Hacking Discussion TSEC is broken

D

Deleted User

Guest
bodefuceta said:
I hope SX gets stuck in 6.2 forever.
Click to expand...
Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork
 
aos10

aos10

Yuuki chan
Member
Level 14
Joined
Apr 10, 2012
Messages
4,756
Trophies
2
Age
38
XP
4,029
Country
Saudi Arabia
RyuSeisuke1992 said:
Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork
Click to expand...

Because atmosphere team made something with it, if TX tried to copy it, the atmosphere logo will appear when launching sxos, and it will looks weird for them, i think that's the reason.
 
  • Like
Reactions: frange41
Lacius

Lacius

Well-Known Member
Member
Level 26
Joined
May 11, 2008
Messages
18,099
Trophies
3
XP
18,338
Country
United States
RyuSeisuke1992 said:
Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork
Click to expand...
aos10 said:
Because atmosphere team made something with it, if TX tried to copy it, the atmosphere logo will appear when launching sxos, and it will looks weird for them, i think that's the reason.
Click to expand...
The only public way to boot CFW on 7.0.x is with sept. While sept is open source, it won't work unless it's encrypted with private TSEC keys so that TSEC can decrypt sept itself. TX has two choices:
  1. Somehow find a way to get the TSEC keys themselves, which might take a long time (if ever), since all methods of doing so are private.
  2. Use the version of sept that has already been encrypted and released, which includes the Atmosphere logo.
 
  • Like
Reactions: g4jek8j54, 0000ff, frange41 and 2 others
Snomannen_kalle

Snomannen_kalle

Well-Known Member
Member
Level 11
Joined
Sep 2, 2018
Messages
350
Trophies
0
Age
29
XP
2,375
Country
Norway
The TSEC is in the patched units too, so this applies to the patched units as well. However, you still need a way to enter RCM so you can push a payload -- a way to do this exist, but it is not accessible to the public yet
 
8BitWonder

8BitWonder

Small Homebrew Dev
Member
Level 15
Joined
Jan 23, 2016
Messages
2,489
Trophies
1
Location
47 4F 54 20 45 45 4D
XP
5,350
Country
United States
Snomannen_kalle said:
The TSEC is in the patched units too, so this applies to the patched units as well. However, you still need a way to enter RCM so you can push a payload -- a way to do this exist, but it is not accessible to the public yet
Click to expand...
You can enter RCM on ipatched units the same as you would on unpatched units.
The problem is that current payloads can't be pushed unless another exploit similar to fusee-gelee is found.
 
Last edited by 8BitWonder,
ZachyCatGames

ZachyCatGames

Well-Known Member
Member
Level 14
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,209
Country
United States
V-Temp said:
and never released aside from Sept obfuscated delivery
Click to expand...
Sept doesn't and never will use any exploits

--------------------- MERGED ---------------------------

8BitWonder said:
The problem is that current payloads can't be pushed unless another exploit similar to fusee-gelee is found.
Click to expand...
Or you somehow get a signed payload ;)

DPyro said:
Someone else could find the same exploit and decide to release.
Click to expand...
That would be terrible for the scene
 
  • Like
Reactions: 8BitWonder
S

smf

Well-Known Member
Member
Level 16
Joined
Feb 23, 2009
Messages
6,642
Trophies
2
XP
5,861
Country
United Kingdom
Lacius said:
The only public way to boot CFW on 7.0.x is with sept. While sept is open source, it won't work unless it's encrypted with private TSEC keys so that TSEC can decrypt sept itself. TX has two choices:
  1. Somehow find a way to get the TSEC keys themselves, which might take a long time (if ever), since all methods of doing so are private.
  2. Use the version of sept that has already been encrypted and released, which includes the Atmosphere logo.
Click to expand...

If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.
 
ZachyCatGames

ZachyCatGames

Well-Known Member
Member
Level 14
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,209
Country
United States
smf said:
If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting.
Click to expand...
No... that would make no sense

But then again this is Nintendo, so I suppose anything's possible...
 
Lacius

Lacius

Well-Known Member
Member
Level 26
Joined
May 11, 2008
Messages
18,099
Trophies
3
XP
18,338
Country
United States
smf said:
If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.
Click to expand...
Those are different issues entirely.
 
V

V-Temp

Well-Known Member
Member
Level 8
Joined
Jul 20, 2017
Messages
1,227
Trophies
0
Age
34
XP
1,342
Country
United States
smf said:
If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.
Click to expand...

lol

ZachyCatGames said:
Sept doesn't and never will use any exploits
Click to expand...

Never said it did, its a delivery vehicle. I think you may have misinterpreted my meaning as "it is delivering an exploit" which it isn't. I simply meant that it is a method of obfuscating the need to ever release an exploit by using sept as delivery for all laymen usage.
 
  • Like
Reactions: thuggothic and ZachyCatGames
Picalo

Picalo

Well-Known Member
Newcomer
Level 3
Joined
Feb 18, 2019
Messages
89
Trophies
0
Age
44
XP
298
Country
United States
So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????
 
ZachyCatGames

ZachyCatGames

Well-Known Member
Member
Level 14
Joined
Jun 19, 2018
Messages
3,398
Trophies
1
Location
Hell
XP
4,209
Country
United States
Picalo said:
So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????
Click to expand...
They won't release it, there's literally no reason for them to do so
 
  • Like
Reactions: Lacius
Lacius

Lacius

Well-Known Member
Member
Level 26
Joined
May 11, 2008
Messages
18,099
Trophies
3
XP
18,338
Country
United States
Picalo said:
So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????
Click to expand...
You do not want to buy a patched Switch. Buy an unpatched system. The fact that the TSEC is broken does nothing to help patched Switch systems in particular.
 
  • Like
Reactions: Treeko and ZachyCatGames
T

Treeko

Well-Known Member
Member
Level 10
Joined
Sep 29, 2012
Messages
402
Trophies
1
Age
28
XP
2,102
Country
They won't release this exploit voluntarily, and if Nintendo decides to use TSEC again in a new firmware update then they will be forced to use this new exploit aswell probably implement it in sept, pretty much unpatched switches are future proof now, Nintendo can no longer delay day 1 cracks for new firmware's anymore.

Which kinda makes me believe we'll be seeing some kind of AP implementation in games like the ds era sooner or later.
 
Last edited by Treeko,
Picalo

Picalo

Well-Known Member
Newcomer
Level 3
Joined
Feb 18, 2019
Messages
89
Trophies
0
Age
44
XP
298
Country
United States
How can I buy an unpatched switch without seen the serial number?

All my local stores have the patch #
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

Homebrew Tutorial  Setup a DevKitPro environment on Windows.

Homebrew  I accidentally updated to fw 18.0 on my switch in cfw and now I am getting an error that says unknown pkg1 version. please help me find a solution

General chit-chat
Help Users
    Psionic Roshambo @ Psionic Roshambo: https://m.youtube.com/watch?v=FzVN9kIUNxw +1