Hacking [Attempt] Running GW3.0 Web Exploit on a Local Network

[garyopa]

Haha that page looks familiar.

Yep, thanks for your guide and files. -- I hope I gave you enough credit in my news post.

If there is any updates to the files, please yet me know so I can update the GO. SCMODS server, or I can give you if you want private FTP to that domain to upload updates.

An auto-php selector would be nice like GW has, I might code one up later. -- But then I think that is also the fault of why Korean consoles are not picking up the exploit correctly, has then been anyone sharing a UA string from Korean console or testing one of the five offline exploits to see if it works, as the current official way fails on these consoles.

 

[Dont Worry About it]

Can I remove the payload files for the other firmwares and rename the payload of the one I need to "index.html" (after removing the given index file)?

 

[Shadowtrance]

Can I remove the payload files for the other firmwares and rename the payload of the one I need to "index.html" (after removing the given index file)?

No reason you can't. Should still work, just takes one step out of the process (selecting the version from the list).

 

[zoogie]

I posted this in another thread, but this should be useful to get a 100% FULL offline method for 4.5-9.2:

Just plop that thing into the 3DS SD Slot, connect your 3DS to it, and visit http:/mysdcard/gateway/ (with proper files already setup)

Can confirm this works brilliantly on Toshiba flashair -- and its cheap and easy, $26 on amazon. Thanks for this great idea.

Imagine that, serving the exploit files from the 3ds itself, LOL.
(only disadvantage is high battery drain but you could always swap out for a conventional SD card)

 

[ore9ore]

Why is your sysNAND configured to connect to your normal WiFi?

Mainly because I used it to download the 9.0 update when it was released. (time ago)
Also to run the exploit on 3.0 release. (i was a 6.0 user, and later a 9.0 user, so I MUST use internet connection on SysNAND...
Was there another option before this (the offline method) one?

There is something wrong with that? (other than the risk of the upgrade suggestions?)

 

[wblhornet]

Hello everyone,

i've written a simple PHP script which checks the 3DS Browser-Version from the user-agent string and then sends the correct payload. The payload-files are the ones from Falo's Post:

And here the PHP script:

<?php
if (substr($_SERVER['HTTP_USER_AGENT'],13,12)=='Nintendo 3DS') {
    $version=substr($_SERVER['HTTP_USER_AGENT'],44,6);
    switch ($version) {
        case '1.7567':
            include("payload_17567_fw71to94_index.html");
            break;
        case '1.7552':
            include("payload_17552_fw50to70_index.html");
            break;
        case '1.7498':
            include("payload_17498_fw40_index.html");
            break;
        case '1.7455':
            include("payload_17455_fw21_index.html");
            break;
        case '1.7412':
            include("payload_17412_fw20_index.html");
            break;
        default:
            include("payload_wrong_user_index.html");
            break;
    }
}
?>

And here a complete package which should run on any webserver which supports PHP:
http://www8.zippyshare.com/v/23761999/file.html

 

[escherbach]

Mainly because I used it to download the 9.0 update when it was released. (time ago)
Also to run the exploit on 3.0 release. (i was a 6.0 user, and later a 9.0 user, so I MUST use internet connection on SysNAND...
Was there another option before this (the offline method) one?

There is something wrong with that? (other than the risk of the upgrade suggestions?)

The risk of upgrade is a pretty big deal - you're locked out (maybe forever) if your sysnand goes above 9.2.

The whole point of using a local wifi hotspot on your phone/tablet is so that you don't ever need the sysnand internet settings to have any standard wifi connections saved - just one connection setting for your android wifi-hotspot.

It only takes one drunken night to "accidentally" have sysnand upgrade otherwise

 

[johnbus]

The risk of upgrade is a pretty big deal - you're locked out (maybe forever) if your sysnand goes above 9.2.

The whole point of using a local wifi hotspot on your phone/tablet is so that you don't ever need the sysnand internet settings to have any standard wifi connections saved - just one connection setting for your android wifi-hotspot.

It only takes one drunken night to "accidentally" have sysnand upgrade otherwise

I, for one, plan to spend my drunken nights with my R5SDHC (red button Sky3DS clone).

I don't trust my drunk self to not break everything.

 

[Alguien]

http://www.maxconsole.com/maxcon_forums/threads/286487-3DS-N3DS-Gateway-Ultra-Guide

Just follow the "ProTips™"

 

[Deleted-19228]

The risk of upgrade is a pretty big deal - you're locked out (maybe forever) if your sysnand goes above 9.2.

The whole point of using a local wifi hotspot on your phone/tablet is so that you don't ever need the sysnand internet settings to have any standard wifi connections saved - just one connection setting for your android wifi-hotspot.

It only takes one drunken night to "accidentally" have sysnand upgrade otherwise

Where's those pictures of you eating your underpants? Downgrade files released.

 

[Shadowtrance]

Yup cough up the underpants eating pics!!!

 

[liomajor]

Hello everyone,

i've written a simple PHP script which checks the 3DS Browser-Version from the user-agent string and then sends the correct payload. The payload-files are the ones from Falo's Post:

Thanks a lot, i just came home and was writing my own script when i saw yours. *thumbs*up*

 

[March_]

Hello

I've made a little PHP script who's gather the exploit in a unique index.php file (+ the frame.hml file) rather than 6 files separated.

 

[Errorjack]

Hello

I've made a little PHP script who's gather the exploit in a unique index.php file (+ the frame.hml file) rather than 6 files separated.

Way more simple than different page payloads. I really wish you there was a way to re-enable the profile exploit for 9.2 and lower since he have access to Gateway again.

 

[March_]

Is anybody thinks to look for adapt the exploit to launch the Homebrew channel (like smealum's ninjax exploit) by this vulnerability?

 

[Ivan Garcia]

App nearly finished

 

[Shadowtrance]

App done. ^^^

https://gbatemp.net/threads/release-gateway-3ds-loader-android.378234/

 

[bendrr]

App done. ^^^

https://gbatemp.net/threads/release-gateway-3ds-loader-android.378234/

Testing it now, thanks for the speedy work!

 

[luney]

Seriously glad I asked Foxi to unlock this thread. I could see where this was going and how much it would benefit us all. Thanks guys for the awesome work!

 

[Shadowtrance]

Yep its been pretty cool messing with all this stuff