Size of an SD card? Yes.
Usable in an SD card slot? No.
The Edison is designed for embedded systems such as mobile phones and wearable tech. The SD card form factor exists entirely to show off how tiny it is as far as I can make out.
Size of an SD card? Yes.
Usable in an SD card slot? No.
The Edison is designed for embedded systems such as mobile phones and wearable tech. The SD card form factor exists entirely to show off how tiny it is as far as I can make out.
Already-available tools are enough.
This isn't going to help in any significant way.
There's a New App in the eShop called the Save Data Transfer Tool. Basically all it do is transfer the save data from a cart to the Downloadable version of the game.
There are some 3DS Save Backup Dongle out there so could insert a hack to the save then upload it to the cart and then use the app to transfer the save to the 3DS and then run the digital game with the exploitable save?
Kinda like in the PS Vita.
Or maybe to get the saves of the Nand Save Games like Pokemon Y&X. I mean while the app is tranfering the save from the cart to the digital game it might lose the encryption or something.
Sorry If I said something ridiculously stupid.
There are some 3DS Save Backup Dongle out there so could insert a hack to the save then upload it to the cart and then use the app to transfer the save to the 3DS and then run the digital game with the exploitable save?
Kinda like in the PS Vita.
Or maybe to get the saves of the Nand Save Games like Pokemon Y&X. I mean while the app is tranfering the save from the cart to the digital game it might lose the encryption or something.
Sorry If I said something ridiculously stupid.
I have no idea how hacking works, but shouldnt the 3ds already have been hacked so far? I dont understand how for psp systems for example, all that was used was a picture and placed in the pictures folder to run a hack (chicken.) There must be something that could be done for the 3ds. Is there some team or something that is currently working on this?
- Joined
- Dec 26, 2013
- Messages
- 17,736
- Trophies
- 3
- Location
- The Lands Between
- Website
- gbatemp.net
- XP
- 8,533
- Country
The 3DS won't run code that isn't signed by Nintendo, so it's not as simple as that. You have to either spoof Nintendo's code, which is very difficult and time-consuming, or find an exploit that allows you to run unsigned code. We only have one exploit that allows us to do that so far, and it was patched out after firmware version 4.5.
Being an exploit and not a full hack, it also has to be re-initiated each time it is used, rather than something that is permanently installed into system memory (like a custom firmware release).
- Joined
- Dec 26, 2013
- Messages
- 17,736
- Trophies
- 3
- Location
- The Lands Between
- Website
- gbatemp.net
- XP
- 8,533
- Country
Anyone know if the wifi data is encrypted?
I know pretty much nothing about hacking but what if I changed some crap to trigger a buffer overflow? (Which is probably impossible thanks to XN)
Maybe messing up names, etc when the 3DS requests something over wifi, implying it doesn't check for mismatches first. (Most likely it will just error and force close the game.)
And, y'know, needing something to intercept wifi data in the first place, or spoofing your own WFC server, which would require setting up a custom DNS server to redirect to your computer and even more...
I know pretty much nothing about hacking but what if I changed some crap to trigger a buffer overflow? (Which is probably impossible thanks to XN)
Maybe messing up names, etc when the 3DS requests something over wifi, implying it doesn't check for mismatches first. (Most likely it will just error and force close the game.)
And, y'know, needing something to intercept wifi data in the first place, or spoofing your own WFC server, which would require setting up a custom DNS server to redirect to your computer and even more...
One can always use Wireshark to intercept wifi data. I have very limited experience with it, so I'm not sure what the results would yield.
Perhaps:
Find something that let's me inspect network packets, probably all I have to do is set up an access point with packet sniffing (Probably illegal, but whatever, it's my access point)
Attempt to intercept wifi data, like pokegenning (I have no idea what I'm doing)
Modify, then resend data
Boom, I'm done... jk I need to learn C programming first
Pokemon is probably not a suitable candidate because it checks corrupt pokemon every time you save and will turn them into bad eggs. I have no idea how XN works either, but I'm guessing it blocks buffer overflows very well.
