Hacking fail0verflow releases coldboot exploit proof of concept

owek1 · Feb 14, 2018

Soluble said:
Not dissimilar to the AU$50 people were charging to mod a NES and SNES mini? It's a 10 minute job... People still pay!

softmodding the snes mini is actually a cakewalk if you stick to the basics like just adding a few snes games..paying that amount is a waste unless you don't have a working computer. However, hardmodding is different. I have zero skills because i'm rich and haven't touched a soldering iron all my life. I'm being sarcastic. But still, my point is that not everyone is willing to open up their console and tinker with it. It is afterall a very expensive device and you need tiny soldering skills.

Nirim000 · Feb 14, 2018

The chip on the ftdi friend is probably a voltage regulator(1.8v?) it connect to the 5v source, common ground and the chip signal power pin(vccio), rx and tx probably connected to pin 5(rx?) and 8(tx?) on the joycon connector (joycon side).

github-dekuNukem-Nintendo_Switch_Reverse_Engineering(sorry spam filter, google it)
View attachment DS_FT232R.pdf

Deathscreton · Feb 14, 2018

snoofly said:
I for one assume from f0f’s latest tweet that they WILL release their exploit, right after TX come out with their modchip solution.
After all, why make the point No Modchip needed?
Surely that’s a direct threat to TX to say we have a free solution up our sleeve, and assuming they dislike people making money out of piracy more than any other factor, would feel obliged to steal their thunder if required.

BTW in case anyone missed it I see qlutoo’s got a boot rom exploit also
https://twitter.com/qlutoo/status/953260267823157248
Not sure if it’s the same method as f0f’s
Bootromhax are getting like 10 a penny these days.

What makes you think he has a bootrom exploit?

tivu100 · Feb 14, 2018

Deathscreton said:
What makes you think he has a bootrom exploit?

Because if you look at qlutoo's contribution on the wiki, his presentation at the conference... Those are info need more higher privilege to access more info on the Switch, AKA Bootrom level exploit. Then in this tweet, qlutoo confirmed he doesn't rely on any kind of hardware to do so. This means it's softmod approach

Deathscreton · Feb 14, 2018

tivu100 said:
Because if you look at qlutoo's contribution on the wiki, his presentation at the conference... Those are info need more higher privilege to access more info on the Switch, AKA Bootrom level exploit. Then in this tweet, qlutoo confirmed he doesn't rely on any kind of hardware to do so. This means it's softmod approach

This doesn't automatically verify it as a bootrom exploit though. They were able to pwn TZ on firmware 1.0.0 via a side channel attack. They didn't have a bootrom exploit then If I'm not mistaken. Feel free to correct me.

nWo · Feb 14, 2018

Let´s hope they DO release something at least in the near future. Man all this Switch hacking is making me more anxious than ever before

tivu100 · Feb 14, 2018

Deathscreton said:
This doesn't automatically verify it as a bootrom exploit though. They were able to pwn TZ on firmware 1.0.0 via a side channel attack. They didn't have a bootrom exploit then If I'm not mistaken. Feel free to correct me.

TX teased coldbooting Switch for their product and said work all available firmware. Qlutoo tweet directly mocks that product.

Deathscreton · Feb 14, 2018

tivu100 said:
TX teased coldbooting Switch for their product and said work all available firmware. Qlutoo tweet directly mocks that product.

My bad, you're right. TX released a tease on the 7th, Plutoo mocked on the 17th. I don't know if he was directly mocking them based on him having a bootrom exploit as well, or if he was making fun of them potentially releasing a solderless option, but not following through though.

Slimmmmmm · Apr 23, 2018

yardie said:
it wont be released

https://gbatemp.net/threads/fail0verflow-drops-bomb-on-twitter.501825/unread

smileyhead · Apr 23, 2018

yardie said:
it wont be released

Ah, I see you're very informed in this topic. /s

Deleted User · Apr 23, 2018

everything needed is released by f0f

the_randomizer · Apr 23, 2018

Natehaxx said:
everything needed is released by f0f

Except for Nintendo console related stuff.

Don Jon · Dec 17, 2018

according to discord rumors, coldboot is coming soon due to exposed deja vu

guitarheroknight · Dec 17, 2018

Don Jon said:
according to discord rumors, coldboot is coming soon due to exposed deja vu

What FW is it tied to?

the_randomizer · Dec 17, 2018

guitarheroknight said:
What FW is it tied to?

Probably version 3.0.0

SonyUSA · Dec 17, 2018

the_randomizer said:
Except for Nintendo console related stuff.

or PS4 jailbreak exploits :thinking:

radicalwookie · Dec 17, 2018

God dang you necromancers you

zragnarok · Dec 17, 2018

Still sitting on 1.0.0 and a 3.0.0 Switches for a coldboot method... hopefully soon now

Don Jon · Dec 17, 2018

zragnarok said:
Still sitting on 1.0.0 and a 3.0.0 Switches for a coldboot method... hopefully soon now

your wait was a waste, as was mine.
new deja vu exploit allows to roll back to any firmware wit no issues

smf · Dec 17, 2018

Don Jon said:
according to discord rumors, coldboot is coming soon due to exposed deja vu

dejavu is a warmboot exploit

Hacking fail0verflow releases coldboot exploit proof of concept

Master Sword Wielder

Member

Well-Known Member

Well-Known Member

Well-Known Member

The Game Master

Well-Known Member

Well-Known Member

GBAtemp MoNkEeE

I like cute stuff.

Deleted User

Guest

The Temp's official fox whisperer

Well-Known Member

1.6180339887

The Temp's official fox whisperer

We're all mad here

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Similar threads

Popular threads in this forum