Hacking 3DS Hacking Ideas: Post Your Ideas Here!

[3DSGuy]

The 3DS appears to use 128-bit RSA encryption for signing

Actually the 3DS uses 2048-bit RSA(and occasionally 4096-bit RSA). It's the AES cypher with which 128-bit keys are used, and that's for encrypting/decrypting.

 

[Rydian]

I'll change the wording that the numbers are for the DSi and that the 3DS is far worse... because I'm too lazy to find an online calculator that works with numbers that large without going into scientific notation.

 

[3DSGuy]

I'll change the wording that the numbers are for the DSi and that the 3DS is far worse... because I'm too lazy to find an online calculator that works with numbers that large without going into scientific notation.

Well I thought the DSi used RSA-1024 for signing(http://dsibrew.org/wiki/NDS_Format), but whatever.

 

[Rydian]

*changes again*

 

[WaryLouka]

Strangely enough, seems that ds games are emulated, or runt in a sandbox, because 3DS mode is probably still runt.
How do my theory makes sense? That Home button on the 3DS. Once you press it, you receive a notification about if you want to return to the menu.

That notification comes surely from the 3DS mode, but if you are in DS mode, how it's... possible?
Also, the notification take less than a nano second to show up, so its sure that the 3DS does NOT launch 3DS mode after pressing the home button.

Maybe we can exploit that? I dont know! Like, a .NDS homebrew file on a flashcart that intercept the notification and gain access to the 3DS or i dont know!

 

[Rydian]

But there's no home button on the DS, so there's nothing for DS-mode to recognize that easily.

 

[WaryLouka]

But there's no home button on the DS, so there's nothing for DS-mode to recognize that easily.

Exactly!
So why it does works if you are in DS mode?

 

[Rydian]

Exactly!
So why it does works if you are in DS mode?

It's the 3DS getting the signal and suspending DS-mode.

 

[masterz87]

OK, so I figured I should post here that project x-zone(US) doesn't require firmware above 4.5.0-U. I just picked it up finally and was glad to see that it works perfectly fine. I don't know if tehre's a thread dedicated to figuring out firmware for games or not but I think this is the best to start, and have a list of "unsafe" games.

 

[Kirito-kun]

Recently, a Canadian company know as D-Wave Systems has created the world's first commercial quantum computer. Last year's model, know as the D-Wave One, is a 128-qubit machine costing $10 000 000. This year's model, known as D-Wave Two, is a 512-qubit machine costing $15 000 000.

As you may have already knew, quantum computers have amazing abilities in cracking encryption. They can theoretically crack any cipher currently in existence in a very short amount of time. The amount of time for a brute-force attack would be reduced from quadrillion of years to a few days. It would be probable to use such a computer to brute force the RSA encryption of the 3DS.

Now, I know the price of these quantum computers are a *bit* high, but the 3DS has sold over 30 million units. If half of all the 3DS owners in the world were to donate $1, we'd have the funds to purchase the D-Wave Two and crack in encryption in record time. Does anyone what to start a kickstarter to raise funds?

 

[RedCoreZero]

You have read bullshit. The program they're showing in a screenshot is actually a joke program that I myself made for laughs.
http://gbatemp.net/threads/3ds-rom-loader-release.317248/

Does this mean I can post shit, knowing that it doesn't work?

 

[Yacker]

Recently, a Canadian company know as D-Wave Systems has created the world's first commercial quantum computer. Last year's model, know as the D-Wave One, is a 128-qubit machine costing $10 000 000. This year's model, known as D-Wave Two, is a 512-qubit machine costing $15 000 000.

As you may have already knew, quantum computers have amazing abilities in cracking encryption. They can theoretically crack any cipher currently in existence in a very short amount of time. The amount of time for a brute-force attack would be reduced from quadrillion of years to a few days. It would be probable to use such a computer to brute force the RSA encryption of the 3DS.

Now, I know the price of these quantum computers are a *bit* high, but the 3DS has sold over 30 million units. If half of all the 3DS owners in the world were to donate $1, we'd have the funds to purchase the D-Wave Two and crack in encryption in record time. Does anyone what to start a kickstarter to raise funds?

Seems like a good idea, but 15m would never get raised. Maybe in 2 years if it got advertised EVERYWHERE and offered to be used for other consoles as well.

 

[Isle41]

Any plan that involves $15 million dollars likely is not going to work.

 

[RedCoreZero]

It can possibly get hacked from the 3DS crashing from a huge sound file on the sound app.

 

[ichichfly]

I guess this is a better Plan. What the GW installer dose is it places a to long message length in the user settings (offset 050h) (overflow (most likely stack overflow)) so what we do is we search for the printf (or something similar) function by testing every single addr until something is displayed on the screen.

most likely somewhere between 0x00100001 and 0x0018D5DD (and more than 1) (we most likely need 1000 tries but could be more than 579037 as well) most likely last bit set. This should give us the possibility to dump parts of the ram. If someone wants to do this pn me.

 

[Boy12]

It can possibly get hacked from the 3DS crashing from a huge sound file on the sound app.

I guess this is a better Plan. What the GW installer dose is it places a to long message length in the user settings (offset 050h) (overflow (most likely stack overflow)) so what we do is we search for the printf (or something similar) function by testing every single addr until something is displayed on the screen.

most likely somewhere between 0x00100001 and 0x0018D5DD (we most likely need 723 tr) most likely last bit set. If someone wants to do this pn me.

These are 2 good ideas.
So, if i get it right, ichichfly want's to try this with someone?
Too bad i can't program (i only know very little of C++)
I will start learning more when 3DS homebrew becomes possible though.

 

[ichichfly]

These are 2 good ideas.
So, if i get it right, ichichfly want's to try this with someone?
Too bad i can't program (i only know very little of C++)
I will start learning more when 3DS homebrew becomes possible though.

actually the only thing the one needs to do is have a 4.X firmware (I don't).Than start a test program go to the DS settings and see what happens and that 1000 times. This is another guess it took GW about a year to get this running or they used a ram sniffer.

 

[Boy12]

actually the only thing the one needs to do is have a 4.X firmware (I don't).Than start a test program go to the DS settings and see what happens and that 1000 times. This is another guess it took GW about a year to get this running or they used a ram sniffer.

Well i do have my 3DS on 4.5.0-10E, but do i risk bricking my system?
Otherwise, i would like to help you out.
Do i also need to have some programming experience?
EDIT: it's a regular blue 3DS BTW, no XL, and i just send you a pm containing the same message as here.

 

[ichichfly]

Well i do have my 3DS on 4.5.0-10E, but do i risk bricking my system?
Otherwise, i would like to help you out.
Do i also need to have some programming experience?
EDIT: it's a regular blue 3DS BTW, no XL, and i just send you a pm containing the same message as here.

1.Brick risk is second to 0 (we are in User Land)
2.No programming experience needed just a lot of time

 

[Boy12]

1.Brick risk is second to 0 (we are in User Land)
2.No programming experience needed just a lot of time

I just read your PM a moment ago, and i don't think it's worth trying this.
Like you said, there is a very slight change that this will work, and if we will find something, it will most likely be patched in the next update.