Description
Lockpick_RCM is a bare metal Nintendo Switch payload that derives encryption keys for use in Switch file handling software like hactool, hactoolnet/LibHac, ChoiDujour, etc. without booting Horizon OS.

Source: https://github.com/shchmue/Lockpick_RCM
Payload: https://github.com/shchmue/Lockpick_RCM/releases

Due to changes imposed by firmware 7.0.0, Lockpick homebrew can no longer derive the latest keys. In the boot-time environment however, there are fewer limitations. That means the new keys are finally easy to dump!

Usage

• Launch Lockpick_RCM.bin using your favorite payload injector or chainload from Hekate by placing it in /bootloader/payloads
• Upon completion, keys will be saved to /switch/prod.keys on SD
• If the console has Firmware 7.x, the /sept/ folder from Atmosphère or Kosmos release zip containing both sept-primary.bin and sept-secondary.enc must be present on SD or else only keyblob master key derivation is possible (ie. up to master_key_05 only)

Big thanks to CTCaer
For Hekate and all the advice while developing this!

Known Issues

• Chainloading from SX will hang immediately due to quirks in their hwinit code, please launch payload directly

 

[BaamAlex]

Haven't tinkered with my Switch for a while, but tried using this tool to get my keys, but all I get when I inject it is a black screen.

I'm on 6.0.0 and AMS 0.9.2

Which version do you use? Try the normal lockpick. Lockpick RCM is only required for FW 7.0 and above.

 

[Kanali]

Which version do you use? Try the normal lockpick. Lockpick RCM is only required for FW 7.0 and above.

Okay!

I just tried using the regular Lockpick, and it seemed to work fine, but the keys generated don't seem to have worked. I tried using them for Switch Army Knife and got an error message asking if the keys were right.

 

[shchmue]

Haven't tinkered with my Switch for a while, but tried using this tool to get my keys, but all I get when I inject it is a black screen.

I'm on 6.0.0 and AMS 0.9.2

Okay!

I just tried using the regular Lockpick, and it seemed to work fine, but the keys generated don't seem to have worked. I tried using them for Switch Army Knife and got an error message asking if the keys were right.

the latest Lockpick_RCM doesn't work? that's odd. you might need to update that extremely old version of atmosphere (it's a year and a half old, latest is 2 weeks old), but indeed you're not going to get any more recent keys unless you update your firmware, so that's why SAK is likely having trouble with whatever content you're using it on. I'd suggest making sure Lockpick_RCM, Atmosphere, and your console's firmware are all up to date and trying again (update Atmosphere first or you won't be able to boot new firmware in CFW). Use either Daybreak or normal settings menu to update firmware.

 

[laramie]

@shchmue do you have any plans to support mariko hardware to dump keys? Idk how it's work since mariko's don't use rcm though?

 

[shchmue]

@shchmue do you have any plans to support mariko hardware to dump keys? Idk how it's work since mariko's don't use rcm though?

as soon as rebooting to hekate on mariko officially works i can add the same sort of support to lockpick_rcm

 

[DrewShiGold]

Any word on when lockpick will be able to dump v11? Thank you for all you do Shchmue

--------------------- MERGED ---------------------------

I appreciate the work you do! Is there any word on when Lockpick will support v11? I get errors anytime I try to dump my SysMMC keys.

Thanks!

 

[cai_miao]

as soon as rebooting to hekate on mariko officially works i can add the same sort of support to lockpick_rcm

hi thank you for your work, booting hekate on mariko it's now a thing. best regards.

 

[laramie]

hi thank you for your work, booting hekate on mariko it's now a thing. best regards.

not the best way to ask but i'm sure OP is excited and getting on top of it

 

[shchmue]

yeah, i should have something out today! stay tuned.

 

[shchmue]

Lockpick_RCM v1.8.5 is out with support for Firmware 11.0.0.

Note: Mariko is not yet supported.

https://github.com/shchmue/Lockpick_RCM/releases/latest

 

[mrdude]

Lockpick_RCM v1.8.5 is out with support for Firmware 11.0.0.

Note: Mariko is not yet supported.

https://github.com/shchmue/Lockpick_RCM/releases/latest

Thanks, I have the new Atmos/sept files + firmware 11 installed, it crashes for me writing to the card, it works ok on older firmware though.

After trying to dump it says, Common, unexpected remap entry chain failure.

 

[LyuboA]

Lockpick 1.8.5 dosnt work on 11.0.0 for me too

 

[Mbarez94]

how can i dump my sx os sd on file emunand's keys?

 

[spotanjo3]

Lockpick 1.8.5 dosnt work on 11.0.0 for me too

You are not alone. Look at this:

https://github.com/shchmue/Lockpick_RCM/issues/43

I am sure that they are working on it.

 

[LyuboA]

You are not alone. Look at this:

https://github.com/shchmue/Lockpick_RCM/issues/43

I am sure that they are working on it.

i know i saw it

 

[spotanjo3]

i know i saw it

Cool. Just want to help you that's all.

 

[LyuboA]

Cool. Just want to help you that's all.

thx

 

[shchmue]

Yeah, I'm working on the fix now, I'm not sure how long it will take

 

[Benja81]

Yeah, I'm working on the fix now, I'm not sure how long it will take

Thank you for the hard work, and especially being work I could never do myself

 

[LyuboA]

Yeah, I'm working on the fix now, I'm not sure how long it will take

thx