- Thread starter SimonMKWii
- Start date
- Views 128,633
- Replies 329
- Likes 29
EDIT: Here, I made it easier for you, if you have a keys.txt file in the same directory (in the hactool format, ie. key = 32 digit hex value), it will automatically use the key, so you don't have to edit the script at all! 
EDIT: I have added @JupiterJesus 's commit!
EDIT: Refer to latest post
EDIT: I have added @JupiterJesus 's commit!
EDIT: Refer to latest post
Last edited by SocraticBliss,
Has anyone tried using their pfx cert with CDNX (https://github.com/Reisyukaku/CDNX) to attempt to download game updates or demos? I'm not sure if CDNX just doesn't work correctly, but I'm not able to download anything. Also something interesting I noticed is that PRODINFO from 4.1.0 and PRODINFO from 5.0.2 is identical, also BIS keys don't seem to change from the software update.
Ok good to know. wasn't sure if it was because I was using the pfx cert created from older firmware.
You should have gotten your BIS keys with the biskeydump payload, you need to dump the SYSNAND with something like hekate... then open the 31GB binary into HacDiskMount.
Last edited by SocraticBliss,
Yea, I'm an idiot on this one, use Hekate, I prefer rajkosto's, I got by with using v3, I see there is a v5 now...
https://github.com/rajkosto/hekate/releases
Can someone help me? If I try to run the scripts, I get the following error:
I have asn1, pycrypto, future, enum34 installed.
Code:
Traceback (most recent call last):
File "Convert_to_der.py", line 150, in <module>
main()
File "Convert_to_der.py", line 106, in main
E, N = get_pubk(clcert)
File "Convert_to_der.py", line 65, in get_pubk
clcert_decoder.enter() # Seq, 3 elem
File "/usr/lib/python3.6/site-packages/asn1.py", line 448, in enter
raise Error('Cannot enter a non-constructed tag.')
asn1.Error: Cannot enter a non-constructed tag.Ensure you are using a decrypted version of your PRODINFO.bin, can't be the encrypted version...
since the whole process is aids to figure out without any prior experience, I'll provide steps:
step 1: Download TegraRcmSmash https://gbatemp.net/threads/tegrarcmsmash-a-fusee-launcher-for-windows.502334/
step 2: Get payload https://gbatemp.net/threads/rcm-payload-hekate-mod-raw-full-nand-backup.502604/
step 3: Put an empty microSD card on exFAT with at least 32GB of space into your switch
step 4: Plug the switch into your comp, get into RCM
step 5: Boot hekate 1.3 and select rawNAND backup (something like that) and wait for it.
step 6: Get next payload (biskey) https://switchtools.sshnuke.net
step 7: Open the folder with TegraRcmSmash and place biskeydump.bin next to it
step 8: While in the TegraRcmSmash folder, Shift + Right Click in an empty space and press "Open command window here"
step 9: Plug the switch into your comp, get into RCM (microsd card not required)
step 10: Back where you opened the command window, type TegraRcmSmash.exe -w out/biskeydump.bin BOOT:0x0
step 11: biskeydump will now show your keys on the console AND on your computer in the command window
step 12: Open hacdiskmount https://switchtools.sshnuke.net
step 13: file > open > rawnand.bin (extracted from your switch)
step 14: select PRODINFO
step 15: put the keys in that it asks you for from the command window earlier.
step 16: You now have PRODINFO
step 17: download op's CertNXtractionPack
step 18: open up the pack and edit 00_generate_ssl_kek.py
step 19: insert the keys within the quotations
*EDIT: there's also a key in 01_decrypt_privk_extract_cert.py that you have to insert
step 20: replace "ssl_aes_key_x" with "key_x_gak", and replace "ssl_rsa_key_y" with "rpk_key_y"
EDIT: the rest you'll need to figure out for now lul. I was wrong the first time
step 1: Download TegraRcmSmash https://gbatemp.net/threads/tegrarcmsmash-a-fusee-launcher-for-windows.502334/
step 2: Get payload https://gbatemp.net/threads/rcm-payload-hekate-mod-raw-full-nand-backup.502604/
step 3: Put an empty microSD card on exFAT with at least 32GB of space into your switch
step 4: Plug the switch into your comp, get into RCM
step 5: Boot hekate 1.3 and select rawNAND backup (something like that) and wait for it.
step 6: Get next payload (biskey) https://switchtools.sshnuke.net
step 7: Open the folder with TegraRcmSmash and place biskeydump.bin next to it
step 8: While in the TegraRcmSmash folder, Shift + Right Click in an empty space and press "Open command window here"
step 9: Plug the switch into your comp, get into RCM (microsd card not required)
step 10: Back where you opened the command window, type TegraRcmSmash.exe -w out/biskeydump.bin BOOT:0x0
step 11: biskeydump will now show your keys on the console AND on your computer in the command window
step 12: Open hacdiskmount https://switchtools.sshnuke.net
step 13: file > open > rawnand.bin (extracted from your switch)
step 14: select PRODINFO
step 15: put the keys in that it asks you for from the command window earlier.
step 16: You now have PRODINFO
step 17: download op's CertNXtractionPack
step 18: open up the pack and edit 00_generate_ssl_kek.py
step 19: insert the keys within the quotations
*EDIT: there's also a key in 01_decrypt_privk_extract_cert.py that you have to insert
step 20: replace "ssl_aes_key_x" with "key_x_gak", and replace "ssl_rsa_key_y" with "rpk_key_y"
EDIT: the rest you'll need to figure out for now lul. I was wrong the first time
Last edited by aslk,
Similar threads
- No one is chatting at the moment.
-
-
-
-
-
-
-
-
@
BakerMan:
psi, I don't want to give you guys ammunition for the wario jokes, but i'd smash all except nester, that's a child -
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
