Toggle sidebar

Hacking Hardware Picofly - a HWFLY switch modchip

  • Thread starter Thread starter mathew77
  • Start date Start date
  • Views Views 3,676,603
  • Replies Replies 17,052
  • Likes Likes 15
AnimeGame said:
Well, all the same, people will call it pikofly when the firmware is finished and will work.
:)
Post automatically merged:


I would wait... but last time when I waited, sx was closed and there were no chips or they cost a million :/ so now the situation is different but...
Click to expand...
Where can you buy these chips from . Thanks in advance
 
darrin41 said:
Where can you buy these chips from . Thanks in advance
Click to expand...
You are probably better waiting for this to be cracked, then a new board will be released with resistors + flex cable points added. Once all the testing is completed and this thing is able to run homebrew properly, it's easy to make a modded board or even a board addon to include those extra components needed to make life easier.
 
  • Like
Reactions: Tafty, peteruk, kylum and 3 others
already ordered couple mosfets from ebay, hope we can use original rpi pico instead of rp2040 mini
 
mrdude said:
You are probably better waiting for this to be cracked, then a new board will be released with resistors + flex cable points added. Once all the testing is completed and this thing is able to run homebrew properly, it's easy to make a modded board or even a board addon to include those extra components needed to make life easier.
Click to expand...
what resistors are we using? and where can I buy those resistors and the flex cable?
 
pixxel13 said:
what resistors are we using? and where can I buy those resistors and the flex cable?
Click to expand...
47 ohm you need 3, get smd ideally probably 1206 is the best size for this but I haven't acctually checked so don't quote me on that and cpu flex can be ordered from Ali express
 
  • Like
Reactions: binkinator
saladus said:
is 200259c8 the first byte?
Click to expand...
Whole thing, by looking at SDK it seems to be an array (address to that array)
There is a function that does a lot :
Overclocks the chip to 333,
Gets unique_id,
and a lot more,
But its never called anywhere from the binary (maybe its in encrypted part), and setting breakpoint to it does do nothing. So I assume (since my rp is not soldered) this thing may be called later when chip is receiving some data ?
Anyway the function is at : 10015f60
 
renoob said:
You can see the current ID as I've shown but the one stored for encryption cannot be found (at least I did not find anything in the ram). Its probably encrypted with the rest
Click to expand...
i don't think it has one stored for encryption lmao, that'd be counterproductive. fw is already encrypted, it just reads it from memory and passes it to another function (that presumably decrypts it but i have no idea what it does). the bypass i did is so hilariously dumb that i doubt it'll work. also on the talk of encryption, we quite literally have the key :ha:
 
saladus said:
i don't think it has one stored for encryption lmao, that'd be counterproductive. fw is already encrypted, it just reads it from memory and passes it to another function (that presumably decrypts it but i have no idea what it does). the bypass i did is so hilariously dumb that i doubt it'll work. also on the talk of encryption, we quite literally have the key :ha:
Click to expand...
Well it has to compare it doesn't it? In one form or another. But anyway yeah the right id is there so just a matter how to inject it
 
We knows HWFLY flash BOOT0, anybody test to apply this patch for see wha't s happen with this chip , and if we can boot CFW ?

I have many flex, so for erista motherboard it s the same pin to solder to the flex ? Because this flex on the picture is for Mariko. And I don't have HWFLY LITE for verify myself
 

Attachments

  • RP-2040-Zero(lite).jpg
    RP-2040-Zero(lite).jpg
    589.2 KB · Views: 91

Site & Scene News

Go to forum More news

Popular threads in this forum

Dusk for switch (TLoZ Twilight Princess port)

Homebrew  Full List of N64 Recompilation Switch ports

Homebrew  New Homebrew "Foil Server"?

Homebrew Tutorial Translation Project  CS2SX — Write Nintendo Switch Homebrew in C#

Hacking  WiFi chip failing and can't boot. is it possible to enable Airplane Mode by editing system save files directly?

Homebrew Homebrew game Project  So... Dan didn't want to reveal his Vulkan, so I made mine.

Homebrew  Sonic Unleashed Recompiled (Homebrew Port)

Is it fixable