[Defcon] Smea to give 3DS security talk and release free arm9 exploit chain on August 11

Discussion in '3DS - Flashcards & Custom Firmwares' started by zoogie, Jun 20, 2018.


    29,457

    157
    Front-page
    dc-25-logo.jpg
    It looks like our old 3DS scene pal @smealum has returned to the limelight! Famous for his groundbreaking Ninjhax, Ironhax, and Tubehax userland exploits, and the udsploit kernel11 hax, Smea is back and better than ever with a total of four new exploits set to be revealed this Saturday at Defcon 26 in Las Vegas! So if you never got on the CFW bandwagon (full control of your 3DS with all the implied benefits), you'd better come and tune in with us this Saturday at 11:00 am PT sharp!​

    NOTE: If you are on 11.7 or less and don't have CFW, don't update.
    It's very likely the exploits that @smealum will release this Saturday have already been patched on 11.8!

    Slides and Videos


    MHAX userland
    ROHAX2 priv. escalation
    ZHAX kernel11
    TWLHAX arm9

    (please wait for the guide to be updated for instructions)

    DkV77xzUcAACLnW.jpg


     
    Discussion (157 replies)
  1. Pickle_Rick

    Pickle_Rick Ya boi Zack

    Member
    3
    Aug 28, 2017
    United States
    Somewhere
    My only concern is that Nintendo will probably patch this. (The 3DS still drives a hefty amount of sales for them.) So this probably won't be an EOL exploit.
     
  2. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    Well they left seedminer alone surprisingly, so maybe there's a chance they'll let smeahax slide.

    I don't think so, though. His stuff gets a lot more publicity so it will probably catch big N's attention.
    Seedminer was initially ignored when it was released Jan 20th. Then in early Feb it caught on and has been slowing rising in popularity since (as it became more convenient, thanks to friends). I think seedminer flew under Nintendo's radar.
     
  3. Ryccardo

    Ryccardo außer Tiernahrung

    Member
    11
    Feb 13, 2015
    Italy
    Imola
    Well, we already have a #pwned4life exploit (surprising the bootleggers haven't been pumping out decently built ROM-based gm9/b9s cards) - and it doesn't even require going to a crashy website to run slowhax to run safehax to run gm9/safeb9sinstaller!

    Look at it more than a "lol nintendo here's why your design is wrong, everyone point and laugh (and maybe donate)" (like basically every past hacking conference),
    and as a generous service to people who can't/want't to buy a flashcard, don't have another hacked console, and have been patiently or not so patiently, though 3DS Homebrew ""Development"" and Emulators appears to be calmer on this front waiting (instead of using Gamestophax) over a year for an arm9 exploit :)
     
    THYPLEX likes this.
  4. KuroTheBang

    KuroTheBang Advanced Member

    Newcomer
    2
    Nov 29, 2014
    Gambia, The
    Will smeahax be better than Seedminer? I Always thought that this is already an idiotproof easy hack. :O
     
  5. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    It should be freer than seedminer as in $. Seedminer is $2 for US/EU and free for Japan (through steelminer). Smeahax will be free for all regions (according to smea).
    It will probably be easier to install, but we won't know that for sure until Aug 11th.
     
    Last edited by zoogie, Jun 23, 2018
    KuroTheBang likes this.
  6. KuroTheBang

    KuroTheBang Advanced Member

    Newcomer
    2
    Nov 29, 2014
    Gambia, The
    Oh I see. Good for all people who haven’t hacked their Console yet.
    Will something change for us? I mean, is smeahax just a way to install B9S, or something more (like Luma)


    Sent from my iPhone using Tapatalk Pro
     
  7. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    If you already have B9S/luma, then this shouldn't affect you unless you want to hack additional 3ds's.
     
  8. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    Updated the OP with a countdown timer and some advice.

    Only < 6 days left!
     
    KiiWii likes this.
  9. Hells Malice

    Hells Malice Are you a bully?

    pip Contributor
    15
    GBAtemp Patron
    Hells Malice is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    Apr 9, 2009
    Canada
    Groundbreaking is a bit of a strong word.
     
  10. Dante2405

    Dante2405 Advanced Member

    Newcomer
    1
    Jul 17, 2017
    Australia
    What is Bandwagon?
    Any interest for Luma users?
     
  11. Dr_Doom

    Dr_Doom Advanced Member

    Newcomer
    1
    Mar 10, 2016
    Australia
    This is being released at Defcon right? Why is there a Black hat picture?
     
    zoogie likes this.
  12. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    That was a screw up on my part. Working on fixing it.

    Thanks for pointing it out.
     
    KiiWii likes this.
  13. GhostLatte

    GhostLatte Yet Another Shitposter

    Member
    13
    Mar 26, 2015
    Antarctica
    I've been out of the scene for a while, but magnethax has been patched?
     
  14. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    No, it still works fine.

    There's still demand for softmods though, because they're cheaper and don't require waiting through 2-6 weeks shipping time.
    I actually emailed modchipsdirect about card delisting and they said they aren't restocking ntrcards because there's so little demand for them.
    Surprising, but that's actually what they said.
     
    GhostLatte likes this.
  15. lone_wolf323

    lone_wolf323 GBAtemp Advanced Maniac

    Member
    6
    May 27, 2011
    Canada
    uhm....no? its a bootrom exploit. it cannot be patched
     
    zacchi4k, GhostLatte and zoogie like this.
  16. SirNapkin1334

    SirNapkin1334 Renound Aritst

    Member
    6
    Aug 20, 2017
    United States
    Crap Mountain
    Hyyype! I can’t watch watch the stream, but I trust you’ll make a follow-up post explaining it ;)
     
    zacchi4k, Red771 and zoogie like this.
  17. Reploid

    Reploid GBAtemp Maniac

    Member
    7
    Jan 20, 2010
    Serbia, Republic of
    11 aug? It when Robin Williams killed himself. Coincidence?
     
  18. zoogie
    OP

    zoogie playing around in the dsiware

    Member
    20
    Nov 30, 2014
    Micronesia, Federated States of
    I'm sure there's enough famous people that have died to cover all 365 days of the year so ... no, I don't think it's a coincidence. :P

    but he named his daughter zelda omg a nintendo connection!
     
    Jayro, Red771, Costello and 1 other person like this.
  19. Reploid

    Reploid GBAtemp Maniac

    Member
    7
    Jan 20, 2010
    Serbia, Republic of
    Exactly, RW was a hardcore nintendo gamer.
     
    zoogie likes this.
Loading...