Hacking Discussion What do I need to prepare for the emuNAND/Thermosphère to be released soon?

  • Thread starter Deleted User
  • Start date
  • Views 11,899
  • Replies 56

Resaec

Well-Known Member
Member
Joined
Dec 19, 2017
Messages
409
Trophies
0
XP
885
Country
Germany
emunand was kate's job and she quite their team..
nah, she only came up with a solution to use FG
EmuNAND is and was SciresM's baby

As far as we know a sysNand solution like A9LH or Sighax won't come for the switch in a long time (or ever).
A9LH/B9S or Sighax are bootrom exploits, which we have on the Switch.
8Bit is right you know...
I guess you meant to write 3DS instead of Switch here because there is no such thing as B9S or SigHax on the Switch.
RCM and SigHax type of exploits are fundamently different. Only common thing here is that they are low level entry points.
 

Kubas_inko

"Something funny goes here."
Member
Joined
Feb 3, 2017
Messages
6,324
Trophies
1
Age
24
Location
I gues on earth.
XP
5,166
Country
Czech Republic
nah, she only came up with a solution to use FG
EmuNAND is and was SciresM's baby



8Bit is right you know...
I guess you meant to write 3DS instead of Switch here because there is no such thing as B9S or SigHax on the Switch.
RCM and SigHax type of exploits are fundamently different. Only common thing here is that they are low level entry points.
Fusee Gelee is a bootrom exploit. Sighax is a bootrom exploits. Does not metter that they are different. They are bootrom exploits, which don't care about what kind of storage you have.
 
Last edited by Kubas_inko,

8BitWonder

Small Homebrew Dev
Member
Joined
Jan 23, 2016
Messages
2,488
Trophies
1
Location
47 4F 54 20 45 45 4D
XP
5,315
Country
United States
Fusee Gelee is a bootrom exploit. B9S, A9LH and Sighax are bootrom exploits. Does not metter that they are different. They are all bootrom exploits, which don't care about what kind of storage you have.
They're bootrom exploits yes, but while the switch does have one it still does not allow us to set up an unpatch-able/update-able sysNand environment like 3DS bootrom exploits were used for.
That was the whole appeal of moving from emuNand to sysNand, and why it was ditched on the 3DS.
I'm saying that emuNand is an important Switch solution for now because there's no idea when/if there will be a full sysNand solution like there was for the 3DS.
 

Resaec

Well-Known Member
Member
Joined
Dec 19, 2017
Messages
409
Trophies
0
XP
885
Country
Germany
Fusee Gelee is a bootrom exploit. B9S, A9LH and Sighax are bootrom exploits. Does not metter that they are different. They are all bootrom exploits, which don't care about what kind of storage you have.
Ok, I will try to make it as easy as possible, so even you can understand the important difference.
SigHax type/descendants:
  • flashed into bootimg
  • loaded by console on boot
  • no user interaction
RCM type:
  • not permanent
  • manual boot intervention
  • semi-manual exploit injection
  • needs user interaction
Many, easy to understand, important differences between 3DS and Switch "coldboot" exploits right?
 

Kubas_inko

"Something funny goes here."
Member
Joined
Feb 3, 2017
Messages
6,324
Trophies
1
Age
24
Location
I gues on earth.
XP
5,166
Country
Czech Republic
They're bootrom exploits yes, but while the switch does have one it still does not allow us to set up an unpatch-able/update-able sysNand environment like 3DS bootrom exploits were used for.
That was the whole appeal of moving from emuNand to sysNand, and why it was ditched on the 3DS.
I'm saying that emuNand is an important Switch solution for now because there's no idea when/if there will be a full sysNand solution like there was for the 3DS.
Then you are exlpaining it badly. Next time just say that you want coldboot.
RMC Is unpatch-able and has update-able SysNAND, it's just not a coldboot.
Ok, I will try to make it as easy as possible, so even you can understand the important difference.
SigHax type/descendants:
  • flashed into bootimg
  • loaded by console on boot
  • no user interaction
RCM type:
  • not permanent
  • manual boot intervention
  • semi-manual exploit injection
  • needs user interaction
Many, easy to understand, important differences between 3DS and Switch "coldboot" exploits right?
You don't understand what I mean. Let's explain it as easy as possible.
Fusee Gelee is a bootrom exploit. Sighax is a bootrom epxloit. Bootrom is independent on NAND. Thus SysNAND and EmuNAND have nothing to do with the exploit.
 

