Register

Hacking jamais vu - a 1.0.0 TrustZone code execution exploit on the Nintendo Switch

Thread starter Deleted-355425
Start date Jan 20, 2018
Views 1,857
Replies 1
Likes 1

Status: Not open for further replies.

D

Deleted-355425

Guest

Jan 20, 2018

#1

See: https://www.reddit.com/r/SwitchHack...is_vu_a_100_trustzone_code_execution_exploit/

The following is a write-up of how I initially achieved TrustZone code execution on the Nintendo Switch, very much inspired by hexkyz's write-ups. The work completed was done over the course of a couple of days from start to finish in early December, 2017.

The exploit development was a collaborative process between myself and motezazer – together we found, developed, and exploited the flaw(s) described below.

To get the most out of this text, you should at least have basic knowledge of: symmetric cryptography, block cipher modes of operation and the general architecture of the Nintendo Switch security model. It's recommended that readers watch the 34C3 talk "Console Security - Switch" before continuing.

Reactions: DragonBoy

Cyan

GBATemp's lurking knight

Former Staff

Jan 20, 2018

#2

please, use the official thread from SciresM:
https://gbatemp.net/threads/494712/

Status: Not open for further replies.

Similar threads

Hacking Boot security of the Nintendo Switch probably finally cracked

Replies: 16

Views: 9K

Nintendo Switch Nov 26, 2021

NuadaXXX

Hacking jamais vu - a 1.0.0 TrustZone code execution exploit for the Nintendo Switch

9 10 11

Replies: 209

Views: 58K

Nintendo Switch Feb 6, 2018

Sephirosu

Hacking LunaHuskyy's Complete Glossary and Opinions (NX Edition!)

Replies: 2

Views: 2K

Nintendo Switch May 28, 2020

xabier

X

Hacking Suggestion Implement Jamais vu?

Replies: 0

Views: 2K

Nintendo Switch Sep 1, 2018

M7L7NK7

D

Locked

Hacking Arbitrary TrustZone code execution on 4.x via deja vu,

Deleted-355425
Feb 16, 2018
Nintendo Switch

Replies: 6

Views: 3K

Nintendo Switch Feb 16, 2018

Cyan

Share:

Facebook Twitter Reddit Pinterest Tumblr WhatsApp Email Link

Site & Scene News

1. 26K views
  
  Atmosphere CFW for Switch updated to pre-release version 1.7.0, adds support for firmware 18.0.0
  
  After a couple days of Nintendo releasing their 18.0.0 firmware update, @SciresM releases a brand new update to his Atmosphere NX custom firmware for the Nintendo...
  
  Mar 30, 2024 by ShadowOne333 107
2. 21K views
  
  Wii U and 3DS online services shutting down today, but Pretendo is here to save the day
  
  Today, April 8th, 2024, at 4PM PT, marks the day in which Nintendo permanently ends support for both the 3DS and the Wii U online services, which include co-op play...
  
  Apr 8, 2024 by ShadowOne333 179
3. 17K views
  
  GBAtemp Exclusive Introducing tempBOT AI - your new virtual GBAtemp companion and aide (April Fools)
  
  Hello, GBAtemp members! After a prolonged absence, I am delighted to announce my return and upgraded form to you today... Introducing tempBOT AI 🤖 As the embodiment...
  
  Apr 1, 2024 by tempBOT 169
4. 14K views
  
  The first retro emulator hits Apple's App Store, but you should probably avoid it
  
  With Apple having recently updated their guidelines for the App Store, iOS users have been left to speculate on specific wording and whether retro emulators as we...
  
  Apr 14, 2024 by Scarlet 97
5. 13K views
  
  MisterFPGA has been updated to include an official release for its Nintendo 64 core
  
  The highly popular and accurate FPGA hardware, MisterFGPA, has received today a brand new update with a long-awaited feature, or rather, a new core for hardcore...
  
  Apr 4, 2024 by ShadowOne333 54
6. 13K views
  
  Delta emulator now available on the App Store for iOS
  
  The time has finally come, and after many, many years (if not decades) of Apple users having to side load emulator apps into their iOS devices through unofficial...
  
