Hacking TrustZoneHax on 3.x and below

V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Please do not use this as an excuse to update 1.0.0s to 2.x's.

TZ on 2.x is much harder, more difficult to reproduce, and not nearly as reliable. If you want TZ/emuNAND stick with 1.0.0.

Do not burn the valuable and extremely finite resource that is 1.0.0.
 
  • Like
Reactions: South Cape
D

deSSy2724

Well-Known Member
Member
Level 7
Joined
Sep 11, 2015
Messages
453
Trophies
0
Age
33
XP
1,174
Country
Germany
Im glad I didnt update my Switch which came with firmware 2.1.0 (Splatoon 2 bundle) and I also purchased Pokken Tournament which is on 3.0 but something was telling me all the time not to update my Switch :D
 
SirByte

SirByte

Well-Known Member
Member
Level 7
Joined
Dec 30, 2012
Messages
524
Trophies
1
XP
1,059
Country
Canada
So what about f0f's bootrom hax? If/when that gets reproduced, do you still need to cascade *hax (User -> Kernel -> TZ) for EmuNAND?
 
Tempest228

Tempest228

Well-Known Member
Member
Level 3
Joined
Jul 13, 2015
Messages
226
Trophies
0
XP
263
Country
United States
The vibe I'm getting is:

- Get to 2.3 or lower
- Up to 3.0.2 may be ok
- Higher is fucked?

Correct me if I'm wrong.
 
D

Deleted-368796

Guest
As we learn more about the Switch system, the better chance we have of finding exploits in future firmware.
Since SciresM found another entry point on 2.x, he now has the knowledge of where that weakness is.
And even if that exact entry point is not accessible on 3.x , he and others can try to exploit the same weakness from another attack vector.

Bottom line... Hold on to yer britches. It only gets better from here.
 
  • Like
Reactions: DayVeeBoi and peteruk
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Tempest228 said:
The vibe I'm getting is:

- Get to 2.3 or lower
- Up to 3.0.2 may be ok
- Higher is fucked?

Correct me if I'm wrong.
Click to expand...

4.x is as far as we know, rock solid going from the top and has even handled many but not all of nVidia's screw ups. 5.x or whatever the next major update with bug fixes is, will only make this worse.

Thanks to TX cashing in early, the bootloader bug will also disappear and unless you're going to start building your own glitching unit, it will likely become difficult to use any software solution from the top-down since you have no access to lower level functions.

Remember, again:
We have found zero kernel exploits in Nintendo's code.
It has all been nVidia, and its not inexhaustible.

fire3element said:
As we learn more about the Switch system, the better chance we have of finding exploits in future firmware.
Since SciresM found another entry point on 2.x, he now has the knowledge of where that weakness is.
And even if that exact entry point is not accessible on 3.x , he and others can try to exploit the same weakness from another attack vector.

Bottom line... Hold on to yer britches. It only gets better from here.
Click to expand...

It is in fact the opposite. We're running out of compromises, and our understanding of just how well Nintendo is mitigating problems is becoming more and more profound.

Hexkyz already made this abundantly clear.
 
Sephirosu

Sephirosu

Well-Known Member
Member
Level 4
Joined
Jan 28, 2015
Messages
266
Trophies
0
Age
34
Location
Boca Raton, Florida
XP
436
Country
Tempest228 said:
The vibe I'm getting is:

- Get to 2.3 or lower
- Up to 3.0.2 may be ok
- Higher is fucked?

Correct me if I'm wrong.
Click to expand...

Software solution(as of now as far as I know):
-1.0-2.x will get their piracy.
-3.0.0 gets Homebrew/play decrypted ROMs like in Wii U.
-3.0.1 and above are screwed (for now).


Hardware solutions (according to what we know from TX):
-all hardware will be susceptible to piracy unless Nintendo revises their hardware.
 
Tempest228

Tempest228

Well-Known Member
Member
Level 3
Joined
Jul 13, 2015
Messages
226
Trophies
0
XP
263
Country
United States
V-Temp said:
4.x is as far as we know, rock solid going from the top and has even handled many but not all of nVidia's screw ups. 5.x or whatever the next major update with bug fixes is, will only make this worse.

Thanks to TX cashing in early, the bootloader bug will also disappear and unless you're going to start building your own glitching unit, it will likely become difficult to use any software solution from the top-down since you have no access to lower level functions.
Click to expand...

So I should be hunting down a new switch at a lower firmware? Mine is on 4.1 as of now.
 
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
Tempest228 said:
So I should be hunting down a new switch at a lower firmware? Mine is on 4.1 as of now.
Click to expand...

You can also take the risk of a modchip, but then I don't generally recommend fucking with the hardware in a unit as tight as the Switch. Solderless or not.

But if you are after software holes, that opportunity is quickly dwindling in newer firmwares.
 
Tempest228

Tempest228

Well-Known Member
Member
Level 3
Joined
Jul 13, 2015
Messages
226
Trophies
0
XP
263
Country
United States
V-Temp said:
You can also take the risk of a modchip, but then I don't generally recommend fucking with the hardware in a unit as tight as the Switch. Solderless or not.

But if you are after software holes, that opportunity is quickly dwindling in newer firmwares.
Click to expand...

I get the message. Time to pay a visit to Toys R Us. Hopefully they haven't sold many units.
 
D

Deleted-368796

Guest
V-Temp said:
It is in fact the opposite. We're running out of compromises, and our understanding of just how well Nintendo is mitigating problems is becoming more and more profound.
Click to expand...
Well yeah, that's the whole point of security updates and patches. As time goes on, it will continue to become more difficult.
That still does nothing to negate the fact that more knowledge of a system is... more knowledge. And with that knowledge you have more opportunities.

I've been following/part of the android scene since before the Droid X days, so this is familiar territory.
Owning TZ gives you access to the lowest levels of the system. With that, you can install or modify the bootloader, recovery, and just about every other partition.
 
D

Deleted member 381889

Guide Writer
OP
Member
Level 14
Joined
Jan 29, 2016
Messages
2,035
Trophies
1
XP
4,420
Sephirosu said:
Software solution(as of now as far as I know):
-1.0-2.x will get their piracy.
-3.0.0 gets Homebrew/play decrypted ROMs like in Wii U.
-3.0.1 and above are screwed (for now).


Hardware solutions (according to what we know from TX):
-all hardware will be susceptible to piracy unless Nintendo revises their hardware.
Click to expand...
3.x has kernelhax
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

Homebrew  I accidentally updated to fw 18.0 on my switch in cfw and now I am getting an error that says unknown pkg1 version. please help me find a solution

General chit-chat
Help Users
    HiradeGirl @ HiradeGirl: Blurp.