Toggle sidebar

Hacking 3DS Hacking Ideas: Post Your Ideas Here!

  • Thread starter Thread starter Rydian
  • Start date Start date
  • Views Views 105,628
  • Replies Replies 420
  • Likes Likes 18
PsyBlade said:
Since we can compose messages on the 3DS a presumed key needs to be in there.
Which means that it probably can be dug out.
Click to expand...


That what i want the people to find because im to noob in language programming Their is surely a solution to find the key within the message send on swapnote , Take example if i dont got a key to open the door of my house i got 3 solution, first is to call an locker expert, second is to pick-lock the door ,third is to hack through the door, it is exactly the same way as for finding a hack/exploit on the 3ds we got alot of solution we need just to try all of those.:wink:
 
LinkBlaBla said:
Yea i know but in the case of swapnote message the only way is the encryption key inside each message to make them work with the exploit/hack. I think:blink:
Click to expand...
Someone please correct me if I'm wrong. But I don't believe the swapnote messages contain the encryption key.
 
The swapnote 'notes' you create on your 3DS would HAVE to be signed, otherwise you could easily edit them on a computer to run unsigned code or a crash through it.
 
GoldenSun3DS said:
The swapnote 'notes' you create on your 3DS would HAVE to be signed, otherwise you could easily edit them on a computer to run unsigned code or a crash through it.
Click to expand...
Check the first post, you can't just inject a blob of code through a crash anymore.
 
Rydian said:
Check the first post, you can't just inject a blob of code through a crash anymore.
Click to expand...

That's not entirely correct.

http://www.3dbrew.org/wiki/3DS_exploits

The 3DS uses the XN feature of the ARM processor, and only apps that have the necessary permissions in their headers can set memory to be executable. This means that although a usable buffer overflow exploit would still be useful, it would not go the entire way towards allowing code to be run in an easy/practical fashion (ie an actual homebrew launcher) - for that, an exploit in the system is required. A buffer overflow exploit does, however, provide enough wriggle room through the use of return-oriented programming to potentially trigger a system exploit.
Click to expand...

A buffer overflow exploit does, however, provide enough wriggle room through the use of return-oriented programming to potentially trigger a system exploit.
Click to expand...
 
GoldenSun3DS said:
The swapnote 'notes' you create on your 3DS would HAVE to be signed, otherwise you could easily edit them on a computer to run unsigned code or a crash through it.
Click to expand...
I know they would have to be signed. but it's not like if you opened the file there would be a text document labelled "3ds decryption key". Besides, the 3ds receiving the swapnote has a decryption key. Unless each system has a unique decryption key, there would be no reason for the swapnote to contain the key.
 
Just had myself a crazy idea. Would it be possible to pack a rom played on the Gateway 3DS with a fake update that installs custom firmware?
 
If someone were to try to brute force the key, how could it be tested? In other words, it would be silly to sign a file, copy to the 3ds, and try to run it. How could each generated key be tested from a PC?
 
jhemps said:
If someone were to try to brute force the key, how could it be tested? In other words, it would be silly to sign a file, copy to the 3ds, and try to run it. How could each generated key be tested from a PC?
Click to expand...
You would have to try it on the 3DS. In order to test it on the PC you'd need the common key and that hasn't been extracted (they didn't get the DSi common key for like 2-3 years IIRC).
 
Rydian said:
You would have to try it on the 3DS. In order to test it on the PC you'd need the common key and that hasn't been extracted (they didn't get the DSi common key for like 2-3 years IIRC).
Click to expand...

And unless we had the entire databases inside of Utah that are being ran under the NSA (and if they had Computing tech far beyond than we know), your probably never going to brute force that key until Graphene computing comes around...
 
Hmm I I think I understand main post(only little). The "trick" is to slip custom code while it does "signature check"? Or perhaps guess the correct key?
 
Katsumi San said:
Hmm I I think I understand main post(only little). The "trick" is to slip custom code while it does "signature check"? Or perhaps guess the correct key?
Click to expand...
Yes that's right. To get custom code to run the signature check needs to get bypassed or disabled or somehow fooled.
But forget guessing or brute-forcing the key, that would take longer then we all will live.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Why did the price of 3ds shoot up ?

Hacking Homebrew Project  BlazerTube - a YouTube 3DS revival using the REAL app!

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Hardware  2 Broken 3DSes, need help

Website for finding alternative games for 3DS

Gaming  any good rpgs on 3ds?

Hacking  Modding Reassurance

GodMode9 wont launch, holding START just goes to home screen