Hacking 3DS update version 9.6.0-24 out now

stanleyopar2000

stanleyopar2000

RIP Yuzu. "It is always morally correct..."
Member
Level 13
Joined
Jun 22, 2007
Messages
4,815
Trophies
2
Location
C-137
Website
www.youtube.com
XP
3,705
Country
United States
really gateway?? you didn't update your blog about the emunand dangers of 9.6? what the actual fuck :angry:

get on the goddamn ball. It's been several hours and only takes a few minutes.
this worries me.
 
thorasgar

thorasgar

Checkout my evil Soon-in-ator™
Member
Level 11
Joined
Jul 3, 2010
Messages
3,783
Trophies
1
XP
2,504
Country
United States
stanleyopar2000 said:
really gateway?? you didn't update your blog about the emunand dangers of 9.6? what the actual fuck :angry:

get on the goddamn ball. It's been several hours and only takes a few minutes.
this worries me.
Click to expand...
They still have a lot of hookers and blow to go through before they get back to work. :)
 
  • Like
Reactions: Nephiel, Margen67, zoogie and 2 others
L

loco365

Well-Known Member
Member
Level 12
Joined
Sep 1, 2010
Messages
5,457
Trophies
0
XP
2,927
MrJason005 said:
  • And now, N3DS randomly-generated-at-boot keys that prevent emuNAND on N3DS
Click to expand...
Is there any proof as to correlate that the keys are truly random? Because anything that's signed requires the key that originally signed it to work. Which means that whatever these keys sign will have to use the same key again down the road. Which means that they're not truly random.
 
  • Like
Reactions: milerwan and Margen67
Jasin

Jasin

Active Member
Newcomer
Level 2
Joined
Dec 10, 2013
Messages
36
Trophies
0
Age
45
XP
148
Country
United States
stanleyopar2000 said:
really gateway?? you didn't update your blog about the emunand dangers of 9.6? what the actual fuck :angry:

get on the goddamn ball. It's been several hours and only takes a few minutes.
this worries me.
Click to expand...
I think it's just easier not to update until they say they support it. Better to assume it doesn't work.
 
  • Like
Reactions: Margen67 and Count Duckula
Xzi

Xzi

Time to fly, 621
Member
Level 19
Joined
Dec 26, 2013
Messages
17,816
Trophies
3
Location
The Lands Between
Website
gbatemp.net
XP
8,778
Country
United States
stanleyopar2000 said:
really gateway?? you didn't update your blog about the emunand dangers of 9.6? what the actual fuck :angry:

get on the goddamn ball. It's been several hours and only takes a few minutes.
this worries me.
Click to expand...
They're a flash cart group, not your overprotective mother.

I mean, I don't want to come off as snide, but come on.
 
  • Like
Reactions: cearp, Ra1d, porkiewpyne and 1 other person
s-arash

s-arash

Well-Known Member
Member
Level 3
Joined
Sep 3, 2013
Messages
185
Trophies
0
Age
32
XP
364
Country
United States
The arm9loader was updated.
Old version of firm generated and initialized keyX for keyslots 0x15, 0x16, 0x18-0x1F. This version keeps the old algorithm for keyslots 0x11, 0x15, 0x18.
For keyslots 0x16, 0x19-0x1F it uses a new key for keyslot 0x11, but the actual algorithm has not been changed. This time the keyslot 0x11 seed is loaded from (nand_sector96+0x10) instead of (nand_sector96+0). They also changed the initialization vector for the 0x19-0x1F key-generation to a new hardcoded key.
Since we don't know the decrypted value at (nand_sector96+0x10), we don't know the new key for keyslot 0x11, and we cannot generate keys for the updated keyslots 0x16, 0x19-0x1F. Thus they plugged their hole and we can no longer decrypt arm9-binary.
On panic, arm9loader now clears keyslots 0x15, 0x16, 0x18, 0x19, 0x19-0x1F. Previous versions only cleared 0-7, 0x15, 0x16.
Click to expand...

wafsjc.png
wafsjc.png
wafsjc.png
 
liomajor

liomajor

Well-Known Member
Member
Level 8
Joined
Jun 10, 2008
Messages
1,468
Trophies
0
XP
1,373
Country
United States
As for Europe, these files got changed:

