The Patchrom have received a update, it can find the functions automatically
But i have not tested, i'm trying the re-xoring thing
Sorry for the bump, but I'm having an issue with modifying title ID's. When I do it manually with a Hex editor, the game no longer shows on the 3DS home screen when selected on the Gateway menu. AKA, I can't start it at all.
What issue is there in doing this that's preventing the game from launching?
What issue is there in doing this that's preventing the game from launching?
What file are you modifying? It worked for me when I edited the names in icon.bin and rebuilt the whole rom, but the exefs has a checksum for each file that you need to fix if you modify it manually.
I'm just hex editing the ".3ds" rom itself. I would think it wouldn't be an issue considering you can modify everything like how the game saves without any problems.
I don't plan on using this tool until there's a practical way of repacking roms.
Yeah it's odd how some stuff in the headers is ok to modify, and other stuff is verified by checksums. If you want to change the name by hex editing the .3ds, you'd need to manually fix at least a couple of checksums, it's doable but I'm not sure it's worth the hassle.
If it's that much trouble, I'll just wait until it's possible to rebuild roms (And actually play them).
Anyone else have any info on this?
Would it be possible to generate a xorpad for homebrew? i know you can easily decrypt it with ctrtool. but i want to inject something directly into a homebrew without using ctrtool or makerom.
(wel ctrtool is t the biggest problem, but makerom is making own exefsheaders, what i dont want)
(wel ctrtool is t the biggest problem, but makerom is making own exefsheaders, what i dont want)
yes, but if you extract the raw data from it ( the -p parameter in ctrtool) and you used a 0 key it doesnt work.
The key itself is zeros and the encryption is AES-ECB, but it uses a custom counter, if you manually decrypt a NCCH, then you need to make your own counter algo.
Here how the encryption itself works (with C# code example).
In AES-ECB the xorpad is generated by encrypting a counter and then xoring that with the plaintext, that means we need 2 things, the key (zeros) and the init counter.
The init counter is titleid (8 Byte) + type (1 Byte) + blockid. (7 Byte)
Code:
example "VC Pokemon Red" by BigBlueBox: 00 04 00 00 0B 00 00 00 XX YY YY YY YY YY YY YY
00 04 00 00 0B 00 00 00 = Title ID
XX = type (ExHeader = 01, ExeFS = 02, RomFS = 03)
YY YY YY YY YY YY YY = block id in BigEndian (1 block = 16 byte)Here the C# code to decrypt/encrypt NCCH's raw contents or if you give it a zeroes block, then you get the xorpad.
Code:
private const int KEY_SIZE = 128;
private const int BLOCK_SIZE = KEY_SIZE / 8;
public static byte[] AES_CTR(byte[] key, byte[] counter, byte[] data)
{
byte[] result = data;
byte[] block = counter, encBlock = new byte[BLOCK_SIZE];
int blocklength = data.Length / BLOCK_SIZE;
RijndaelManaged rm = new RijndaelManaged();
rm.Mode = CipherMode.ECB;
rm.Padding = PaddingMode.None;
rm.KeySize = KEY_SIZE;
rm.BlockSize = KEY_SIZE;
rm.Key = key;
rm.IV = new byte[0x10]; //iv is not needed in ECB mode
using (ICryptoTransform ict = rm.CreateEncryptor())
{
for (int i = 0; i < blocklength; i++)
{
//increase counter block id, note: we only use 4 byte, thats more then enough to encrypt up to 68 GB...
Array.Copy(BitConverter.GetBytes(i), 0, block, BLOCK_SIZE - 4, 4);
Array.Reverse(block, BLOCK_SIZE - 4, 4);
//encrypt counter
ict.TransformBlock(block, 0, BLOCK_SIZE, encBlock, 0);
//de/encrypt data
XorBlock(result, i * BLOCK_SIZE, encBlock);
}
}
rm.Clear();
return result;
}
public static void XorBlock(byte[] dst, int offset, byte[] xorBlock)
{
for (int i = 0; i < xorBlock.Length; i++)
dst[i + offset] ^= xorBlock[i];
}
Thanks a lot this is really helpfull! But what do i take as the blockid? The 16 bytes as it start with?
The block id starts with 0 and after encrypting 16 bytes (1 block) it increases by 1.
just remember, it's BigEndian:
Block 0: 00 04 00 00 0B 00 00 00 03 00 00 00 00 00 00 00
Block 1: 00 04 00 00 0B 00 00 00 03 00 00 00 00 00 00 01
...
Block 9999: 00 04 00 00 0B 00 00 00 03 00 00 00 00 00 27 0F
- Joined
- Jun 14, 2013
- Messages
- 939
- Reaction score
- 1,307
- Trophies
- 4
- Age
- 30
- Website
- gbatemp.net
- XP
- 2,239
- Country
Did you test this to see if it will trick Miiverse into allowing you to post screenshots of games that the screenshot feature does not usually support? Can you please test this and post how to change the required ExeFS hash?
In addition, I keep getting errors when trying to extract, decrypt, and unpack the Mario & Luigi Dream Team ExeFS. I have tried various programs, such as the tools from patchrom (with the required .dll files set up) and xor.exe.
What method did you use to extract, decrypt, unpack, repack, encrypt and inject the ExeFS? Which game did you do this to and which game did you change the ID to?
well i just tried it for somebody and i noticed a few things:
1) some roms can be repacked and will work fine (kirby for example)
2) other roms need some adjustments after repacking (NSMB), which include changing the exheader afterwards (and hashes). (but i got it working)
Wow lot of questions
No I didn't test fooling MiiVerse, interesting thought tho. Will see if I can give it a go at some point.I've mostly been messing with VC games rather than retail games. I know people have had trouble repacking retail roms, I haven't had more than one or two failed attempts as yet, haven't really tried to figure it out.
