Hacking SWITCH NOOB PARADISE - Ask questions here

[darshangkolhe]

I have patched switch, 4.1.0. i use pegascape to launch caffeine and then go into hakate to boot a cfw (atmosphere).

I want know. The procedure to safley creat a emuNand so that I can boot into ams cfw and upgraded that Emunand to latest firmware version to play latest games.

Can some one help me how van do this and is there any operating instructions written?

 

[xplicatt]

Question if i hack the switch but play a legit game ie tetris 99 online would i risk ban from playing tetris 99

 

[Homebound]

I have a non-patched switch with 3.0.1. I never updated it or connected to the internet. Can I use caffeine to get atmosphere CFW? The switch guide list caffeine supported firmware versions as 2.0.0 - 3.0.0 & 4.0.1 - 4.1.0. No mention of 3.0.1.

 

[asdatoan]

Hi guys,
Just wondering on the update with the patched units. Can they be hacked yet?

 

[notimp]

Thank you for explanation sir. I know and already using AutoRCM on 6.2.0.

So what I have to do is download the latest version of hekate ctaer, atmosphere and 8.1.0 OFW and then copy ChoiDujourNX and OFW files to related folders in SD Card and fire the process in ChoiDujourNX.

By saying "Update your CFW first" you mean copying the latest version of atmosphere files to the SD Card, right? Just like months ago, CFW installation is still the same? I'm just asking for make sure that I don't miss anything and prevent misunderstanding.

You are correct.

Dont forget to also update to the latest sweet patches ( https://gbatemp.net/threads/i-heard-that-you-guys-need-some-sweet-patches-for-atmosphere.521164/ ).

(If you are using "prepackaged Firmware bundles" like Kosmos - they do that for you. But I like not to use them (as well?). )

 

[notimp]

I have a virgin NAND backup for my Switch on 4.1.0. Here are my questions:
1. Is AutoRCM detectable by Nintendo (flag as ban)? Does Nintendo's bootloader remove AutoRCM?
2. Is it safe to load Sysnand (stock) through Hekate or will that result in a ban? Which leads into, should I be booting sysnand through Hekate or through Nintendo's bootloader?
3. Do I create my emunand with the 4.1.0 backup and update with ChoiDujourNX, or do I create my emunand with a new backup of 8.1.0 after linking my Nintendo account? (so those few games that require it will work)
4. Is there any reason to keep my efuse count low?

Wow - for the first time in years, I have to think to answer a question in here...

1. Might be detectable - although currently it seems not to result in any reaction by Nintendo. Easy answer would be "no, its not detectable".

No, Nintendos Bootloader does not remove AutoRCM - it simply fails to boot. Which is the concept of AutoRCM. Nintendos Firmwareupdates remove it though - if you dont apply them with something like ChoixduJourNX (which has apply AutoRCM enabled by default - by default, because AutoRCM is also used to stop the Nintendo Bootloader from working before it burns fuses. Never forget, that AutoRCM is also used for that. ).

2. Should be safe. Depends on what you want - more on that later.

3. Either way should be fine. "Fake" Linking a Nintendo account can be done with either this method: https://gbatemp.net/threads/any-way-to-edit-profile-and-fake-link-account.526255/ or via Kefir ( https://gbatemp.net/threads/kefir-updater.539086/ ). (Kefir should be more easy. )

4. Yes. If its practicable is another question.

(5). Dont forget to setup 90DNS as soon as possible - even on stock firmware - and unplug your router from the internet while setting the entire thing up. Thats part of isolating emunand - so it never will be able to talk to Nintendo broadcasting several of your unique hardware IDs.

Reason to keep fusecount low: To be able to downgrade to 4.1.0 (at the moment), which allows for a tethered (WLAN - ) exploit to basically replace your injector dongle (or smartphone, or PC...) - and still be able to boot into RCM > hekate > CFW - See: https://gbatemp.net/threads/caffeine-updated-to-support-fw-4-1-0-works-on-patched-switches.541826/

You'd still need a WLAN connection (with 90DNS set up, so it doesnt pull updates) presumably - so its tethered - but it could be tethered to your smartphones hotspot - f.e.

Short answer - dongle still is more convenient for most people.



Reason to update to most recent Nintendo firmware in 'real nand' (if also using emuMMC) - to be able to play online. (While still be able to use emummc (emunand) - if your switch is an unpatched unit, that allows you to enter RCM Hekate via payload injector) 'Fake Linking accounts' can be done via other means, so thats not a reason.

