-based distributions because aircrack-ng needs to be compiled on it (and I can't figure out how to install the needed things).
    • Don't use a virtual machine!
    • This probably will never work on Old 3DS.
    Download smashbroshax-helper beta

    It is recommended that you use a live Ubuntu 15.04 image. Versions 15.10+ have issues. http://old-releases.ubuntu.com/releases/15.04/
    1. Create a bootable USB/DVD with a Linux distribution (there are various guides online).
    2. If possible, get a second USB/SD card/storage device, download and save the above .zip to it.
      • Don't extract the contents of it to the USB device, as it might cause problems. Just save the .zip file to it.
      • If you can't do this, you'll have to connect to the Internet while in Linux to download it.
      • If using a bootable USB, make sure you can use two ports at a time. Don't take out the Linux USB while it is being used!
    3. Restart your computer and run the bootable USB/DVD you created.
    4. Extract the contents of the .zip to the Desktop.
    5. Open the smashbroshax-helper folder and double click "smashbroshax.sh".
    6. Follow the on-screen prompts.
    7. If everything goes well, you should now have homebrew!
    Video demonstration, from boot to shutdown:

    from https://gbatemp.net/threads/tutorial-using-smashhax-with-linux.397194/page-9#post-5842512


    If you would like the full tutorial, involving terminal usage and compiling:
    Everything
    You are allowed to reproduce/reprint this tutorial, as long as a link back to this page (https://gbatemp.net/threads/tutorial-using-smashhax-with-linux.397194/) is included.
     
    Last edited by ihaveamac, Jul 28, 2016


  2. DerpyEagle

    DerpyEagle Member

    Newcomer
    14
    10
    Jul 4, 2015
    Canada
    Hi; I'm having an issue getting this to work.
    Having followed all of the steps and confirmed that I have the correct versions for the payload and the exploit, I ran aireplay-ng and began sending packets. After a little while, the top screen of my 3DS was filled with garbage and the screens turned off moments later, indicating that the payload was delivered. However, instead of launching into the homebrew launcher, the system rebooted without an error message. This has happened almost every time I have tried the exploit, as smash crashed twice

    I compiled aireplay-ng on a x64 Ubuntu GNOME 15.04 system. I'm on a USA Old 3DS with fw 9.9.0-26U, using POST5_U_20480_usa_9221.bin and smashbros_gameusav110_beaconhax.pcap

    Any advice?
     
  3. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    Unfortunately this doesn't seem to work on Old 3DS. :( Sorry
    If you really want to try, repeat it a few times.

    I'll be sure to make this more clear.
     
  4. DerpyEagle

    DerpyEagle Member

    Newcomer
    14
    10
    Jul 4, 2015
    Canada
    Well, it was worth a try. Thanks!
     
  5. VinsCool

    VinsCool Possibly Insane

    Member
    GBAtemp Patron
    VinsCool is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    11,292
    25,876
    Jan 7, 2014
    Canada
    Dreams and Thoughts
    Gosh this sure is complicated.

    Thanks for the tutorial :)
     
  6. LinkKenedy

    LinkKenedy Member

    Newcomer
    49
    22
    Feb 14, 2015
    France
    Why not working for old?
     
  7. Vappy

    Vappy GBAtemp Advanced Maniac

    Member
    1,506
    1,152
    May 23, 2012
    LinkKenedy likes this.
  8. LinkKenedy

    LinkKenedy Member

    Newcomer
    49
    22
    Feb 14, 2015
    France
  9. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    Nothing positive unfortunately.

    https://github.com/yellows8/3ds_smashbroshax/commit/7684bbb656f1dd8c0efaee656bed47e73f4bad66
     
  10. LinkKenedy

    LinkKenedy Member

    Newcomer
    49
    22
    Feb 14, 2015
    France
    mmm.... ty

    [​IMG]
     
    zoogie likes this.
  11. ashinnblunts

    ashinnblunts GBAtemp Regular

    Member
    116
    111
    Jun 25, 2012
    United States
    So this won't work on 8.1?

    Need something to run homebrew that doesn't need the browser, like ninjhax.
     
  12. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    This is a Ninjhax 2-based exploit, which only works on 9.0 and higher.

    I'm going to assume by that number, that you have a Japanese New 3DS. Try taking a look at this: https://gbatemp.net/threads/new-8-1j-to-9-0j-method-beta-looking-for-testers.397268/ You do need Cubic Ninja still though.
     
  13. ashinnblunts

    ashinnblunts GBAtemp Regular

    Member
    116
    111
    Jun 25, 2012
    United States
  14. gudenau

    gudenau Never a unique idea

    Member
    3,174
    1,193
    Jul 7, 2010
    United States
    /dev/random
    If I figure out how to make a Raspberry Pi image I will make one for this.
     
  15. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    What wireless card/adapter/thing are you using?
     
  16. Favna

    Favna #PCMasterRace

    Member
    796
    372
    Sep 12, 2009
    Netherlands
    Been trying this for a bit now but everytime i start sending the packet it never exceeds 9 pps, be it if I put 10 or 11 (as seen in your video) in the command. Furthermore it also gets stuck on sending 93 packets and even after 10 minutes my New3DS is still searching.

    New3DS Firmware 10.2.0-28
    Smash bros version: EU Demo
    Pcap: smashbros_eurdemo_beaconhax.pcap
    Linux distro: Ubuntu 15.04
    Wireless interface: wlan0

    Any ideas what might be the cause?

    Update: So by setting the "10" value to 20 it does change to 19 pps, but it still gets stuck at 93 packets.
     
    Last edited by Favna, Oct 21, 2015
  17. cultopi

    cultopi GBAtemp Regular

    Member
    277
    68
    Jul 18, 2015
    United States
    Using Netgear N300 WNA3100 with broadcom bcm43231chipset, it gave me 8B06 error (can't change to monitor mode). Any idea?
     
  18. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    This is really strange. I want to say it could be your wireless card, but I'm not sure. :/
    I'm afraid I can't help you with specific wireless adapters, but you could look up "8B06" and get a few things like "12.04 - I cannot change the wlan0 mode. Why? - Ask Ubuntu"
     
    Last edited by ihaveamac, Oct 22, 2015
  19. cultopi

    cultopi GBAtemp Regular

    Member
    277
    68
    Jul 18, 2015
    United States
    What wireless adapter did you use for smashhax ?
     
  20. ihaveamac
    OP

    ihaveamac GBAtemp Guru

    Member
    5,259
    5,462
    Apr 20, 2015
    United States
    Tigard, OR
    This what you want?
    Code:
    Network controller: Intel Corporation Centrino Wireless-N 1000 [Condor Peak]