I mean I know Nintendo has been a lot tougher with security as of late, but it is still Nintendo we're talking about. If jailbreakers can find exploits in ios 14, (which is an os from apple who is notoriously does everything in their power to stop jailbreaks), then the switch must have at least a handful of usable exploits, right?
your another that keeps asking the same question, no, you will not see a free software exploit good enough to run and install cfw at the moment.
this is nothing like Crapple who pay for other mobile parts to build its Crap iBones and recycle its Crap OS - thats the problem there, Unlike Crapple, Nintendo revised its hardware to STOP this exploit.
We have the SX Chip, but they took TX down putting a stop to that.
Then we hear of clones, if they have the balls to take Nintendo on, and if users are stupid enough to go solder a cheap clone onto their console, then this as of now is the only way to exploit.
and then it wont be long until nintendo block this by changing its hardware again.
you are like the millionth user to ask this question, if there was a free software solution, it would be out by now, or we would have heard about it.
this is nothing like Crapple who pay for other mobile parts to build its Crap iBones and recycle its Crap OS - thats the problem there, Unlike Crapple, Nintendo revised its hardware to STOP this exploit.
We have the SX Chip, but they took TX down putting a stop to that.
Then we hear of clones, if they have the balls to take Nintendo on, and if users are stupid enough to go solder a cheap clone onto their console, then this as of now is the only way to exploit.
and then it wont be long until nintendo block this by changing its hardware again.
you are like the millionth user to ask this question, if there was a free software solution, it would be out by now, or we would have heard about it.
You are not comparing apples to apples (literally).The XNU kernel is orders of magnitude larger than the Horizon OS kernel and it's a so called monolithic kernel while the HOS one is a microkernel (the later is designed to fix all the security shortcomings of the former). Larger means much more likely to contain vulnerable code. Nintendo really did their job this time if you can believe what people say about the security. But kernel mode code execution isn't enough. You also need to break TrustZone. Their TrustZone code is absolutely tiny and well understood/reviewed.
I would not get my hopes up for anything to come any time soon. If vulnerabilities exist they will be kept until end of life simply because they are so extremely rare this time.
I would not get my hopes up for anything to come any time soon. If vulnerabilities exist they will be kept until end of life simply because they are so extremely rare this time.
The interest is rather low on console hacking since they have lower user base and just as tight security. At most there is only one or two team care enough to exploit it and it could take year before one success since most of them working solo.
- Joined
- Jul 23, 2018
- Messages
- 6,057
- Trophies
- 1
- Age
- 29
- Location
- Lampukistan
- Website
- hmpg.net
- XP
- 6,169
- Country
That's the second or third time i hear this on this board. What the hell is the n private key? Could you explain? Or could you post a link?
EDIT: You wrote already about it here. What the heck is this key? Completely crap? A lie? Whatever you mean with "N private key"....no matter what i type into google...there are no sites which write about this mysterious key,
Last edited by BaamAlex,
https://searchsecurity.techtarget.com/definition/private-key
basically it's a key that would completely and utterly unlock the switch without any need for exploitation if we had access to it. it's not a feasible task to bruteforce it though.
They actually have multiple keys for different things. They're the keys that lets them generate a valid signature on whatever content.
Encrypt sha256 hash of w/e content with private key -> decrypt that signature with the public key and verify the hash
There will be enough firmware signing key. Or RCM payload signing key. After that you can do whatever you want with console - it is ultimate software entry point
And probability of brute forcing/stealing is higher that finding another exploit.
And probability of brute forcing/stealing is higher that finding another exploit.
- Joined
- Jul 23, 2018
- Messages
- 6,057
- Trophies
- 1
- Age
- 29
- Location
- Lampukistan
- Website
- hmpg.net
- XP
- 6,169
- Country
Sad Story...but the switch's security is too much. We will never see this. A new exploit like boot9strap would be nice. I would even like a setup like cbhc.We need a Flashcart for the switch... soon, please
There is also little interest when we already have the current coldboot exploit which will most likely be better than any exploit discovered in the future.
Switch software is sandboxed, sooo...
Not much use hoping for any kind of useful exploit.
All userspace processes use Address Space Layout Randomization and are sandboxed. https://en.m.wikipedia.org/wiki/Nintendo_Switch_system_software
Not much use hoping for any kind of useful exploit.
Last edited by Deleted member 514389,
Similar threads
-
- Article
-
Xdqwerty
what are you looking at?
-
-
@
AncientBoi:
And a part of my immediate family passed also. Sending my good suit to the cleaners for the funeral Saturday -
-
-
-
-
-
@
Xdqwerty:
@SylverReZ, may I ask you something? What are your favorite animes? (Aside of serial code lain)
-
-
@
Xdqwerty:
Mines are all the dragon ball animes. Im also enjoying Fullmetal alchemist and my hero academia+1
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
