Front-page Hacking  Updated

[Defcon] Smea to give 3DS security talk and release free arm9 exploit chain on August 11

dc-25-logo.jpg


(complete video of the talk - uploaded Oct. 22, 2018)

UPDATE (10-23-18): This hack was patched on 11.8 and was never publicly implemented
Please use Frogminer -> Free B9S cfw, works on 11.8, covers all major regions
(disclosure: Frogminer is my hack, but it serves the same purpose smeahax originally promised, so it's relevant here)


It looks like our old 3DS scene pal @smealum has returned to the limelight! Famous for his groundbreaking Ninjhax, Ironhax, and Tubehax userland exploits, and the udsploit kernel11 hax, Smea is back and better than ever with a total of four new exploits set to be revealed this Saturday at Defcon 26 in Las Vegas! So if you never got on the CFW bandwagon (full control of your 3DS with all the implied benefits), you'd better come and tune in with us this Saturday at 11:00 am PT sharp!​

Slides and Additional Videos

MHAX userland
ROHAX2 priv. escalation
ZHAX kernel11
TWLHAX arm9

(please wait for the guide to be updated for instructions)
^ skeletonwaiting.gif

DkV77xzUcAACLnW.jpg

 
Last edited by zoogie,
  • Like
Reactions: lAkdaOpeKA, Anonymous42456, Leobgood and 33 others
Click to expand...
lone_wolf323

lone_wolf323

Well-Known Member
Member
Level 15
Joined
May 27, 2011
Messages
5,487
Trophies
2
XP
4,937
Country
Canada
zoogie said:
I'm sure there's enough famous people that have died to cover all 365 days of the year so ... no, I don't think it's a coincidence. :P

but he named his daughter zelda omg a nintendo connection!
Click to expand...
Is it wrong that all I can think of right now is marigold from polka dot shorts saying her catch line. *coincidence??? I Think Not!*
 
  • Like
Reactions: zoogie
zoogie

zoogie

playing around in the end of life
OP
Developer
Level 24
Joined
Nov 30, 2014
Messages
8,560
Trophies
2
XP
15,000
Country
Micronesia, Federated States of
OrGoN3 said:
I thought an arm11 kernel hack was also needed for cfw to enable srv/svc access. Like with safehax/udsploit.
Click to expand...
The ... stands for priv escalation and k11.

Thought I could get away with shorthand but you people don't miss anything ;p
 
  • Like
Reactions: OrGoN3
lAkdaOpeKA

lAkdaOpeKA

Well-Known Member
Member
Level 8
Joined
Feb 6, 2015
Messages
1,386
Trophies
0
XP
1,482
Country
Italy
zoogie said:
Well they left seedminer alone surprisingly, so maybe there's a chance they'll let smeahax slide.

I don't think so, though. His stuff gets a lot more publicity so it will probably catch big N's attention.
Seedminer was initially ignored when it was released Jan 20th. Then in early Feb it caught on and has been slowing rising in popularity since (as it became more convenient, thanks to friends). I think seedminer flew under Nintendo's radar.
Click to expand...

Thanks to friend, but also thanks to an evil villain... JACC!

--------------------- MERGED ---------------------------

Ryccardo said:
Well, we already have a #pwned4life exploit (surprising the bootleggers haven't been pumping out decently built ROM-based gm9/b9s cards) - and it doesn't even require going to a crashy website to run slowhax to run safehax to run gm9/safeb9sinstaller!

Look at it more than a "lol nintendo here's why your design is wrong, everyone point and laugh (and maybe donate)" (like basically every past hacking conference),
and as a generous service to people who can't/want't to buy a flashcard, don't have another hacked console, and have been patiently or not so patiently, though 3DS Homebrew ""Development"" and Emulators appears to be calmer on this front waiting (instead of using Gamestophax) over a year for an arm9 exploit :)
Click to expand...
Well, Gamestophax works, but eBayhax can be much cheaper :P

--------------------- MERGED ---------------------------

KuroTheBang said:
Will smeahax be better than Seedminer? I Always thought that this is already an idiotproof easy hack. :O
Click to expand...
"Idiot proof". Well not really. I once had someone who tried formatting his console three times because it wasn't working, only to realize that Sudokuhax doesn't start right away and needs to wait a few seconds. Or what about all the people that, thanks to jacc's extremely poor instructions, were entering their ID1 instead of the ID0 on bruteforcemovable?
 
Last edited by lAkdaOpeKA,
  • Like
Reactions: KuroTheBang and zoogie
kuwanger

kuwanger

Well-Known Member
Member
Level 9
Joined
Jul 26, 2006
Messages
1,510
Trophies
0
XP
1,783
Country
United States
zoogie said:
I actually emailed modchipsdirect about card delisting and they said they aren't restocking ntrcards because there's so little demand for them.
Click to expand...

I'm not too surprised. Most the major NDS flash carts can be temporarily flashed to ntrcard and back, and since it's only a one-time thing there's no real major demand I imagine. I mean, I sort of was tempted to buy one of those dual ntrcard things but all my systems were already hacked (and all my DS flashcards are ntrcard compatible) so it would have been entirely for the novelty. That and seedminer is obviously cheaper if I didn't have any cards already.

Personally I'm most interested in smea's talk because it's just interesting to hear about the various ways to exploit systems, especially those of the mass-produced consumer-tamper-resistant type. It's satisfying to hear people constantly fighting for right to repair/modify no matter how little governments seem to support the notion.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Hacking Hardware  New Nintendo 3DS XL Louvre

Hardware  Why does my 3DS take so long to turn off?

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

What's the best 3DS emulator (especially after Citra's shutdown)?

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Tutorial  How to fix 007-2001

gacube emeleter

General chit-chat
Help Users
    SylverReZ @ SylverReZ: @The Real Jdbye, :creep: