Hardware amiibo decryption service

socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
Before anything and going any further I should explain some stuff:
  • No, this won't let you change the amiibo you have. You can't alter the character ID using this.
  • No, you aren't going to find an exploit on the 3DS system using this. Everything has a fixed size and you aren't going to be able to make a buffer overflow.
  • No, this won't calculate the NFC write key either, so forget about writing old dumps and replaying data.
  • No, I won't be releasing Nintendo's private keys, so don't even bother to ask for them.

With that explained, this script will let you decrypt and encrypt binary amiibo dumps (XML or plain text won't work). Everything is sent to a secure server that has the keys, and you get the result on your computer.


Encrypted and decrypted Mario amiibo:
97KqUTM.png
 
Last edited by socram8888,
  • Like
Reactions: exelix11
socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
Last edited by socram8888,
socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
cearp said:
why did you do that? (just curious) :)
thanks for the service though.
Click to expand...
I want to be able to know who's using the service to encrypt stuff.

As I already mentioned on my Twitter on the matter, it's possible to create valid dumps for blank NTAG215s, so it could be possible to manufacture counterfeit amiibos. As for privacy reasons I don't want to register IP or tag UIDs, my only way to detect these is by looking every now and then on the text log and checking if somebody have encrypted a massive amount of tags. If a key leaks this would fail, as everybody would start using a single key.

Again, if anybody needs one, just send me a PM or an email.
 
  • Like
Reactions: cearp
socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
piratesephiroth said:
is this relevant?

****
Click to expand...
Yep. Most of those keys are the ones needed to decrypt amiibos.

By the way, given using a shell app and a hacked protocol is a bit too complex for users or programmers, I've been reimplementing the amiitool application in PHP, and made this: http://84.123.14.123/amiibo/test.html (note this is a test server - will be moved to the VPS, so don't rely on this address)

CORS allow cross-origin request, so coders would be able to use this in their own website or applications by means of XMLHttpRequest.
 
Last edited by socram8888,
  • Like
Reactions: cearp
socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
Myria said:
Lulz, since your server won't be necessary once someone leaks the AES key scrambler algorithm.
Click to expand...
And this proves most of you have no idea on how the amiibo encryption works. Or how to read a presentation, for that matter.

With all the documentation out there you could easily have your own keys, without needing the keyscrambler algorithm.
 
socram8888

socram8888

Well-Known Member
OP
Newcomer
Level 4
Joined
Apr 6, 2009
Messages
81
Trophies
1
Age
29
Location
Valencia, Spain
Website
orca.pet
XP
560
Country
Spain
API KEY CHECK HAS BEEN REMOVED (on the HTTP version)

Instead, it will only allow you to recrypt a tag iff it has been decrypted at least once in the past. This will allow you to cheat and to what the hell you want to, and prevent people from creating new tags.
 
Last edited by socram8888,
B

Banzai

New Member
Newbie
Level 1
Joined
Jan 1, 2016
Messages
3
Trophies
0
Age
38
XP
42
Country
Belgium
Hello,

if I want to decrypt a dump, change the UID and re-encrypt it, I get the message "Dump musthave been decrypted using this service before being able to recrypt it" what could be this?

greeting
Banzai
 
piratesephiroth

piratesephiroth

I wish I could read
Member
Level 12
Joined
Sep 5, 2013
Messages
3,453
Trophies
2
Age
103
XP
3,233
Country
Brazil
Banzai said:
Hello,

if I want to decrypt a dump, change the UID and re-encrypt it, I get the message "Dump musthave been decrypted using this service before being able to recrypt it" what could be this?

greeting
Banzai
Click to expand...
It's intentional, to prevent amiibo counterfeiting
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

After the 8th of April, will it still be possible to create a new NNID (Nintendo Network ID) and/or transfer a NNID from one console to another?

Hacking Homebrew  how to link pnid to 3ds/how to use juxtaposition?

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Translation Project  DQM2SP translation

Hardware  Why does my 3DS take so long to turn off?

General chit-chat
Help Users
  • No one is chatting at the moment.
    SylverReZ @ SylverReZ: Also nice. Never really watched Fallout on Prime, but sounds like a good show. +1