  Apr 17, 2024 by ShadowOne333 96
7. 11K views
  
  Nintendo Switch firmware update 18.0.1 has been released
  
  A new Nintendo Switch firmware update is here. System software version 18.0.1 has been released. This update offers the typical stability features as all other...
  
  Tuesday at 3:19 AM by Chary 74
8. 11K views
  
  "TMNT: The Hyperstone Heist" for the SEGA Genesis / Mega Drive gets a brand new DX romhack with new features
  
  The romhacking community is always a source for new ways to play retro games, from completely new levels or stages, characters, quality of life improvements, to flat...
  
  Mar 30, 2024 by ShadowOne333 36
9. 10K views
  
  Anbernic announces RG35XX 2024 Edition retro handheld
  
  Retro handheld manufacturer Anbernic is releasing a refreshed model of its RG35XX handheld line. This new model, named RG35XX 2024 Edition, features the same...
  
  Mar 27, 2024 by Prans 38
10. 9K views
  
  "Sonic 3" movie has wrapped production & Knuckles series gets its official poster
  
  Quite a bit of news have unfolded in the past couple of days in regards to the Sonic franchise, for both its small and big screens outings. To start off, the...
  
  Mar 30, 2024 by ShadowOne333 27
1. 179 replies
  
  Wii U and 3DS online services shutting down today, but Pretendo is here to save the day
  
  Today, April 8th, 2024, at 4PM PT, marks the day in which Nintendo permanently ends support for both the 3DS and the Wii U online services, which include co-op play...
  
  Apr 8, 2024 by ShadowOne333
2. 169 replies
  
  GBAtemp Exclusive Introducing tempBOT AI - your new virtual GBAtemp companion and aide (April Fools)
  
  Hello, GBAtemp members! After a prolonged absence, I am delighted to announce my return and upgraded form to you today... Introducing tempBOT AI 🤖 As the embodiment...
  
  Apr 1, 2024 by tempBOT
3. 111 replies
  
  Nintendo takes down Gmod content from Steam's Workshop
  
  Nintendo might just as well be a law firm more than a videogame company at this point in time, since they have yet again issued their now almost trademarked usual...
  
  Thursday at 5:36 PM by ShadowOne333
4. 107 replies
  
  Atmosphere CFW for Switch updated to pre-release version 1.7.0, adds support for firmware 18.0.0
  
  After a couple days of Nintendo releasing their 18.0.0 firmware update, @SciresM releases a brand new update to his Atmosphere NX custom firmware for the Nintendo...
  
  Mar 30, 2024 by ShadowOne333
5. 97 replies
  
  The first retro emulator hits Apple's App Store, but you should probably avoid it
  
  With Apple having recently updated their guidelines for the App Store, iOS users have been left to speculate on specific wording and whether retro emulators as we...
  
  Apr 14, 2024 by Scarlet
6. 96 replies
  
  Delta emulator now available on the App Store for iOS
  
  The time has finally come, and after many, many years (if not decades) of Apple users having to side load emulator apps into their iOS devices through unofficial...
  
  Apr 17, 2024 by ShadowOne333
7. 74 replies
  
  Nintendo Switch firmware update 18.0.1 has been released
  
  A new Nintendo Switch firmware update is here. System software version 18.0.1 has been released. This update offers the typical stability features as all other...
  
  Tuesday at 3:19 AM by Chary
8. 55 replies
  
  Nintendo Switch Online adds two more Nintendo 64 titles to its classic library
  
  Two classic titles join the Nintendo Switch Online Expansion Pack game lineup. Available starting April 24th will be the motorcycle racing game Extreme G and another...
  
  Wednesday at 2:48 AM by Chary
9. 54 replies
  
  MisterFPGA has been updated to include an official release for its Nintendo 64 core
  
  The highly popular and accurate FPGA hardware, MisterFGPA, has received today a brand new update with a long-awaited feature, or rather, a new core for hardcore...
  
  Apr 4, 2024 by ShadowOne333
10. 53 replies
  
  Nintendo "Indie World" stream announced for April 17th, 2024
  
  Nintendo has recently announced through their social media accounts that a new Indie World stream will be airing tomorrow, scheduled for April 17th, 2024 at 7 a.m. PT...
  
  Apr 16, 2024 by ShadowOne333

Go to forum More news

Recent Content

@ K3Nv2: Nut on the hill Today at 12:28 AM

Chat 0