ROM Hack [Release] 3DS_CTR_Decryptor-VOiD

[sbJFn5r]

Got bored. Generates an encTitleKey.bin that works with the TitleKey decryptor, use the titlekey tools to dump the key, ctrtool to extract the contents and then the command "aescbc content content.out key 00000000000000000000000000000000" (that's 32 zeroes) (minus quotes) replacing "content" with the extracted and encrypted content and "key" with the key printed out by printKeys.py.

Or, you could just drop the CIA onto dumpTicketKeys.py, it searches for tickets in whatever you give it. And once you have the decrypted key, you can just uses ctrtool to decrypt the CIA, you don't need aescbc.

ctrtool --titlekey=XXX --contents=blah file.cia

 

[Huntereb]

Or, you could just drop the CIA onto dumpTicketKeys.py, it searches for tickets in whatever you give it. And once you have the decrypted key, you can just uses ctrtool to decrypt the CIA, you don't need aescbc.

ctrtool --titlekey=XXX --contents=blah file.cia

Even better!

 

[Huntereb]

Thanks for the help einstein95 and sbJFn5r, but it looks like the audio file is sent to the client as it's needed in the game, along with all of the track data... That pretty much means local multiplayer with custom tracks is incredibly easy, which is great!

It also means that the awesome Main Manu music on the Download Play client's game is probably in one of the streams of the normal main menu music. I'll look into it.

Thanks again!

 

[cearp]

i didn't look at the code, but yes... dumpticketkeys literally searches (regex i think) throughout the file for the tickets, so, it will find the ticket in the cia (because cias should contain the ticket and tmd both i think...?)
but, hopefully people would only use that on cias that are 'real', and not try to get keys from fake cias generated with decrypted contents, without tickets, etc etc
but nice for the guide on aescbc for those people who don't know how to use it

 

[Apache Thunder]

So....Anyone tried to do rom decrypting with the Gateway Ultra 3.0 exploit yet? Or is this going to be limited to 4.5fw users like I expected?

 

[Duo8]

So....Anyone tried to do rom decrypting with the Gateway Ultra 3.0 exploit yet? Or is this going to be limited to 4.5fw users like I expected?

It's possible but the launcher is not yet re-d.

 

[Apache Thunder]

The current launcher.dat file I attempted to use, but just get a force quit (browser just exits back to home menu with error message) when I attempt to activate the new exploit. Seems the old launcher.dat file is not compatible. Wonder what the ETA is on when a new version compatible with the browser exploit will be release.

 

[Duo8]

The current launcher.dat file I attempted to use, but just get a force quit (browser just exits back to home menu with error message) when I attempt to activate the new exploit. Seems the old launcher.dat file is not compatible. Wonder what the ETA is on when a new version compatible with the browser exploit will be release.

Well, how long did it take people to re 2.6?

 

[Apache Thunder]

I have no idea. I was not into the scene at the time as I did not have a 4.5 fw 3DS.

 

[themperror]

Now we need a version that works on 9.2 3DS's

 

[drwhojan]

I have no idea. I was not into the scene at the time as I did not have a 4.5 fw 3DS.

The new gateway firmware, can now downgrade latest firmwares down to 4.5 , So I know of .

– DOWNGRADING your 4.5+ console back to 4.5!

4.5+ as in higher I think .

 

[Apache Thunder]

Downgrading is not a real solution to this. Main issue would be losing access to the saves on my retail games due to the old save encryption on 4.x consoles. This is why I couldn't stay on 4.2. I downgraded only so I can format sysnand to unlink my emunand. I did it this way to avoid unlinking the NNID which would cause my Friend Code to change. Afterwards I upgraded to 7.2 via my Pokemon Alpha Sapphire game.

(Yes Classic Mode on 7.x+ sysnand fw does use the new encryption. )

 

[whoope]

I want to change player models in OR/AS like Huntereb. I have both 4.5 and 9.2.
How would I be able to do this?

 

[bunny5390]

Would it be possible - and if so, about how long in hours would it take - for an experienced software engineer with no 3DS knowledge or experience to add unicode support to this?


Also, what exactly breaks where with the unicode?

 

[einstein95]

Would it be possible - and if so, about how long in hours would it take - for an experienced software engineer with no 3DS knowledge or experience to add unicode support to this?


Also, what exactly breaks where with the unicode?

I do not believe that there's issues with unicode in the decryptor, only makerom, where it replaces any non-ASCII/CP-1252 character with #.

 

[descac]

Is there any way to process multiple ncchinfo.bin at once? I'm getting broken xorpads of themes with SD padgen.

 

[PaperLucario]

any further explanation on the sm4sh tools? i'm pretty new to coding but i want to rip some of the game's data

 

[Relys]

Added instructions to build for ique (chinese) 3ds in the rop loader. Thanks to cearp for relaying correct gadget offset from enler.

https://github.com/Relys/3DS_Multi_Decryptor/commit/938afcb5541a76416728c0a6d022b7e36624864c

 

[AquaX101]

Would it be possible to get the xorpads by using the computer instead of a 3DS?

 

[cearp]

Would it be possible to get the xorpads by using the computer instead of a 3DS?

no