Toggle sidebar

Hacking 3DS Hacking Theory Thread

Status
Not open for further replies.
pachura said:
xakota said:
QUOTE said:
RAR file in a JPG ? WTF ?Kind of funny how you're trying to put people down for not knowing enough about hacking while you don't even know about steganography

Antoids
Click to expand...
protip: get a couple .jpgs, compress them into a rar, rename the file to be a .jpg, then upload it
Click to expand...

And what's the point of changing .RAR extension to .JPG ? How could it help with hacking 3DS ? Granted, 3DS picture viewer does not have RAR decompression routines built-in. So the only thing that might happen is the picture viewer displaying "Invalid JPEG file" message - or crashing. Now crashing might be potentially interesting, but why would it crash specifically for RAR archives ?
Click to expand...
True.. So True
closedeyes.gif
 
Really? And how was PS3 hacked?
Developers are the guys who can run unsigned code. Plus how would you write to the flashcard? There is definetely interface/drivers for the development flash card.

2 options:
  • replicate/revers-engineer development flashcard + decrypt 3DS game dumps
  • analyze read/write routine to the developer flash card
 
The real fact of the matter here is that there are very few ideas the layman can come up with for hacking which will to be possible, or of any use, to those likely to be seriously seeking exploits. This thread is less of a "check out my cool hacking idea thread" and more of a discussion on the types of exploits and the likelihood of each of them.

pachura said:
xakota said:
QUOTE said:
RAR file in a JPG ? WTF ?Kind of funny how you're trying to put people down for not knowing enough about hacking while you don't even know about steganography

Antoids
Click to expand...
protip: get a couple .jpgs, compress them into a rar, rename the file to be a .jpg, then upload it
Click to expand...

And what's the point of changing .RAR extension to .JPG ? How could it help with hacking 3DS ? Granted, 3DS picture viewer does not have RAR decompression routines built-in. So the only thing that might happen is the picture viewer displaying "Invalid JPEG file" message - or crashing. Now crashing might be potentially interesting, but why would it crash specifically for RAR archives ?
Click to expand...

Actually, I believe the idea was talking about something along those lines- providing some file to the image viewing program which would (due to some poor design of the program) give the hackers a bit of an opening to get at anything they can.

The main reason why this is both unlikely to be possible and also commonly suggested is that this has actually worked in the past to some extent- there was an exploit found in early versions of the PSP's OS- namely the image viewer. It's unlikely to work for the 3DS simply because it was a famous exploit- big companies tend to learn from those in their future devices.

The logic behind focusing on the image viewer is that it is one of the only sources of input for the 3DS which need not be encrypted with Nintendo's complex algorithms (this may be assumed, but come on- are they really going to forget to encrypt their data after the piracy of the DS?).
 
Read my other posts, I know that some of these are impossible. I placed them into one thread where people could post their own theories. fearofshorts understood this thread perfectly.

Also, renaming a RAR into JPG? What? I made a working image of a JPG into an archive, and that's what I meant when I said "having a RAR in a JPEG."

Also, as I said- these are theories which are likely to be duped. These are ideas that everyone has posted all around these forums, placed into one thread. Post theories, try to use them, and experiment with 3DS.

Not say that I don't know about hacking, because I've done so with other consoles (screwed around GB games using a HEX Editor, and nothing else), programmed for Virtual Boy, and wrote a few handy programs (which were beaten by MMM) for the Wii.

[/endrant]
 
chortya said:
Really? And how was PS3 hacked?
Developers are the guys who can run unsigned code. Plus how would you write to the flashcard? There is definetely interface/drivers for the development flash card.

2 options:
  • replicate/revers-engineer development flashcard + decrypt 3DS game dumps
  • analyze read/write routine to the developer flash card
Click to expand...
well maybe because that's the official Nintendo dev device?

Just cuz your a dev doesn't mean you're a Nintendo/game company dev
 
chortya said:
I am not developer and yes these are official Nintendo devices which have no protection layer and are not cheap: http://tinycartridge.com/post/3671771079/n...e-including-the

nevermind... talk about rar-ing jpegs guys...
Click to expand...

Fuck, I know that a RARed JPEG wouldn't work! I'll try to download the European update, place it into a JPEG, and I know it won't work. Especially since it doesn't call to it- we don't know how to get there yet.

I've seen Nintendo's 3DS development kit months ago, it's cheaper than the others, imo.
 
What I was saying is, if you make a .rar archive with an image as the first file, then rename it to be the same filetype as the image, it'll display as that image, but still have all the data contained within the .rar. This is a commonly-used trick for sneaking in data people shouldn't be moving around (I've seen it used to move around everything from porn to video games). So while just turning a jpg into a rar or vice versa wouldn't work, it'd be possible to get non-image data in through this method.

