Homebrew Unlaunch DSi | First public bootcode exploit for DSi

bennyman123abc

bennyman123abc

Well-Known Member
Member
Level 7
Joined
Mar 21, 2013
Messages
920
Trophies
1
Age
22
Location
Alton, IL
XP
1,208
Country
United States
Apache Thunder said:
I checked his forum thread. It appears his mitigation for the issue was to write protect flag the tmd file. (which appearently Nintendo's apps will obey?). Would still like to see him open source this at some point though....
Click to expand...
I second this. Perhaps someone else (Like Apache) could contribute help and make the exploit a bit more stable.
 
Apache Thunder

Apache Thunder

I have cameras in your head!
Member
Level 17
Joined
Oct 7, 2007
Messages
4,463
Trophies
3
Age
36
Location
Levelland, Texas
Website
www.mariopc.co.nr
XP
6,895
Country
United States
Seems 0.6 can still result in bricks. Launcher SRL needs the write protect flag too. But this one is recoverable. Seems exploit still works because Stage2 doesn't even get far enough along to check that the SRL even exists. TMD file is loaded first.

Makes sense since TMD file determines file name of the .app file. It's how it would know what file name to expect for the .app. ;)
 
  • Like
Reactions: TheLegendofMario
bennyman123abc

bennyman123abc

Well-Known Member
Member
Level 7
Joined
Mar 21, 2013
Messages
920
Trophies
1
Age
22
Location
Alton, IL
XP
1,208
Country
United States
Apache Thunder said:
Seems 0.6 can still result in bricks. Launcher SRL needs the write protect flag too. But this one is recoverable. Seems exploit still works because Stage2 doesn't even get far enough along to check that the SRL even exists. TMD file is loaded first.

Makes sense since TMD file determines file name of the .app file. It's how it would know what file name to expect for the .app. ;)
Click to expand...
So, you're saying that a brick in this case would be soft-recoverable? If so, I consider that stable! I mean, look at the way A9LH used to be! As long as the brick was recoverable through software methods, it wasn't really a brick!
 
D

Deleted member 381889

Guide Writer
Member
Level 14
Joined
Jan 29, 2016
Messages
2,035
Trophies
1
XP
4,420
Mnecraft368 said:
Any pictures?
Click to expand...
WIN_20180424_10_37_58_Pro.jpg

Source: DSiBrew Discord
dunno if it's real or not
 
Last edited by Deleted member 381889,
  • Like
Reactions: uyjulian, ry755, Lemon_ and 2 others
ThisIsDaAccount

ThisIsDaAccount

Well-Known Member
Member
Level 6
Joined
Apr 8, 2016
Messages
1,158
Trophies
0
XP
944
Country
United States
Mnecraft368 said:
Was scrolling through that discord and found it just as you posted. Fake tmd/Tiks apparently.
Click to expand...
The tiks are basically the same for all DSiWare on one console, so that's not really too hard to make for homebrew apps. That said, I wonder how the tmds work without checks- would just copying one from another app work or maybe some hex editing to add the appropriate short ID?

Regardless, I'll be adding instructions to TempNand as soon as I figure it out
 
M

Mnecraft368

I hate my name.
OP
Member
Level 12
Joined
Aug 8, 2015
Messages
1,763
Trophies
0
XP
3,341
Country
United Kingdom
ThisIsDaAccount said:
The tiks are basically the same for all DSiWare on one console, so that's not really too hard to make for homebrew apps. That said, I wonder how the tmds work without checks- would just copying one from another app work or maybe some hex editing to add the appropriate short ID?

Regardless, I'll be adding instructions to TempNand as soon as I figure it out
Click to expand...
Unlaunch bypasses checks...
 
ThisIsDaAccount

ThisIsDaAccount

Well-Known Member
Member
Level 6
Joined
Apr 8, 2016
Messages
1,158
Trophies
0
XP
944
Country
United States
Mnecraft368 said:
Unlaunch bypasses checks...
Click to expand...
I know it does but the tmd still has information in it besides stuff for checks, such as what the .app file will be called and, maybe, what title ID the app is to not confuse it with other apps in the home menu.

Even without checks, that information still has to be there
 
M

Mnecraft368

I hate my name.
OP
Member
Level 12
Joined
Aug 8, 2015
Messages
1,763
Trophies
0
XP
3,341
Country
United Kingdom
ThisIsDaAccount said:
I know it does but the tmd still has information in it besides stuff for checks, such as what the .app file will be called and, maybe, what title ID the app is to not confuse it with other apps in the home menu.

Even without checks, that information still has to be there
Click to expand...
http://dsibrew.org/wiki/Title_metadata
Have fun reverse engineering it then.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hardware Misc Others Project  3D Printing DS cart shells?

So what IS the best DS Flashcart?

DS ML Shell

Will I not get my flashcart from aliexpress?

What's the battery in the DSOne SDHC?

EZ-Falsh Parallel Sleep mode???

Homebrew GBA  GBA Exploader on modern libnds...

HiyaCFW white screen after installed it with Twilight Menu++

General chit-chat
Help Users
  • BigOnYa @ BigOnYa:
    They help you delete some incriminating videos?
  • K3Nv2 @ K3Nv2:
    No you asked for proof that your wife was finally leaving
     +1
  • BigOnYa @ BigOnYa:
    Nuh I had her chipped, I always know where she is.
  • K3Nv2 @ K3Nv2:
    I found where it was
     +1
  • Psionic Roshambo @ Psionic Roshambo:
    https://youtu.be/EK2bQTdxQFM?si=ulSENKUFfP8YE0k8
     +1
  • Psionic Roshambo @ Psionic Roshambo:
    If I could halucinAte this is what I imagine it would look like?
  • K3Nv2 @ K3Nv2:
    Featuring Taylor swift
     +1
  • BakerMan @ BakerMan:
    guys, pubg should've never blown up
  • BigOnYa @ BigOnYa:
    Wut do you mean? Pubg is alright, I play it with a few buddies online.
  • BakerMan @ BakerMan:
    the game itself is ok, but it's influence is the problem
  • K3Nv2 @ K3Nv2:
    Call of duty is a good Fortnite skin
  • BakerMan @ BakerMan:
    call of duty and fortnite, ex-fucking-actly
  • BakerMan @ BakerMan:
    without pubg popping off, fortnite wouldn't add battle royale, and call of duty wouldn't go even shittier than it did before because of blackout, warzone and dmz
  • Psionic Roshambo @ Psionic Roshambo:
    Make a porn based spoof of it, Pube G
  • BigOnYa @ BigOnYa:
    Just play My Pony online. Its better than Fortnight or COD.
  • Psionic Roshambo @ Psionic Roshambo:
    FPS porn games sound fun lol
     +1
  • K3Nv2 @ K3Nv2:
    Call of duty got close with that by using Nikkie Minaj
  • BigOnYa @ BigOnYa:
    -Bonus- Faceshot
  • K3Nv2 @ K3Nv2:
    5 killstreak call in the gangbang
     +1
  • Psionic Roshambo @ Psionic Roshambo:
    Lol
  • Psionic Roshambo @ Psionic Roshambo:
    Still enjoying Bad Ass Babes lol
  • Psionic Roshambo @ Psionic Roshambo:
    Legit a super solid beat em up
  • Psionic Roshambo @ Psionic Roshambo:
    The special moves are hilarious
  • BigOnYa @ BigOnYa:
    Introducing the most anticipated 1p v 4p game of the year - COCC (Call of couch casting)
  • RetroNerdGamer @ RetroNerdGamer:
    isnt that just gal gun
    RetroNerdGamer @ RetroNerdGamer: isnt that just gal gun