Homebrew Official [Download] Decrypt9 - Open Source Decryption Tools (WIP)

MelonGx · Oct 20, 2015

@bbsniua
你的意思是我们可以手工注入虚拟系统NAND 的 title.db 和 title 文件夹到真实系统NAND 来升级真实系统？
但你的研究有个前提，就是要能 dump FAT16 XORPAD。我们仍然无法在特定机器（比如N3DS 8.1）上 dump 它。

Do you mean that we can manually inject emuNAND's higher version "title.db" & "title folder" into SysNAND to perform a SysNAND upgrade?
But all your research is based on dumping FAT16 XORPAD. We still can't use it on specific consoles such as N3DS 8.1.0-0J.

bbsniua · Oct 21, 2015

MelonGx said:
@bbsniua
你的意思是我们可以手工注入虚拟系统NAND 的 title.db 和 title 文件夹到真实系统NAND 来升级真实系统？
但你的研究有个前提，就是要能 dump FAT16 XORPAD。我们仍然无法在特定机器（比如N3DS 8.1）上 dump 它。

Do you mean that we can manually inject emuNAND's higher version "title.db" & "title folder" into SysNAND to perform a SysNAND upgrade?
But all your research is based on dumping FAT16 XORPAD. We still can't use it on specific consoles such as N3DS 8.1.0-0J.

虚拟系统下可以安装themehax，进入虚拟系统时按L可以进HBL菜单，可惜Decrypt9一样无法使用。

Dean_ · Oct 21, 2015

bbsniua said:
虚拟系统下可以安装themehax，进入虚拟系统时按L可以进HBL菜单，可惜Decrypt9一样无法使用。

...Well, this forum is English-only. If you are going to use Chinese, talk each other via PM or visit Chinese forum like duowan..

bbsniua · Oct 21, 2015

Dean_ said:
...Well, this forum is English-only. If you are going to use Chinese, talk each other via PM or visit Chinese forum like duowan..

Sorry, I will not send the

d0k3 · Oct 21, 2015

Krude said:
This doesn't work, it aborts with an error when i try:

Code:

[CCI ERROR] Failed to decrypt CIA content: 0x00000000 [RESULT] Failed to build CCI

Okay, back to this one. I tried it myself (with the legit EUR CIA of MH4). You need to deep decrypt the CIA, or extract the first content from the shallow decrypted CIA and use NCCH decryptor on that. You could also use the shallow decrypted CIA and decrypt it further using deep decrypt (the shallow decryption is already finished, so that won't be done again). I'm sure it will work. If you want this to process much faster, use my newest sources and compile from there.

And yes, hash verification with CTRtool fails, but that seems to be some problem specific to CTRtool and the file size. The file is actually verified okay.

Datalogger · Oct 21, 2015

Hope it's OK to ask this, if not just ignore my question.
My ability to read Chinese is non-existent...

Is part of the idea behind this Decrypt9 enhancement a way to extract the proper xorpads from eShop titles that I purchase while running my emuNAND?
So far I don't see a way to do this once the nands are un-linked and my only access to eShop is via emuNand.

MelonGx · Oct 21, 2015

You can ignore those Chinese articles.
What we discussed has already finished.
We have several researches on injecting emuNAND files to SysNAND but Decrypt9 UI's ROP doesn't support 8.1.0-0J that makes us can't continue the research any further.
So we ended up the discussion.

For dumping installed emuNAND APP's XORPAD, I don't know whether Decrypt9 can do it or not.
How about rxTools?

Datalogger · Oct 21, 2015

MelonGx said:
You can ignore those Chinese articles.
What we discussed has already finished.
We have several researches on injecting emuNAND files to SysNAND but Decrypt9 UI's ROP doesn't support 8.1.0-0J that makes us can't continue the research any further.
So we ended up the discussion.

For dumping installed emuNAND APP's XORPAD, I don't know whether Decrypt9 can do it or not.
How about rxTools?

I figured out a way to stop it in-process while creating the 1099 xorpads for all of my eShop so I could find out if it was working or not and.... it works!!

I created the SDInfo.bin by pointing SDgen.bat to the emuNand's Nintendo 3DS directory on my internal SD card
Launched CN then Decrypt9WIP
Selected emuNAND File Options
Dumped the Tickect_emu.db + moveable.sed + SecureInfo.A and the seedsave.bin (figure all I needed was the moveable.sed, but why not grab everything while I was in there)
backed out to the Main Menu
Selected XORpad Options
SDPadgen .....

It saw the moveable.sed, opened up the SDInfo.bin and created all of the proper XORPads I needed for the emu!

Krude · Oct 21, 2015

So, for the record, a deep-decrypted CIA still fails with Makerom's -ciatocci option. Same error as the shallow decrypted one.

I'll try ctrtool's content extraction (this makes CXI i think) on the deep-decrypted one now, this should hook me up with the game contents already decrypted, right? Maybe i can finally take a look into that romfs now. Wish me luck.

d0k3 · Oct 21, 2015

Smyers75 said:
Hope it's OK to ask this, if not just ignore my question.
My ability to read Chinese is non-existent...

