Hacking 4.5 O3DS with Emunand: FBI injection, cold boot...

[Ekaitz]

i noticed i missed some things in the op this is what you need for your fbi (cia installer) problem https://gbatemp.net/threads/release...ect-generator-jpn-usa-eur-chn-kor-twn.391525/

Thank you! That's the tutorial that I was looking for, I used it when I have my o3DS (that was stolen, and now I don't have kernel access for my personal device ).

I'll try it. About RxTools devmode, everybody agree with the fact that it is "Pasta Mode" in the "Advanced" menu? (or am I doing a terrible mistake here?)

 

[wormdood]

yes in the latest builds it is labeled pasta mode . . . as i said many users have reported success with that build but the safest version of rxtools devmode is rxtools 2.5.2 devmode

 

[Syphurith]

Thank you! That's the tutorial that I was looking for, I used it when I have my o3DS (that was stolen, and now I don't have kernel access for my personal device ).
I'll try it. About RxTools devmode, everybody agree with the fact that it is "Pasta Mode" in the "Advanced" menu? (or am I doing a terrible mistake here?)

Older Rx 3.0: DEVMode. Newer Rx 3.0: Pasta-Mode. Yes that is. And for the update CIAs, I suggest you to get it from that ISO site.
The package excluded the MSET TWL/AGB. So you would be able to run rxTools again with MSET DG 4.x
After Sysupdator installed all those packages it would auto reboot. But you need to launch rx or other again to get themehax, or more HBL entries.

You can install the themehax/menuhax with menuhax from HBL starter kit, with wifi.

 

[Randomdude0]

Well if he can boot into PBT he could always just use the palantine network installer to get a cia manager. In case rxtools and fbi injection doesnt work and stuff

 

[dark_samus3]

why not just use the latest any application H&S injection? https://gbatemp.net/threads/release-inject-any-app-into-health-safety-o3ds-n3ds-cfw-only.402236/

 

[Ekaitz]

I tried both.

First tutorial: invalid xorpad. (I create it 3 times using different versions of rxTools..)

Then I tried Universal InjectsomethingIdon'tremember. Injected FBI, no problem. I inject it back using Decrypt9. Doesn't work, H&S is still H&S...

Don't know whatelse I can try.

 

[TerryG]

I was having the same issues getting FBI to inject to sysnand. I finally gave up and bought a copy of Smash with the 9.2 update on it.

 

[Seita]

I was having the same issues getting FBI to inject to sysnand. I finally gave up and bought a copy of Smash with the 9.2 update on it.

This method won't update your browser.

 

[TerryG]

This method won't update your browser.

Even without updating my browser it let me take a 4.5 o3DS and get it to autoboot into rxTools, which from my understanding is what the OP is trying to do, right?

 

[dark_samus3]

I tried both.

First tutorial: invalid xorpad. (I create it 3 times using different versions of rxTools..)

Then I tried Universal InjectsomethingIdon'tremember. Injected FBI, no problem. I inject it back using Decrypt9. Doesn't work, H&S is still H&S...

Don't know whatelse I can try.

you don't need xorpads for the Universal Injection script, just use Decrypt9 to extract the H&S .app file, then you put the .app file with the CIA you want into the input folder, you run go.bat and then you should have a few .app files in the same folder as go.bat, you then use Decrypt9 to inject them back in... and it should pretty much always work

 

[Seita]

Even without updating my browser it let me take a 4.5 o3DS and get it to autoboot into rxTools, which from my understanding is what the OP is trying to do, right?

True, if you have ninjhax or another payload. But many people would want to do it the free way;through browserhax.

 

[TerryG]

True, if you have ninjhax or another payload. But many people would want to do it the free way;through browserhax.

I agree about the free part. Hell, I would have loved it if I could have gotten off without buying a second copy of a game I already had. But after messing with it on and off for a week on two different systems I said "screw it" and found something that worked. I just wanted to throw how I got it working out there since the OP is trying to do the same thing I was and is running into the same issues I did.

 

[Ekaitz]

It would be a solution, but I won't spend money only to allow autobot. (and I already have a copy of the game)
Atm, I just update to the last release of rxTools. I tried many things but nothing work.

Maybe there is a way to do it using PBT-CFW? I don't know, I never used it...
I just need a CIA manager after all. It could be BBM, devmenu, FBI, whatever else... If someone have a hint, I'll give it a try.

you don't need xorpads for the Universal Injection script, just use Decrypt9 to extract the H&S .app file, then you put the .app file with the CIA you want into the input folder, you run go.bat and then you should have a few .app files in the same folder as go.bat, you then use Decrypt9 to inject them back in... and it should pretty much always work

I know that I don't need xor pads for the Universal Injection.
I was talking about the first tutorial that was released here on gbatemp using a nand backup that we modify after extracting it using xorpad. (we modify it with WinImage)

I couldn't extract the nand, it just told me invalid xorpad.

Then, I tried Universal Injection Script. I injected FBI into h&s but when I reinject that edited h&s using Decrypt9, it didn't work, it was just the usual H&S, nothing new, only that stupid Nintendo thing about safety.

 

[dark_samus3]

It would be a solution, but I won't spend money only to allow autobot. (and I already have a copy of the game)
Atm, I just update to the last release of rxTools. I tried many things but nothing work.

Maybe there is a way to do it using PBT-CFW? I don't know, I never used it...
I just need a CIA manager after all. It could be BBM, devmenu, FBI, whatever else... If someone have a hint, I'll give it a try.



I know that I don't need xor pads for the Universal Injection.
I was talking about the first tutorial that was released here on gbatemp using a nand backup that we modify after extracting it using xorpad. (we modify it with WinImage)

I couldn't extract the nand, it just told me invalid xorpad.

Then, I tried Universal Injection Script. I injected FBI into h&s but when I reinject that edited h&s using Decrypt9, it didn't work, it was just the usual H&S, nothing new, only that stupid Nintendo thing about safety.

right, but the script will run and output files that don't work properly if you don't get the hs.app from Decrypt9 and put it in the input folder BEFORE running the script, so just try that again and make sure you're doing each step right, files are named properly etc

 

[Ekaitz]

I did it properly huh. I extract it using Decript9. I put it in the input folder along the FBI.cia. I run it. I took back the new file, the output file. I rename it hs.app. I went back to Decrypt9 and inject h&s. Didn't work.

 

[dark_samus3]

I did it properly huh. I extract it using Decript9. I put it in the input folder along the FBI.cia. I run it. I took back the new file, the output file. I rename it hs.app. I went back to Decrypt9 and inject h&s. Didn't work.

huh weird... also make sure you're extracting and injecting it to sysNAND and not emuNAND (I'm sure you are but I'm just checking)

 

[Ronhero]

Here's how I always do it

4.x > rxtools 3.0 > install fbi to h&s system nand > boot dev mode > install and run sys updater to 9.2 > browserhax > install menuhax > crt boot manager > fbi auto boot

 

[Ekaitz]

Here's how I always do it

4.x > rxtools 3.0 > install fbi to h&s system nand > boot dev mode > install and run sys updater to 9.2 > browserhax > install menuhax > crt boot manager > fbi auto boot

This is what I wanted to do. Impossible to install FBI to h&s and I don't know why. I tried everything.

 

[dark_samus3]

if you update emuNAND to 9.0-9.2 then it's possible to extract the image and flash it to sysNAND... though I don't recommend this at all unless you have a hardmod

 

[Ekaitz]

emunand is 10.2 atm and well, I won't try that even if it was 9.2 lol, too risky I think.