Hacking Someone blow my mind... what is a hacked switch of the future gonna do?

The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,288
Trophies
4
Location
Space
XP
13,846
Country
Norway
Josephvb10 said:
Not this time.

This time every console has a different TLS certificate that is used to authenticate every single request to Nintendo's servers. If they ban your certificate you won't be able to connect ever again. Console unique keys are stored in the fuses and can't be modified.
Click to expand...
There's always a way.
The requests can be patched to use a certificate loaded from a file instead. Then you can use certificates from another console. Similar to how the private CtCert replacing thing works on 3DS, having it actually be coded into the CFW to patch the system on the fly to use a different CtCert.
 
Last edited by The Real Jdbye,
Astoria

Astoria

Well-Known Member
Member
Level 8
Joined
Aug 26, 2009
Messages
658
Trophies
1
XP
1,271
Country
Costa Rica
The Real Jdbye said:
There's always a way.
The requests can be patched to use a certificate loaded from a file instead. Then you can use certificates from another console. Similar to how the private CtCert replacing thing works on 3DS, having it actually be coded into the CFW to patch the system on the fly to use a different CtCert.
Click to expand...
This time Nintendo tracks everything your certificate is doing in their network. If you try to access some game's service that isn't linked to your console certificate it may get banned instantly.
 
Last edited by Astoria,
  • Like
Reactions: The Real Jdbye
Jayro

Jayro

MediCat USB Dev
Developer
Level 26
Joined
Jul 23, 2012
Messages
12,976
Trophies
4
Location
WA State
Website
ko-fi.com
XP
17,012
Country
United States
I wonder... Could someone theoretically take a 64 eMMC chip, and clone the 32GB one inside the Switch to the 64GB one, extend the partition using Linux, and have it working? We already know an eMMC from another Switch won't work, but if the data is a 1:1 clone, who's to say until it's tested?
 
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
The Real Jdbye said:
There's always a way.
The requests can be patched to use a certificate loaded from a file instead. Then you can use certificates from another console. Similar to how the private CtCert replacing thing works on 3DS, having it actually be coded into the CFW to patch the system on the fly to use a different CtCert.
Click to expand...

If you got one cert banned, overlaying another will just get it banned all the same. And certs are finite and pre-determined, so who's going to honestly offer up their own cert to potentially and unaccountably get banned by XYZ numbers of people?
 
DarthDub

DarthDub

Amateur Hacker
Member
Level 13
Joined
Jan 26, 2016
Messages
2,834
Trophies
1
Age
34
Location
Your mom's basement.
Website
www.gaiaonline.com
XP
3,632
Country
United States
Jayro said:
I wonder... Could someone theoretically take a 64 eMMC chip, and clone the 32GB one inside the Switch to the 64GB one, extend the partition using Linux, and have it working? We already know an eMMC from another Switch won't work, but if the data is a 1:1 clone, who's to say until it's tested?
Click to expand...
But y tho? It's way easier, and cheaper, to use a microsd card.
 
guily6669

guily6669

GbaTemp is my Drug
Member
Level 10
Joined
Jun 3, 2013
Messages
2,333
Trophies
1
Age
34
Location
Doomed Island
XP
2,099
Country
United States
DarthDub said:
But y tho? It's way easier, and cheaper, to use a microsd card.
Click to expand...
Maybe because the main memory is WAY faster and its probably made to last more than a M-SD. In regards to loading time and texture loading, nothing beats the nand memory in comparison to the extended memory types M-SD or SD or whatever unless we can add a external fast SSD later with CFW...
 
Stwert

Stwert

Well-Known Member
Member
Level 11
Joined
Jan 6, 2015
Messages
949
Trophies
1
Age
49
Location
Scotland
XP
2,533
Country
United Kingdom
Jayro said:
I wonder... Could someone theoretically take a 64 eMMC chip, and clone the 32GB one inside the Switch to the 64GB one, extend the partition using Linux, and have it working? We already know an eMMC from another Switch won't work, but if the data is a 1:1 clone, who's to say until it's tested?
Click to expand...

I’ve been wondering the same thing lately. To be honest, I don’t see why someone wouldn’t be able to come up with a way to replace the internal *eventually*.
 
guily6669

guily6669

GbaTemp is my Drug
Member
Level 10
Joined
Jun 3, 2013
Messages
2,333
Trophies
1
Age
34
Location
Doomed Island
XP
2,099
Country
United States
First we probably need nintendo to upgrade to 64 GB, then maybe they will start selling 64GB nand boards on ebay.

Because just replacing the chip I don't have a clue if the 64GB memory chip has the exact same size and anyway thats something that most people won't just be able to do at home, it requires even more than "Tiny Soldering" :). I would never be able to desolder and solder a new memory chip, thats more for the reballing kind of people with the huge machinery...
 
