Hacking Hacking DSi 2015?

[OctopusRift]

I'm writing a small program using an old exploit to try to port unsigned software to the 3DS... more details later... anyway, what's the simplest way to hack the DSi today with nothing but a flashcart and an SD card?

 

[usernametaken]

Don't Nds carts work on the dsi regardless?

 

[reiyu]

Don't Nds carts work on the dsi regardless?

depends on the cart. acekard2i stopped working after the 1.4.5 update.

 

[usernametaken]

depends on the cart. acekard2i stopped working after the 1.4.5 update.

I see, good to know.

 

[stomp_442]

Don't Nds carts work on the dsi regardless?

No, the flashcart needs to be DSi compatible. My M3DS Real and Cyclo DS don't work on my DSi and probably never will.

 

[OctopusRift]

Don't Nds carts work on the dsi regardless?

Yes but I need NAND access or at least SD.

 

[DinohScene]

Your best bet is a CycloDSi.
All DSi compatible flashcards operate on DS mode and have no access to NAND or SD.

 

[zoogie]

If you want to run dsi mode code on >1.4.1 firmware, use the Biggest Loser save hax. Only 8K so you have to make it count.
https://github.com/St4rk/The-Biggest-Loser

Since it's cart, no NAND/SD hax like Dinoh said.
Eh scratch that. Just read your previous post.

You're going to need to hack a dsiware save, preferably something with QR codes. (it's a BASIC choice )

 

[OctopusRift]

If you want to run dsi mode code on >1.4.1 firmware, use the Biggest Loser save hax. Only 8K so you have to make it count.
https://github.com/St4rk/The-Biggest-Loser

Since it's cart, no NAND/SD hax like Dinoh said.
Eh scratch that. Just read your previous post.

You're going to need to hack a dsiware save, preferably something with QR codes. (it's a BASIC choice )

Guh... that's annoying... I would love to modify sd cart content so I can move modified content to 3DS for... a reason.

 

[Apache Thunder]

Sudokohax is your best bet. Especially since it's easy to install on a 3DS now a days. I think it's still possible to inject sudokohax onto a DSi as long as it's not on 1.4.5 where firmware was updated to block you from importing it from SD.

Not sure what you are wanting to do. Possibly you could modify this:

https://github.com/devkitPro/nds-hb-menu/issues

Or DSi Homebrew Channel (preferably hb-menu though since it has working SDHC access to SD card) to use as a possible DS game loader. You'd just have to find a way of sandboxing the DS games correctly (because Sudoku runs in DSi mode) and patching roms on the fly to read/write saves to a file on SD. Some DS flashcarts already do this to some degree, so you can always look at existing examples on how to do that.

Also Sudokohax payload is known to actively corrupt keyslot3 on DSi to prevent NAND dumping. Perhaps you can modify or rewrite the payload so that is no longer the case? (and also make a NAND dumper homebrew while you're at it. I would love to try and inject a DSi nand dump into my 3DS TWLN partition to see how functional it would be. )

That and you could also just customize the payload to make the hbmenu game loader easier to setup instead of working with the default sudokhax payload.

The plus with this is it will work on both on a DSi and a 3DS in TWL mode.

Note that with currently known exploits, you can't have both slot1 and SD card access. Sudoko has SD (and NAND access if you fix the sudokohax payload) but no Slot1.

Exploiting Slot1 games means no SD acess.

I think you'd have to find an exploit on system firmware to possibly have access to both. Currently there are no known exploits with default system software. Mostly due to lack of interest at this point.

 

[st4rk]

Guh... that's annoying... I would love to modify sd cart content so I can move modified content to 3DS for... a reason.

Hello, I Am not totaly sure but the DSi disable the access to SDMC(hardware) in non-dsi games(this include DSi Enhanced game as well). I doubt will be easy to find flaws on native-apps(I digged for many days), but there is a game that I believe can be exploited, the Flipnote Hatena : p

 

[Hammyface]

Good luck man. I've been itching to get more use out of my DSiXL

DS games simply look so much better on it than the 3DS XL. Godspeed!

 

[OctopusRift]

Sudokohax is your best bet. Especially since it's easy to install on a 3DS now a days. I think it's still possible to inject sudokohax onto a DSi as long as it's not on 1.4.5 where firmware was updated to block you from importing it from SD.

Hey man! Thanks... but how do I iinject it?