3Dbrew lists nothing about game update data, but I'd guess it's encrypted like save data.
Find something that let's me inspect network packets, probably all I have to do is set up an access point with packet sniffing (Probably illegal, but whatever, it's my access point)
Attempt to intercept wifi data, like pokegenning (I have no idea what I'm doing)
Modify, then resend data
Boom, I'm done... jk I need to learn C programming first
Pokemon is probably not a suitable candidate because it checks corrupt pokemon every time you save and will turn them into bad eggs. I have no idea how XN works either, but I'm guessing it blocks buffer overflows very well.
3Dbrew lists nothing about game update data, but I'd guess it's encrypted like save data.
I don't think so. If there was any new news, I believe it would have been posted already.
So I was bored and decided to load up some .app and .3ds files in a hex editor and found this. Anyone know what it means? something about the firmware.
http://www.iforce.co.nz/View.aspx?i=y4r3uvh0.jot.jpg
http://www.iforce.co.nz/View.aspx?i=y4r3uvh0.jot.jpg
even worse: as far as i know all transmissions which are not bidirectional (so streetpass, systemupdates, stuff like that) are ssl encrypted. so most likely "no man in the middle for you!".
that's an extra layer of security on top the near guaranteed signature check before an update gets installed.
just the regular rom header, which is unencrypted. check out the respective pages on 3dbrew or the sources of dsromttol or 3ds explorer if you are interested.
Hey guys, with a hacked 3DS on 4.5 couldn't you extract a 4.5 upgrade package from a 3DS game (such as Fire Emblem) since the 3DS is capable of decrypting that data (you kinda have to I order to run the game right?)?
This would allow you to get a FW upgrade package if we don't already have one. I'm not saying you can downgrade with it, but I just want to know if that would work.
This would allow you to get a FW upgrade package if we don't already have one. I'm not saying you can downgrade with it, but I just want to know if that would work.
Hello guys, I have found a way to make the 3DS, on the latest firmware (7.1 EU), freeze completely, and I am able to replicate it. I won't tell how or show a video, because it might be patched in a future update so I want to speak directly to a person who is able to do something with it.
Who shall I contact?
Who shall I contact?
I think you a talking about NX (No eXecute). It is a flag in the pages of all the usable memory (I don't know what the adressable memory layout of the 3DS looks like). If it is set, nothing in this page can be executed. It is supposed to be set to every page that does not contain code, so you can't inject any code into game data in RAM to execute it. As far as I know NX is implemented on the 3DS in hardware in the CPU, so you can't simply disable the NX check.
So what it does is not preventing buffer overflows (there exist other mechanism for that, not sure if the 3DS has any of them implemented), but it makes them pretty useless because you can't anything usefull with them if the NX flag is set correctly. And at the moment it looks like there are no holes in the 3DS NX implementation and usage, at least nothing that is public knowledge and very probably nothing that is easily usable.
To demonstrate what I mean by "it makes buffer overflows useless", let me tell you how buffer overflows and exploits were used in stuff like the first XBox and PCs before the introduction of NX were used: normally you would put the code you want to run somewhere into RAM, either by an exploit or by writing it over some hardware interface or something like that. Then you trigger your buffer overflow, hopefully jumping to the memory address where you code is. And then the code will be executed. If you can't jump that precisely you fill up the part of the RAM between the range where you can jump to and you code with instructions that lets the system read the next part of memory. Again and again until it reaches your code.
Since the introduction of NX it is not that easy any more because most of the memory is not executable, so you can't put code there. And it seems the executable part is pretty well guarded and checked before execution.
I hope I could shed some light on that stuff and my explanation is actually understandable. If anything is unclear, feel free to ask. Bear in mind that it was pretty general, partly because I don't know the details of the 3DS and I don't have any practical experience with hacking stuff. I just like to read about it, i.e. that one article about hacking the first XBox.
Similar threads
(
