It's here!

​

Info

@Normmatt has created a way to run B9S .firm files from bootrom via a DSi Flashcard and a magnet! This works on every 3DS on any firmware version.

For installation without a PC, user @TheCyberQuake has created a pack which will automatically install B9S and copy over essential starter homebrew from the flashcard's SD to the 3DS's. This will mainly be used for PC-less B9S installations. If you have a PC with you, use 3ds.guide. Read more here: https://gbatemp.net/threads/481141/

How does this work?

This works because of a flaw in the bootrom. Before the bootrom boots the NAND, it checks to see if Start+Select+X is held down, and if the shell is closed. If these requirements are met, it will boot an NDS cartridge from the bootrom. This give that cartridge bootrom access. You might be wondering how you'd hold down buttons while the shell is closed, and why you need a magnet. If you put a magnet in a specific spot on the 3DS, it will go into sleep mode. Using this, you can boot the NDS cartridge with the buttons held down while in sleep mode! Using a reflashable flashcard, you can boot B9SInstaller using the flashcard, and easily install it on your 3DS.

The 2DS doesn't need a magnet since a switch puts it to sleep instead of a magnet.

What does this mean?

1. Any 3DS model on any firmware can be hacked with minimal effort
2. You can unbrick any 3DS model from any type of brick.
   - Remember, you don't need a NAND backup for this. Just do a CTRTransfer.
   - This does not apply to MCU bricks.
3. Even consoles with fried NAND, or even the NAND chip physically removed, can use this

This is incredibly impressive stuff, and will most likely be released soon! edit: now!

FAQ

Q: Can Nintendo patch this?
A: Nope! Not without a new hardware revision.

Q: My flashcard is blocked by my firmware! Can I still use this?
A: Yes! The flashcard blacklist is not enabled on the bootrom.

Q: Why can't this work with my flashcard?
A: The installation requires you to flash NTRBoot to the flashcard's nand. Most DS flashcards, such as the original R4, have a ROM, which is not flashable.

Q: Can I install NTRBoot on my flashcard without another 3DS system?
A: If you can run NDS roms on your 3DS with it, then yes. If it's blocked on your 3DS version, then you'll need another 3DS system to use it.

Q: Will my 3DS flashcard work?
A: No, only the NDSi flashcards listed above.

Q: Will any other flash cards work?
A: Only the ones listed in the OP. However keep in mind that flashcards such as the DSTT, Supercard DS2 and R4 SDHC Dualcore are planned to be supported in the future.

Q: I tried to do this with my cartridge and it didn't work?
A: It doesn't work with regular DS cards.

Q: Can I unbrick from a ____ brick?
A: Considering the card has access to the bootrom, yes! This can unbrick any brick (except MCU), unless you've taken a knife to the motherboard.

Q: Can I install B9S on the latest firmware with this?
A: Again, since the card has access to the bootrom, you can do this easily! Just plug in your flashcard, boot up using the magnet and button combination, and install.

Q: Does this work on the New Nintendo 2DS XL?
A: Yes!

Release
Guide
Free NTRBoot Flashing
Free B9S Installations

Here is SciresM's post about this

Please see SciresM's presentation on bootromhax.​

 

[Ironknight]

U guys should shut up and dont get more trash here.

+1
You should just wait for a release instead of attacking each other

 

[Starzcream]

This. Any sane person isn't going to try to search 900 posts for a single answer (my original math was wrong). It isn't lazy to not read 900 posts. I tried using the thread search but couldn't find anything relevant to my exact question (imo the search tool for this website just never works well anyway)

I dunno when I'm interested in learning about something I try to read as much as I can. Then again I'm an engineer. Sorry for being rude.

 

[Toni456]

So is there any information about this working on the new 2ds xl?

 

[Snooli]

So is there any information about this working on the new 2ds xl?

Been here before, here is the image

 

[Toni456]

Been here before, here is the image

That's awesome! good to see ntrhax still works on the newest models but is there any other information like the stock firmware or if sighax works?

 

[Axorve]

My N3DS bricked need to be alive o/

 

[gamesquest1]

That's awesome! good to see ntrhax still works on the newest models but is there any other information like the stock firmware or if sighax works?