Please doublecheck - if autorcm on "clean stock nand" doesnt result in a ban - my answer here was only extrapolated - not based on actual knowledge.

--------------------- MERGED ---------------------------

Hi guys,
Just wondering on the update with the patched units. Can they be hacked yet?

Yes, if you stayed at 4.1.0 or below. No in all other cases.

For yes - see: https://gbatemp.net/threads/caffeine-updated-to-support-fw-4-1-0-works-on-patched-switches.541826/

 

[OrGoN3]

Wow - for the first time in years, I have to think to answer a question in here...

1. Might be detectable - although currently it seems not to result in any reaction by Nintendo. Easy answer would be "no, its not detectable".

No, Nintendos Bootloader does not remove AutoRCM - it simply fails to boot. Which is the concept of AutoRCM. Nintendos Firmwareupdates remove it though - if you dont apply them with something like ChoixduJourNX (which has apply AutoRCM enabled by default - by default, because AutoRCM is also used to stop the Nintendo Bootloader from working before it burns fuses. Never forget, that AutoRCM is also used for that. ).

2. Should be safe. Depends on what you want - more on that later.

3. Either way should be fine. "Fake" Linking a Nintendo account can be done with either this method: https://gbatemp.net/threads/any-way-to-edit-profile-and-fake-link-account.526255/ or via Kefir ( https://gbatemp.net/threads/kefir-updater.539086/ ). (Kefir should be more easy. )

4. Yes. If its practicable is another question.

(5). Dont forget to setup 90DNS as soon as possible - even on stock firmware - and unplug your router from the internet while setting the entire thing up. Thats part of isolating emunand - so it never will be able to talk to Nintendo broadcasting several of your unique hardware IDs.

Reason to keep fusecount low: To be able to downgrade to 4.1.0 (at the moment), which allows for a tethered (WLAN - ) exploit to basically replace your injector dongle (or smartphone, or PC...) - and still be able to boot into RCM > hekate > CFW - See: https://gbatemp.net/threads/caffeine-updated-to-support-fw-4-1-0-works-on-patched-switches.541826/

You'd still need a WLAN connection (with 90DNS set up, so it doesnt pull updates) presumably - so its tethered - but it could be tethered to your smartphones hotspot - f.e.

Short answer - dongle still is more convenient for most people.



Reason to update to most recent Nintendo firmware in 'real nand' (if also using emuMMC) - to be able to play online. (While still be able to use emummc (emunand) - if your switch is an unpatched unit, that allows you to enter RCM Hekate via payload injector) 'Fake Linking accounts' can be done via other means, so thats not a reason.

Please doublecheck - if autorcm on "clean stock nand" doesnt result in a ban - my answer here was only extrapolated - not based on actual knowledge.

--------------------- MERGED ---------------------------


Yes, if you stayed at 4.1.0 or below. No in all other cases.

For yes - see: https://gbatemp.net/threads/caffeine-updated-to-support-fw-4-1-0-works-on-patched-switches.541826/

Ok, so TL;DR version is that booting stock through hekate is safe if I want to use AutoRCM, for now, for all we know.

I was thinking about keeping fuses for Caffeine, but then I'd need two emunands. I don't see Caffeine being any more convenient than RCM injecting. If there was a possibility of a persistent coldboot into CFW, then I'd wait, but I don't think that's in the works for 4.1.0. That fake account linking through Kefir seems easiest. Although I'm not a fan of using random Russian hack packs, I think I'll be okay this one time.

Thanks for clarifying all the info! I think for now, the best setup would be to keep sysnand updated and online, and emunand offline (obviously) for other things.

 

[notimp]

Yes. Logic goes as follows.

Ok, so TL;DR version is that booting stock through hekate is safe if I want to use AutoRCM, for now, for all we know.

AutoRCM blocks early enough, that Nintendo bootloader cant do a thing. To read that files are modified - some sort of "update routine" being executed would be needed. Presumably. But. Maybe there is another way Nintendo can read out "how often RCM is triggered" - which would be a good indicator for ban. And people "my girlfriend updated my switch - what do I do" all the time. So best guess is - Nintendo cant. Or they dont. Its hard to predict the future..

Booting into OFW via Hekate (later stage of official bootloader?) - should not be detectable either. But please get a second informed opinion on that - I dont know.

