Homebrew via Serial I/O?

Discussion in '3DS - Flashcards & Custom Firmwares' started by Cancel, Aug 23, 2011.

Aug 23, 2011

Homebrew via Serial I/O? by Cancel at 6:17 AM (1,533 Views / 0 Likes) 6 replies

  1. Cancel
    OP

    Newcomer Cancel Member

    Joined:
    Jun 21, 2011
    Messages:
    13
    Country:
    United States
    I've been searching around for a confirmation on this potential hack. According to http://coburndomain.org/index.php/2011/08/...-io-apparently/ a guy by the name of MSaki conceived a brilliant plan for injecting unauthorized code through the 3ds.

    This process was vaguely described as the following :

    btw open pilot wings card, solder wires to the chip pinouts on back, then attach to sniffer. Once you have the four points, mark them, then desolder other wires and disconnect from the sniffer. Build a converter, then attach said converter to your serial I/O on pc (i think you can figure the rest so ill simpilify it for you – inject a corrupt save file and leave it decrypted). The 3DS will give you a message that the card save data is corrupt do you wish to continue, tap yes, if all done correctly it should go to a black screen on top and red on touch now you may execute a binary from the serial i/o via a comunication terminal.
    Enjoy

    My question is, has this been tested out or is this bogus?
     
  2. elsparko

    Newcomer elsparko Member

    Joined:
    Apr 3, 2011
    Messages:
    25
    Location:
    Cork
    Country:
    Ireland
    hmmmm... seems like a lot of bother for the moment.. IF it works. Hopefully it does, and and easier way is thought up
     
  3. raulpica

    Supervisor raulpica With your drill, thrust to the sky!

    Joined:
    Oct 23, 2007
    Messages:
    10,672
    Location:
    _____________ PowerLevel: 9001
    Country:
    Italy
    Errrr... MSaki is a member on this site, but I fear that this is just some speculation on his part.
     
  4. Quincy

    Member Quincy Your own personal guitarist :3

    Joined:
    Nov 13, 2008
    Messages:
    1,435
    Location:
    Your house, robbing your stuff
    Country:
    Netherlands
    This could work theoraticly.. But I doubt that the hardware would allow it..
     
  5. koji2009

    Member koji2009 GBAtemp Maniac

    Joined:
    Mar 13, 2009
    Messages:
    1,193
    Country:
    United States
    It doesn't really sound theoretical... it sounds like BS. If he has truly gotten this method to work (or anyone has) it wouldn't be hard to show a "hello world"... and if he was ready to release information to do so, he would have actually released information instead of making a few bold and very vague statements.
     
  6. Fat D

    Member Fat D GBAtemp Maniac

    Joined:
    Nov 18, 2006
    Messages:
    1,117
    Country:
    Germany
    You would still need to get through the encryption of the card interface.
     
  7. Immortal_no1

    Member Immortal_no1 GBAtemp Regular

    Joined:
    Jul 17, 2003
    Messages:
    266
    Country:
    United Kingdom
    There is some potential to this. I have a pilotwings 3ds demo cart, the demo cart boots directly into the game bypassing the homescreen, when I run up the game I get ablackscreen followed by a flash of white followed by the blackscreen with loading message, then finally the game screen.

    There may be a case where when it gets to the loading screen you could interrupt the load, but unless we know what the pinouts are for the back of the pcb are and which protocol, i'm assuming it's simple ttl, you may be able to inject code in directly via the serial.

    I want more info on this. Pictures and pinouts and I'll give it a go, otherwise I'll do it my way 'hack and slash':P
     

Share This Page