Hacking Question Is anybody working on how to hack a patched switch without a mod chip or physical modding?

Theone5000

Well-Known Member
Member
Joined
Feb 22, 2009
Messages
167
Trophies
1
Location
Earth
XP
1,379
Country
Netherlands
It will most likely be a long time until this is done so just don't expect it to happen any time soon because of the chip set the switches use
I am sure there will be alternatives at some point in the near future. Just look how far Atmosphère has come. There will be a software hack someday.. anything is possible. Untill then i'm waiting patiently.
 

ZachyCatGames

Well-Known Member
Member
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,207
Country
United States
I am sure there will be alternatives at some point in the near future. Just look how far Atmosphère has come. There will be a software hack someday.. anything is possible. Untill then i'm waiting patiently.
Having a software hack requires a exploitable software bug, Switch has zero exploitable software bugs that would allow running CFW :P
 

Deleted member 546149

Well-Known Member
Member
Joined
Dec 18, 2020
Messages
2,000
Trophies
2
XP
6,972
Having a software hack requires a exploitable software bug, Switch has zero exploitable software bugs that would allow running CFW :P
Could we only have the hb channel, remember the wii side when their was no cfw. In 3.0.0 there was an exploit not for cfw, but for just the hb menu. At the GBAtemp wiki they do not even consider this an exploit. I don't need cfw, just the hb loader
 

ZachyCatGames

Well-Known Member
Member
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,207
Country
United States
Could we only have the hb channel, remember the wii side when their was no cfw. In 3.0.0 there was an exploit not for cfw, but for just the hb menu. At the GBAtemp wiki they do not even consider this an exploit. I don't need cfw, just the hb loader
In theory, yes. In practice, "maybe", dunno if there's any bug that would enable that, also many things assume you're running Atmosphere and wouldn't work properly/at all on stock firmware.
 
Last edited by ZachyCatGames,

weatMod

Well-Known Member
Member
Joined
Aug 24, 2013
Messages
3,305
Trophies
2
Age
47
XP
3,337
Country
United States
nice site did a quick searchand found a lot of unpatched switches easily. how trustworthy2 is mercari?
well i had never heard of them till last year , our grind and brew coffee machine broke and that was th eonly place i could find a replacement for sale or at least for a good price
so i ordered it and everything went very smoothly
 

Deleted member 546149

Well-Known Member
Member
Joined
Dec 18, 2020
Messages
2,000
Trophies
2
XP
6,972
In theory, yes. In practice, "maybe", dunno if there's any bug that would enable that, also many things assume you're running Atmosphere and wouldn't work properly/at all on stock firmware.
I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out

--------------------- MERGED ---------------------------

I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out
Plus not everyone is interested in downgrading the switch or their encryption keys. Maybe they just want N64 games on the go or different backrounds. They reason developers only look at cfw is because they believe everyone is an advanced user.
 

ZachyCatGames

Well-Known Member
Member
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,207
Country
United States
I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out

--------------------- MERGED ---------------------------


Plus not everyone is interested in downgrading the switch or their encryption keys. Maybe they just want N64 games on the go or different backrounds. They reason developers only look at cfw is because they believe everyone is an advanced user.
Any emulator with a JIT wouldn’t work properly under stock firmware, all custom sysmodules wouldn't work, and anything that relies on AMS extensions wouldn’t work.
Installing CFW with hb appstore would not work, you need an exploit that can run a payload from pk1ldr context or earlier.

Nobody’s bothered because it’s much more difficult than 3ds/wiiu and has zero benefit. You have to pwn something that’d allow you to give yourself full permissions, which is likely impossible on modern firmwares (and if anything did ever show up it’d be immediately patched). Game exploits and w/e don’t work for getting homebrew.

Downgrading isn’t involved with running CFW :thonk:
 
Last edited by ZachyCatGames,

Deleted member 546149

Well-Known Member
Member
Joined
Dec 18, 2020
Messages
2,000
Trophies
2
XP
6,972
Any emulator with a JIT wouldn’t work properly under stock firmware, all custom sysmodules wouldn't work, and anything that relies on AMS extensions wouldn’t work.
Installing CFW with hb appstore would not work, you need an exploit that can run a payload from pk1ldr context or earlier.

Nobody’s bothered because it’s much more difficult than 3ds/wiiu and has zero benefit. You have to pwn something that’d allow you to give yourself full permissions, which is likely impossible on modern firmwares (and if anything did ever show up it’d be immediately patched). Game exploits and w/e don’t work for getting homebrew.

Downgrading isn’t involved with running CFW :thonk:
Once again, if someone did bother to find an exploit for patched switches that allowed hb menu then they would make workarounds. Think of it as a jailbroken iphone. For example they wanted to run dolphin emulator, however the team made a workaround and supported normal iphones with some less features
 

ZachyCatGames

Well-Known Member
Member
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,207
Country
United States
Once again, if someone did bother to find an exploit for patched switches that allowed hb menu then they would make workarounds. Think of it as a jailbroken iphone. For example they wanted to run dolphin emulator, however the team made a workaround and supported normal iphones with some less features
note: "wouldn't work properly"
JIT emulators would work, but they'd be a stutter fest, only way to get around that is with svcControlCodeMemory patches, which require CFW.
 

Draxzelex

Well-Known Member
Member
Joined
Aug 6, 2017
Messages
18,986
Trophies
2
Age
29
Location
New York City
XP
13,326
Country
United States
At least Hb would be a step forward
No it wouldn't. Would you like to know why? Because there was already a period of time when the Switch only had homebrew and the scene was dead. Pegaswitch was the scene's first taste of running unsigned code but it was limited to userland. There was basically little to no noteworthy progress made when it was first released. Hype only picked back up when fusee gelee began being teased.
 

Deleted member 546149

Well-Known Member
Member
Joined
Dec 18, 2020
Messages
2,000
Trophies
2
XP
6,972
Without a cash bounty as incentive, I doubt it.
Actually, someone should try that

--------------------- MERGED ---------------------------

No it wouldn't. Would you like to know why? Because there was already a period of time when the Switch only had homebrew and the scene was dead. Pegaswitch was the scene's first taste of running unsigned code but it was limited to userland. There was basically little to no noteworthy progress made when it was first released. Hype only picked back up when fusee gelee began being teased.
Something is better than nothing
 

Draxzelex

Well-Known Member
Member
Joined
Aug 6, 2017
Messages
18,986
Trophies
2
Age
29
Location
New York City
XP
13,326
Country
United States
Actually, someone should try that
I'm doubtful because SciresM himself actually made a bounty for someone to release an untethered coldboot exploit that has basically seen no progress.
cVuMVe0.png
One can argue nobody took it up due to the price and/or difficulty but I'm confident people would look for an exploit even without a monetary incentive.
 

SciresM

Developer
Developer
Joined
Mar 21, 2014
Messages
972
Trophies
3
Age
33
XP
8,253
Country
United States
Nobody is working on finding exploits for the Switch -- it's mostly pointless since the secure monitor definitely has no security vulnerabilities and the kernel almost certainly has none either at this point.

I expect we'll hit end of life without another softmod.
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • No one is chatting at the moment.
    LeoTCK @ LeoTCK: yes for nearly a month i was officially a wanted fugitive, until yesterday when it ended