Hacking Question Will Coldboot CFW be possible on Switch?

B

boscocraftXD

Well-Known Member
OP
Newcomer
Level 2
Joined
Sep 8, 2017
Messages
89
Trophies
0
Age
25
XP
215
Country
United States
The question is as the title implies. I know about the exploit with the jig and that "true" system exploits are possible if you are at or below 3.0.0. What I want to know is if we will one day have something like what the WiiU has for coldbooting cfw...
 
Last edited by boscocraftXD,
B

boscocraftXD

Well-Known Member
OP
Newcomer
Level 2
Joined
Sep 8, 2017
Messages
89
Trophies
0
Age
25
XP
215
Country
United States
Draxzelex said:
I'm going to assume you mean untethered coldboot because the current exploit, Fusee Gelee, is still a coldboot exploit (the name literally means Frozen Rocket).

Possible? Yes. Probable? I'm gonna say no.
Click to expand...
So there is some form of it now... I've been away from GBATemp for too long...
 
Draxzelex

Draxzelex

Well-Known Member
Member
Level 23
Joined
Aug 6, 2017
Messages
19,011
Trophies
2
Age
29
Location
New York City
XP
13,378
Country
United States
boscocraftXD said:
So there is some form of it now... I've been away from GBATemp for too long...
Click to expand...
That's not at all what I said. Just because it is possible doesn't mean it will be realized. Given that we already have a coldboot exploit that gives us full access to the system and is arguably easier to setup than the 3DS, there may not be much incentive to discover it. Plus if it only works on certain firmwares, then it won't be seen as favorable since the current exploit works on all firmwares of unpatched consoles.
 
  • Like
Reactions: kylum and comput3rus3r
B

boscocraftXD

Well-Known Member
OP
Newcomer
Level 2
Joined
Sep 8, 2017
Messages
89
Trophies
0
Age
25
XP
215
Country
United States
Draxzelex said:
That's not at all what I said. Just because it is possible doesn't mean it will be realized. Given that we already have a coldboot exploit that gives us full access to the system and is arguably easier to setup than the 3DS, there may not be much incentive to discover it. Plus if it only works on certain firmwares, then it won't be seen as favorable since the current exploit works on all firmwares of unpatched consoles.
Click to expand...
Maybe someday it will happen... Until then, something like Luma3DS and CBHC are just pipe dreams...
 
ZachyCatGames

ZachyCatGames

Well-Known Member
Member
Level 14
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,209
Country
United States
As of right now untethered coldboot is 100% impossible on 4.0.0+(With current exploits). If we ever do get untethered coldboot it'll likely only be on 1.0.0, although it is theoretically possible upto 3.0.2
 
Last edited by ZachyCatGames,
  • Like
Reactions: MarkDarkness
Techjunky90

Techjunky90

Well-Known Member
Member
Level 6
Joined
Apr 7, 2017
Messages
487
Trophies
0
Age
33
XP
882
Country
United States
ZachyCatGames said:
Untethered coldboot is 100% impossible on 4.0.0+. If we ever do get untethered coldboot it'll likely only be on 1.0.0, although it is theoretically possible upto 3.0.2
Click to expand...
False. As far as anyone knows an untethered coldboot could be possible on any firmware. Only time will tell
 
xtrem3x

xtrem3x

Well-Known Member
Member
Level 11
Joined
Apr 16, 2008
Messages
202
Trophies
1
XP
2,361
Country
All systems end up completely cracked open at some point, even if it's years down the line.
So yes, I would guess at some point it will happen
 
  • Like
Reactions: ELY_M
The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,278
Trophies
4
Location
Space
XP
13,832
Country
Norway
Techjunky90 said:
I understand. I'm just saying who knows what the future holds for the switch. Kind of like the ps3, people always said that certain versions couldn't be hacked, but eventually they were hacked.
Click to expand...
True. Coldboot exploits are few and far between though, since you need to find an exploit either in the bootrom or elsewhere early in the boot process or in the home menu itself, and those may or may not even exist. We got lucky with the 3DS because the themes were exploitable, and they left backdoors in the bootrom and arm9loader. We might not be so lucky with the Switch.
 
  • Like
Reactions: coppertj and ZachyCatGames
Sonikkua

Sonikkua

Well-Known Member
Member
Level 5
Joined
Mar 26, 2011
Messages
116
Trophies
1
XP
723
Country
United States
I mean with autorcm you're essentially there, use like an internal m0 trinket or any of the external payload dongles or even a raspberry pi.

Slightly more annoying than true cold boot, but only slightly.
 
  • Like
Reactions: ELY_M and kylum
kylum

kylum

Well-Known Member
Member
Level 8
Joined
Dec 8, 2008
Messages
394
Trophies
1
XP
1,479
Country
United States
Wish I would have installed my trinket m0 sooner than I did. Modchips are defenatly the way to go if you want a option that doesn’t have to be tethered. This is our only option as of now and these chips are pretty cheap too if you don’t already have one laying around.
 
  • Like
Reactions: ELY_M and MarkDarkness

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Emulation Homebrew Tutorial  Building SM64 for Nintendo Switch from sm64ex-alo Repository

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

General chit-chat
Help Users
  • No one is chatting at the moment.
    cearp @ cearp: Welcome hazbeans