Let me save you the suspense; the Switch 2 won't get hacked

  • Thread starter Thread starter FernandoRocker
  • Start date Start date
  • Views Views 52,171
  • Replies Replies 280
  • Likes Likes 23
quoted and be back 7-10 years later, ps5 :bow: or when switch 3 announced
I'll see you guys here in 10 years.

351540.png
 
this is the real person gezine is well knonw


dude, you just said
that was my first comment and i do some research and its a entry point
Seems like you "did your research" a bit too late ^^



On another note, genuine question for
truth is, the exploit is from a renown person in the homebrew scene (not referring to the person reposting the video). And could be promising in the future, but right now, it does nothing.

What do you mean by "it does nothing right now, but could be promising in the future"? I think it was during the Wii U or the 3DS era, that we had some exploit that were a bit useless alone, but when using with other exploit, would allow CFW execution. Is that ROP exploit a bit the same thing? Or more like "We know it can be used to do something big, but we just don't know how to use it properly as of now"?
 
  • Like
Reactions: impeeza
What do you mean by "it does nothing right now, but could be promising in the future"? I think it was during the Wii U or the 3DS era, that we had some exploit that were a bit useless alone, but when using with other exploit, would allow CFW execution. Is that ROP exploit a bit the same thing? Or more like "We know it can be used to do something big, but we just don't know how to use it properly as of now"?
It means a userland exploit allows unsigned code execution with user permissions, as in we're still inside the walled garden. A dev should be able to explore the user allowed API functions at his leisure now. If by these means security issues are found between the seams of the different security levels of the system, those would most likely be reported to Nintendo through the bug hunting platform for cash or recognition.

At this point, nobody knows if it can be used to do something big, and that also depends on your definition of big. The only information to be extracted out of this is a piece of the Switch 2 software was susceptible to ROP. That's it. This specific chain is VERY likely to be patched, if it's not patched already.

It's fair for other users to claim nothingburger on this. Up to you to remain hopeful.
 
It means a userland exploit allows unsigned code execution with user permissions, as in we're still inside the walled garden. A dev should be able to explore the user allowed API functions at his leisure now. If by these means security issues are found between the seams of the different security levels of the system, those would most likely be reported to Nintendo through the bug hunting platform for cash or recognition.

At this point, nobody knows if it can be used to do something big, and that also depends on your definition of big. The only information to be extracted out of this is a piece of the Switch 2 software was susceptible to ROP. That's it. This specific chain is VERY likely to be patched, if it's not patched already.

It's fair for other users to claim nothingburger on this. Up to you to remain hopeful.
Thanks for explanation. Last thing, is it that same exploit that allowed the "grey square gif" to be displayed on Switch 2 day 1 release?
 
It means a userland exploit allows unsigned code execution with user permissions, as in we're still inside the walled garden. A dev should be able to explore the user allowed API functions at his leisure now. If by these means security issues are found between the seams of the different security levels of the system, those would most likely be reported to Nintendo through the bug hunting platform for cash or recognition.

At this point, nobody knows if it can be used to do something big, and that also depends on your definition of big. The only information to be extracted out of this is a piece of the Switch 2 software was susceptible to ROP. That's it. This specific chain is VERY likely to be patched, if it's not patched already.

It's fair for other users to claim nothingburger on this. Up to you to remain hopeful.
The thing is its not like were working from scratch here.

The kernel's been busted open and extensively reverse engineered already. Hell we have shit from various leaks direct from Nintendo. Not a soul has found a bug in it So very likely this is the 360 all over again.

We got various userland entrypoints for days. Not a single one leads to a Kernel exploit. Well until 20 years later someone realized MS or their compiler shipped a bug that allows for it.
 
If it makes you sleep better at night not expecting anything then sure.

As someone who works in CyberSecurity and has lived as a gamer and hacking scene enthusiast since the 90s I can tell you with great certainty. No code is ever truly bug free and unhackable.

The way I see it is that there probably wasn't that much incitament to try finding any kernel exploits on Switch 1 since the RCM discovery blew the doors open so early.

With the Switch 2 the is much more incitament to find a kernel exploit since we have no RCM.
But sure it may not happen any time soon or even at all. But it's not for us to say. Time will tell.
 
If it makes you sleep better at night not expecting anything then sure.

As someone who works in CyberSecurity and has lived as a gamer and hacking scene enthusiast since the 90s I can tell you with great certainty. No code is ever truly bug free and unhackable.

The way I see it is that there probably wasn't that much incitament to try finding any kernel exploits on Switch 1 since the RCM discovery blew the doors open so early.