(Just ask around if AutoRCM use with emuMMC and systemnand for online play is ok. Maybe someone in here knows for sure? Enlighten us. )

edit: Also READ KEFIR THREAD, or loss of savegames will be immanent. If using it.

 

[milkybar1983]

OK just got my switch yesterday and I am nearly where I want to be but not quite

I have a 4.1 ipatched unit working with hetake 5 using the sdsetup Kosmos + PegaScape (with sigpatches) files
I have backed up my boot0,1,nand and keys
I have created an emummc file on the SD card and activated it
I can boot atomsphere using the launch cfw (emunand) option

Now I want to create a clean emummc and boot into that then update to 8.1

How can I do this please?

 

[notimp]

Clean emuMMC is not a thing.

To go online you always should (as in will) use realnand (systemnand). If you "tainted" realnand (f.e. by installing any .nsps) you are always at a bann risk - and there is nothing (as in not much) you can do about it.

If you want to create a "clean" emuMMC partition just to go online - and another to play Homebrew, you do that at your own risk. There hardly ever will be enough user reports on that to give you an informed ban risk assessment. Also - again - if the switch has ever being tainted - the ban risk doesnt go away. (Some people sell you on Incognito https://gbatemp.net/threads/incognito.531924/ - but if Nindtendo has previous versions of you log files and notices differences - potential ban. If you are asking how to "make america great again", sorry "nand clean again" - answer becomes very high complexity - with you probably cant at the end. Risk is on you.)

Now if you are OCD and want a "clean emuMMC" just delete what you dont want. Factory reset probably works as well (Not tested, please find someone to confirm before you do it).

Updating it to 8.1 should be possible with ChoixdujourNX -- ALTHOUGH BE VERY AFRAID - as default settings (AutoRCM enabled) will brick your switch. Permanently. Because its a patched unit. Read this: https://gbatemp.net/threads/can-i-update-emummc-of-an-ipatched-switch.542106/#post-8695022

Get a second opinion that also tells you that updating emuMMC using ChoixdujourNX is fine (with AutoRCM disabled in your case - or brick).

Please also understand - that as with all high complexity issues, dont expect simple answers, and maybe wait a little until more people have experience with emuMMC.

 

[milkybar1983]

many thanks for your detailed reply! my realnand is untainted, I never connected to wifi without the pega DNS and have not installed anything on it so its clean. Will wait for confirmation on running a clean emummc with 8.1 before I proceed.

Happy with atmosphere for now

 

[Draxzelex]

Thank you for explanation sir. I know and already using AutoRCM on 6.2.0.

So what I have to do is download the latest version of hekate ctaer, atmosphere and 8.1.0 OFW and then copy ChoiDujourNX and OFW files to related folders in SD Card and fire the process in ChoiDujourNX.

By saying "Update your CFW first" you mean copying the latest version of atmosphere files to the SD Card, right? Just like months ago, CFW installation is still the same? I'm just asking for make sure that I don't miss anything and prevent misunderstanding.

Yes, copy and paste the latest version of the Atmosphere files to the SD card. I recommend deleting any old Atmosphere files on the SD card first before putting the new ones on the card.

Hello guys, any new way to install updates for games? I'm using kosmos, so using hbg isn't an option.
Thanks

Download them from your piracy website of choice then install them with Adubbz Tinfoil which you can find here.

I have patched switch, 4.1.0. i use pegascape to launch caffeine and then go into hakate to boot a cfw (atmosphere).

I want know. The procedure to safley creat a emuNand so that I can boot into ams cfw and upgraded that Emunand to latest firmware version to play latest games.

Can some one help me how van do this and is there any operating instructions written?

https://www.scenefolks.com/pages.php?page=5&id=755

Question if i hack the switch but play a legit game ie tetris 99 online would i risk ban from playing tetris 99

Yes

I have a non-patched switch with 3.0.1. I never updated it or connected to the internet. Can I use caffeine to get atmosphere CFW? The switch guide list caffeine supported firmware versions as 2.0.0 - 3.0.0 & 4.0.1 - 4.1.0. No mention of 3.0.1.

3.0.1 and 3.0.2 are not yet supported by Caffeine.

