Hacking [Release]NTR CFW 3.2 with experimental Real-Time Save feature.

[zdgr4ye5]

I really love NTR cfw, I use it with pasta cfw on my japan system.
But I cant get - why pasta loads with 100% success, and NTR not?

 

[tyrran]

I really love NTR cfw, I use it with pasta cfw on my japan system.
But I cant get - why pasta loads with 100% success, and NTR not?

NTR relies on connecting to the internet and downloading the package everytime. If there is anything temperamental with your internet, it will fail and hang. You sometimes have to try a few times before it connects and executes correctly.

 

[Kuifa]

NTR relies on connecting to the internet and downloading the package everytime. If there is anything temperamental with your internet, it will fail and hang. You sometimes have to try a few times before it connects and executes correctly.

But I can run NTR with Internet disabled... Isn't the installation part that requires the internet connection?

 

[tyrran]

But I can run NTR with Internet disabled... Isn't the installation part that requires the internet connection?

I'm fairly certain you need an internet connection to launch NTR everytime. Not just install, actually running it. To be honest, I've given up on NTR and gone the way of Pasta, so I'm not positive.

 

[MeisterFenster]

No. You only need to an internet connection for installation. Not every time you want to boot it.

 

[nitrozz]

u wont need internet after install

 

[urherenow]

So... new news on smealum's regionFOUR. Yellows8 made some changes that, with a bit of work, can lead to launching it from OOT instead of CN. Perhaps this knowledge can be adapted to NTR for non CN owners? (not begging; I own both games... just think it would be awesome for the community)

Edit: and I doubt this will be looked into since it involves .cia files, but .cia is the only way to use DLC from out of region games... anyway, I installed a .cia of DLC stuff for a certain Japanese game on my US console, and tried to use it (in conjunction with pastaCFW+NTR) but it did not show up in-game. But I just realized that is DOES show up in Gateway mode (I'm using sysnand for this, in case that wasn't obvious from the use of pasta and NTR)

Edit2: just realized I failed to make a point on edit1. What I was trying to get at, is that there might be another bit or two missing from the region-free patch since it doesn't seem to play nice with DLC and I think I had a bit of difficulty grabbing the latest update for xenoblade so the firmware spoof may be missing a little something as well...

 

[kamesenin888]

im getting error each time i try to install the ntr on a cubic ninja, whats happenning? jap n3ds with 9.2

 

[Alkéryn]

How did you patch home menu for region free that would be nice to add it to pasta

 

[cearp]

I'm fairly certain you need an internet connection to launch NTR everytime. Not just install, actually running it. To be honest, I've given up on NTR and gone the way of Pasta, so I'm not positive.

just like ninjhax, gw cn, and ntr 2, you only need internet to install the hack... it saves to the save files.
internet is only used that one time

 

[motezazer]

How did you patch home menu for region free that would be nice to add it to pasta

https://github.com/patois/NTRDisasm/

 

[Alkéryn]

https://github.com/patois/NTRDisasm/

Just found it before but thank you any ways ^^

 

[_eyCaRambA_]

How to use NTR CFW + Debugger with ARCode Cheats

Did you happen to figure out how to reliably use NTR mem editing for changing addresses?
The usual pointer approach doesn't seem to work, probably due to the splitted memory layout.

 

[liomajor]

Most games store their values inside 14000000, so it's a single dump.

Depending on what you are looking for, you'll find it fast or it needs time using cheat engine.

If you need help, we need the name of the game and what you are looking for.

 

[_eyCaRambA_]

I've no issues with figuring out the addresses I'm looking for, I was rather asking if you found a way to determine the pointers for changing addresses (basically I'm asking if you found a solution for the "For a few games, the found offset is not fixed and you need to find it once per use." problem you described).

 

[liomajor]

The fastest way would be to dissassemlbe the code on how the game creates the memory array.

I'm not that much into cheating for myself, so i didn't investigate it

 

[Elgrosp]

https://github.com/patois/NTRDisasm/

Were you talking about this?

 

[_eyCaRambA_]

Nevermind, figured it out I myself, sort of.
region1.00F8BB8C seems to work most of the time even after restarting the game (which is MH4U EU btw). I'm not sure what the game actually points to there but it's reliable enough to pin down various variables I played around with.

i.e.
region1.00F8BB8C+118 = max player HP bar value
region1.00F8BB8C+1442A = Monster 1 HP value
region1.00F8BB8C+206BA = Monster 2 HP value

But that's probably not directly related to this thread, just leaving this here if sb comes across a similar problem.

