Nereba Exploit: Reboot to Fusée Gelée payload from stock firmware.

haxan · Apr 20, 2019

so glad my 2.0 will finally have something soon

notimp · Apr 20, 2019

Can still downgrade to 3.0.0 - very much appreciated.

WD_GASTER2 · Apr 20, 2019

i have a launch switch that i bought on midnight and only played botw without connecting online. hopefully that means its 1.0.(have to unbox it and charge it)
hopefully there will be a tutorial for this with emunand is out as i am sorely behind the switch stuff

TP998 · Apr 20, 2019

weatMod said:
i wonder if it would be possible to have 2 emunands

low sysnand for warm boot
emunand one , latest FW , clean no NSP's installed , for booting legit carts and playing online
emunand two , latest FW , NSP's installed , offline only

if we could boot between sysnand and 2 different emunands it would be best

It's not possible sadly that Emunand will ever be safe online, it would always fail integrity checks making it impossible to be 'clean'.

I cannot wait for Emunand though, looking forward to playing that Tetris game and Mario Maker 2 online! Not too fussed about warm/coldboot as we can already do that with hardware modification.

titan_tim · Apr 20, 2019

How do you find out which version you can downgrade back to based on burnt fuses?

]For all the people <=3.0, that's damn impressive that you have that much self control.

annson24 · Apr 20, 2019

titan_tim said:
How do you find out which version you can downgrade back to based on burnt fuses?

]For all the people <=3.0, that's damn impressive that you have that much self control.

https://switchbrew.org/wiki/Fuses#Anti-downgrade

zeruel85 · Apr 20, 2019

Thanks for your release. I hope to see a "Fake News Installer" without PuyoPuyoTetris soon.

Valery0p · Apr 20, 2019

tataniko said:
Can we trigger the exploit offline on 2.0-3.0 firmware?

In theory yes:
https://www.reddit.com/r/SwitchHaxing/comments/867o1a/comment/dw3236h
Idk for other firmwares...

MSearles · Apr 20, 2019

I updated my switch from 3.0.x to 6.0.x. I burned fuses along the way. Does this matter at all with using Fusée Gelée? Will I still be able to use this exploit when it's available for higher firmwares?

AngryCinnabon · Apr 21, 2019

*Whines in 6.0.2*

This is amazing regardless.

M7L7NK7 · Apr 21, 2019

zeruel85 said:
Thanks for your release. I hope to see a "Fake News Installer" without PuyoPuyoTetris soon.

You don't need Puyo, you can transplant the fake news save from someone else's switch and make it permanent, that's what I did

tivu100 · Apr 21, 2019

Milenko said:
You don't need Puyo, you can transplant the fake news save from someone else's switch and make it permanent, that's what I did

Be specific man. Does it work for Switch from different region?

M7L7NK7 · Apr 21, 2019

No idea, the switch is region free so maybe? You can just make a back up of news that you're replacing so if it doesn't work you can put it back

pcwizard7 · Apr 21, 2019

with the Deja Vu it let more switch have a warm boot but like with everything stay on lowest fw as possible until its release make sure u can be on fw 7.x or lower

annson24 · Apr 21, 2019

tivu100 said:
Be specific man. Does it work for Switch from different region?

Milenko said:
No idea, the switch is region free so maybe? You can just make a back up of news that you're replacing so if it doesn't work you can put it back

rajkosto said:
Transplant savedata as raw files (including system savedata) which means you can get fakenews installed on your 1.0.0 console without PPT JPN, simply by replacing your SYSTEM:/save/8000000000000090 file with a friend's who already has it (make sure to back yours up first) using HacDiskMount after mounting SYSTEM partition, then launching 1.0.0 using Hekate and this FS.kip1 patch applied, using the fake news entry to launch the browser and install fake news AGAIN via pegaswitch, which should fix the CMAC so you don't have to boot using Hekate anymore.

pcwizard7 · Apr 21, 2019

but with my 1.0 switch i could make it boot to sxos and then booted to a emunand

M7L7NK7 · Apr 21, 2019

pcwizard7 said:
but with my 1.0 switch i could make it boot to sxos and then booted to a emunand

Not far away from doing the same thing with atmosphere

--------------------- MERGED ---------------------------

Anyone on 1.0.0 who wants to try it follow this guide, and the fake news save you transplant is at the bottom of the page

https://gbatemp.net/threads/how-to-transplant-savedata-system-and-user-from-other-switches.506840/

Waze0613 · Apr 21, 2019

So it means we need a computer running Pegaswitch in order to use this exploit ? What's the added value here ? Usning an RCM bootloader seems more convenient then ...

snoofly · Apr 21, 2019

Waze0613 said:
So it means we need a computer running Pegaswitch in order to use this exploit ? What's the added value here ? Usning an RCM bootloader seems more convenient then ...

Yeah, that’s what I’m trying to work out.
Having to run Pega on my PC is much more inconvenient than using a dongle.
i gotta be missing something here

deSSy2724 · Apr 22, 2019

Can someone clear up all this mess finally? I mean, there are too many different opinions, statements and opened questions......

For me personally, if I cant keep my switch on 1.0 (2 - 3 too?) OFW and have two different emunands updated to the latest firmware (one for offline/homebrews/dumps, other one for online/legit carts/eshop) and all that without using any dongle/jig then whats the real point here?

Well-Known Member

Well-Known Member

Hated by life itself.

New Member

(Can't shut up)

The Patient One

Well-Known Member

Well-Known Member

Well-Known Member

Resident Iron Valiant

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

The Patient One

Well-Known Member

Well-Known Member

Member

Well-Known Member

Well-Known Member

Similar threads

Popular threads in this forum