Hacking hacking into the eshop

rondoh70

rondoh70

Well-Known Member
OP
Member
Level 3
Joined
Sep 1, 2011
Messages
334
Trophies
0
Age
26
Location
new york
XP
287
Country
United States
I hacked into the eshop using fiddler 2 and would like to know what this code means

Major Version: 3
Minor Version: 0
SessionID: empty
Random: 8C F9 66 C8 63 6B 15 EA 4C 56 56 D3 11 E2 C0 24 58 60 8A AE 88 CA 83 AB 6A 99 B9 57 71 1D 9A AA
Cipher: 0x35
 
indask8

indask8

New Member Forever
Member
Level 3
Joined
Apr 19, 2007
Messages
987
Trophies
0
Age
37
Location
Look at the Flag...
XP
352
Country
France
rondoh70 said:
I hacked into the eshop using fiddler 2 and would like to know what this code means

Major Version: 3
Minor Version: 0
SessionID: empty
Random: 8C F9 66 C8 63 6B 15 EA 4C 56 56 D3 11 E2 C0 24 58 60 8A AE 88 CA 83 AB 6A 99 B9 57 71 1D 9A AA
Cipher: 0x35
Click to expand...

That means the FBI is on it's way.
moogle.gif
 
L

loco365

Well-Known Member
Member
Level 12
Joined
Sep 1, 2010
Messages
5,457
Trophies
0
XP
2,927
rondoh70 said:
actually I didnt hack the eshop i just decrypted part of the webpage
Click to expand...
You know he's being sarcastic, right?

It's interesting that you managed to decrypt something besides save files.
 
S

Supercool330

Well-Known Member
Member
Level 7
Joined
Sep 28, 2008
Messages
752
Trophies
1
XP
1,129
Country
United States
That is probably a random key to be used in some sort of cryptographic handshake to generate a session ID and some sort of key-pair. For the record you didn't hack or decrypt anything. You captured and decoded, which is a good first step for beginners.
 
  • Like
Reactions: 1 person
S

Supercool330

Well-Known Member
Member
Level 7
Joined
Sep 28, 2008
Messages
752
Trophies
1
XP
1,129
Country
United States
That is probably a key to look up a cipher type in a table on the 3ds. None of this information is really useful without capturing the response of the 3DS and the remainder of the handshake, which could easily be done by setting up a box running WS or Fiddler as a bridge, connecting to the eShop through it and capturing all the traffic. However, unless Nintendo absolutely failed at their encryption and signing schema (wouldn't be the first time), even that wouldn't really be of any use.
 
rondoh70

rondoh70

Well-Known Member
OP
Member
Level 3
Joined
Sep 1, 2011
Messages
334
Trophies
0
Age
26
Location
new york
XP
287
Country
United States
QUOTE said:
That is probably a random key to be used in some sort of cryptographic handshake to generate a session ID and some sort of key-pair. For the record you didn't hack or decrypt anything. You captured and decoded, which is a good first step for beginners.
Click to expand...
you are right I did a https hand shake the bad thing is that nus no longer lets me connect
 
rondoh70

rondoh70

Well-Known Member
OP
Member
Level 3
Joined
Sep 1, 2011
Messages
334
Trophies
0
Age
26
Location
new york
XP
287
Country
United States
you are right mega mario but im wondering if this is possible
QUOTE said:
That is probably a key to look up a cipher type in a table on the 3ds. None of this information is really useful without capturing the response of the 3DS and the remainder of the handshake, which could easily be done by setting up a box running WS or Fiddler as a bridge, connecting to the eShop through it and capturing all the traffic. However, unless Nintendo absolutely failed at their encryption and signing schema (wouldn't be the first time), even that wouldn't really be of any use.
Click to expand...
 
S

Supercool330

Well-Known Member
Member
Level 7
Joined
Sep 28, 2008
Messages
752
Trophies
1
XP
1,129
Country
United States
Ya, these look like normal SSL 3.0 headers. All I'm saying is that if you could get past whatever weird custom SSL stuff they have set up, it wouldn't really be useful. Best case, you could view the contents of the store in a browser.
 