8BitWonder

Small Homebrew Dev
Member
Joined
Jan 23, 2016
Messages
2,488
Trophies
1
Location
47 4F 54 20 45 45 4D
XP
5,315
Country
United States
Ok, I will try to make it as easy as possible, so even you can understand the important difference.
SigHax type/descendants:
  • flashed into bootimg
  • loaded by console on boot
  • no user interaction
RCM type:
  • not permanent
  • manual boot intervention
  • semi-manual exploit injection
  • needs user interaction
Many, easy to understand, important differences between 3DS and Switch "coldboot" exploits right?
They're both still bootrom exploits. It doesn't matter that they do different things or require different amounts of interaction.
 

8BitWonder

Small Homebrew Dev
Member
Joined
Jan 23, 2016
Messages
2,488
Trophies
1
Location
47 4F 54 20 45 45 4D
XP
5,315
Country
United States
Then you are exlpaining it badly. Next time just say that you want coldboot.
RMC Is unpatch-able and has update-able SysNAND, it's just not a coldboot.
Alright I'll try to explain this as best I can:
Firstly I know RCM isn't patchable (after it has left the factory), I'm aware of how bootrom exploits work. :P

For the 3DS, bootrom exploits were used to achieve a simple sysNand solution, with which you could update normally and retain arm9 and arm11 privileges on any future firmware.
This is why we ditched emuNand, because we had arm9/arm11 privileges on any firmware update from sysNand.

For the switch, we have a bootrom exploit, but currently no means of using it to patch sysNand to retain TrustZone privileges when updating normally. Hence why some are staying below 5.X and waiting for emuNand.
Since some users want to keep TrustZone privileges, but still keep up with firmware updates, it's in their interest to set up an emuNand.
This is why emuNand is important for the Switch scene until we can retain TrustZone privileges on higher firmwares. (At that point it'll be ditched similarly to the 3DS. :P)

Better? (Genuinely asking, I feel like I've been butchering my last couple replies)
 
Last edited by 8BitWonder,

Kubas_inko

"Something funny goes here."
Member
Joined
Feb 3, 2017
Messages
6,324
Trophies
1
Age
24
Location
I gues on earth.
XP
5,166
Country
Czech Republic
Alright I'll try to explain this as best I can:
Firstly I know RCM isn't patchable (after it has left the factory), I'm aware of how bootrom exploits work. :P

For the 3DS, bootrom exploits were used to achieve a simple sysNand solution, with which you could update normally and retain arm9 and arm11 privileges on any future firmware.
This is why we ditched emuNand, because we had arm9/arm11 privileges on any firmware update from sysNand.

For the switch, we have a bootrom exploit, but currently no means of using it to patch sysNand to retain TrustZone privileges when updating normally. Hence why some are staying below 5.X.
Since some users want to keep TrustZone privileges, but still keep up with firmware updates, it's in their interest to set up an emuNand.
This is why emuNand is important for the Switch scene until we can retain TrustZone privileges on higher firmwares. (At that point it'll be ditched similarly to the 3DS. :P)

Better? (Genuinely asking, I feel like I've been butchering my last couple replies)
You have finally explained what you meant by "True SysNAND solution". So yea, better.
 

Ian San Miguel

Member
Newcomer
Joined
Aug 12, 2013
Messages
15
Trophies
0
Age
46
XP
370
Country
United States
Or you can do it exactly the other way (which makes more sense).
And that's why mos people want it. To have offline EmuNAND and hack on it and have online SysNAND and play online (which is paid P2P, way to go Ninty :wacko:)
It isn't a priority, because:
1. you can create a backup of your clean NAND and then restore it for "safe" online.
2. It is not needed for "hacking". (You know what disadvantages it has and you don't have to do it. If you do it the right way, you are pretty much safe. SO there is no rush for it.)

