Hacking RP2040 as payload injector for V1?

Menacer · Jun 20, 2023

Obvious question I could not find asked before.
There is a solution in the form of m0 trinkets as "internal modchips" that do the payload injection for unpatched v1 consoles.
Now, these cost ~$12 on ali, so the obvious question is, can't you also use a rp2040 for that?
From what I understand, picofly does the payload injection, too after the glitching, right?
So shouldn't it be possible, to take, like, only the payload injection part of the code and use it on v1 consoles?

linuxares · Jun 20, 2023

Its supported by picofly so yes. Its possible

leerz · Jun 20, 2023

Menacer said:
Obvious question I could not find asked before.
There is a solution in the form of m0 trinkets as "internal modchips" that do the payload injection for unpatched v1 consoles.
Now, these cost ~$12 on ali, so the obvious question is, can't you also use a rp2040 for that?
From what I understand, picoply does the payload injection, too after the glitching, right?
So shouldn't it be possible, to take, like, only the payload injection part of the code and use it on v1 consoles?

the answer is both yes and no.

yes, because picofly will be used to glitch the switch and use the exploit to send the payload, therefore, you are able to launch your payloads.

no, because it is a different method, payload injection via RCM for unpatched consoles, like that of M0 trinkets uses the samd21 to push payloads in RCM via the fusee gelee hax

szczetyk · Sep 19, 2023

leerz said:
the answer is both yes and no.

yes, because picofly will be used to glitch the switch and use the exploit to send the payload, therefore, you are able to launch your payloads.

no, because it is a different method, payload injection via RCM for unpatched consoles, like that of M0 trinkets uses the samd21 to push payloads in RCM via the fusee gelee hax

It's "only" a matter of writing proper uf2 for picofly to work same way as sam d21 chips- that there is no around ATM and no interest of anybody to do so..

leerz · Sep 20, 2023

szczetyk said:
It's "only" a matter of writing proper uf2 for picofly to work same way as sam d21 chips- that there is no around ATM and no interest of anybody to do so..

because samd chiips like trinket are almost the same price as rp2040. Usbhosts mode must be ported over to push the payload over RCM

fvig2001 · Sep 20, 2023

I mean, if you can have someone port the m0 code, you can use it that way. It basically just waits for RCM, sends a payload and sleeps. Wiring will mostly be the same as m0.

szczetyk · Sep 20, 2023

leerz said:
because samd chiips like trinket are almost the same price as rp2040. Usbhosts mode must be ported over to push the payload over RCM

About the price: on aliex sam d21 chips for switch are more than x3 more expensive than rp2040-zero.. So I think it's worth a hustle

Hacking RP2040 as payload injector for V1?

Active Member

The inadequate, autocratic beast!

Well-Known Member

Member

Well-Known Member

Well-Known Member

Member

Similar threads

Popular threads in this forum