Hacking (4.x only) CIA CFW Complete Guide

[CalebW]

I used the 3ds explorer tool to extract the exheader, romfs, and exefs. Then decrypted them with a batch script.

I read that someone said not to use 3dsexplorer to extract anything, but rather use ctrtool. Wha version of makerom are you using? .12 or .13?

 

[mocalacace]

I read that someone said not to use 3dsexplorer to extract anything, but rather use ctrtool. Wha version of makerom are you using? .12 or .13?

Version .13

I have no problems with 3ds explorer. I think what he meant is don't use it to extract the cxi, because of the way it is encrypted. When I have some free time I'm going to try to extract the cxi file and cat all my xorpads together and try to decrypt it. Then convert to cia and see if it works.

 

[VerseHell]

Is there any simple tutorial to convert .3ds to .cia?

Try this : https://gbatemp.net/threads/4-x-only-cia-cfw-complete-guide.373532/page-33#post-5147414

 

[Arnold0]

What can I do for this error guys ?
(Also I may have an old ver of makerom as I got it in a full zip with the decrypt tools too)

 

[CalebW]

What can I do for this error guys ?
(Also I may have an old ver of makerom as I got it in a full zip with the decrypt tools too)

In the rsf file, under ExtSaveData add "UseExtSaveData: true"

 

[mocalacace]

What can I do for this error guys ?
(Also I may have an old ver of makerom as I got it in a full zip with the decrypt tools too)

I got a similar error, except mine was that it did not recognize UseExtSaveData. I just commented out the line and it compiled fine. Also I am using version .13 so you may need to update makerom.

 

[drwhojan]

Top Image is the original Super.Mario.Bros.Deluxe.EUR.VC.3DSWare.3DS-BigBlueBox -> bbb-n-qa5p.cia

Bottom one is made from 3DSE003.rar -> 3DS Ware 0003 - Super Mario Bros. Deluxe (Europe) (En).3ds

Output was homebrew.3ds to be renamed.

Same Serial / GameID , Only some of the Header changed on ROOT - rest of the data was same in matching .

Same Error

Top Original .cia from bluebox / and 3DS file Unpacked and Repacked to homebrew.cia

10 at bottom

 

[djalmafreestyler]

will this cfw be able to use redNand in latest firmwares in the future?
i dont have the money to buy a gateway
and they just released v2.6 with devmenu suport but i need their card to use emunand
i have been since 2.2 without an updated emunand.

How much is gateway in your country?

 

[Arnold0]

Guys I thought I had did it... It shows the icon, when I click on it I have the 3DS loading screen then it freeze on a black screen...
makerom output :

rfs file :

BasicInfo:
Title : "Mario Party"
CompanyCode : "00"
ProductCode : "CTR-P-ATSP"
ContentType : Application # Application / SystemUpdate / Manual / Child / Trial
Logo : Nintendo # Nintendo / Licensed / Distributed / iQue / iQueForSystem

TitleInfo:
UniqueId : 0x0f82
Category : Application

Option:
UseOnSD : true # true if App is to be #installed to SD
EnableCompress : true # Compresses exefs code
FreeProductCode : true # Removes limitations on ProductCode
EnableCrypt : true # Enables encryption for NCCH and CIA
MediaFootPadding : true # If true CCI files are created with padding

AccessControlInfo:
ExtSaveDataId: 0x0f82 # same as UniqueId
UseExtSaveData: true
SystemSaveDataId1: 0x00000000 # plaintext exheader
SystemSaveDataId2: 0x00000000 # plaintext exheader
OtherUserSaveDataId1: 0x00000 # plaintext exheader
OtherUserSaveDataId2: 0x00000 # plaintext exheader
OtherUserSaveDataId3: 0x00000 # plaintext exheader
UseOtherVariationSaveData : false

SystemControlInfo:
SaveDataSize: 1M # plaintext exheader
RemasterVersion: 0 # plaintext exheader
StackSize: 0x00040000 # plaintext exheader
JumpId: 0x00040000000f8200L # plaintext exheader (<full UniqueID>L)

What's wrong ? :\

 

[ilollo360]

When i try to decrypt it gives me an error. It says Error, program id mismatch. The game is Luigi's Mansion 2

 

[palantine]

smea's ftpony in cia form (all code legal)

http://jheberg.net/captcha/ftpony/

 

[drwhojan]

Could you please list which games work?

Any should below firmware 4.5 or so I head of ...

But yet them games need sorting , and converting to .cia format correctly .

 

[VerseHell]

Any should below firmware 4.5 or on I head of ...