Sheesh, I was telling him to do it to demonstrate what would happen. If you upload a jpgrar to an image-hosting service, it retains the data contained within the .rar while appearing to the naked eye as just the first image stored within.
 
I cant help but laugh at the thought of if Lego Pirates of The Carribean was exploited. Just think about how funny it would be. XD
 
The DS was hacked through some sort of backwards compatibility exploit IIRC. So I think the best option for the 3DS is to try and use current flashcards that run in DS mode to try and find an exploit.
 
What I was talking about was, when it would switch back to 3DS Mode. The Menu Music plays, the screens do not show. Unless if I turn the 3D on Max and the menu displays. If I could try to reproduce this. I might be able to buffer overflow it.
 
Keva said:
The DS was hacked through some sort of backwards compatibility exploit IIRC. So I think the best option for the 3DS is to try and use current flashcards that run in DS mode to try and find an exploit.
Click to expand...

People say DS Flashcards are not related with 3DS working but... hey! For example, pokemon diamond connects with GBA to transfer pokemon. What if a N3DS game need to connect to a DS game in the same console? Then, it will be a link to try a lot of thinks, I thing it is just time to wait. In the end, Lego's always giving us big surprises =D
 
Sheimi said:
What I was talking about was, when it would switch back to 3DS Mode. The Menu Music plays, the screens do not show. Unless if I turn the 3D on Max and the menu displays. If I could try to reproduce this. I might be able to buffer overflow it.
Click to expand...
He's correct.
Here's what I just did on mine.

1. Put in DS game (i used LoZ:PH)
2. Play it as normal from the main menu.
3. Once it is loaded and begins to play, eject the game.
4. The screen freezes so just restart the 3DS.
5. When it comes on, only the menu music will play and a few seconds later the screens will kick in.

Don't know if this is useful.

Edit: This will also work if you use a 3DS title instead of a regular DS title.
 
I can't reproduce it via flash cart since I am at school atm. (School lets out in a few minutes). I will update this post if I can reproduce it with Mario Kart Ds.
 
picture hack omg, because of ssbb?
simply won't work as others stated above

imo there are lucky possibilites:
-someone getting their dirty hands on the official firmware either by having good connections or by exploiting somehow the updates[which so far seems unlikely]
-devkits
and ofc bruteforce[not impossible, but not likely], ds mode-exploit[that's what i was thinking about recently, i mean it's a 100% ds emulation - u can even use the start+select scaling on the normal ds internet settings + it doesn't react to the home button which also cries out loud for being a clean ds mode - using already made flashcarts might allow to run some funny stuff]
unless during this DS-game switching u run your own unsigned code, it'll do nothing, also, it just restarts the entire system while turning it back to 3ds mode, closing the entire ds bios which makes this sollution also hopeless
i guess we would need a cfw for at least the normal ds, which is also friggin hard

or just look into the early shovelwares and hope
 
No(t much) offense intended... but this is stupid.
And some of the reasons are even more stupid.
Knyaz Vladimir said:
C- Use the Photo or Sound channels and boot up an exploit in JPG, MPO, or MP3. I doubt having a rar file in a JPG would work. (Somewhat possible)

D- Use a HEX editor to find an unencrypted file on a 3DS and figuring out more information on system and the keys (if it even has that). (Very unlikely)

E- Run ROMs through a HEX Editor, which is impossible right now, due to no ROMs existing at time of writing. (Even LESS unlikely)

F- Wait for the May update and make an exploit. (Probable)

G- try and use exploits already made to do this. Which is EXTREMELY unlikely.

H- Transfer a Mii with an exploit or scan an exploited QR code. (Mii with exploit somewhat possible, QR is very unlikely)
Click to expand...
C, F, G, H: Exploits are FOUND not made, that's why they are EXPLOITS not HACKS.
C, G, H: There are no pre-made exploits for the 3DS. Exploits for other systems (PC/Wii) will not work.
D, F: FUCK! RANDOM HEX EDITING DOES NOT WORK, IT HAS NEVER WORKED, IT NEVER WILL WORK!
 
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Why did the price of 3ds shoot up ?

Hacking Homebrew Project  BlazerTube - a YouTube 3DS revival using the REAL app!

Problems getting Homebrew to appear outside of the Homebrew Launcher (homebrew won't appear on the HOME menu)

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Website for finding alternative games for 3DS

Gaming  any good rpgs on 3ds?

Hardware  2 Broken 3DSes, need help

Hacking  Modding Reassurance