 

[keegokahgo]

Recently updated from 8.0.1 to 8.1.0 using choidujourNX after updating my Atmosphere and Hekate to the latest verisons (with Kosmos, via sdsetup) and Hekate/Nyx has been really buggy for me:

1. Sometimes when injecting Hekate, it would hang at the Hekate IPL splash screen or when it finally did boot into Nyx, it would freeze when trying to boot to CFW after tapping CFW (sysnand)
2. Whenever something crashes via homebrew loader (for example, Goldleaf when I accidentally press home instead of + to quit) and it gives me the option to restart, the system will hang at the Hekate IPL splash screen (when autobooting).

I deleted the atmosphere, bootloader, and sept folders and re-copied everything from the sdsetup package to refresh my installation (I originally assumed it was the theme I was using) but it still gives me the occasional freeze. Any suggestions on what wrong during my upgrade, and what would be the best way to remedy this?

 

[Tugay]

You are correct.

Dont forget to also update to the latest sweet patches ( https://gbatemp.net/threads/i-heard-that-you-guys-need-some-sweet-patches-for-atmosphere.521164/ ).

(If you are using "prepackaged Firmware bundles" like Kosmos - they do that for you. But I like not to use them (as well?). )

Ah patches thank you. I was added these patches when I installed CFW 6.2.0. I think these are updated patches. So I should replace them.

I use sdseup.com as it is very clear and has all in one packages. I think I will go for it again when I update 8.1.0

By the way, updating FW via Choidujournx means my SD Card will be formatted? I have installed MANY nsps on SD Card so it will destroy my games if it does that. I also have a few nsps on the System Memory too.

 

[SawzerRu]

Please help me. If I want to buy a Switch and put a “CFW” on it, does it make sense to buy a new Switch in retail store (suitable revision, of course) so that I have a factory OFW below 8.1.0 or should i find a cheaper used Switch with suitable revision (but with the installed OFW 8.1.0) and there will be no difference?

I ask, because for me the difference in price between the new and used is quite substantial. Thanks a lot

 

[Hayato213]

Please help me. If I want to buy a Switch and put a “CFW” on it, does it make sense to buy a new Switch in the store (suitable revision, of course) so that I have a factory OFW below 8.1.0 or should i find a cheaper used Switch with suitable revision (but with the installed OFW 8.1.0) and there will be no difference?

I ask, because for me the difference in price between the new and the supported is quite substantial

You have two options by checking the serial numbers, buy an RCM exploitable unit, or buy a patched unit that is 4.1.0 or under. RCM exploitable unit allows you to push a payload via the fusee-gelee exploit, if you get a patched unit if the firmware is 4.1.0 or below you can use software base exploit to launch CFW.

 

[SawzerRu]

You have two options by checking the serial numbers, buy an RCM exploitable unit, or buy a patched unit that is 4.1.0 or under. RCM exploitable unit allows you to push a payload via the fusee-gelee exploit, if you get a patched unit if the firmware is 4.1.0 or below you can use software base exploit to launch CFW.

Can i really define a patched unit that is 4.1.0 or under just by checking SN? How?

 

[Hayato213]

Can i really define a patched unit that is 4.1.0 or under just by checking SN? How?

https://gbatemp.net/threads/switch-...he-first-post-before-asking-questions.481215/

You want to get an unpatched unit if you can, patched unit has limitation right now. As for serial # base off that thread above you want to get one that allows you to push a payload, payload on patched unit won't go through RCM mode.

 

[SawzerRu]

You want to get an unpatched unit if you can, patched unit has limitation right now. As for serial # base off that thread above you want to get one that allows you to push a payload, payload on patched unit won't go through RCM mode.

Okay, so if i'am looking for an unpatched unit then does the version of OFW installed matter or not?
I can buy an unpatched unit in retail with factory OFW below 8.1.0 (it will be more expensive) and i can buy a used unpatched unit with OFW 8.1.0 (it will be cheaper). What should i choose? Is there any difference between these options if i'am going to install CFW? Thanks for help

 

[Hayato213]

Okay, so if i'am looking for an unpatched unit then does the version of OFW matter or not?
I can buy an unpatched unit in retail with factory OFW below 8.1.0 (it will be more expensive) and i can buy a used unpatched unit with OFW 8.1.0 (it will be cheaper). What should i choose? Is there any difference between these options if i'am going to install CFW? Thanks for help

firmware doesn't matter if it is unpatched, if it is patched then you can do anything above 4.1.0 right now. Unpatched unit cost more than patched.