Homebrew Has anyone tried to unlock ARM7 by exploiting the running binary?

  • Thread starter Deleted User
  • Start date
  • Views 1,236
  • Replies 6
  • Likes 1
D

Deleted User

Guest
OP
It seems like there could be vulnerabilities in Nintendo's ARM7 IPC code. Has anyone investigated this?
 
  • Like
Reactions: DarkDante
Joined
Feb 15, 2015
Messages
1,464
Trophies
0
XP
1,089
Country
United States
Even when booting a cart, SCFG is locked. The only thing that has unlocked SCFG is Launcher, hence RocketLauncher exploiting the launcher. Before booting a game (cart or otherwise), Launcher locks SCFG.
 

Apache Thunder

I have cameras in your head!
Member
Joined
Oct 7, 2007
Messages
4,294
Trophies
3
Age
35
Location
Levelland, Texas
Website
www.mariopc.co.nr
XP
6,252
Country
United States
Yeah you have to exploit Launcher or the stage2 bootloader on NAND (equivalent to FIRM partitions of 3DS....sorta). No official software besides Launcher runs with unlocked SCFG. Not even a few of the system Dev apps had it. twlNmenu has a few other things unlocked (a dev app that has both slot-1 and nand enabled), but even that app doesn't have unlocked SCFG. That app only is signed for dev hardware anyways so you can't use that one on retail hardware.
 

You may also like...

General chit-chat
Help Users
    Doctor-Masu @ Doctor-Masu: ahjjj