Toggle sidebar

Hacking Official [Release] CakesFW

  • Thread starter Thread starter mid-kid
  • Start date Start date
  • Views Views 842,069
  • Replies Replies 3,542
  • Likes Likes 73
DjoeN said:
Can i boot Cakes through Tubehax on o3ds fw9.2 (just asking :) )
(No ironfall on it)
Click to expand...
mid-kid said:
I don't think ironhax/ninjhax 2.0 are able to boot other CFWs either.
At least, iirc, brahma only works with ninjhax up to 1.1, and I don't think anybody's about to fix that.
Click to expand...
This includes tubehax.
 
  • Like
Reactions: DjoeN
Does ninjhax 2.0/2.1 use a new boot.3dsx as Ive been launching the boot.3dsx from ninjhax 1.1 on tubehax?
 
Torx said:
Does ninjhax 2.0/2.1 use a new boot.3dsx as Ive been launching the boot.3dsx from ninjhax 1.1 on tubehax?
Click to expand...
You cannot launch a 1.1b boot.3dsx using a 2.0 exploit. Now what you could do if you're so determined is do what I did and modify your 1.1b payload to load a file other than boot.3dsx, (then Ninjhax 2.0 could still load the boot.3dsx) but I wouldn't call it easy to do.
 
  • Like
Reactions: Zidapi
Zap Rowsdower said:
You cannot launch a 1.1b boot.3dsx using a 2.0 exploit. Now what you could do if you're so determined is do what I did and modify your 1.1b payload to load a file other than boot.3dsx, (then Ninjhax 2.0 could still load the boot.3dsx) but I wouldn't call it easy to do.
Click to expand...

Could you share your code?
 
  • Like
Reactions: Zidapi
Zap Rowsdower said:
You cannot launch a 1.1b boot.3dsx using a 2.0 exploit. Now what you could do if you're so determined is do what I did and modify your 1.1b payload to load a file other than boot.3dsx, (then Ninjhax 2.0 could still load the boot.3dsx) but I wouldn't call it easy to do.
Click to expand...
Yes please share, I could really use this :)
 
This is kind of OT, (PM me for questions. I don't want to muddy the thread) but here's how I did it. You have to decrypt your extracted payload with blowfish.py after making this change,
ret=cipher(S,P,l,r,0) --> ret=cipher(S,P,l,r,1)
and it's hardcoded to load blowfish_processed.bin (google for a pastebin)
There will be a number of 'boot.3dsx' instances in the file output to hex edit, and when that's done you change the code back to 0, and reverse the command line arguments
and then you'll have your edited payload ready to be injected.
 
  • Like
Reactions: Ronhero, kactusss, klear and 2 others
Zap Rowsdower said:
This is kind of OT, (PM me for questions. I don't want to muddy the thread) but here's how I did it. You have to decrypt your extracted payload with blowfish.py after making this change,
ret=cipher(S,P,l,r,0) --> ret=cipher(S,P,l,r,1)
and it's hardcoded to load blowfish_processed.bin (google for a pastebin)
There will be a number of 'boot.3dsx' instances in the file output to hex edit, and when that's done you change the code back to 0, and reverse the command line arguments
and then you'll have your edited payload ready to be injected.
Click to expand...
Great work! Create a new thread for this and we shall crown you king (for as long as we see fit).
 
  • Like
Reactions: Ronhero and klear
Suiginou said:
My bad, I misread that as "We won't share code" and managed to overlook the link to the github repo.

Disregard my earlier post, please allow me to applaud your work.

Edit: lol responses to edited responses to edited posts
Click to expand...
Now I'm curious; what did your posts say before?
 
Zidapi said:
Great work! Create a new thread for this and we shall crown you king (for as long as we see fit).
Click to expand...
Quiet down everyone, your "king" has something to say.
...lol :P
The newest NH2.0 boot.3dsx is actually backwards compatible, meaning that you can use a 1.1b payload to load those 1.1 exclusive apps.
 
  • Like
Reactions: hippy dave and b1l1s
Hi!

I have a N3DS 9.0 with emunand created.
MSET Downgraded.
Gateway Flashcard

But I lost my cubic ninja, is there any way to get access to gateway menu or RX, or Cakes... ??
 
Cindakil said:
Hi!

I have a N3DS 9.0 with emunand created.
MSET Downgraded.
Gateway Flashcard

But I lost my cubic ninja, is there any way to get access to gateway menu or RX, or Cakes... ??
Click to expand...
If you already have mset downgraded you can just use the blue cart(I don't own GW but I think this is the one) to install the ROP that you need, be it for GW, rxTools or CakesFW.
 
b1l1s said:
If you already have mset downgraded you can just use the blue cart(I don't own GW but I think this is the one) to install the ROP that you need, be it for GW, rxTools or CakesFW.
Click to expand...

@173210 has done experimental plugin module for CakesFW. Do you have any idea about that? Screenshot plugin? :D
 
I dumped and decrypted my Sysnand partitions (with Decrypt9) and now I have FIRM0.bin, Firm1.bin and CTRNAND.bin.

How I can obtain firmkey.bin and firmware.bin??

PS: Is a New3DS 9.2

Im lost :(


EDIT: I THINK that I get the correct firmkey.bin but I'm not sure what firmware.bin I have to use. They say me "Failed to decrypt the firmware.bin" :(
 
Last edited by Cindakil,
Cindakil said:
I dumped and decrypted my Sysnand partitions (with Decrypt9) and now I have FIRM0.bin, Firm1.bin and CTRNAND.bin.

How I can obtain firmkey.bin and firmware.bin??

PS: Is a New3DS 9.2

Im lotst :(
Click to expand...

Easiest way is to go to that 3ds iso site and get it from there.
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Why did the price of 3ds shoot up ?

Hacking Homebrew Project  BlazerTube - a YouTube 3DS revival using the REAL app!

Problems getting Homebrew to appear outside of the Homebrew Launcher (homebrew won't appear on the HOME menu)

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Website for finding alternative games for 3DS

Hardware  2 Broken 3DSes, need help

Gaming  any good rpgs on 3ds?

Hacking  Modding Reassurance