Sig9hax and ntrboothax are basically 2 halves of the same screwup which is sighax, for one to work the other must also work

And sighax is fw independent, it's an exploit in the bootrom, so as it exploits the system before loading the system fw it doesn't matter what fw the system is on

 

[GerbilSoft]

Just to reiterate: "ntrboothax" is by design. It's used by Nintendo's repair centers in cases where the OS is corrupted.

The problem is the Boot ROM's signature validation is broken for all three methods of booting. (NAND, NTR, and Wi-Fi SPI). (I have no idea what SPI booting would be used for, and its priority is *after* NAND, so it isn't very useful in cases where FIRM is valid but parts of CTRNAND are broken.)

 

[Toni456]

Sig9hax and ntrboothax are basically 2 halves of the same screwup which is sighax, for one to work the other must also work

And sighax is fw independent, it's an exploit in the bootrom, so as it exploits the system before loading the system fw it doesn't matter what fw the system is on

I see that's good news at least, so in theory even the dsiware transfer should work correct?

 

[gamesquest1]

I see that's good news at least, so in theory even the dsiware transfer should work correct?

Im not sure what you mean, ntrboothax replaces any/all other exploits, if you have a compatible flashcard setup for ntrboothax you can hack any system without any need for stuff like dsiwarehax

 

[Toni456]

Is what you mean, ntrboothax replaces aby/all other exploits, if you have a compatible flashcard setup for ntrboothax you can hack any system without any need for stuff like dsiwarehax

I mean that it should work right off the bat with dsiware transfers unless there is something i'm missing or it patches stuff that only works with the older models.

 

[gamesquest1]

I mean that it should work right off the bat with dsiware transfers unless there is something i'm missing or it patches stuff that only works with the older models.

This has nothing to do with dsiware, this works using a specially prepared nds card that was designed as a recovery tool by Nintendo, but with the discovery of sighax devs are now able to make their own version exploiting the sighax flaw so the system can boot a custom recovery cart which will essentially just be a cfw installer that will work on any system

 

[zoogie]

I mean that it should work right off the bat with dsiware transfers unless there is something i'm missing or it patches stuff that only works with the older models.

It works with whatever state the software is on the system. Your nand can be completely wiped and it would still work.

 

[Toni456]

This has nothing to do with dsiware, this works using a specially prepared nds card that was designed as a recovery tool by Nintendo, but with the discovery of sighax devs are now able to make their own version exploiting the sighax flaw so the system can boot a custom recovery cart which will essentially just be a cfw installer that will work on any system

I know that but this is still relevant to whether or not sighax will work or not, i'm just asking if there are any complications involved from a dsiware transfer vs ntrhax

 

[gamesquest1]

I know that but this is still relevant to whether or not sighax will work or not, i'm just asking if there are any complications involved from a dsiware transfer vs ntrhax

[Removed as I now get what your asking]
ntrboothax is just a way of installing the normal sighax, any method of installing sighax has the same effect, ntrboothax is just a golden bullet installer, even if you completely mess up the i stall with ntrboothax hax your system is essentially bulletproof against mess ups

 

[zoogie]

I know that but this is still relevant to whether or not sighax will work or not, i'm just asking if there are any complications involved from a dsiware transfer vs ntrhax

Far less possible complications than dsiwarehax.
Dsiwarehax is a more complex procedure and has a decent chance of not working, leaving you with a wasted dsiware purchase and a weeklong transfer waiting period for both systems involved. It's messy, ntrboothax is clean.

 

[Toni456]

Dsiware has nothing to do with ntrboothax, if your asking if you can transfer ntrboothax via dsiware then no, ntrboothax is a special bootmode embedded into the boot rom on the system, it is triggered before the system even starts and boots from a special cart

But either way ntrboothax is just a way of installing the normal sighax, any method of installing sighax has the same effect, ntrboothax is just a golden bullet installer

I guess you just don't understand what i'm saying lol well thanks anyway.

 

[gamesquest1]

I guess you just don't understand what i'm saying lol well thanks anyway.

Sorry i edited my post after realizing what you were getting at, but no, an installer is an installer, ntrboothax is just a future proof and brick proof installer

But they both install the same thing

 

[Xyphoseos]

when do you think ?

 

[BL4Z3D247]

when do you think ?

If we knew, 42 of us wouldn't be sitting in this thread waiting. Lol.