Hacking 3DS Homebrew Channel!

[MakerNekoMizuki]

To everyone saying it's just a channel name change, even if that is what's going on, that's still impressive considering the 3DS ran it at all, doesn't it reject anything that's not the original? Much less one that's a system file, so even if it's not a real "homebrew channel", it's still good progress

 

[BrightNeko]

Awesome, if its real :3 Its probably been said to death in the thread but even a thing like this is a good step in the right direction

omg i just downloaded. it's awesome

 

[totalnoob617]

afaik bung was really the only ones they actually got shut down ,and was the only time they ever really stopped anything ,there other lawsuits against flashcards really didn to ish

 

[Foxi4]

To everyone saying it's just a channel name change, even if that is what's going on, that's still impressive considering the 3DS ran it at all, doesn't it reject anything that's not the original? Much less one that's a system file, so even if it's not a real "homebrew channel", it's still good progress

Remember that he has access to memory. He can swap chunks that were already checked for signatures, but this can only work under the conditions he's created. If this is not a photoshop, I doubt that he successfuly modified the flash as he would be unable to resign it without the keys. He simply injected a header into the memory and the 3DS assumed that it has already checked the system files on boot, so it showed their content. This proves that he knows how the system works, not that he is on the brink of hacking it... Unless you find soldering 150+ wires onto your 3DS convenient.

 

[Snailface]

To everyone saying it's just a channel name change, even if that is what's going on, that's still impressive considering the 3DS ran it at all, doesn't it reject anything that's not the original? Much less one that's a system file, so even if it's not a real "homebrew channel", it's still good progress

Remember that he has access to memory. He can swap chunks that were already checked for signatures, but this can only work under the conditions he's created. If this is not a photoshop, I doubt that he successfuly modified the flash as he would be unable to resign it without the keys. He simply injected a header into the memory and the 3DS assumed that it has already checked the system files on boot, so it showed their content. This proves that he knows how the system works, not that he is on the brink of hacking it... Unless you find soldering 150+ wires onto your 3DS convenient.

The pic seems to suggest this is a fully assembled unit (buttons and circle pad can be seen to the left). How could he inject that data into the RAM when it is fully assembled? This doesn't appear to be his dev board rig in any way.

 

[Foxi4]

The fact that the front is on doesn't mean that the back isn't exposed, but this is an accurate observation on your part, touche.

 

[Rydian]

As far as the disassembled thing, if his experiments involve something where he needs to actually play with the device (deeper than just navigating the menu), then that's an argument for keeping the front plate on, to make working the controls easier.

Do you think he will avoid releasing the exploit, if one even exists for us mortals ?

I've said it before and I'll say it again; the first exploits will likely be hardware, not software.

 

[Foxi4]

As far as the disassembled thing, if his experiments involve something where he needs to actually play with the device (deeper than just navigating the menu), then that's an argument for keeping the front plate on, to make working the controls easier.

Do you think he will avoid releasing the exploit, if one even exists for us mortals ?

I've said it before and I'll say it again; the first exploits will likely be hardware, not software.

Very true. For a software exploit to be found, one has to have access to what the console actually does during runtime, so naturally hardware comes first... Complex and non-user-friendly-solder-alot hardware.

 

[Rydian]

Then possibly modchips. Then after enough people have had a little bit of control over what sort of data the 3DS is found, software exploits become more likely. THEN THE WORLD.

 

[Ericthegreat]

I don't mind soldering a couple wires

 

[loco365]

I don't mind soldering a couple wires

Neither would I, now that I know how.

 

[Thesolcity]

I don't mind soldering a couple wires

It'd be micro-soldering. WAAAAAY different.

 

[DinohScene]

Vid or bullshit.

This. I do remember seeing a video where someone removed the 3D Classics: Excitebike banner and it still ran.

Seen that one.
Not really a hack.
Just a slight modification.

 

[CollosalPokemon]

To everyone saying it's just a channel name change, even if that is what's going on, that's still impressive considering the 3DS ran it at all, doesn't it reject anything that's not the original? Much less one that's a system file, so even if it's not a real "homebrew channel", it's still good progress

Remember that he has access to memory. He can swap chunks that were already checked for signatures, but this can only work under the conditions he's created. If this is not a photoshop, I doubt that he successfuly modified the flash as he would be unable to resign it without the keys. He simply injected a header into the memory and the 3DS assumed that it has already checked the system files on boot, so it showed their content. This proves that he knows how the system works, not that he is on the brink of hacking it... Unless you find soldering 150+ wires onto your 3DS convenient.

The pic seems to suggest this is a fully assembled unit (buttons and circle pad can be seen to the left). How could he inject that data into the RAM when it is fully assembled? This doesn't appear to be his dev board rig in any way.

http://www.flickr.com/photos/neimod/5596993164/in/photostream

He (might) have just put wires under the unit and didn't give us the full picture (just the bottom screen). This would allow him to keep the original case and make it look like a normal unit in the way it was pictured.

 

[raulpica]

Anyway, it's neimod, he's a serious hacker, and I doubt he'd post crap.

With that "Photoshop or real?" he's just teasing us.

I thought the same as Foxi, but editing stuff like that is for n00bs, it'd bring no benefits at all except bragging rights- and neimod does it for the lulz, not for fame.

So, it means something. Big or not, it's time for the waiting game (again)

 

[Foxi4]

I thought the same as Foxi, but editing stuff like that is for n00bs, it'd bring no benefits at all except bragging rights- and neimod does it for the lulz, not for fame.

That's not entirely true. If he knows where to inject what then clearly he can pinpoint the signature check inside the memory, which is a good thing, since he can inject just about anything after it and the system shouldn't mind. The Hypervisor, if any, clearly doesn't give a s*it about whether or not the files were modified.

...if he pinpoints a boot sector the same way...

If that's his plan... If I were to say what this reminds me of, then it's definitely a sort of PassMe, like the one where someone found a "pointer that leads nowhere" in Super Mario 64 DS which could be re-directed anywhere, allowing booting ROM images from SLOT-1.

 

[The Catboy]

I would like the see more proof of this other than that one picture.
A video would be better.

 

[Foxi4]

@[member='The Catboy']

Neimod already turned the menu upside-down and nobody believed in that either. Besides, the point of this picture is:

I understand this isn't actually the Homebrew Channel. However, it is undoubtedly the biggest accomplishment in 3DS hacking, so far. This is proof that neimod's RAM setup is working quite nicely. From this picture, you can see that he is able to edit live RAM, which is an invaluable necessity towards the goal of a future Homebrew Channel. With this setup, it makes it much easier to locate system bugs that would otherwise remain hidden. One would also have deep insight into the 3DS's various encryption and decryption algorithms, as they can now be seen as they are running live.

...not an actual Homebrew Channel. He's just showing that he can in fact edit the contents in memory live.

 

[FireGrey]

Seems legit.

We are one step closer!

 

[giavol]

My Download Play icon is orange like the friends list icon.