Stwert

Stwert

Well-Known Member
Member
Level 11
Joined
Jan 6, 2015
Messages
949
Trophies
1
Age
49
Location
Scotland
XP
2,533
Country
United Kingdom
The board itself doesn’t require soldering, it’s easily replaceable. It certainly wouldn’t be difficult to recreate. Once there’s confirmation that it can be, I’d expect clone boards to show up in short shift.
 
Idaho

Idaho

Well-Known Member
Member
Level 8
Joined
Oct 3, 2013
Messages
884
Trophies
1
Age
29
XP
1,409
Country
France
I expect dual-booting CFW/Linux with an unthetered exploit and having proper drivers for all the hardware on linux...
 
guily6669

guily6669

GbaTemp is my Drug
Member
Level 10
Joined
Jun 3, 2013
Messages
2,333
Trophies
1
Age
34
Location
Doomed Island
XP
2,099
Country
United States
Stwert said:
The board itself doesn’t require soldering, it’s easily replaceable. It certainly wouldn’t be difficult to recreate. Once there’s confirmation that it can be, I’d expect clone boards to show up in short shift.
Click to expand...
That's what I said buying a whole board, but they may only appear like on eBay when Nintendo also bring 64GB 4 Switch, else it will probably not likely appear.
 
Stwert

Stwert

Well-Known Member
Member
Level 11
Joined
Jan 6, 2015
Messages
949
Trophies
1
Age
49
Location
Scotland
XP
2,533
Country
United Kingdom
guily6669 said:
That's what I said buying a whole board, but they may only appear like on eBay when Nintendo also bring 64GB 4 Switch, else it will probably not likely appear.
Click to expand...

I don’t think Nintendo have to do it at all. If we can get to the point where we can reliably clone the drives, then that should open the floodgates to make emmc boards of any capacity.

It all hinges on reproducing the drive from one to another. Once that’s done, the hardware is relatively simple to make. Whether Nintendo do it or not.
 
The Real Jdbye

The Real Jdbye

*is birb*
Member
Level 23
Joined
Mar 17, 2010
Messages
23,288
Trophies
4
Location
Space
XP
13,846
Country
Norway
V-Temp said:
If you got one cert banned, overlaying another will just get it banned all the same. And certs are finite and pre-determined, so who's going to honestly offer up their own cert to potentially and unaccountably get banned by XYZ numbers of people?
Click to expand...
Yeah maybe. Though there are always going to be people willing to share their cert.
Jayro said:
I wonder... Could someone theoretically take a 64 eMMC chip, and clone the 32GB one inside the Switch to the 64GB one, extend the partition using Linux, and have it working? We already know an eMMC from another Switch won't work, but if the data is a 1:1 clone, who's to say until it's tested?
Click to expand...
Not in the way you're suggesting, at least not yet. We don't have tools to access the encrypted filesystem yet. But yes, it'd be theoretically possible to upgrade the internal storage. IIRC the NAND chip is on a separate board, so in the future we may be able to buy boards with larger storage to simply swap out and flash our own backup onto, no soldering required. Might need some homebrew on the Switch side to actually extend the partition to use the extra space.
 
Last edited by The Real Jdbye,
Stwert

Stwert

Well-Known Member
Member
Level 11
Joined
Jan 6, 2015
Messages
949
Trophies
1
Age
49
Location
Scotland
XP
2,533
Country
United Kingdom
The Real Jdbye said:
Yeah maybe. Though there are always going to be people willing to share their cert.

Not in the way you're suggesting, at least not yet. We don't have tools to access the encrypted filesystem yet. But yes, it'd be theoretically possible to upgrade the internal storage. IIRC the NAND chip is on a separate board, so in the future we may be able to buy boards with larger storage to simply swap out and flash our own backup onto, no soldering required. Might need some homebrew on the Switch side to actually extend the partition to use the extra space.
Click to expand...

You recall correctly indeed. It’s actually a pretty plain and simple board too. Not hard to replicate at all, once the right software comes along.
 
tpax

tpax

Well-Known Member
Member
Level 12
Joined
Nov 16, 2014
Messages
532
Trophies
0
Age
44
XP
3,015
Country
Ukraine
Well, the most exciting thing is a backup loader. Play all those great game dumps you've made from all the games you own and spent hundreds of dollars on. Yeah, that's what really blovvs my mind. That's what I bought my Switch for.
 
  • Like
Reactions: ipkryss

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

Homebrew  I accidentally updated to fw 18.0 on my switch in cfw and now I am getting an error that says unknown pkg1 version. please help me find a solution

General chit-chat
Help Users
    OctoAori20 @ OctoAori20: Nice nice-