For the hashes in exefs, you just take a sha256 hash of the whole (code.bin or icon.bin or banner.bin) file. If you take this hash of the original file then you can hex search for it in the exefs.bin and replace it with the hash of the new file.
- Joined
- Feb 11, 2014
- Messages
- 1,534
- Reaction score
- 4,772
- Trophies
- 2
- Website
- reisyukaku.org
- XP
- 5,446
- Country
The refactored thingy doesn't seem to work on my 3DS.. it always freezes at 'Reading' of the ncchinfo.bin
The original code works, but still freezes half way through.
I looked through the source too, and dont see anything that could have went wrong.
The original code works, but still freezes half way through.
I looked through the source too, and dont see anything that could have went wrong.
Site & Scene News
New Hot Discussed
-
-
25K views
Twilight Princess PC port "Dusk" gets its first release
It wasn't too long ago we saw our first glimpse of Courage Reborn, another Twilight Princess PC port in the works based on last year's decompilation efforts. With... -
14K views
Pokemon Platinum PC port gets a surprise release
Seemingly out of nowhere a PC port for Pokemon Platinum has surfaced online, bundled alongside the source code for those interested in building and developing it for... -
13K views
Nintendo announces price increases across the board, set to come into effect from September in western regions
After much speculation, Nintendo has finally followed their competitors in announcing price increases for their hardware. You can find a breakdown of what's changing... -
11K views
Star Fox 64 remake for the Switch 2 announced in surprise Nintendo Direct
Airing last night with very little in the way of warning, a brand new Nintendo Direct was aired. Running for 15 minutes in total, it took a moment to celebrate the... -
10K views
Steam Deck gets a major price bump, more than 40% increase for US buyers
With very little in the way of announcement, Valve has today increased the price of the Steam Deck but some fairly considerable margins. Both of the available models... -
9K views
Nintendo president Shuntaro Furukawa explains Switch 2 price increases in recent Financial Results Briefing
As a part of their Financial Results Briefing for the previous year, Nintendo president Shuntaro Furukawa took to the floor to answer key questions around the Switch... -
8K views
Sony announces PlayStation Plus price increase for new customers starting May 20
Earlier this year, Sony announced major price increases for the PS5, PS5 Pro, and PlayStation Portal. Now the company is raising prices again, this time for... -
7K views
Forza Horizon 6 leaks online after Steam preload data was uploaded without encryption
We are once again here to tell you about a game leaking before its release, but for once, it's not one published by Nintendo. The game files for Microsoft's upcoming... -
7K views
Pokémon Crystal gets a PC port titled "suiCune" based on C/C++ language
Continuing with the great news of Pokémon Platinum getting a native unofficial PC port just a few days ago, today, yet another classic title from the franchise has... -
6K views
Paper Mario PC recompilation "ReCut" gets its first pre-release build
The latest in a growing number of native PC ports, Paper Mario ReCut got its first pre-release build earlier this week. Based on the N64 recompilation toolchain, the...
-
-
-
168 replies
Steam Deck gets a major price bump, more than 40% increase for US buyers
With very little in the way of announcement, Valve has today increased the price of the Steam Deck but some fairly considerable margins. Both of the available models... -
163 replies
Twilight Princess PC port "Dusk" gets its first release
It wasn't too long ago we saw our first glimpse of Courage Reborn, another Twilight Princess PC port in the works based on last year's decompilation efforts. With... -
144 replies
Nintendo announces price increases across the board, set to come into effect from September in western regions
After much speculation, Nintendo has finally followed their competitors in announcing price increases for their hardware. You can find a breakdown of what's changing... -
134 replies
Star Fox 64 remake for the Switch 2 announced in surprise Nintendo Direct
Airing last night with very little in the way of warning, a brand new Nintendo Direct was aired. Running for 15 minutes in total, it took a moment to celebrate the... -
101 replies
Pokemon Platinum PC port gets a surprise release
Seemingly out of nowhere a PC port for Pokemon Platinum has surfaced online, bundled alongside the source code for those interested in building and developing it for... -
92 replies
Sony announces PlayStation Plus price increase for new customers starting May 20
Earlier this year, Sony announced major price increases for the PS5, PS5 Pro, and PlayStation Portal. Now the company is raising prices again, this time for... -
83 replies
Nintendo president Shuntaro Furukawa explains Switch 2 price increases in recent Financial Results Briefing
As a part of their Financial Results Briefing for the previous year, Nintendo president Shuntaro Furukawa took to the floor to answer key questions around the Switch... -
73 replies
Paper Mario PC recompilation "ReCut" gets its first pre-release build
The latest in a growing number of native PC ports, Paper Mario ReCut got its first pre-release build earlier this week. Based on the N64 recompilation toolchain, the... -
71 replies
PlayStation State of Play June 2, 2026 broadcast - new God of War announced
A whole hour of PlayStation content is on the way, thanks to the latest State of Play showcase. Headlining the stream will be Marvel's Wolverine, alongside a... -
63 replies
Call of Duty: Modern Warfare 4 to launch on Nintendo Switch 2 in October
For the first time in 13 years, the Call of Duty series will again return to Nintendo's consoles. Set to launch on the 23rd of October, the latest release, Modern...
-