 

[MeisterFenster]

Is the server down? I cant install it, crashes every time back to home menu.

 

[SlateXD]

How to use NTR CFW + Debugger with ARCode Cheats

You need:

- A retail Cartridge or legit CIA buyed from eShop
(unsigned cia works with pre bootet PASTA CFW)
- Cubic Ninja with NTR QR Code
- NTR.BIN in root folder of internal memorycard
- Create empty file 'debug.flag' in root folder of internal memorycard
- NTR Debugger
- Activated WLAN with Internet and a PC in the same Network

debug.flag or activate it inside NTR Menu (press X+Y)

Used Commands:

To connect to your console's IP use:
connect('XXX.XXX.XXX.XXX', 8000)

A few games disconnect wlan when playing movie / loading,
if that happens, don't close NTR Debugger, re-connect it!

To get your App/Game's PID:
listprocess()

Example MH4U-EUR:
(pid: 0x00000028, pname: redgiant, tid: 0004000000126100)

PID might change once per boot!

You can find TitleID's for games here: http://3ds.essh.co/

To write your value:
write(0x<OFFSET>, (0x<VALUE>, 0x<VALUE> ,0x<VALUE> ,0x<VALUE>), pid=0x<PID>)

OFFSET = Cheat Offset // VALUE = The Value you want to write // PID = The Apps/Games Process ID

NTR Debugger:

- Start Cubic Ninja and execute NTR Exploit
- Start your desired game
- Start NTR Debugger on PC
- Connect NTR Debugger Example: connect('192.168.1.100', 8000)
- To get the PID, write listprocess() and look for your Games TitleID (TID)

As example i took PID 0x28.

Now how to use ARCode:

Example ARCode
-=[Paper Mario Sticker Star]=-
$9999
02CBCE9C 0000270F

NTR will be 14000000 + ARCode Offset = OFFSET:
write(0x16CBCE9C, (0x0F>, 0x27 ,0x00 ,0x00), pid=0x28)

Depending on what you cheated, it might be necessary to
buy/sell,enter/exit map/house or gain exp to take affect.

To dump your games flash memory:

Additional Commands:

Display Apps/Games Memory Layout:
memlayout (pid=0xPID)

Example MH4U (EUR):
valid memregions:
00100000 - 0111dfff , size: 0101e000
08000000 - 0b13efff , size: 0313f000
0ffc0000 - 10000fff , size: 00041000
10002000 - 10002fff , size: 00001000
1e800000 - 1e9fffff , size: 00200000
end of memlayout.

You have to find the region where your value
belongs to! In most cases, it will be inside
the region that covers offset around 14000000!

To DUMP memoryregions:
data(0x<START OFFSET>, 0x<size>, filename='<name of the file>', pid=0x<PID>)

To find cheats:

Make as many dumps you need and use Cheatengine to find your offset.

Example:
Dump 01 > 1000
Dump 02 > 2000

To use Cheatengine with dumped files:
Press "Open Process", then press "Open File" and choose
your file. After searching, switch to the next dump.

To get the real offset from Cheatengine to NTR it's:
<START OFFSET> + <FOUND OFFSET> = <OFFSET>

To write the offset with your value (4 Bytes): (Example 50000 dec // 0000C350 Hex)
write(0x<OFFSET>, (0x50>, 0xC3 ,0x00 ,0x00), pid=0x<PID>)

To export the offset to ARCode (HEX):
<START OFFSET> + <FOUND OFFSET> - 14000000 = <ARCode OFFSET>

If the result is negative (<0), ARCode is unable to use the cheat!

For a few games, the found offset is not fixed and you need to find it once per use.

You are free to copy my Tutorial as long you share it for everyone!

Could you explain how i would input an ARCode into Fire Emblem Awakening using NTR Debugger in a bit of emphasis? For example this code :
Money:
009997D0 000F423F

Such as what i would write and how to do so, just a simple step by step so i can understand. I have a headache from reading your tutorial. I did my best to follow it!

Maybe i get it now, i add 14 to the 00, so it would be 149997D0 as offset, now i just need to do the rest and figure out the pid. right?