bowser

bowser

Mwa ha ha ha!
Member
Level 11
Joined
Sep 1, 2008
Messages
2,377
Trophies
1
Age
37
Location
GBAtemp ↑↑↓↓← → ← →BA
XP
2,589
Country
India
rondoh70 said:
QUOTE said:
That is probably a random key to be used in some sort of cryptographic handshake to generate a session ID and some sort of key-pair. For the record you didn't hack or decrypt anything. You captured and decoded, which is a good first step for beginners.
Click to expand...
you are right I did a https hand shake the bad thing is that nus no longer lets me connect
Click to expand...
Yes that's because Fiddler decrypts traffic for sniffing and then encrypts it back with it's own self-signed certificate before passing on the data to you and the server. No server is going to accept this certificate which is probably why you're not able to connect through NUS. NUS should let you connect again if you shut down Fiddler. And no client (read your computer) is going to accept this certificate either, which is why you had to add Fiddler's certificate to your Windows certificate store when you clicked on the option to decrypt HTTPS traffic in Fiddler's settings. Or maybe you added it to your browser's certificate store. Either way, you have to configure the client to accept this fake certificate.

At the most you'll be able to see the e-shop traffic but there's no way you're actually going to hack into it. Unless Nintendo really, really messed up somewhere
tongue.gif
 
rondoh70

rondoh70

Well-Known Member
OP
Member
Level 3
Joined
Sep 1, 2011
Messages
334
Trophies
0
Age
26
Location
new york
XP
287
Country
United States
This is extremely unlikely but what if they weren't expecting an attack to the eShop if we were to crack the ssl certificate the host it through a private server we might be able to see how the titles are sighned.
 
Arisotura

Arisotura

rise of melonism
Member
Level 11
Joined
Dec 5, 2009
Messages
839
Trophies
1
Age
30
Location
center of the Sun
Website
kuribo64.net
XP
2,498
Country
France
Keep dreaming, kid, keep dreaming... maybe someday your dreams will come true.

Nintendo most likely signs titles _before_ uploading them to the server. They're doing their best to keep their private keys private (unlike Sony
tongue.gif
).
 
rondoh70

rondoh70

Well-Known Member
OP
Member
Level 3
Joined
Sep 1, 2011
Messages
334
Trophies
0
Age
26
Location
new york
XP
287
Country
United States
ok before i used a fake certificate and got
QUOTE said:
Major Version: 3
Minor Version: 0
SessionID: empty
Random: 8C F9 66 C8 63 6B 15 EA 4C 56 56 D3 11 E2 C0 24 58 60 8A AE 88 CA 83 AB 6A 99 B9 57 71 1D 9A AA
Cipher: 0x35
Click to expand...
and now i have

Major Version: 3
Minor Version: 0
Random: 4E 63 E9 83 96 0A 3B DD 51 67 28 59 76 BC 56 75 B7 D0 61 41 50 DB 4D CF 66 FD E6 17 A3 DB 55 BA
SessionID: empty
Ciphers:
[00FF] TLS_EMPTY_RENEGOTIATION_INFO_SCSV
[0088] TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
[0087] TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA
[0039] TLS_DHE_RSA_WITH_AES_256_SHA
[0038] TLS_DHE_DSS_WITH_AES_256_SHA
[0084] TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
[0035] TLS_RSA_AES_256_SHA
[0045] TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
[0044] TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA
[0066] TLS_DHE_DSS_WITH_RC4_128_SHA
[0033] TLS_DHE_RSA_WITH_AES_128_SHA
[0032] TLS_DHE_DSS_WITH_AES_128_SHA
[0096] TLS_RSA_WITH_SEED_CBC_SHA
[0041] TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
[0004] SSL_RSA_WITH_RC4_128_MD5
[0005] SSL_RSA_WITH_RC4_128_SHA
[002F] TLS_RSA_AES_128_SHA
[0016] SSL_DHE_RSA_WITH_3DES_EDE_SHA
[0013] SSL_DHE_DSS_WITH_3DES_EDE_SHA
[FEFF] SSL_RSA_FIPS_WITH_3DES_EDE_SHA
[000A] SSL_RSA_WITH_3DES_EDE_SHA
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Hacking Homebrew  A new way to experience StreetPass

Is it possible...?

Hacking Homebrew  how to link pnid to 3ds/how to use juxtaposition?

Hacking Hardware  New Nintendo 3DS XL Louvre

Emulation  i have citra, i have my aes keys installed, how do i get the home menu

Hardware  Why does my 3DS take so long to turn off?

Hacking Misc  VCRUNTIME140.dll UCRTBASED.dll Master Thread

Translation Project  DQM2SP translation

General chit-chat
Help Users
  • No one is chatting at the moment.
    SylverReZ @ SylverReZ: @OctoAori20, Cool. Same here.