Hacking jamais vu - a 1.0.0 TrustZone code execution exploit on the Nintendo Switch

  • Thread starter Deleted-355425
  • Start date
  • Views 1,832
  • Replies 1
  • Likes 1
Status
Not open for further replies.
D

Deleted-355425

Guest
See: https://www.reddit.com/r/SwitchHack...is_vu_a_100_trustzone_code_execution_exploit/

The following is a write-up of how I initially achieved TrustZone code execution on the Nintendo Switch, very much inspired by hexkyz's write-ups. The work completed was done over the course of a couple of days from start to finish in early December, 2017.

The exploit development was a collaborative process between myself and motezazer – together we found, developed, and exploited the flaw(s) described below. :)

To get the most out of this text, you should at least have basic knowledge of: symmetric cryptography, block cipher modes of operation and the general architecture of the Nintendo Switch security model. It's recommended that readers watch the 34C3 talk "Console Security - Switch" before continuing.
 
  • Like
Reactions: DragonBoy
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Hogwarts legacy mods

Tutorial  PSA: Check your data!!!

Super Mario RPG Remake is now leaked

Super Mario RPG Remake crashes on Oled Switch when Peach Cutscene appears.

Super Mario RPG - How to extract animations

Transfer Hogwarts Legacy PC save to Switch

Super Mario RPG Cheats

Homebrew Homebrew game  Legend of Zelda: Ocarina of Time (Leveled)

General chit-chat
Help Users
  • violent_froggy00 @ violent_froggy00:
    is sd:\luma\plugin\0004000000030800 a correct path?
  • violent_froggy00 @ violent_froggy00:
    asking bcs i'm not sure if it should be "plugin" or "plugins"
  • Psionic Roshambo @ Psionic Roshambo:
    Just do both lol
  • ZeroT21 @ ZeroT21:
    i know of the ''plugin'' directory, but that is just on the root
  • K3N1 @ K3N1:
    If free late pizza was still a policy I'd be out slicing delivery drivers tires
  • ZeroT21 @ ZeroT21:
    to me pizza is just... bread
  • Xdqwerty65 @ Xdqwerty65:
    with cheese
     +1
  • ZeroT21 @ ZeroT21:
    gotta add extra toppings, like pineapple
  • Xdqwerty65 @ Xdqwerty65:
    and sauce
     +1
  • violent_froggy00 @ violent_froggy00:
    FINALLY A PINEAPPLE LOVER
  • violent_froggy00 @ violent_froggy00:
    jeez it's impossible for me to find people who don't despise pineapple on pizza
     +1
  • Xdqwerty65 @ Xdqwerty65:
    i never tried pineapple pizza
  • Xdqwerty65 @ Xdqwerty65:
    why is it hated?
  • violent_froggy00 @ violent_froggy00:
    i LOVE it
  • K3N1 @ K3N1:
    Hawaiian style is delicious people just feel empowered to disagree
  • ZeroT21 @ ZeroT21:
    i'm also as clueless to why everyone else hate it
  • violent_froggy00 @ violent_froggy00:
    idk, ig people don't like the idea of fruit on pizza even though tomatoes are a fruit
  • K3N1 @ K3N1:
    I remember desert pizza from cicis was actually pretty good
  • Xdqwerty65 @ Xdqwerty65:
    i heard its bc pineapple's flavor contrasts too much with the cheese's flavor
  • K3N1 @ K3N1:
    It's those people that get mad over everything not being "authentic"
  • violent_froggy00 @ violent_froggy00:
    they're just uncultured
  • ZeroT21 @ ZeroT21:
    If i ever order pizza then it's always a large pizza all for meself, no sharing, kinda hard to get stuffed on bread
  • K3N1 @ K3N1:
    Technically it's not part of their culture originally but that's the thing other countries add to things people get fussy about
  • ZeroT21 @ ZeroT21:
    I'm chinese ,but you won't see me complain bout ''westerners'' using alien ingredients in their chinese dishes
  • K3N1 @ K3N1:
    Nothing wrong with wanting authentic taste it's like people that think taco bells authentic but taco bell can still clinch your booty
    K3N1 @ K3N1: Nothing wrong with wanting authentic taste it's like people that think taco bells authentic but...