How will we hack the Switch 2

[KiiWii]

Large hammer.

 

[LoggerMan]

Gary Bowser is out of prison. Maybe we should start a go fund me for him to relocate him to a country without extradition treaties so he can work on a mod for Switch 2.

Post automatically merged: Jan 17, 2025

Whatever, If in the console there's a easy way to get full root access in launch day, it will be funny

Are you saying we should pay for a Switch 2 and just put it in a drawer and not use it? That would be agony, I'd have to buy two Switch 2's, one to use and one to hide away.

 

[SeventhSon7]

 

[rsx]

Post automatically merged: Jan 18, 2025

Very peculiar that you'd rather use a modchip than a softmod to hack the Switch 2. A softmod is much safer, and is readily accessible to everyone once it's discovered. I have an unpatched v1 Switch and always turn it off when I don't plan to use it for a few days in a row. It just takes a few seconds to re-inject a payload when I turn it on again. It was your choice in the end to keep yours always powered on.

It's not peculiar. I put an hwfly into my unpatched v1 because I prefer pressing power and having it boot straight to atmosphere. If I'm in a car or on the bus and something happens, I'm not carrying around a usb cable.

 

[ChronoCrossfangirl2002]

So this would still basically only be early units that also have the RCM exploit. (As far as I know, please correct this is if it is wrong.) Anything newer, including Lite and OLED models, have nothing.

Yes, lite and OLED have nothing, and the Switch 2 will most likely not have an RCM mode, if not that something compelely different, and if not that, again nothing at all as there's genuinely no reason to have it if the exploit was patched as many times as it was and made inaccessible on later models, furthermore this is why so many are saying the modchip is the most plausible as we literally know nothing about the S2, other than what we've seen and the speculation about the magnet cons potentially having an exploit is just that: speculation. nonetheless i'm on team modchip.

 

[OniOkami666]

I think every time a console is launched, there will always be a vulnerability. If we find that vulnerability, it will be hacked.

 

[SonicMan44]

Modchip.
Nintendo were probably so happy about hiding the D0 point on the OLED Switch so that modchips wouldn't work, until people started melting off the EMMC chips and drilling holes in the fucking motherboard. Wonder what other protection ideas N have come up with for Switch 2.

Jesus, they melted the chips and drilled holes? Some people, man. THEY'RE FUCKING CRAZY, I TELL YA!

 

[Vigilant_Veggie]

My guess is as good as any, but I'm sure Nintendo have designed this console to be as secure as they possibly can. With the original Switch having been hacked so early in its life, and the prevalence of piracy that followed suit, I'm sure they've taken this matter very seriously...

But if there's a will, there is a way. Looking at the PS5, that was hacked within 2ish years of its launch and that is a current gen machine that used state of the art security at the time. I'm sure the Switch 2 will get hacked at some point, I just doubt that a paper clip is going to be able to do it lol.

My current plan is to buy one at launch and keep that puppy sealed in the box, maybe just take it out once to make sure it works. Keeping it on as low of a FW as possible and waiting for a softmod seems like the best way forward. It might take a while, but I'm willing to wait.

 

[Pivoine]

Do you guys think that backward compatibility could be a door-opener for a console hack?

 

[ihaveahax]

Do you guys think that backward compatibility could be a door-opener for a console hack?

No it almost certainly won't be. Game-based exploits already effectively do not exist for the current Switch.

 

[Jayro]

I wouldn't be surprised if the switch scene has been sitting on a new way to hack the original one but kept silent in hopes that the method is not patched on S2.

I doubt it, the hacking scene couldn't even keep Fusee under wraps and leaked it early.

 

[The Real Jdbye]

There is a non-zero chance that we already have something that allows to break S2. With the backwards compatibility, it's likely that there is a ton of similarities with the original Switch, and I wouldn't be surprised if the switch scene has been sitting on a new way to hack the original one but kept silent in hopes that the method is not patched on S2.

BC will for sure be sandboxed to make it hard or impossible to break out even if we are able to hack the Switch side.
It would be worthwhile just to be able to continue playing all our pirated Switch games on the Switch 2 so no need to keep both consoles but it's unlikely that it could be used to run Switch 2 software.
I am assuming the ban risk will be much greater on the Switch 2, we might not have access to emuNAND on the Switch side + there could be additional telemetry.

 

[Melodybun]

At this rate, they're gonna booby trap the SW2 with internal spikes

 

[Jayinem]

There'll be a boot disc just like the Dreamcast.

 

[Deleted member 731084]

The Switch microkernel has been reimplemented in Atmosphère and it is believed to have no vulnerabilities.

These statements don't relate to each other. Reimplementing something doesn't mean you find all vulnerabilities in it. Nintendo still made some stupid mistakes on the Switch and it'd be silly to assume they'd all be found by a handful of (very talented) people.

The microkernel of the Switch has no vulnerabilities. If there is an exploit in the browser, its capabilities will be extremely limited.

Famous last words. There are always vulnerabilities. It's just a matter of finding them.

Especially in WebKit. But not just in WebKit. I'm sure there's going to be fresh attack surface in the Switch 2, even if HOS is the only absolute secure OS in existence now.

 

[tomberyx]

To hack Switch2 you need this

- 2x Paperclips
- 2x Mod-Chips
- 1,5x Brain/s

Look how easy it is to hack the second Newcomer,because its Switch2x

 

[M7L7NK7]

These statements don't relate to each other. Reimplementing something doesn't mean you find all vulnerabilities in it. Nintendo still made some stupid mistakes on the Switch and it'd be silly to assume they'd all be found by a handful of (very talented) people.

Famous last words. There are always vulnerabilities. It's just a matter of finding them.

Especially in WebKit. But not just in WebKit. I'm sure there's going to be fresh attack surface in the Switch 2, even if HOS is the only absolute secure OS in existence now.

Yeah there's plenty of "stupid mistakes" on the Switch, just none of them lead anywhere. HOS is secure and the Switch 2 will be the same

 

[MrQQ]

Will we use a paperclip? Will we use a soldering iron? Or will we use the power of the Chaos Emeralds to mod it?

What a dumb post

 

[tomberyx]

Just as a reminder, we now have
AI PROGRAMS that can calculate and change intern settings in just a few seconds.

You no longer have to be a Hero-hacker, you just have to write the right ideas into the program in the search bar, then simply press enter button to see the obstacles.
After a certain time these obstacles are understood.

 

[Deleted member 731084]

Yes, lite and OLED have nothing, and the Switch 2 will most likely not have an RCM mode, if not that something compelely different, and if not that, again nothing at all as there's genuinely no reason to have it if the exploit was patched as many times as it was and made inaccessible on later models, furthermore this is why so many are saying the modchip is the most plausible as we literally know nothing about the S2, other than what we've seen and the speculation about the magnet cons potentially having an exploit is just that: speculation. nonetheless i'm on team modchip.

RCM was meant to run signed code only from the start. Mariko switches have RCM, they just aren't vulnerable to the buffer overflow leading into arbitrary code exec anymore. Supposedly Nintendo still uses RCM for repair and refurbishment.