amiibo decryption service

Discussion in '3DS - Console, Accessories and Hardware' started by socram8888, Sep 11, 2015.

  1. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    Before anything and going any further I should explain some stuff:
    • No, this won't let you change the amiibo you have. You can't alter the character ID using this.
    • No, you aren't going to find an exploit on the 3DS system using this. Everything has a fixed size and you aren't going to be able to make a buffer overflow.
    • No, this won't calculate the NFC write key either, so forget about writing old dumps and replaying data.
    • No, I won't be releasing Nintendo's private keys, so don't even bother to ask for them.

    With that explained, this script will let you decrypt and encrypt binary amiibo dumps (XML or plain text won't work). Everything is sent to a secure server that has the keys, and you get the result on your computer.


    Encrypted and decrypted Mario amiibo:
    [​IMG]
     
    Last edited by socram8888, Jan 16, 2016
    exelix11 likes this.
  2. _Tim_

    _Tim_ Advanced Member

    Newcomer
    63
    107
    Dec 23, 2013
    Belgium
    0D1C771D8C836CD010CB06434ACCBA2A5532F7F9 :)
     
    iAqua, OfficialBrony, SMVB64 and 4 others like this.
  3. dark_samus3

    dark_samus3 GBAtemp Addict

    Member
    2,326
    1,728
    May 30, 2015
    United States
    You got that key by comparing the decrypted and encrypted data didn't you?
     
  4. cearp

    cearp the ticket master

    Member
    7,550
    4,813
    May 26, 2008
    Tuvalu
  5. Thunder Hawk

    Thunder Hawk Firefox Master Race

    Member
    581
    371
    Jan 21, 2013
    United States
    cearp likes this.
  6. cearp

    cearp the ticket master

    Member
    7,550
    4,813
    May 26, 2008
    Tuvalu
    no i didn't see your link!
     
  7. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    It's AES. You can't get the key that way.

    I've just revoked the key.

    If anybody wants to encrypt back their amiibos they just have to ask me for a private key, either here or in mail :P
     
    Last edited by socram8888, Dec 29, 2015
  8. cearp

    cearp the ticket master

    Member
    7,550
    4,813
    May 26, 2008
    Tuvalu
    why did you do that? (just curious) :)
    thanks for the service though.
     
  9. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    I want to be able to know who's using the service to encrypt stuff.

    As I already mentioned on my Twitter on the matter, it's possible to create valid dumps for blank NTAG215s, so it could be possible to manufacture counterfeit amiibos. As for privacy reasons I don't want to register IP or tag UIDs, my only way to detect these is by looking every now and then on the text log and checking if somebody have encrypted a massive amount of tags. If a key leaks this would fail, as everybody would start using a single key.

    Again, if anybody needs one, just send me a PM or an email.
     
    cearp likes this.
  10. piratesephiroth

    piratesephiroth I wish I could read

    Member
    3,010
    1,622
    Sep 5, 2013
    Brazil
    is this relevant?

    *snip*
     
  11. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    Yep. Most of those keys are the ones needed to decrypt amiibos.

    By the way, given using a shell app and a hacked protocol is a bit too complex for users or programmers, I've been reimplementing the amiitool application in PHP, and made this: http://84.123.14.123/amiibo/test.html (note this is a test server - will be moved to the VPS, so don't rely on this address)

    CORS allow cross-origin request, so coders would be able to use this in their own website or applications by means of XMLHttpRequest.
     
    Last edited by socram8888, Dec 30, 2015
    cearp likes this.
  12. Myria

    Myria GBAtemp Fan

    Member
    432
    410
    Jul 24, 2014
    United States
    Lulz, since your server won't be necessary once someone leaks the AES key scrambler algorithm.
     
    kiwiis likes this.
  13. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    And this proves most of you have no idea on how the amiibo encryption works. Or how to read a presentation, for that matter.

    With all the documentation out there you could easily have your own keys, without needing the keyscrambler algorithm.
     
  14. socram8888
    OP

    socram8888 Member

    Newcomer
    18
    16
    Apr 6, 2009
    Valencia, Spain
    API KEY CHECK HAS BEEN REMOVED (on the HTTP version)

    Instead, it will only allow you to recrypt a tag iff it has been decrypted at least once in the past. This will allow you to cheat and to what the hell you want to, and prevent people from creating new tags.
     
    Last edited by socram8888, Dec 31, 2015
  15. Banzai

    Banzai Newbie

    Newcomer
    3
    0
    Jan 1, 2016
    Belgium
    Hello,

    if I want to decrypt a dump, change the UID and re-encrypt it, I get the message "Dump musthave been decrypted using this service before being able to recrypt it" what could be this?

    greeting
    Banzai
     
  16. piratesephiroth

    piratesephiroth I wish I could read

    Member
    3,010
    1,622
    Sep 5, 2013
    Brazil
    It's intentional, to prevent amiibo counterfeiting
     
  17. TheHomesk1llet

    TheHomesk1llet Also known as "Kupo"

    Member
    185
    148
    Apr 29, 2013
    United States
    Cyberspace
    watches silently
     
  18. nitrostemp

    nitrostemp GBAtemp Maniac

    Member
    1,401
    91
    Mar 15, 2009
    website is dead... any chance of rehosting?
     
  19. The Real Jdbye

    The Real Jdbye Always Remember 30/07/08

    Member
    GBAtemp Patron
    The Real Jdbye is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    12,289
    5,316
    Mar 17, 2010
    Norway
    Alola
    Is it really needed anymore? You can now do the decrypting/encrypting offline, with tools such as TagMo.
     
  20. nitrostemp

    nitrostemp GBAtemp Maniac

    Member
    1,401
    91
    Mar 15, 2009
    and you dont have to mess with the hex of the amiibo?