Hacking Backtrack 5 and the 3ds

[HollowKyo]

Has anyone thought of using backtrack 5 to collect or send data from the 3ds. I know you can basically tell signals to stop while you modify or replace them. I might be able to help someone if they are willing. I know quite a bit about Backtrack 5 and networking and such. Has anyone thought of maybe downloading a game from the e-shop, putting a hold on the signal, then telling it to send a rom of your choosing instead? I know it wont be easy, if possible. But is it possible.

 

[yuuna]

the rom must be encrypted with 3ds specific key. nobody can decrypt/encrypt key from eshop yet

 

[HollowKyo]

Well, can't we use backtrack to copy the data to a computer as it is downloading. Then look through and try to see if we can tell how it is being decrypted. I'm not very knowledgeable about how to encrypt/decrypt things but there are only so many algorithms right? Also maybe if we used backtrack to pull the data we could keep it all in one file even?

 

[Arras]

Well, can't we use backtrack to copy the data to a computer as it is downloading. Then look through and try to see if we can tell how it is being decrypted. I'm not very knowledgeable about how to encrypt/decrypt things but there are only so many algorithms right? Also maybe if we used backtrack to pull the data we could keep it all in one file even?

I'm pretty sure we can already access the eShop files and nobody has been able to do anything with them yet.

 

[Eerpow]

Well, can't we use backtrack to copy the data to a computer as it is downloading. Then look through and try to see if we can tell how it is being decrypted. I'm not very knowledgeable about how to encrypt/decrypt things but there are only so many algorithms right? Also maybe if we used backtrack to pull the data we could keep it all in one file even?

We still don't have the key, we could try to brute force it, but that would require every computer in the world to run the same piece of software for the next 10 years. It's not going to happen that way.

 

[HollowKyo]

I know, but by then it has modified it. All the things it does to the files, split them, assigned the key or whatever it is called..It is 4:30 am I can't remember everything in this state ^.^. Then encrypted it. If we can look at the files while it is decrypting/encrypting it and assigning the key. Maybe with backtrack we can find a little more out. That is what I was wondering. If anyone has tried this yet.

edit: This was a reply to Arras.

 

[Kouen Hasuki]

lol when I saw "Backtrack 5" I thought you meant

And I was like How did I miss 2, 3 and 4

 

[HollowKyo]

We still don't have the key, we could try to brute force it, but that would require every computer in the world to run the same piece of software for the next 10 years. It's not going to happen that way.

I see. I figured a few computers set up to try different algorithms would eventually find something. Are there really that many algorithms possible?

 

[HollowKyo]

lol when I saw "Backtrack 5" I thought you meant

And I was like How did I miss 2, 3 and 4

So much lol. ^.^

 

[Kouen Hasuki]

So much lol. ^.^

It was a fun game damnit!

 

[omega59]

That game cover has Mind-Control Wirtten all over it LOL. Illuminati!

 

[HollowKyo]

It was a fun game damnit!

I never got to play it, but screenshots look decent, for being a fps on gba.

 

[Eerpow]

I see. I figured a few computers set up to try different algorithms would eventually find something. Are there really that many algorithms possible?

Yes, there was talk about it a while ago, not even the fastest super computer in the world would stand a chance at cracking it, the odds are ridiculous.

There are 115792089237316195423570985008687907853269984665640564039457584007913129639936 possible keys (256 bit)
It would take more years than the amount of years earth has existed if we gathered a group of 1000 tempers to do it.

The odds of Iwata simply giving it to us if we asked nicely are higher than that lol.

 

[HollowKyo]

Yes, there was talk about it a while ago and not even the fastest super computer in the world would stand a chance at cracking it, the odds are ridiculous.

There are 115792089237316195423570985008687907853269984665640564039457584007913129639936 possible keys (256 bit)
It would take more years than the amount of years earth has existed if we gathered a group of 1000 tempers to do it.

Well, that is ridiculous. What if we made something like reaver, which uses a key to decrypt parts of the key, untill it has all the correct parts. I know, it would take a while because reaver takes 12 hours to 3-4 days on wpa2 passwords and I know that wpa2 passwords are entirely different from this key. So, would that be possible or is it basically what we have been talking about already. Or is what I am talking about completely impossible.

 

[Eerpow]

Well, that is ridiculous. What if we made something like reaver, which uses a key to decrypt parts of the key, untill it has all the correct parts. I know, it would take a while because reaver takes 12 hours to 3-4 days on wpa2 passwords and I know that wpa2 passwords are entirely different from this key. So, would that be possible or is it basically what we have been talking about already. Or is what I am talking about completely impossible.

From what I've gathered, no, it's still impossible no matter whatever angle we could possibly tackle it from.
Not having the key doesn't make it impossible to hack the system anyway, there could possibly be workarounds... well evidently there are as we already have some custom code running on the system, just don't expect anything that couldn't be patched in a week by Nintendo, give it a year or two and maybe we can have have some homebrew on it, maybe.

 

[HollowKyo]

From what I've gathered, no, it's still impossible no matter whatever angle we could possibly tackle it from.
Not having the key doesn't make it impossible to hack the system anyway, there could possibly be workarounds... well evidently there are as we already have some custom code running on the system, just don't expect anything that couldn't be patched in a week by Nintendo, give it a year or two and maybe we can have have some homebrew on it, maybe.

True, about the workaround. I just was testing my network for security and when scanning for networks, I saw my 3ds broadcast and got the idea.
I guess I will just see if I can mess with anything, just didn't wanna mess with the wrong thing and break something.
Thank you all for the information.

 

[Sychophantom]

Think about this. If it was possible to use Backtrack to crack the protection on the 3DS, it would have already been done by now.

This is not a new idea. It's just a better spelled one than the ones normally posted.

 

[HollowKyo]

I wasn't necessarily talking about cracking any key. For example, what if you use backtrack to put a halt on an e-shop download while you are downloading it. Then while you have the data on hold, (idk if this is possible, that is why I am asking) but maybe you could swap out the rom it is downloading, so it signs that rom with your unique 3ds key.

 

[Rydian]

I wasn't necessarily talking about cracking any key. For example, what if you use backtrack to put a halt on an e-shop download while you are downloading it. Then while you have the data on hold, (idk if this is possible, that is why I am asking) but maybe you could swap out the rom it is downloading, so it signs that rom with your unique 3ds key.

The signing happens at Nintendo (on their servers), not your 3DS. The stuff is signed before it even gets on the internet on the way to your DSi/3DS.

 

[HollowKyo]

Damn, they really don't want us to mess with this thing. >.>