Hacking rxTools with Signatures patched out!

[RodrigoDavy]

I am having a strange problem. I downloaded the AGB/TWL version. But it doesn't run gba games, but it does run Smash Bros...

I even double checked by downloading it twice.

 

[Jaitsu]

Someone managed t o get smash bros working? Mine always reboot the 3DS to SYSNAND when I launch it

What versions are your sysNAND and emuNAND on? Do you have slot0x25KeyX.bin on your SD card? Mine works with 4.5.0 sysNAND and 9.8.0 emuNAND, and I have the slot0x25KeyX.bin.

 

[bannana2]

I was thinking. The only reason I've not been using gba games in my 3ds is because I would have to switch back and forth between the version of rxtools that support smash and the gba version in my SD card.

People have asked about creating a menu to select if you want to use the smash/mh4 patch or not but they said it wasn't possible at the moment.

But what if, instead of modifying rxtools itself, someone host a website identical to launch.rxtools.net/rxtools but instead of looking for rxtools.dat the site looks for rxtools_gba.dat? That way we can have both versions in our SD card and it would only be a matter of choosing the right website

Well, I decided to tell you, but you don't really need your phone. I was going to tell you to use an emulator on your phone or use a some software on your phone, but it would have to be jail broken and you would have to put a server on it. It would take too long... So, I'll tell you the short way.

Yes, I have a phone, please do tell

You will need an iPhone 4 or 5 because I don't know about jailbreaking other models. But, you can put an emulator on your phone. To answer your question directly, you need to do a few things on an internet browser, download FlashGet to your computer, and have some knowledge of html. First, you need to change the user-agent to the 3DS string, but I don't have the list(sorry). You can get into the emulation mode on IE and change the user-agent by holding down ctrl+f12. Next, download Flashget and I'll tell you what to do when you respond.

 

[Apache Thunder]

I am having a strange problem. I downloaded the AGB/TWL version. But it doesn't run gba games, but it does run Smash Bros...

I even double checked by downloading it twice.

Are the GBA games you attempted to boot also present on sysnand? Like with the DSiWare, you have to install a copy to sysnand as well before they will boot from emunand.

 

[Warft]

Are the GBA games you attempted to boot also present on sysnand? Like with the DSiWare, you have to install a copy to sysnand as well before they will boot from emunand.

Or linking emunand with sysnand too.

 

[AHP_person]

So here are some neat little tricks:

You can xor 0B 3C E6 39 4D 9F 5B 4C @ 0x26754 of rxTools, and that'll display "RX-S" and "RX-E" which you can edit and re-xor to have whatever you want displayed in System settings. (Personally I revert "RX-S" back to "Ver.")

You can chop off the last 0x110000 bytes of rxTools.dat, that's a little over a mb.

You can write 72 5B 48 14 0C F4 5D 93 A2 6C 35 FF 29 83 53 41 @ 0x40A31 to have the slot 0x25 keyX load from the first 0x10 bytes of rxTools.dat. You'll have to paste the key in yourself, of course.

EDIT: Forgot to mention that the last one kills mset compatibility. That's probably important.

 

[WeedZ]

So here are some neat little tricks:

You can xor 0B 3C E6 39 4D 9F 5B 4C @ 0x26754 of rxTools, and that'll display "RX-S" and "RX-E" which you can edit and re-xor to have whatever you want displayed in System settings. (Personally I revert "RX-S" back to "Ver.")

So this is going to sound lame, but can you explain how to do that?

 

[AHP_person]

So this is going to sound lame, but can you explain how to do that?

Parse what's at 0x26754 into a separate file and use something like padxorer to xor them.

 

[piratesephiroth]

So this is going to sound lame, but can you explain how to do that?

Using an hex editor, like HxD

 

[dubbz82]

So, how would I get FBI etc on a updated emunand...?

Best guess is ninjhax->boot pasta cfw->boot fbi->install FBI/Dev menu/big blue/red menu (target install for SD). There's other ways if your emunand isn't already updated, but I think this is the only way (for now) on an updated emunand.

 

[RodrigoDavy]

Well, I decided to tell you, but you don't really need your phone. I was going to tell you to use an emulator on your phone or use a some software on your phone, but it would have to be jail broken and you would have to put a server on it. It would take too long... So, I'll tell you the short way.

You will need an iPhone 4 or 5 because I don't know about jailbreaking other models. But, you can put an emulator on your phone. To answer your question directly, you need to do a few things on an internet browser, download FlashGet to your computer, and have some knowledge of html. First, you need to change the user-agent to the 3DS string, but I don't have the list(sorry). You can get into the emulation mode on IE and change the user-agent by holding down ctrl+f12. Next, download Flashget and I'll tell you what to do when you respond.

Thanks, but I alread found an easier way. It seems the Android app "Go! Gateway" lets you choose which file to open in your 3ds to trigger the exploit. It worked quite well! And I don't have an iPhone anyway, theses are too expensive in my country...

Are the GBA games you attempted to boot also present on sysnand? Like with the DSiWare, you have to install a copy to sysnand as well before they will boot from emunand.

I installed the rom both to Sysnand and Emunand. The gba rom works fine in sysnand with Pasta, but it doesn't work in emunand.

Sysnand and Emunand are unlinked and the AGB_FIRM patch is installed to both Sysnand and Emunand too.

What I find strange is that the rxtools.dat I downloaded is running Smash Bros fine, which isn't supposed to happen when you use the gba supported rxtools.dat
And I am sure I downloaded from the correct link in the first post too

 

[TmenaceDev]

Anyone know if we can run the ninjhax on a 9.7 emunand with this patched one?
My 9.7 emunand already have the original rxtools and a lot of eshop games. And i want to install the fbmenu on there.
thanks.

 

[Jaitsu]

So, with regard to the above posts about xor-ing: I'm trying to learn all this stuff. Xor-ing is basically like a "flip mask", right? Like... a 1 is "flip this bit" and a 0 is "leave it"? FF = 11111111. AA = 10101010.

So FF xored with AA is...

11111111 (FF)
10101010 (AA)
=
01010101 (55)

Correct?

 

[WeedZ]

Parse what's at 0x26754 into a separate file and use something like padxorer to xor them.

That's what I needed was padxorer. I didn't know how people were xoring files. Thanks man.

 

[AHP_person]

So, with regard to the above posts about xor-ing: I'm trying to learn all this stuff. Xor-ing is basically like a "flip mask", right? Like... a 1 is "flip this bit" and a 0 is "leave it"? FF = 11111111. AA = 10101010.

So FF xored with AA is...

11111111 (FF)
10101010 (AA)
=
01010101 (55)

Correct?

yeah

 

[Elgrosp]

Sorry if it has already been asked, but after updating emunand I get a black screen when trying to boot emunand. Did I do something wrong?

 

[AHP_person]

Sorry if it has already been asked, but after updating emunand I get a black screen when trying to boot emunand. Did I do something wrong?

Make sure you have slot0x25KeyX.bin, yo

 

[Elgrosp]

Yes, I checked, it's on the root of the SD card.

 

[AHP_person]

Yes, I checked, it's on the root of the SD card.

How'd you go about updating it?

 

[Elgrosp]

Via the system update