Hello, I Am not totaly sure but the DSi disable the access to SDMC(hardware) in non-dsi games(this include DSi Enhanced game as well). I doubt will be easy to find flaws on native-apps(I digged for many days), but there is a game that I believe can be exploited, the Flipnote Hatena : p

Flipnote... I HAVE THAT! What access does it have... SD... yep... Nand. wow... St4rk can we talk?

 

[Apache Thunder]

List of well known DSi exploits:

http://bootmii.org/dsiexploits/downloads/exploitslist

http://hackmii.com/2011/08/final-dsiwarehax/

Note that I was a bit off on what version firmware your DSi would have to be on. It has to be 1.4.1 or less. 1.4.2 or higher blocked you from imported exploited games due to a change in how it verifies the file signing of the exported file. (as that is the only practical means of using DSiWare exploits. I believe 1.4.2 and higher also specifically blocked a few of the DSi enhanced cartridge game exploits. Though those exploits aren't as useful to you anyways due to lack of SD access)

Though you must have already gotten the games installed on the DSi. Otherwise you can't get them from eShop since it will force to you update before letting you access eShop.

I don't think there's a way to inject a game over a different game like what we can do with the 3DS. The 3DS's TWL firm relied on the sig/ticket checks occurring in CTR mode. Once in TWL, TWL FIRM can only verify the RSA sig/crc of the header/arm7/arm9 sections. This effectively means that you only really need a valid ticket for a DSi game. You can replace the game itself on TWLN partition with any legit retail DSi SRL (NDS file with DSi extended header and extra stuff. Basically DSiWare) and it will still launch even without using CFW.

But you can't (currently) create custom DSiWare or modify existing DSiWare (or use dev DSi titles like TwlNandFiler). TWL still have it's own sig checks. It's RSA type checks it does on certain sections of the DSi SRL and those haven't been patched out yet.

DSi on the other hand does both the ticket verification and sig checks because obviously it's native DSi so it handles all of that at once. So probably no go on injecting games over existing ones unless they are the same game.

 

[OctopusRift]

List of well known DSi exploits:

http://bootmii.org/dsiexploits/downloads/exploitslist

http://hackmii.com/2011/08/final-dsiwarehax/

Note that I was a bit off on what version firmware your DSi would have to be on. It has to be 1.4.1 or less. 1.4.2 or higher blocked you from imported exploited games due to a change in how it verifies the file signing of the exported file. (as that is the only practical means of using DSiWare exploits. I believe 1.4.2 and higher also specifically blocked a few of the DSi enhanced cartridge game exploits. Though those exploits aren't as useful to you anyways due to lack of SD access)

Though you must have already gotten the games installed on the DSi. Otherwise you can't get them from eShop since it will force to you update before letting you access eShop.

I don't think there's a way to inject a game over a different game like what we can do with the 3DS. The 3DS's TWL firm relied on the sig/ticket checks occurring in CTR mode. Once in TWL, TWL FIRM can only verify the RSA sig/crc of the header/arm7/arm9 sections. This effectively means that you only really need a valid ticket for a DSi game. You can replace the game itself on TWLN partition with any legit retail DSi SRL (NDS file with DSi extended header and extra stuff. Basically DSiWare) and it will still launch even without using CFW.

But you can't (currently) create custom DSiWare or modify existing DSiWare (or use dev DSi titles like TwlNandFiler). TWL still have it's own sig checks. It's RSA type checks it does on certain sections of the DSi SRL and those haven't been patched out yet.

DSi on the other hand does both the ticket verification and sig checks because obviously it's native DSi so it handles all of that at once. So probably no go on injecting games over existing ones.

I'm on `1.4.4 shit.

 

[WulfyStylez]

We're actually currently working on some DSi hax right now which will allow dsiwarehax and downgrading on 1.4.5. It'll require physical NAND reading, similar 3DS nand mods. More news on that when it's ready.

 

[OctopusRift]

We're actually currently working on some DSi hax right now which will allow dsiwarehax and downgrading on 1.4.5. It'll require physical NAND reading, similar 3DS nand mods. More news on that when it's ready.

WHAT. This come outta fukin nowhere. "Physical Nand Reading" ANYONE WANNA TEACH ME SOLDERING?!

 

[st4rk]

Hey man! Thanks... but how do I iinject it?

Flipnote... I HAVE THAT! What access does it have... SD... yep... Nand. wow... St4rk can we talk?

Yes, go ahead =)

 

[OctopusRift]

Yes, go ahead =)

1. How much access does it have?
2. Does this require hardware mods?
3. How can I help?

 

[st4rk]

1. How much access does it have?
2. Does this require hardware mods?
3. How can I help?

Are you saying about my exploit ?