Homebrew Decrypting a NAND backup without the original system

S

Sky The Destroyer

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2016
Messages
9
Trophies
0
XP
85
Country
United States
I remember reading a thing a while back about how with SigHax, we could decrypt NAND backups without the original system if you have the otp.bin of that system.

I have NAND backups of my Old (and bricked) 3DS with its otp.bin - is there currently a way to decrypt and get access to the files from NAND backups through the use of otp.bin?
 
Last edited by Sky The Destroyer,
adrifcastr

adrifcastr

Well-Known Member
Member
Level 10
Joined
Sep 12, 2016
Messages
2,038
Trophies
0
XP
1,947
Country
Germany
sora10pls said:
Any more possible, I should've said. It's always been dump-able by getting to 2.1.0. :P
Click to expand...
you can dump the one time programmable (otp) and the full arm9 bootrom (boot9) and the full arm11 bootrom (boot11) anytime you want on any firmware you want, as long you have Micheal's implementation of SigHax (boot9strap) written to your firm partitions.
 
sora10pls

sora10pls

Well-Known Member
Member
Level 5
Joined
Oct 25, 2015
Messages
190
Trophies
0
XP
715
Country
Canada
addi33 said:
you can dump the one time programmable (otp) and the full arm9 bootrom (boot9) and the full arm11 bootrom (boot11) anytime you want on any firmware you want, as long you have Micheal's implementation of SigHax (boot9strap) written to your firm partitions.
Click to expand...
I'm aware. It's already been possible, it still is possible, and it's more easily doable with B9S.

What's your point
 
S

Sky The Destroyer

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2016
Messages
9
Trophies
0
XP
85
Country
United States
I think you guys misunderstood each other, is all. You both pretty much said the same things about otp.bin's ability to be dumped...either way, I already have the otp.bin for that NAND backup, so I'm not sure how the discussion went into how otp.bin is able to be dumped.

Back on topic: this is what I've heard about decrypting NAND backups:

"If you have boot9.firm (common to all systems) and otp.bin (specific to each system), you can decrypt the eMMC keys from otp.bin and use them to decrypt NAND dumps from that system without xorpads."

My question is how I would go about doing that.
 
  • Like
Reactions: GilgameshArcher, sora10pls and BL4Z3D247
adrifcastr

adrifcastr

Well-Known Member
Member
Level 10
Joined
Sep 12, 2016
Messages
2,038
Trophies
0
XP
1,947
Country
Germany
Sky The Destroyer said:
I think you guys misunderstood each other, is all. You both pretty much said the same things about otp.bin's ability to be dumped...either way, I already have the otp.bin for that NAND backup, so I'm not sure how the discussion went into how otp.bin is able to be dumped.

Back on topic: this is what I've heard about decrypting NAND backups:

"If you have boot9.firm (common to all systems) and otp.bin (specific to each system), you can decrypt the eMMC keys from otp.bin and use them to decrypt NAND dumps from that system without xorpads."

My question is how I would go about doing that.
Click to expand...
so set up yellows8's boot9tools and then decrypt9 the otp, then if you have a python knowledge you could rewrite one of the tooks or 3dsconv to use the otp's keys to decrypt a nand backup
 
S

Sky The Destroyer

Member
OP
Newcomer
Level 1
Joined
Mar 31, 2016
Messages
9
Trophies
0
XP
85
Country
United States
addi33 said:
so set up yellows8's boot9tools and then decrypt9 the otp, then if you have a python knowledge you could rewrite one of the tooks or 3dsconv to use the otp's keys to decrypt a nand backup
Click to expand...
I can probably get as far as decrypting otp.bin (though I'm not sure what the boot9 binary file is), but beyond that step, I have no knowledge on the decryption process.
 
Last edited by Sky The Destroyer,
Gnarmagon

Gnarmagon

Noob <3
Member
Level 6
Joined
Dec 12, 2016
Messages
647
Trophies
0
Age
22
XP
794
Country
Germany
something changed ?
Can someone please explain me why we can now theoretically decrypt a NAND Backup and how ???

I know how to program but idk where to find this Script called 3dsconv....
 
DocKlokMan

DocKlokMan

Plugin Dev
Member
Level 14
Joined
Apr 20, 2007
Messages
3,009
Trophies
2
Age
36
XP
4,571
Country
United States
Gnarmagon said:
something changed ?
Can someone please explain me why we can now theoretically decrypt a NAND Backup and how ???

I know how to program but idk where to find this Script called 3dsconv....
Click to expand...
It's the bootrom dump that SigHax brought us. That was the missing part of the puzzle for the remaining keys we needed to allow decrypting without needing to do it on the 3DS itself.
 
The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,280
Trophies
4
Location
Space
XP
13,832
Country
Norway
Sky The Destroyer said:
I think you guys misunderstood each other, is all. You both pretty much said the same things about otp.bin's ability to be dumped...either way, I already have the otp.bin for that NAND backup, so I'm not sure how the discussion went into how otp.bin is able to be dumped.

Back on topic: this is what I've heard about decrypting NAND backups:

"If you have boot9.firm (common to all systems) and otp.bin (specific to each system), you can decrypt the eMMC keys from otp.bin and use them to decrypt NAND dumps from that system without xorpads."

My question is how I would go about doing that.
Click to expand...
yellows8 has some tools that can be used for this.
"ctr-nandcrypt" from https://github.com/yellows8/3dscrypto-tools/tree/master/ should be able to do what you want.
Supposedly it can use the keys obtained with https://github.com/yellows8/boot9_tools
However, I'm not sure if boot9 and OTP contain all the keys needed, some keys are contained in FIRM and ctrnand as well (obviously the ctrnand keys aren't needed for this, but the FIRM keys may be)
But pretty much all the keys are available online if you know where to look. Hint: Google Spreadsheets

I tried playing around with 3dscrypto-tools, but wasn't really able to get any of it working, and there's hardly any documentation.
When I tried ctr-nandcrypt it just closed without an error. I didn't fill in all the parameters, because I wasn't sure what NAND CID and NAND CTR were. So that might be why it didn't work for me.
It's supposed to generate xorpads that you can then use with a xor tool.

Edit: NAND CID appears to be in the ARM9 ITCM memory, which can be dumped with GodMode9, but that requires access to the console. Still no clue about NAND CTR.

NAND CTR for CTRNAND appears to be the first 16 bytes of the SHA256 sum of NAND CID. NAND CTR for TWLNAND seems to be the SHA1 sum of the same, but in reversed order.
Seems like NAND CID is just the an identifier of the NAND chip, you could probably get it using a hardmod.
This is all confusing though. That's just what I gathered from looking at the SafeB9SInstaller source here: https://github.com/d0k3/SafeB9SInstaller/blob/master/source/nand/nand.c
Someone else who knows more about the 3DS' inner workings than me will have to explain it.

It might be easier to just wait for ntrboothax, or get a hardmod, and unbrick the 3DS.
Seems like you'll need a hardmod anyway in order to get the NAND CID.
 
Last edited by The Real Jdbye,
  • Like
Reactions: Sky The Destroyer and GilgameshArcher

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

After the 8th of April, will it still be possible to create a new NNID (Nintendo Network ID) and/or transfer a NNID from one console to another?

Hacking Homebrew  how to link pnid to 3ds/how to use juxtaposition?

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Translation Project  DQM2SP translation

Hardware  Why does my 3DS take so long to turn off?

General chit-chat
Help Users
  • No one is chatting at the moment.
    SylverReZ @ SylverReZ: @Psionic Roshambo, Thats pretty cool.