Help understanding the different hax

Discussion in '3DS - Flashcards & Custom Firmwares' started by NoddyRams, Apr 20, 2017.

  1. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    Ok firstly sorry for the basic questions and i know most of this will be covered elsewhere but i am a noob to all this and wanting to get my head round all this. So have a few questions if people dont mind helping with understanding it all:

    What are the differences between... soundhax, steelhax, doodlebomb? and any other hax?

    thanks
     


  2. evandixon

    evandixon PMD Researcher

    Member
    1,666
    787
    May 29, 2009
    United States
    Those are just different entrypoints: basically different ways of getting into the homebrew launcher, using different games. (Ex. soundhax is a hack of the Sound app that allows entering the homebrew launcher)
     
  3. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    so they all allow the same access then?

    do they all allow CFW to be installed also?
     
  4. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    no. just arm11 userland access.
     
  5. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    so is there a list anywhere of which hax allow what installations?
     
  6. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    there's nothing you can install with userland. titles are managed by kernel11 and kernel9
     
  7. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    sorry could you please explain the term userland? kernel11? and kernel?

    thanks
     
  8. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    Userland


    Kernel
     
  9. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    ok so do different exploits allow you to access different levels of the hardware?

    im confused why soundhax was so popular over other hax?
     
  10. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    its free

    — Posts automatically merged - Please don't double post! —

    but just userland.
    the lowest level exploits you can achieve are arm9loaderhax, firmlaunchhax, ntrcardhax and sighax
     
    Last edited by addi33, Apr 20, 2017
  11. Ryupower

    Ryupower Brood

    Member
    2,920
    433
    Oct 8, 2007
    United States
    soundhax free and easy and primary (NO NEED TO USE ANY HAX to install it ) to use, just copy the file to the SD card in the right place and you good to go

    primary hax, you just copy files to the right place, run whats needed to run the hax
    secondary hax you need a way to run HBL to install them
     
    Last edited by Ryupower, Apr 20, 2017
  12. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    are steelhax and doodlebomb also free?

    so which are primary hax and which are secondary?
     
  13. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    look over Here
     
  14. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    thank you for the help ill go have a read.
     
    addi33 likes this.
  15. ScarletDreamz

    ScarletDreamz [Debug Mode]

    Member
    2,568
    1,112
    Feb 16, 2015
    United States
    California
    There are 4 basic concepts:

    Primary Hax: Needs nothing to be installed, it can be installed for "free", Example: SoundHax
    Secondary Hax: Needs a Primary Hax to be installed, example: OOT3DHAX
    Userland Exploit: Exploiting these initially results in ROP, from that ROP one can then for example try exploiting system flaw(s)
    Kernel Exploit: Basiclaly: Primary Hax can be used to achieve the userland exploit, here you mostly got homebrew, then you need a kernel exploit to downgrade or install LUMA.

    Kernel explits are divided in 2:

    ARM11 Kernel Exploits: Can be used to exploit the ARM11[DUH], this can be used to install the Emunand. [Fasthax For Example]
    ARM9 Kernel Exploits: This gives the user permissions to execute code under the arm9, which is used to get the OTP, to basically install ARM9LoaderHax.

    Check This:
    https://wiki.gbatemp.net/wiki/List_of_3DS_exploits

    So basically:
    Primary Hax -> ARM11 Userland exploit [Here you have Homebrew] -> ARM11 Kernel Exploit - [ Here you can install Emunand ], this is done by getting a SVC request [correct me if im wrong] -> ARM9 Kernel Exploit, Here you can Install ARM9LoaderHax.
     
  16. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    pretty crappy explanations. even though its almost correct, it sounds like "you can just do that and nothing else" and nobody uses emunand btw except for gateway users, (and btw arm11 kernel exploits are not used to create an eminand, since just the arm9 processor can read/write to the nand chip) also the ability to exec arm9 payloads is not just useful for dumping the otp, and dumping the otp is not installing a9lh, a9lh is writing hax payloads to firm0/firm1 also with arm9 code exec you can run a custom OS for example, as long as you control the lowest level of the 3ds security (well boot9 but we still don't have it publicy so I'll use kernel9 on this) which is the arm9 kernel, you can do whatever you want.
     
    Last edited by addi33, Apr 20, 2017
  17. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    thank you for this, it was simple and east to follow answers i was after.

    Again thank you for the help but this is just like all the other text i keep reading lots of terms and short hand for things that noobs dont understand. I have been reading various websites but far too much detail and shorthand terms to follow it all. So its a basic, this is this and this does this i was after.

    ps. i am not totally useless at all this i have softmodded my wii in the past and do various other computer things like this so my knowledge is there just not on the 3ds stuff as yet.
     
  18. RyDog

    RyDog Lazy Animal Crossing hacker

    Member
    1,601
    1,163
    Apr 26, 2015
    United States
    You need arm9 access to do any NAND stuff. arm11 kernel exploits usually are just used as a bridge to exploit arm9 though.
     
    addi33 likes this.
  19. addi33

    addi33 GBAtemp Advanced Maniac

    Member
    1,656
    711
    Sep 12, 2016
    Gambia, The
    already told him #Ninja'D:ph34r:
     
    RyDog likes this.
  20. NoddyRams
    OP

    NoddyRams Member

    Newcomer
    49
    1
    Apr 2, 2017
    Chesterfield, UK
    ok in simple terms... if i find a way to launch homebrew launcher i can then follow 3ds.guide to install the arm9loaderHax?