- Status
There's a very old xorpads generator which uses that exploit. There is no point in using it as Decrypt9 exists, but you may want to use it for some unknown reason. This is just an example.
But no one would want that tbh.
No I believe you don't get what I mean.
There still exist ARM9 homebrews that where made in the 4.5 times, so it uses 4.5 exploits that are patched in 9.2. Someone could want to use them, but most of the times a better app for 9.2 has been made, so there's no point.
Last edited by JustPingo,
Disregard that this seems random. How goes progress on memchunkhax2?
Last edited by Pandaxclone2,
I have been reading the code for a while and although I did not compile nor execute it I'll say is kinda halfway through. (A bit of guessing is going on here so don't take it as fact, please)
Last edited by Urbanshadow,
@JustPingo How is your development? Hope it goes well.
@Mrrraou There is many keyslots that less than 2 keys could be found when no leaked.
But even with arm9loaderhax, the OTP on N3DS is disabled already (before it ever try to jump to garbage). And don't forget the low possibility and
On page "3ds System Flaws" section "Kernel9" tells me on O3DS <3.x it is possible to dump the OTP. But no useful information could be recovered (say, no plaintext, or encrypted, and keys may only be in the bootrom.. Wait..?), and needless to say how many guys are still on such a low version.
So if no more key is leaked the only hope to get more is corrupt the bootrom execution. Might need external hardware to provide timing assitant.
And yes in fact that doesn't require such hard technical works to pirate games, or downgrading the console. Orz.
EDIT: oh @d0k3. I just remembered one thing. If OTP section is encrypted, then the key should be set in bootrom, thus same key for all consoles (O3DS) - and (LIKELY) same xorpad for those. Please contact Normatt or other elites for the OTP dumps from O3DS and the corresponding keys, hope they still keep this. It should be difficult to decrypt the OTP section without bootrom dump, but it is not that hard to ensure the console-unique keys are there or not. Hope that is just encrypted, and I'm not dreaming once more.
@Mrrraou There is many keyslots that less than 2 keys could be found when no leaked.
But even with arm9loaderhax, the OTP on N3DS is disabled already (before it ever try to jump to garbage). And don't forget the low possibility and
On page "3ds System Flaws" section "Kernel9" tells me on O3DS <3.x it is possible to dump the OTP. But no useful information could be recovered (say, no plaintext, or encrypted, and keys may only be in the bootrom.. Wait..?), and needless to say how many guys are still on such a low version.
So if no more key is leaked the only hope to get more is corrupt the bootrom execution. Might need external hardware to provide timing assitant.
And yes in fact that doesn't require such hard technical works to pirate games, or downgrading the console. Orz.
EDIT: oh @d0k3. I just remembered one thing. If OTP section is encrypted, then the key should be set in bootrom, thus same key for all consoles (O3DS) - and (LIKELY) same xorpad for those. Please contact Normatt or other elites for the OTP dumps from O3DS and the corresponding keys, hope they still keep this. It should be difficult to decrypt the OTP section without bootrom dump, but it is not that hard to ensure the console-unique keys are there or not. Hope that is just encrypted, and I'm not dreaming once more.
D
Deleted User
Guest
Thanks telling me that. That's.. WTF. Too good sometimes. However only Normatt may know how to dump that.
If he personally want these (including NAND dump, OTP dump) he might contact the elite hackers to ask how to (run/write).
A 1.0.0 NAND could be splendid since there should be no such content on Ninty CDN.
Even this version itself sounds useless, it is so rare that he can make a backup for celebration (Orz).
UPDATE: forgot to mention. Decrypted NAND image is injectable to other decrypted NAND dumps. So don't forget to get a NAND xorpad afterwards.
Last edited by Syphurith,
, Reason: Oh Decrypted NAND 1.0 is WTF.
D
Deleted User
Guest
I am not sure if that was sarcasm but if it wasn't, he made a thread here. If I can find it I will link it.
If that i can recall one that written a thread claiming having the 1.0, but after Normatt told him that is not useful he took advice of getting a CFW.
If that is him oh, sorry i don't know about that OTP dump is possible for O3DS <3.x. Still thanks for your reply, no need for looking for the thread then.
EDIT: for the injectable.. I mean. If I have two O3DS of same version and region, the decrypted NAND image should have only a few files different. Especially the System Titles are all encrypted NCCHs. But what would happen cause those ugly dbs files containing other information about the title.
Last edited by Syphurith,
, Reason: about injectable
I thought so too, I don't mind waiting. I was just stumped by the fact that they managed to get it to 65% in just 3 days haha
I assume that's because half of it was the easy part. Now comes the finesse part which'll probably take awhile.
Even if it takes months, I think that people should still be happy because they are getting free piracy on all firmwares, and the developers aren't getting paid for doing it during their free time. They are doing it for the community. So, please, be patient.
I know that not everyone wants piracy, but still, most of the people here just want this. I don't care if people pirate. But to the pirates: you're not buying your games, so at least, please be patient.
- Status
Similar threads
-
- Poll
- No one is chatting at the moment.
-
-
-
-
-
-
-
@ x65943:
If your throat closes, putting oxygen in your mouth will not solve anything - as you will be introducing oxygen prior to the area of obstruction -
-
You either need to be intubated to bypass obstruction or create a stoma inferior to the the area of obstruction to survive
-
-
-
-
-
-
-
-
@
JuanMena:
It was waiting for you to order another one.
Seems like, your PSU was waiting for a partner. -
-
-
-
-
-
-
-