But yet them games need sorting , and converting to .cia format correctly .

Nope, everything work except the 7.X encrypted games.

 

[Queno138]

smea's ftpony in cia form (all code legal)

http://jheberg.net/captcha/ftpony/

whats that?

 

[mocalacace]

What's wrong ? :\

You need the common key and other stuff in your rsf

CommonHeaderKey: 
D: |
jL2yO86eUQnYbXIrzgFVMm7FVze0LglZ2f5g+c42hWoEdnb5BOotaMQPBfqt
aUyAEmzQPaoi/4l4V+hTJRXQfthVRqIEx27B84l8LA6Tl5Fy9PaQaQ+4yRfP
g6ylH2l0EikrIVjy2uMlFgl0QJCrG+QGKHftxhaGCifdAwFNmiZuyJ/TmktZ
0RCb66lYcr2h/p2G7SnpKUliS9h9KnpmG+UEgVYQUK+4SCfByUa9PxYGpT0E
nw1UcRz0gsBmdOqcgzwnAd9vVqgb42hVn6uQZyAl+j1RKiMWywZarazIR/k5
Lmr4+groimSEa+3ajyoIho9WaWTDmFU3mkhA2tUDIQ==
Exponent: |
AQAB
Modulus: |
zwCcsyCgMkdlieCgQMVXA6X2jmb1ICjup0Q+jk/AydPkOgsx7I/MjUymFEkU
vgXBtCKtzh3NKXtFFuW51tJ60GPOabLKuG0Qm5li+UXALrWhzWuvd5vv2FZI
dTQCbrq/MFS/M02xNtwqzWiBjE/LwqIdbrDAAvX4HGy0ydaQJ1DKYeQeph5D
lAGBw2nQ4izXhhuLaU3w8VQkIJHdhxIKI5gJY/20AGkG0vHD553Mh5kBINrWp
CRYmmJS8DCYbAiQtKbkeUfzHViGTZuj6PwaY8Mv39PGO47a++pt45IUyCEs4/
LjMS72cyfo8tU4twRGp76SFGYejYj3wGC1f/POQw==
Signature: |
BOPR0jL0BOV5Zx502BuPbOvi/hvOq5ID8Dz1MQfOjkey6FKP/6cb4f9YXpm6c
ZCHAZLo0GduKdMepiKPUq1rsbbAxkRdQdjOOusEWoxNA58x3E4373tCAhlqM2
DvuQERrIIQ/XnYLV9C3uw4efZwhFqog1jvVyoEHpuvs8xnYtGbsKQ8FrgLwXv
pOZYy9cSgq+jqLy2D9IxiowPcbq2cRlbW9d2xlUfpq0AohyuXQhpxn7d9RUor
9veoARRAdxRJK12EpcSoEM1LhTRYdJnSRCY3x3p6YIV3c+l1sWvaQwKt0sZ/U
8TTDx2gb9g7r/+U9icneu/zlqUpSkexCS009Q==
Descriptor: |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Also try this rsf

https://www.dropbox.com/s/54zm843eqa0xpcj/gw.rsf?dl=0

 

[4gionz]

smea's ftpony in cia form (all code legal)

http://jheberg.net/captcha/ftpony/

What is that? An FTP client

Also this is the best thing that could have possibly happened to this scene this is just a few good devs away from being a full blown rednand emunand with home brew channel type of deal sure it would take palatine a while to be able to do all that but maybe someone actually comes and help now that their is a base to work with. Gateway is scared so they finally allowed access to dev menu. Nothing can beat a supported cfw with latest firmware possibilities through rednand with the chance at a home brew menu (would have to be a homemade CIA that can launch honebrew?) I don't know but I'm exited and will wait to see how far this CFW goes

 

[TheMaxynator]

smea's ftpony in cia form (all code legal)

http://jheberg.net/captcha/ftpony/

How exactly can I use this? I tried to enter the ip that appears on screen in my internet browser, but that does nothing. How can I connect and how do I send something over?

 

[ilollo360]

Guys I thought I had did it... It shows the icon, when I click on it I have the 3DS loading screen then it freeze on a black screen...
makerom output :

rfs file :


What's wrong ? :\

I have the same error. Did you solve it?

 

[Arnold0]

Tried to add the keys in the rfs, changed nothing, same error and still blackscreen. I had an error while decrypting, something about an id mismatch so I don't even know if my decrypted files are good. Does someone have a link to a bin for makerom 13 I think this is an old version.

 

[VerseHell]

I have the same error. Did you solve it?

What is the game?
Try to change "-desc app:1" to 4,3 or 2.