Not sure why this makes more sense the other way. If you use sysnand to go online it would need to be updated to latest firmware, which is what many people don't want to do to preserve possibility of future coldboot. Surely it makes more sense to update emunand and go online, thus preserving sysnand firmware version? (or am I totally wrong, and updating emunand would burn fuses, thus making sysnand unusable unless updated?)
 

Kubas_inko

"Something funny goes here."
Member
Joined
Feb 3, 2017
Messages
6,324
Trophies
1
Age
24
Location
I gues on earth.
XP
5,166
Country
Czech Republic
Not sure why this makes more sense the other way. If you use sysnand to go online it would need to be updated to latest firmware, which is what many people don't want to do to preserve possibility of future coldboot. Surely it makes more sense to update emunand and go online, thus preserving sysnand firmware version? (or am I totally wrong, and updating emunand would burn fuses, thus making sysnand unusable unless updated?)
Hacking something on SD is safer than on NAND.
And then you can't get "much free gamez" on low FW anyway.
But hey, whatever floats your boat (same applies to my idea).
 
Last edited by Kubas_inko,

BOLNICHKA

New Member
Newbie
Joined
Apr 21, 2019
Messages
2
Trophies
0
Age
27
XP
53
Country
Russia
Hello, I read this forum and I still have questions, will Nintendo be able to track emuNAND? I understand that in the case of the emuNAND ban, only emuNAND will suffer, which can be fixed, but I wonder if Nintendo will ban it very quickly if emuNAND comes out of a pirated game online? And will emuNAND allow you to go online for free? I live in a poor country, and here to buy a console is a big problem, not to buy games and even more so to pay on a permanent basis for online.
 

smf

Well-Known Member
Member
Joined
Feb 23, 2009
Messages
6,638
Trophies
2
XP
5,835
Country
United Kingdom
Not sure why this makes more sense the other way. If you use sysnand to go online it would need to be updated to latest firmware, which is what many people don't want to do to preserve possibility of future coldboot.

I'm not sure that most people do want that.

Some people want online legit games and offline piracy

Some people want low sysnand for potential software hacks and latest emunand so they can run all games offline.

I would probably use emunand just to avoid messing up sysnand. Going online with emunand will probably get you banned eventually. I don't hold much hope for a coldboot
 

Draxzelex

Well-Known Member
Member
Joined
Aug 6, 2017
Messages
18,986
Trophies
2
Age
29
Location
New York City
XP
13,326
Country
United States
Hello, I read this forum and I still have questions, will Nintendo be able to track emuNAND? I understand that in the case of the emuNAND ban, only emuNAND will suffer, which can be fixed, but I wonder if Nintendo will ban it very quickly if emuNAND comes out of a pirated game online? And will emuNAND allow you to go online for free? I live in a poor country, and here to buy a console is a big problem, not to buy games and even more so to pay on a permanent basis for online.
First off, when you get banned both EmuNAND and SysNAND get affected because all EmuNAND is is just a copy of SysNAND. Secondly, they can track EmuNAND theoretically but considering that no one has even been banned for using EmuNAND with SX OS, chances are low it'll happen at all even when other CFW like Atmosphere implement it. This is operating under the assumption you don't go online with EmuNAND however.
 

BOLNICHKA

New Member
Newbie
Joined
Apr 21, 2019
Messages
2
Trophies
0
Age
27
XP
53
Country
Russia
but, unless it is impossible to change emuNAND so that it is very different from sysNAND, id console to change, etc.?
 

TPMJB

Well-Known Member
Member
Joined
Aug 27, 2014
Messages
204
Trophies
0
Age
34
Location
Syracuse, New York
XP
407
Country
United States
Hello, I read this forum and I still have questions, will Nintendo be able to track emuNAND? I understand that in the case of the emuNAND ban, only emuNAND will suffer, which can be fixed, but I wonder if Nintendo will ban it very quickly if emuNAND comes out of a pirated game online? And will emuNAND allow you to go online for free? I live in a poor country, and here to buy a console is a big problem, not to buy games and even more so to pay on a permanent basis for online.
I love when half a year passes and threads are bumped!
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • No one is chatting at the moment.
    LeoTCK @ LeoTCK: hmm