1. 4gionz

    4gionz GBAtemp Advanced Fan
    Member

    Joined:
    Aug 16, 2014
    Messages:
    792
    Country:
    Canada
    Great job team fail :yay:
     
  2. jocopoco

    jocopoco Advanced Member
    Newcomer

    Joined:
    Feb 13, 2014
    Messages:
    90
    Country:
    Can I also decrypt a 3ds hb?
     
  3. Blueie

    Blueie GBAtemp Regular
    Member

    Joined:
    Apr 30, 2013
    Messages:
    226
    Country:
    Argentina
    I would like to test this. Can anyone please link me to a ctrtool binary?
     
  4. piratesephiroth

    piratesephiroth I wish I could read
    Member

    Joined:
    Sep 5, 2013
    Messages:
    3,386
    Country:
    Brazil
  5. Duo8

    Duo8 GBAtemp Psycho!
    Member

    Joined:
    Jul 16, 2013
    Messages:
    3,574
    Country:
    Vietnam
    So, if I understand this correctly, this tool extracts/generates the key for the partitions. Then you run those keys through the AES engine to get OTPs to xor with the partitions, thus decrypting the ROM?

    I now wish that fundraiser had succeeded
     
  6. omarrrio

    omarrrio GBAtemp Advanced Fan
    Member

    Joined:
    Feb 18, 2010
    Messages:
    633
    Country:
    Macau
    loco365 likes this.
  7. mercluke

    mercluke ‮҉
    Member

    Joined:
    Dec 2, 2007
    Messages:
    3,163
    Country:
    *hadn't been a scam
     
  8. cracker

    cracker Nyah!
    Member

    Joined:
    Aug 24, 2005
    Messages:
    3,473
    Country:
    United States
    Is the homebrew ROP chain able to access the AES functions on the 3DS? If not then it would probably require a real-time RAM injection and additional code (perhaps requiring another exploit) to generate the XOR value or a hacked GW perhaps?
     
  9. Cjuub

    Cjuub GBAtemp Regular
    Member

    Joined:
    May 25, 2006
    Messages:
    199
    Country:
    I believe it is, I have reversed a bit of the first gw-launcher some time ago and it did call the aes-engine to decrypt part of their Launcher.dat in the ROP-chain.
     
  10. Blueie

    Blueie GBAtemp Regular
    Member

    Joined:
    Apr 30, 2013
    Messages:
    226
    Country:
    Argentina
    Whoops, missed that! Thanks!


    Ugh, I keep getting an exception no matter what I do. For instance, the following command:

    ctrtool.exe -i "E:/ROMs/3DS/Pokemon X (E).3ds"

    Generates messages like this one:

    1 [main] ctrtool 12016 cygwin_exception::open_stackdumpfile: Dumping stack trace to ctrtool.exe.stackdump
     
  11. ground

    ground GBAtemp Advanced Fan
    Member

    Joined:
    Mar 22, 2007
    Messages:
    910
    Country:
    Netherlands
    Maybe a dump question:

    Can this be used to decrypt the data file of a .cia file and repack it as .3ds?
     
  12. 3dslove79

    3dslove79 GBAtemp Regular
    Member

    Joined:
    Jul 27, 2014
    Messages:
    138
    Country:
    Italy
    Graeat job team fail!:) a little question ,thanks to this program is possible in the near future to translate a game?
     
  13. Cyan

    Cyan GBATemp's lurking knight
    Global Moderator

    Joined:
    Oct 27, 2002
    Messages:
    22,532
    Country:
    France
    .3dz is only a file extension renaming.
    .3dz is used to allow online access by storing an unique cartridge ID and a Chip ID in the ROM header. It's added automatically by Gateway 3DS ROM dumper, or by users sharing ID togethers (you can find threads with more details on ChipID).
    Unique cartridge ID located at 0x1200.
    Chip ID located at 0x1240.
     
  14. Abcdfv

    Abcdfv What comes around goes around.
    Member

    Joined:
    Dec 24, 2013
    Messages:
    1,459
    Country:
    United States
    Sure, just use all 0s as the key. Homebrew isnt truly encrypted.
     
  15. loco365

    OP loco365 GBAtemp Guru
    Member

    Joined:
    Sep 1, 2010
    Messages:
    5,457
    Exactly. I am aware of a set of libraries that can actually communicate with the AES engine, but I can't locate it at this time, although the contents of this 3DBrew page would be of use.
     
    Queno138 likes this.
  16. Lone Fail

    Lone Fail Newbie
    Newcomer

    Joined:
    Aug 28, 2014
    Messages:
    1
    Country:
    United States
    So what does this do? Does this mean i could play pokemon x and y yet? What is decrypting and what does the key do? I have r4i gold deluxe btw
     
    bkifft likes this.
  17. Abcdfv

    Abcdfv What comes around goes around.
    Member

    Joined:
    Dec 24, 2013
    Messages:
    1,459
    Country:
    United States
    Read the thread. And nope.
     
  18. kiryu1

    kiryu1 GBAtemp Regular
    Member

    Joined:
    Apr 4, 2014
    Messages:
    297
    Country:
    Can I make undubbed 3DS ROMs with this? I want to undub 3DS RPGs..
     
  19. Herobroski

    Herobroski GBAtemp Regular
    Member

    Joined:
    Mar 3, 2014
    Messages:
    171
    Country:
    United States
  20. Jorsher

    Jorsher Newbie
    Newcomer

    Joined:
    Aug 30, 2014
    Messages:
    2
    Country:
    United States
    Will this have any benefit for decrypting newer saves?

    Since injecting a new header ruins any saves made before injecting the data, the save data is surely bound to the cart ID somehow and likely something else.
     
Loading...

Hide similar threads Similar threads with keywords - Decryption, Generator,