Is part of the idea behind this Decrypt9 enhancement a way to extract the proper xorpads from eShop titles that I purchase while running my emuNAND?
So far I don't see a way to do this once the nands are un-linked and my only access to eShop is via emuNand.

I can't give you full instructions, but yes, this can be used to decrypt eShop titles you bought on EmuNAND. It can even be used to extract the seed, if the title you want to decrypt uses seed crypto. EDIT: Whoops, already solved

.

Krude said:
So, for the record, a deep-decrypted CIA still fails with Makerom's -ciatocci option. Same error as the shallow decrypted one.

I'll try ctrtool's content extraction (this makes CXI i think) on the deep-decrypted one now, this should hook me up with the game contents already decrypted, right? Maybe i can finally take a look into that romfs now. Wish me luck.

Good luck!

Let me know how it goes.

Krude · Oct 21, 2015

Well, successfully (i think) extracted the exheader, exefs and romfs.
There's just the tiny problem of ctrtool crashing when i let it extract the romfs. After 6.397 extracted files (~665 MB of 2592 MB total) it just unceremoniously stops working. Man, i didn't think it would be this difficult to just get at a game's files.

Is there any other tool that allows me to browse or extract a romfs?

d0k3 · Oct 21, 2015

Krude said:
Well, successfully (i think) extracted the exheader, exefs and romfs.
There's just the tiny problem of ctrtool crashing when i let it extract the romfs. After 6.397 extracted files (~665 MB of 2592 MB total) it just unceremoniously stops working. Man, i didn't think it would be this difficult to just get at a game's files.

Is there any other tool that allows me to browse or extract a romfs?

I hope you find an answer to that. You could also open an issue on profi200s Github. I think most of the issues you had concern files above a certain size.

EDIT: And, I repeat it again. If Decrypt9 didn't give you an error when extracting the CIAs, they are guaranteed to be good. The verification routines don't allow anything else (waiting that long has to be good for something

). The NCCH decryptor routines also have verification, but these only process some parts of the file.

EDIT2: If the trouble persists, you could also try decrypting the first content via ncchinfo_gen.py, NCCH padgen and xorer.

Krude · Oct 21, 2015

I'm p. sure the decryption is all good at this point, i just gotta find a way to actually get at the files in there. I know it has to be possible, seeing how datamined the game already is.

Sadly i can't actually open an issue on profi200's github. The option is just not there for me.

d0k3 · Oct 21, 2015

Krude said:
I'm p. sure the decryption is all good at this point, i just gotta find a way to actually get at the files in there. I know it has to be possible, seeing how datamined the game already is.

Sadly i can't actually open an issue on profi200's github. The option is just not there for me.

Ah, I don't see the issues options either... You could also try making a new thread especially for that (extracting very large romfs), maybe more people will see it then and give helpful advice.

Asia81 · Oct 22, 2015

@Shadowtrance Your release is not or Brahma2, right? Because I have a black screen (9.0 et N2.1), but fine with release of @d0k3

d0k3 · Oct 22, 2015

Asia81 said:
@Shadowtrance Your release is not or Brahma2, right? Because I have a black screen (9.0 et N2.1), but fine with release of @d0k3

Shadowtrances new release is actually a pretty recent fork of my fork (if that makes sense

). And yup, it has the Brahma2Loader, same as my Decrypt9 and my ReiNAND release.

Shadowtrance · Oct 23, 2015

Asia81 said:
@Shadowtrance Your release is not or Brahma2, right? Because I have a black screen (9.0 et N2.1), but fine with release of @d0k3

Yep it is. But you have to remember that brahma2 isn't 100% reliable and it can fail sometimes.

zoogie · Oct 23, 2015

Would it be possible to add dump and/or inject emunand as an option?

Shadowtrance · Oct 23, 2015

zoogie said:
Would it be possible to add dump and/or inject emunand as an option?

They're already there. Both mine and d0k3's have backup emunand and d0k3's has restore emunand i believe. Mine doesn't yet as i haven't added the "experimental" stuff yet.

d0k3 · Oct 23, 2015

zoogie said:
Would it be possible to add dump and/or inject emunand as an option?

It is not in the main release, but can be unlocked via a #define. It is not tested enough now, and the first round of tests by @key1340 didn't go well (corrupted files). You can unlock it yourself, if you #define EXPERIMENTAL in common.h. If you do, and you also test it, could you give me some feedback?

Homebrew Official [Download] Decrypt9 - Open Source Decryption Tools (WIP)

Well-Known Member

Member

Well-Known Member

Member

3DS Homebrew Legend

Living the Dream

Well-Known Member

Living the Dream

Well-Known Member

3DS Homebrew Legend

Well-Known Member

3DS Homebrew Legend

Well-Known Member

3DS Homebrew Legend

Yuri Lover ~

3DS Homebrew Legend

Well-Known Member

playing around in the end of life

Well-Known Member

3DS Homebrew Legend

Similar threads

Popular threads in this forum