Hacking Question Is anybody working on how to hack a patched switch without a mod chip or physical modding?

[pcwizard7]

I searched that name up and got a Japanese store website

https://www.mercari.com/

looks like they are located in US and Japan

 

[Theone5000]

I was just wondering whether or not anybody is working on a way to hack a switch that's patched without using a mod chip or physically modding it.

Yeah wake me up when it's possible for the Switch Lite Would be THE news of 2021.

 

[GameVasion]

Yeah wake me up when it's possible for the Switch Lite Would be THE news of 2021.

It will most likely be a long time until this is done so just don't expect it to happen any time soon because of the chip set the switches use

 

[Theone5000]

It will most likely be a long time until this is done so just don't expect it to happen any time soon because of the chip set the switches use

I am sure there will be alternatives at some point in the near future. Just look how far Atmosphère has come. There will be a software hack someday.. anything is possible. Untill then i'm waiting patiently.

 

[ZachyCatGames]

I am sure there will be alternatives at some point in the near future. Just look how far Atmosphère has come. There will be a software hack someday.. anything is possible. Untill then i'm waiting patiently.

Having a software hack requires a exploitable software bug, Switch has zero exploitable software bugs that would allow running CFW

 

[WiiMiiSwitch]

Having a software hack requires a exploitable software bug, Switch has zero exploitable software bugs that would allow running CFW

Could we only have the hb channel, remember the wii side when their was no cfw. In 3.0.0 there was an exploit not for cfw, but for just the hb menu. At the GBAtemp wiki they do not even consider this an exploit. I don't need cfw, just the hb loader

 

[ZachyCatGames]

Could we only have the hb channel, remember the wii side when their was no cfw. In 3.0.0 there was an exploit not for cfw, but for just the hb menu. At the GBAtemp wiki they do not even consider this an exploit. I don't need cfw, just the hb loader

In theory, yes. In practice, "maybe", dunno if there's any bug that would enable that, also many things assume you're running Atmosphere and wouldn't work properly/at all on stock firmware.

 

[weatMod]

nice site did a quick searchand found a lot of unpatched switches easily. how trustworthy2 is mercari?

well i had never heard of them till last year , our grind and brew coffee machine broke and that was th eonly place i could find a replacement for sale or at least for a good price
so i ordered it and everything went very smoothly

 

[WiiMiiSwitch]

In theory, yes. In practice, "maybe", dunno if there's any bug that would enable that, also many things assume you're running Atmosphere and wouldn't work properly/at all on stock firmware.

I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out

--------------------- MERGED ---------------------------

I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out

Plus not everyone is interested in downgrading the switch or their encryption keys. Maybe they just want N64 games on the go or different backrounds. They reason developers only look at cfw is because they believe everyone is an advanced user.

 

[ZachyCatGames]

I understand they expect you to have cfw, but during the wii u days some apps did too. Although because the RCM bug was found now everyone wants you to have cfw, however some apps still don't need it like (most) emulators. Also, maybe if someone could get the hb menu on the switch, they could use the hb app store and install cfw. However developers obsess over finding cfw support for patched switches that they never try doing what was done during the wii/wiiu/3ds days. Basic homebrew. Besides if someone does find a patched switch exploit with just homebrew many developers would most likely try to add support to your device, seeming as everyone with a patched switch (the basic majority) would install homebrew, they would try to make it work out

--------------------- MERGED ---------------------------


Plus not everyone is interested in downgrading the switch or their encryption keys. Maybe they just want N64 games on the go or different backrounds. They reason developers only look at cfw is because they believe everyone is an advanced user.

Any emulator with a JIT wouldn’t work properly under stock firmware, all custom sysmodules wouldn't work, and anything that relies on AMS extensions wouldn’t work.
Installing CFW with hb appstore would not work, you need an exploit that can run a payload from pk1ldr context or earlier.

Nobody’s bothered because it’s much more difficult than 3ds/wiiu and has zero benefit. You have to pwn something that’d allow you to give yourself full permissions, which is likely impossible on modern firmwares (and if anything did ever show up it’d be immediately patched). Game exploits and w/e don’t work for getting homebrew.

Downgrading isn’t involved with running CFW :thonk:

 

[WiiMiiSwitch]

Any emulator with a JIT wouldn’t work properly under stock firmware, all custom sysmodules wouldn't work, and anything that relies on AMS extensions wouldn’t work.
Installing CFW with hb appstore would not work, you need an exploit that can run a payload from pk1ldr context or earlier.

Nobody’s bothered because it’s much more difficult than 3ds/wiiu and has zero benefit. You have to pwn something that’d allow you to give yourself full permissions, which is likely impossible on modern firmwares (and if anything did ever show up it’d be immediately patched). Game exploits and w/e don’t work for getting homebrew.

Downgrading isn’t involved with running CFW :thonk:

Once again, if someone did bother to find an exploit for patched switches that allowed hb menu then they would make workarounds. Think of it as a jailbroken iphone. For example they wanted to run dolphin emulator, however the team made a workaround and supported normal iphones with some less features

 

[ZachyCatGames]

Once again, if someone did bother to find an exploit for patched switches that allowed hb menu then they would make workarounds. Think of it as a jailbroken iphone. For example they wanted to run dolphin emulator, however the team made a workaround and supported normal iphones with some less features

note: "wouldn't work properly"
JIT emulators would work, but they'd be a stutter fest, only way to get around that is with svcControlCodeMemory patches, which require CFW.

 

[WiiMiiSwitch]

note: "wouldn't work properly"
JIT emulators would work, but they'd be a stutter fest, only way to get around that is with svcControlCodeMemory patches, which require CFW.

At least Hb would be a step forward

 

[Draxzelex]

At least Hb would be a step forward

No it wouldn't. Would you like to know why? Because there was already a period of time when the Switch only had homebrew and the scene was dead. Pegaswitch was the scene's first taste of running unsigned code but it was limited to userland. There was basically little to no noteworthy progress made when it was first released. Hype only picked back up when fusee gelee began being teased.

 

[Jayro]

Without a cash bounty as incentive, I doubt it.

 

[WiiMiiSwitch]

Without a cash bounty as incentive, I doubt it.

Actually, someone should try that

--------------------- MERGED ---------------------------

No it wouldn't. Would you like to know why? Because there was already a period of time when the Switch only had homebrew and the scene was dead. Pegaswitch was the scene's first taste of running unsigned code but it was limited to userland. There was basically little to no noteworthy progress made when it was first released. Hype only picked back up when fusee gelee began being teased.

Something is better than nothing

 

[Draxzelex]

Actually, someone should try that

I'm doubtful because SciresM himself actually made a bounty for someone to release an untethered coldboot exploit that has basically seen no progress.

One can argue nobody took it up due to the price and/or difficulty but I'm confident people would look for an exploit even without a monetary incentive.

 

[SciresM]

Nobody is working on finding exploits for the Switch -- it's mostly pointless since the secure monitor definitely has no security vulnerabilities and the kernel almost certainly has none either at this point.

I expect we'll hit end of life without another softmod.

 

[Ega1232387]

In your opinion, will there be chips not from TX?

 

[Jayro]

In your opinion, will there be chips not from TX?

I'm willing to bet some talented Chinese or Russian hackers will pick it up, to make some $$$.