Toggle sidebar

Hacking [Attempt] Running GW3.0 Web Exploit on a Local Network

  • Thread starter Thread starter bendrr
  • Start date Start date
  • Views Views 68,915
  • Replies Replies 198
  • Likes Likes 1
Duo8 said:
OK phone hosting:

1. Get the right webpage for your 3DS: Use HTTrack on go.gateway-3ds.com , remember to change your UA (in Browser ID tab). UA ref:

Alternatively download the archive above.

2. Use a http server app like kWS. Set it up so it uses some directory as http root (I use /sdcard/gwweb). Copy the webpages from step 1 there (there should be an "index.html", which should contain the ROP chain, then a "frame.html"). You can set a custom port as well, kWS uses 8080 by default.

3. Start a hotspot on your phone then setup the 3DS to connect to it.

4. Start the server on your phone.

5. Clear the cookie and history then on the 3DS go to http://<phone's IP, should be 192.168.43.1 for hotspot>:<port, 8080 is kWS's default>
Click to expand...
:-infern: said:
I got this to run as a POC with no internet at all! However i have not been able to test it loading Gateway as I have an N3DS XL. This is what you do.

1. Download the files attached
2. Unzip the files to your android phone in the phone memory/gw3ds folder
3. Android: On the Play Store download and install Servers Ultimate App
4. Android: On the Play Store download and install Servers Pack C app
5. On your android phoen open the Servers Ultimate App > Servers > + > PHP and Lightttpd Server
6.In the General Tab > server name call it gateway, in the Specific Tab > Tick "Force use root to start the server" and set document root to the gw3ds folder
7. Then save
8. On your android phone disable your mobile data and turn off your wifi (VERY IMPORTANT STEP TO PREVENT 3DS CONNECTING TO NINTENDO SERVERS)
9. Set up the Android Access Point on your android phone and turn it on
10. On your 3DS Go to settings and connect to your Android Phone
11. Go to your Android Phone and run the Server, Go to Servers Ultimate > Servers > Gateway > Start
12. On your 3DS go to your internet browser, clear cookies
13. In the address type "http://192.168.43.1/index2.html"
14. You should see a small text which says gateway hyperlink on the top, click this text
15. The gateway exploit should load

Enjoy!!

I can add images and pictures if you guys request
Click to expand...


Tried both of this and i have "cannot load this image" error when i try to load the index.php.
 
Ivan Garcia said:
With the app that i'm going to develop... you only will need a mobile phone with thetering (Maybe if i develop also for iOS, just with an iPod can do that)... it will create an APN that you will connect 3ds to (3DS-Gateway will be APN name) and then load the url given by mobile...

I'm developing it as fast as i can... but maybe i will release it in a 1 or 2 days =)
Click to expand...
Very nice! But to create APN and make tethering, will I need Internet connection?
 
VerseHell said:
Tried both of this and i have "cannot load this image" error when i try to load the index.php.
Click to expand...

Try it this way then. Works for me at least.

1. Grab these files.. https://mega.co.nz/#!uYRGBKrL!nM6GbIGoL9fvUmlCDP4W0bUXdFky5R9reVw29wB7MnA
2. Create the folder "www" on root of sd card on phone.
3. Grab AndroPHP https://play.google.com/store/apps/details?id=com.ayansoft.androphp&hl=en
4. in AndroPHP settings, set www path to /mnt/sdcard/www exit androphp.
5. Put the files from the first step in the www folder.
6. Make sure mobile data and wifi are OFF on phone and start wifi hotspot.
7. Start AndroPHP and press the OFF button so it turns the server on.
8. Go to 3ds settings, connection settings, new connection, search for access point, AndroidMaster should be there, add that (it will fail the test which is fine).
9. Open the browser and go to http://192.168.43.1:8080 and the index page should load.
10. Select the one for your firmware version and exploit should load. (top screen will say "failed to load part of this page", watch the bottom screen).
11. And you should be done. Just do steps 6 - 10 to load the exploit again.
:)
 
  • Like
Reactions: Wario32, jres, ken28 and 4 others
Shadowtrance said:
Try it this way then. Works for me at least.

1. Grab these files.. https://mega.co.nz/#!uYRGBKrL!nM6GbIGoL9fvUmlCDP4W0bUXdFky5R9reVw29wB7MnA
2. Create the folder "www" on root of sd card on phone.
3. Grab AndroPHP https://play.google.com/store/apps/details?id=com.ayansoft.androphp&hl=en
4. in AndroPHP settings, set www path to /mnt/sdcard/www exit androphp.
5. Put the files from the first step in the www folder.
6. Make sure mobile data and wifi are OFF on phone and start wifi hotspot.
7. Start AndroPHP and press the OFF button so it turns the server on.
8. Go to 3ds settings, connection settings, new connection, search for access point, AndroidMaster should be there, add that (it will fail the test which is fine).
9. Open the browser and go to http://192.168.43.1:8080 and the index page should load.
10. Select the one for your firmware version and exploit should load. (top screen will say "failed to load part of this page", watch the bottom screen).
11. And you should be done. Just do steps 6 - 10 to load the exploit again.
:)
Click to expand...

Thanks a lot, I used kw3ds instead with your files and it works great. :)
 
It's pretty annoying to use Internet to play 3DS games..
But it's better than nothing, we just should wait ! :D
 
:-infern: said:
I got this to run as a POC with no internet at all! However i have not been able to test it loading Gateway as I have an N3DS XL. This is what you do.

