Front-page Hacking RELEASE  Updated

Lockpick_RCM payload - Official Thread


Description
Lockpick_RCM is a bare metal Nintendo Switch payload that derives encryption keys for use in Switch file handling software like hactool, hactoolnet/LibHac, ChoiDujour, etc. without booting Horizon OS.

Source: https://github.com/shchmue/Lockpick_RCM
Payload: https://github.com/shchmue/Lockpick_RCM/releases

Due to changes imposed by firmware 7.0.0, Lockpick homebrew can no longer derive the latest keys. In the boot-time environment however, there are fewer limitations. That means the new keys are finally easy to dump!

Usage
  • Launch Lockpick_RCM.bin using your favorite payload injector or chainload from Hekate by placing it in /bootloader/payloads
  • Upon completion, keys will be saved to /switch/prod.keys on SD
  • If the console has Firmware 7.x, the /sept/ folder from Atmosphère or Kosmos release zip containing both sept-primary.bin and sept-secondary.enc must be present on SD or else only keyblob master key derivation is possible (ie. up to master_key_05 only)
Big thanks to CTCaer
For Hekate and all the advice while developing this!

Known Issues
  • Chainloading from SX will hang immediately due to quirks in their hwinit code, please launch payload directly
 

Attachments

  • AB1248EA-8BB9-448B-83F5-FF68C2579FB1.jpeg
    AB1248EA-8BB9-448B-83F5-FF68C2579FB1.jpeg
    11.2 KB · Views: 0
Last edited by shchmue,
  • Like
Reactions: NotUsingAnAltAccount, BigOnYa, Blythe93 and 74 others
Click to expand...
BaamAlex

BaamAlex

UDE GA NARU ZE!
Member
Level 17
Joined
Jul 23, 2018
Messages
6,065
Trophies
1
Age
29
Location
Lampukistan
Website
hmpg.net
XP
6,186
Country
Germany
Kanali said:
Haven't tinkered with my Switch for a while, but tried using this tool to get my keys, but all I get when I inject it is a black screen.

I'm on 6.0.0 and AMS 0.9.2
Click to expand...
Which version do you use? Try the normal lockpick. Lockpick RCM is only required for FW 7.0 and above.
 
  • Like
Reactions: Alexander1970
K

Kanali

Member
Newcomer
Level 1
Joined
Feb 7, 2018
Messages
22
Trophies
0
Age
29
XP
104
Country
Sweden
BaamAlex said:
Which version do you use? Try the normal lockpick. Lockpick RCM is only required for FW 7.0 and above.
Click to expand...

Okay!

I just tried using the regular Lockpick, and it seemed to work fine, but the keys generated don't seem to have worked. I tried using them for Switch Army Knife and got an error message asking if the keys were right.
 
shchmue

shchmue

Developer
OP
Developer
Level 11
Joined
Dec 23, 2013
Messages
791
Trophies
1
XP
2,367
Country
United States
Kanali said:
Haven't tinkered with my Switch for a while, but tried using this tool to get my keys, but all I get when I inject it is a black screen.

I'm on 6.0.0 and AMS 0.9.2
Click to expand...

Kanali said:
Okay!

I just tried using the regular Lockpick, and it seemed to work fine, but the keys generated don't seem to have worked. I tried using them for Switch Army Knife and got an error message asking if the keys were right.
Click to expand...
the latest Lockpick_RCM doesn't work? that's odd. you might need to update that extremely old version of atmosphere (it's a year and a half old, latest is 2 weeks old), but indeed you're not going to get any more recent keys unless you update your firmware, so that's why SAK is likely having trouble with whatever content you're using it on. I'd suggest making sure Lockpick_RCM, Atmosphere, and your console's firmware are all up to date and trying again (update Atmosphere first or you won't be able to boot new firmware in CFW). Use either Daybreak or normal settings menu to update firmware.
 
D

DrewShiGold

Member
Newcomer
Level 1
Joined
Jun 19, 2016
Messages
9
Trophies
0
Age
29
XP
69
Country
United States
Any word on when lockpick will be able to dump v11? Thank you for all you do Shchmue

--------------------- MERGED ---------------------------

I appreciate the work you do! Is there any word on when Lockpick will support v11? I get errors anytime I try to dump my SysMMC keys.

Thanks!
 
mrdude

mrdude

Developer
Developer
Level 19
Joined
Dec 11, 2015
Messages
3,071
Trophies
1
Age
56
XP
8,227
Last edited by mrdude,
  • Like
Reactions: peteruk, LyuboA and HollowGrams

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Emulation Homebrew  duckstation for Switch

Can you trade in a banned switch for an unbanned one?

Why is Atmosphere so dominant?

Crosscode Hacking thread

Hacking  Loader.kip for AMS 1.7.0 with FW 17.0.1 - sys-clk error ??

Migswitch backups without certificate files

Hacking  Weird findings from that DQ trilogy switch port

General chit-chat
Help Users
  • No one is chatting at the moment.
    Sonic Angel Knight @ Sonic Angel Knight: :ninja: