Hacking [WIP] KARL3DS - Kernel access on N3DS via Ninjhax + Loadcode

Status
Not open for further replies.
S

Syphurith

Beginner
Member
Level 3
Joined
Mar 8, 2013
Messages
641
Trophies
0
Location
Xi'an, Shaanxi Province
XP
364
Country
Switzerland
motezazer said:
Well, clock glitching - voltage glitching - radiation glitching were all tried (not by me, of course). None of them worked.
And I read that the reset line of the SoC wasn't found, so no reset glitching.
Click to expand...
Well thanks for the info. So still a way should be found if it is planned to be done. At least JTAG isn't exposed..
Maybe could search for those cirterias about this subject (hardware injection/corruption?) on EI or I3E.
0-T0. 1/2*T0: HALT! ? Failed >> 1/4*T0...

BTW what about the usefulness of a ARM9 customizable patch loader (from file, no need to re-compile and load it)? (forgive me asking this here)
 
  • Like
Reactions: Margen67
motezazer

motezazer

Well-Known Member
Member
Level 8
Joined
Feb 6, 2015
Messages
1,214
Trophies
0
Age
24
XP
1,442
Country
France
There is also another way to completly break the security of past, present and future 3DS and New 3DS : factorize a semi-prime number into two prime numbers... :)

Syphurith said:
Well thanks for the info. So still a way should be found if it is planned to be done. At least JTAG isn't exposed..
Maybe could search for those cirterias about this subject (hardware injection/corruption?) on EI or I3E.
0-T0. 1/2*T0: HALT! ? Failed >> 1/4*T0...
Click to expand...

The most useful thing would be to find the SoC reset line. From here -> reset glitching -> fault -> in-bootrom code execution -> dump of bootrom and OTP registers -> you won.

Syphurith said:
BTW what about the usefulness of a ARM9 customizable patch loader (from file, no need to re-compile and load it)? (forgive me asking this here)
Click to expand...

Could be useful, but please discuss of it in another thread.
 
  • Like
Reactions: Margen67 and Syphurith
V

Vappy

Well-Known Member
Member
Level 11
Joined
May 23, 2012
Messages
1,508
Trophies
2
XP
2,613
Country
If rxTools continues, or if Pasta devs add emuNAND, there'd be little benefit to trying to crack SALT for sig checks. Might be worth it if they add N3DS keys that are still private at the time, though, and if Gateway haven't already obtained them themselves that's certainly an option for them :P
 
  • Like
Reactions: NaviLoz101 and Margen67
NaviLoz101

NaviLoz101

Banned!
Banned
Level 2
Joined
Mar 12, 2015
Messages
115
Trophies
0
Location
california
XP
134
Country
United States
shinyquagsire23 said:
It certainly won't be as easy as RxTools was to crack, I'll tell you that much.


We have no such replacing scripts. Also why would we not up our security after RxTools was patched like nothing happened?
Click to expand...
my bad i misspelled all your names i meant to say yls8 x3 he's the one where all the work is coming from have fun ill see ''karl'' when its released and well go from there ;3 btw hey @Huntereb @Reisyukaku its starting gain ;P

--------------------- MERGED ---------------------------

Vappy said:
If rxTools continues, or if Pasta devs add emuNAND, there'd be little benefit to trying to crack SALT for sig checks. Might be worth it if they add N3DS keys that are still private at the time, though, and if Gateway haven't already obtained them themselves that's certainly an option for them :P
Click to expand...
@Huntereb @Reisyukaku this is why i like @Vappy at least someone makes good points on this thread :3 also hey vappy long time no chat ^.^/
 
  • Like
Reactions: Vappy
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Is it possible...?

After the 8th of April, will it still be possible to create a new NNID (Nintendo Network ID) and/or transfer a NNID from one console to another?

Need help

Hacking Homebrew  how to link pnid to 3ds/how to use juxtaposition?

Hacking Homebrew  A new way to experience StreetPass

Hacking  New 2ds Refuses to boot

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Translation Project  DQM2SP translation

General chit-chat
Help Users
    Psionic Roshambo @ Psionic Roshambo: I wonder if Shaft ever tips... +1