Hacking 3DS HTTP/S with Fiddler or similar?

pcmantinker

pcmantinker

Well-Known Member
OP
Newcomer
Level 3
Joined
May 4, 2009
Messages
76
Trophies
0
Age
33
Location
Greater Atlanta Area
Website
www.gamerfootprint.com
XP
244
Country
United States
Has anyone managed to install Fiddler's root certificate on the 3DS to decrypt SSL traffic? I managed to reverse engineer the HTTP/S traffic of some mobile apps using this technique. I would prefer doing it on Gateway emuNAND, but if someone has done it on their CFW, I would be interested in their findings. I want to understand the HTTP/S traffic sent to/from the 3DS so I can analyze applications such as Friends and potentially the eShop. It would be cool to provide some sort of public API for querying friends' online statuses or searching the eShop for instance.
 
  • Like
Reactions: cearp
pcmantinker

pcmantinker

Well-Known Member
OP
Newcomer
Level 3
Joined
May 4, 2009
Messages
76
Trophies
0
Age
33
Location
Greater Atlanta Area
Website
www.gamerfootprint.com
XP
244
Country
United States
Am I on the right track if I can successfully decrypt/unpack certs.db? I don't know much about 3DS NAND, but I saw on http://3dbrew.org/wiki/Title_Database that certs.db refers to certificates for verifying TMD and other certificates. It's possible that SSL certificates live here too, but I'm not sure. Can anyone shed some light on this?
 
cearp

cearp

瓜老外
Developer
Level 19
Joined
May 26, 2008
Messages
8,734
Trophies
2
XP
8,548
Country
Tuvalu
pcmantinker said:
Am I on the right track if I can successfully decrypt/unpack certs.db? I don't know much about 3DS NAND, but I saw on http://3dbrew.org/wiki/Title_Database that certs.db refers to certificates for verifying TMD and other certificates. It's possible that SSL certificates live here too, but I'm not sure. Can anyone shed some light on this?
Click to expand...

sure, but surely that too is signed, right? i don't think it would be so simple :) - but yeah try.
 
pcmantinker

pcmantinker

Well-Known Member
OP
Newcomer
Level 3
Joined
May 4, 2009
Messages
76
Trophies
0
Age
33
Location
Greater Atlanta Area
Website
www.gamerfootprint.com
XP
244
Country
United States
After some time, I'm afraid that I don't quite have knowledge currently to decrypt, encrypt and sign certificates as needed. It would be really great to view HTTP traffic though as we could confirm what gets sent from any application or game on the 3DS. It could solve the mystery of whether 3DZ game headers are sent with HTTP requests to Nintendo's servers. I can see this being beneficial for other uses too. Eventually, we could reverse engineer enough HTTP traffic to create custom game servers. Of course, each game probably has its own protocol, but getting the HTTP messages would be a good start.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Hacking Hardware  New Nintendo 3DS XL Louvre

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Hardware  Why does my 3DS take so long to turn off?

What's the best 3DS emulator (especially after Citra's shutdown)?

Tutorial  How to fix 007-2001

can't download system files on citra because im "not connected to the internet"

gacube emeleter

General chit-chat
Help Users
  • No one is chatting at the moment.
    NinStar @ NinStar: CRAZY HAMBURGER