1. Download the files attached
2. Unzip the files to your android phone in the phone memory/gw3ds folder
3. Android: On the Play Store download and install Servers Ultimate App
4. Android: On the Play Store download and install Servers Pack C app
5. On your android phoen open the Servers Ultimate App > Servers > + > PHP and Lightttpd Server
6.In the General Tab > server name call it gateway, in the Specific Tab > Tick "Force use root to start the server" and set document root to the gw3ds folder
7. Then save
8. On your android phone disable your mobile data and turn off your wifi (VERY IMPORTANT STEP TO PREVENT 3DS CONNECTING TO NINTENDO SERVERS)
9. Set up the Android Access Point on your android phone and turn it on
10. On your 3DS Go to settings and connect to your Android Phone
11. Go to your Android Phone and run the Server, Go to Servers Ultimate > Servers > Gateway > Start
12. On your 3DS go to your internet browser, clear cookies
13. In the address type "http://192.168.43.1/index2.html"
14. You should see a small text which says gateway hyperlink on the top, click this text
15. The gateway exploit should load

Enjoy!!

I can add images and pictures if you guys request
Click to expand...

I tried this, my old 3DS loads the black website saying "GATEWAY 3DS LOADING", but nothing happens. (I cleared cache & cookies)

EDIT: Works when using Shadowtrance's files.
 
Shadowtrance said:
Try it this way then. Works for me at least.

1. Grab these files.. https://mega.co.nz/#!uYRGBKrL!nM6GbIGoL9fvUmlCDP4W0bUXdFky5R9reVw29wB7MnA
2. Create the folder "www" on root of sd card on phone.
3. Grab AndroPHP https://play.google.com/store/apps/details?id=com.ayansoft.androphp&hl=en
4. in AndroPHP settings, set www path to /mnt/sdcard/www exit androphp.
5. Put the files from the first step in the www folder.
6. Make sure mobile data and wifi are OFF on phone and start wifi hotspot.
7. Start AndroPHP and press the OFF button so it turns the server on.
8. Go to 3ds settings, connection settings, new connection, search for access point, AndroidMaster should be there, add that (it will fail the test which is fine).
9. Open the browser and go to http://192.168.43.1:8080 and the index page should load.
10. Select the one for your firmware version and exploit should load. (top screen will say "failed to load part of this page", watch the bottom screen).
11. And you should be done. Just do steps 6 - 10 to load the exploit again.
:)
Click to expand...


This works for my Android 5.0. Other methods failed, maybe caused by storage issues. Thanks everyone.

Remember:
Disconnect internet .Clear 3ds browser cache and history b4 entering url.
 
Ivan Garcia said:
I think that you dont need this, i will search better.
Click to expand...

an idea for your app would be to hard block every website but the one you ant to serve, maybe edit hosts to do * to localhost or something, but remember to set it back when the exploit is done.
dunno if feasible, never made an android app before.
 
IF you use a PC, you can use HFS.exe to store HTML files.
By the way, can 3DS explorer read the HTML files in the SD card ?
 
Shadowtrance said:
Try it this way then. Works for me at least.

1. Grab these files.. https://mega.co.nz/#!uYRGBKrL!nM6GbIGoL9fvUmlCDP4W0bUXdFky5R9reVw29wB7MnA
2. Create the folder "www" on root of sd card on phone.
3. Grab AndroPHP https://play.google.com/store/apps/details?id=com.ayansoft.androphp&hl=en
4. in AndroPHP settings, set www path to /mnt/sdcard/www exit androphp.
5. Put the files from the first step in the www folder.
6. Make sure mobile data and wifi are OFF on phone and start wifi hotspot.
7. Start AndroPHP and press the OFF button so it turns the server on.
8. Go to 3ds settings, connection settings, new connection, search for access point, AndroidMaster should be there, add that (it will fail the test which is fine).
9. Open the browser and go to http://192.168.43.1:8080 and the index page should load.
10. Select the one for your firmware version and exploit should load. (top screen will say "failed to load part of this page", watch the bottom screen).
11. And you should be done. Just do steps 6 - 10 to load the exploit again.
:)
Click to expand...
W0W, in your zip there's a file named "payload_17567_fw71to94_index.html", does it work on 9.4?
 
Shadowtrance said:
Try it this way then. Works for me at least.

1. Grab these files.. https://mega.co.nz/#!uYRGBKrL!nM6GbIGoL9fvUmlCDP4W0bUXdFky5R9reVw29wB7MnA
2. Create the folder "www" on root of sd card on phone.
3. Grab AndroPHP https://play.google.com/store/apps/details?id=com.ayansoft.androphp&hl=en
4. in AndroPHP settings, set www path to /mnt/sdcard/www exit androphp.
5. Put the files from the first step in the www folder.
6. Make sure mobile data and wifi are OFF on phone and start wifi hotspot.
7. Start AndroPHP and press the OFF button so it turns the server on.
8. Go to 3ds settings, connection settings, new connection, search for access point, AndroidMaster should be there, add that (it will fail the test which is fine).
9. Open the browser and go to http://192.168.43.1:8080 and the index page should load.
10. Select the one for your firmware version and exploit should load. (top screen will say "failed to load part of this page", watch the bottom screen).
11. And you should be done. Just do steps 6 - 10 to load the exploit again.
:)
Click to expand...


Worked, but at step 9, it's not necessary the address, you just copy the address that the AndroiMaster shows you.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Help on 3DS prices...

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Hardware  2 Broken 3DSes, need help

Homebrew Homebrew app  [Release] GridLauncher Rosalina

Homebrew  My Secret World DS: is there a way to bypass the password lock?

please help, wont boot

Hardware  I Have 2 THQ Dev Kit 3DSes (Panda), Need Help On Preserving What’s Inside

Homebrew  reBadge - an open source Nintendo Badge Arcade and Theme Shop revival, done with ❤️