0004001000022000.cia System Settings (mset)
0004001000022900.cia eShop (tiger)
0004001000022A00.cia System Transfer (CARDBOAR)
000400102002D000.cia New_3DS-only, currently stubbed. Placeholder exheader name is "menu".
0004001B00018002.cia this CFA RomFS now contains web-browser data for NNID / networking, etc.
0004003000009802.cia SYSMENU (menu)
000400300000B902.cia Cabinet (amiibo Settings)
000400300000BE02.cia olv (Miiverse applet)
000400300000C502.cia error (This applet displays networking errors, etc)
000400300000D602.cia mint. eShop applet (used by applications for accessing the eShop, for DLC/etc.)
0004003020009D02.cia New_3DS Internet Browser (SKATER)
0004009B00012102.cia ???
000400DB00010302.cia NGWord bad word list
000400DB00010502.cia ???
000400DB00017102.cia CVer
000400DB20016102.cia New_3DS NVer
0004013000001702.cia Config (cfg)
0004013000002802.cia dlp (Download Play)
0004013000002902.cia http
0004013000002C02.cia NIM
0004013000002F02.cia SSL
0004013000003302.cia IR (Infrared)
0004013000003802.cia act (handles Nintendo Network accounts)
0004013000008002.cia NS (Memory-region: "SYSTEM")
0004013020001C02.cia New_3DS GSP
0004013020002202.cia New_3DS PTM (Play time, pedometer, and battery manager)
0004013020004002.cia New_3DS nfc
0004013820000002.cia New_3DS NATIVE_FIRM (Native Firmware)

NEW:

0004009B00010402.cia Mounted as "area:", contains Country and Region names
 
  • Like
Reactions: Margen67
Myria

Myria

Well-Known Member
Member
Level 6
Joined
Jul 24, 2014
Messages
464
Trophies
0
Age
42
XP
877
Country
United States
The problem isn't so much decrypting the new Process9 executable; it's decrypting all the subsequent NCCH executables that use the new keyslots. There's already a technique to decrypt the 9.6.0 Process9 that several groups found independently. It's not easy to execute, so I don't know whether anyone has done it yet, though...
 
  • Like
Reactions: HEX1GON and Margen67
guitarheroknight

guitarheroknight

1.6180339887
Member
Level 14
Joined
Nov 9, 2014
Messages
2,822
Trophies
1
Age
33
Location
Grand Line
XP
4,418
Country
Norway
Myria said:
The problem isn't so much decrypting the new Process9 executable; it's decrypting all the subsequent NCCH executables that use the new keyslots. There's already a technique to decrypt the 9.6.0 Process9 that several groups found independently. It's not easy to execute, so I don't know whether anyone has done it yet, though...
Click to expand...
So 9.6 emunand?
 
Ra1d

Ra1d

Well-Known Member
Member
Level 10
Joined
Jul 31, 2010
Messages
1,362
Trophies
1
Website
Visit site
XP
2,153
Country
Canada
Miles54321 said:
I just got my PH0 x0 screwdriver and got the Dongle yesterday, would you say it's worth hacking the N3ds now or shall I wait till 9.6 emunand comes out?
Click to expand...


If you want to play games then now, if you don't, then don't, doesn't matter, GW mode has firmware spoofing, so you can play all of your games just fine(I doubt that there are games that require firmware 9.6 though).
 

Site & Scene News

Go to forum More news

Popular threads in this forum

I will Make you a 3DS custom theme if you don't know how!

Citra AES Keys

Hacking Homebrew  Animal Crossing New Leaf (ACNL) help: data corrupt??

Pokemon Ultra Sun/Moon from piracy site doesn't work

Black icon Mii Plaza + Streetpass isn't working properly

Better n64 emulator?

Does anybody have the old Health and Safety Information CIA?

3DS cheats request?

General chit-chat
Help Users
  • No one is chatting at the moment.
    SylverReZ @ SylverReZ: https://www.youtube.com/watch?v=_PiiXM51oBo