With the Switch 2 the is much more incitament to find a kernel exploit since we have no RCM.
But sure it may not happen any time soon or even at all. But it's not for us to say. Time will tell.
it always does
 
If it makes you sleep better at night not expecting anything then sure.

As someone who works in CyberSecurity and has lived as a gamer and hacking scene enthusiast since the 90s I can tell you with great certainty. No code is ever truly bug free and unhackable.

The way I see it is that there probably wasn't that much incitament to try finding any kernel exploits on Switch 1 since the RCM discovery blew the doors open so early.

With the Switch 2 the is much more incitament to find a kernel exploit since we have no RCM.
But sure it may not happen any time soon or even at all. But it's not for us to say. Time will tell.
This a thousand times, but some people here are really not willing to give into reason.


I can even understand pessimism of a public hack that would enable CFW being likely in the near future. But 'never' is such an absolute claim, only someone with basically zero technical knowledge could even make such an assertion. At this point this thread's primary purpose is rooting out people not worth listening to on technical subjects.
 
  • Haha
Reactions: ChibiMofo
For as much as this latest ROP exploit is done differently from the one that could be done at Day 1, the fact is, it's an exploit to gain something already established, and nothing has really been done or reported to progress beyond that. That's the problem that people aren't really seeing. Instead of moving from point A to B, it's moving from point AA to B, yet we are still waiting on something to get from point B to C.
 
  • Like
Reactions: ChibiMofo
The thing is its not like were working from scratch here.

The kernel's been busted open and extensively reverse engineered already. Hell we have shit from various leaks direct from Nintendo. Not a soul has found a bug in it So very likely this is the 360 all over again.

We got various userland entrypoints for days. Not a single one leads to a Kernel exploit. Well until 20 years later someone realized MS or their compiler shipped a bug that allows for it.
That is a lot of information I didn't know. Thank you. Then the only vector of attack is a hardware defect. Either a rowhammer-esque setup where we could flip something in runtime to produce issues where they weren't, or a modchip. Looks grim, honestly.
 
For as much as this latest ROP exploit is done differently from the one that could be done at Day 1, the fact is, it's an exploit to gain something already established, and nothing has really been done or reported to progress beyond that. That's the problem that people aren't really seeing. Instead of moving from point A to B, it's moving from point AA to B, yet we are still waiting on something to get from point B to C.

It gives MANY more people an entrypoint to explore kexploits since most wouldn't have built the exploited save and used a Switch 1 on latest to do the system transfer to preserve low firmware Switch 2. Now they can do tests with their low FW Switch 2 without any prerequisite.
 
That is a lot of information I didn't know. Thank you. Then the only vector of attack is a hardware defect. Either a rowhammer-esque setup where we could flip something in runtime to produce issues where they weren't, or a modchip. Looks grim, honestly.

360 is a terrible example. Disc drive firmware modding from very very early on and then later glitch hack completely removed the need for a soft exploit. There was no desire because piracy is usually the driving force and it was solved extremely early on.
 
At this point this thread's primary purpose is rooting out people not worth listening to on technical subjects.
Especially the alleged cybersecurity experts who clearly have no clue about how unhackable Switch 2 is, nor how many devices dating to at least the 90s have never been hacked (no, I am not talking about gaming hardware). The "nothing is unhackable" idiots are as hilarious as the "if buying isn't owning piracy isn't stealing" thieves.

And I say that as 🏴‍☠️a proud thief🏴‍☠️ and retired certified Cisco and CISSP network engineer whose career started in the 80s.
 
Especially the alleged cybersecurity experts who clearly have no clue about how unhackable Switch 2 is, nor how many devices dating to at least the 90s have never been hacked (no, I am not talking about gaming hardware). The "nothing is unhackable" idiots are as hilarious as the "if buying isn't owning piracy isn't stealing" thieves.

And I say that as 🏴‍☠️a proud thief🏴‍☠️ and retired certified Cisco and CISSP network engineer whose career started in the 80s.

Every planet is reachable by man, we just don't want to go there for various reasons.
 
  • Like
Reactions: Noctosphere
It gives MANY more people an entrypoint to explore kexploits since most wouldn't have built the exploited save and used a Switch 1 on latest to do the system transfer to preserve low firmware Switch 2. Now they can do tests with their low FW Switch 2 without any prerequisite.
Let's be real here. If they weren't willing to do something like how the prior method was done, I wouldn't put much faith in them having any expertise to make use of this new exploit beyond "me too".
 

Site & Scene News

Popular threads in this forum