Front-page Hacking  Updated

Switch TrustZoneHax on 4.x

nintendo-switch-15-1-630x354.jpg

The ReSwitched Hacking Team have done it again. motezazer, ktemkin and SciresM have achieved code execution on 4.1.0, the latest version at the time of writing this, via deja vu at TrustZone level. This means devices on 4.1.0 and below will be able to gain access to the whole system. SciresM strongly advises to not update in the future.

After less than a year, the Switch hacking team has moved extremely fast and now have got full access on the latest version. The progress being made is incredible, and in comparison, the 3DS took around 2 years to get ARM9 access. The scene is looking very promising so far and we are very lucky to have such talented people working on the Switch.

:arrow: Source
 
Last edited by Deleted member 381889,
  • Like
Reactions: ragestaker21, Anonymous42456, Dothackjhe and 88 others
Click to expand...
kumikochan

kumikochan

Well-Known Member
Member
Level 12
Joined
Feb 4, 2015
Messages
3,753
Trophies
0
Age
36
Location
Tongeren
XP
3,311
Country
Belgium
Dothackjhe said:
Any good reason why the Deja Vu exploit is delayed for released or will not be released at all?
Click to expand...
it won't probably be released since they're waiting for the new hardware revision units meaning they probably also have another entry point they're not telling anybody about cause otherwise they can't test if it still works on those newer units that eventually will be released
 
Dothackjhe

Dothackjhe

"Joker"
Member
Level 9
Joined
Dec 29, 2013
Messages
834
Trophies
1
Location
Philippines
Website
www.bit.ly
XP
1,755
Country
Philippines
kumikochan said:
it won't probably be released since they're waiting for the new hardware revision units meaning they probably also have another entry point they're not telling anybody about cause otherwise they can't test if it still works on those newer units that eventually will be released
Click to expand...
Is that just a speculation or is it something which came originally from the people behind the exploit themselves?
 
kumikochan

kumikochan

Well-Known Member
Member
Level 12
Joined
Feb 4, 2015
Messages
3,753
Trophies
0
Age
36
Location
Tongeren
XP
3,311
Country
Belgium
Dothackjhe said:
The delaying and the not releasing part.
Click to expand...
Speculation seeing they originally said they would release it when atmosphere launches but with the pre-release notes there is zero mention of the kernel exploit launching together with the release of Atmosphere so we'll know for sure by the end of august. But if they don't release it then, well then we can be pretty sure they're holding on to it for the hardware revisions that don't do RCM anymore and they can only test if that kernel exploit works by having another entry point they didn't tell anyone about. So at the moment it is speculation yeah
 
Dothackjhe

Dothackjhe

"Joker"
Member
Level 9
Joined
Dec 29, 2013
Messages
834
Trophies
1
Location
Philippines
Website
www.bit.ly
XP
1,755
Country
Philippines
I guess this is the part where patience truly shines as a virtue. While I do understand where the deduction is coming from, I'd like to consider the delay as a more refinement of the ongoing project involving the exploit. I think we'd all rather have a polished exploit late than have a problematic exploit early in release. Just my two cents, though.
 
annson24

annson24

The Patient One
Member
Level 9
Joined
May 5, 2016
Messages
1,191
Trophies
0
Age
32
XP
1,843
Country
Philippines
Dothackjhe said:
I guess this is the part where patience truly shines as a virtue. While I do understand where the deduction is coming from, I'd like to consider the delay as a more refinement of the ongoing project involving the exploit. I think we'd all rather have a polished exploit late than have a problematic exploit early in release. Just my two cents, though.
Click to expand...
Devs usually wait for the exploit to be patched first before they decide whether to release it or not. By doing that, the exploit will potentially work with more firmware versions.

One other thing, since there is a working, unpatched exploit (fusee gelee) already. That is one more reason not to release the other one just yet.

With that being said, there are a few switch floating around which has already patched fusee gelee. However, since Mariko units will arrive soon, I'm guessing they will also wait for its release to see if Mariko units are still on v4.1.0 and/or Deja Vu is still not patched.

But all these are only my speculation also. Nothing in my statement came directly from any of the devs.
 
kumikochan

kumikochan

Well-Known Member
Member
Level 12
Joined
Feb 4, 2015
Messages
3,753
Trophies
0
Age
36
Location
Tongeren
XP
3,311
Country
Belgium
annson24 said:
Devs usually wait for the exploit to be patched first before they decide whether to release it or not. By doing that, the exploit will potentially work with more firmware versions.

One other thing, since there is a working, unpatched exploit (fusee gelee) already. That is one more reason not to release the other one just yet.

With that being said, there are a few switch floating around which has already patched fusee gelee. However, since Mariko units will arrive soon, I'm guessing they will also wait for its release to see if Mariko units are still on v4.1.0 and/or Deja Vu is still not patched.

But all these are only my speculation also. Nothing in my statement came directly from any of the devs.
Click to expand...
The thing is that the Kernel exploit still needs an entry point to be executed. So if RCM doesn't work with future hardware revisions would mean they still have an entrypoint besides RCM or the Webkit exploit that they're gonna use to test that kernel exploit so I doubt they'll release it anytime soon. To test Deja vu you need an entry point and on the Mariko units there is no RCM and no webkit exploit so meaning they still have an unreleased entry point they're not telling anyone about
 
Last edited by kumikochan,
  • Like
Reactions: annson24
M

mariogamer

Well-Known Member
Member
Level 6
Joined
Aug 12, 2015
Messages
1,256
Trophies
0
Age
28
XP
790
Country
Canada
annson24 said:
Devs usually wait for the exploit to be patched first before they decide whether to release it or not. By doing that, the exploit will potentially work with more firmware versions.

One other thing, since there is a working, unpatched exploit (fusee gelee) already. That is one more reason not to release the other one just yet.

With that being said, there are a few switch floating around which has already patched fusee gelee. However, since Mariko units will arrive soon, I'm guessing they will also wait for its release to see if Mariko units are still on v4.1.0 and/or Deja Vu is still not patched.

But all these are only my speculation also. Nothing in my statement came directly from any of the devs.
Click to expand...
Mariko unit will come with 5.x. That firmware added specific configuration for it.

Deja vu is currently not fully patched on 5.x as repeated before. They are waiting to see if nintendo will fully patch it with mariko ( it can't be fully patched on software side)
 
  • Like
Reactions: annson24
annson24

annson24

The Patient One
Member
Level 9
Joined
May 5, 2016
Messages
1,191
Trophies
0
Age
32
XP
1,843
Country
Philippines
kumikochan said:
The thing is that the Kernel exploit still needs an entry point to be executed. So if RCM doesn't work with future hardware revisions would mean they still have an entrypoint besides RCM or the Webkit exploit that they're gonna use to test that kernel exploit so I doubt they'll release it anytime soon. To test Deja vu you need an entry point and on the Mariko units there is no RCM and no webkit exploit so meaning they still have an unreleased entry point they're not telling anyone about
Click to expand...

mariogamer said:
Mariko unit will come with 5.x. That firmware added specific configuration for it.

Deja vu is currently not fully patched on 5.x as repeated before. They are waiting to see if nintendo will fully patch it with mariko ( it can't be fully patched on software side)
Click to expand...
Good read. Thanks.
 
  • Like
Reactions: kumikochan
W

wikdclown

Active Member
Newcomer
Level 3
Joined
Aug 19, 2015
Messages
33
Trophies
0
XP
328
Country
United States
Wasn't it almost a month ago that sciresm said no point in holding the hack back and said he'd release in one week? I see that never happened.
 
8BitWonder

8BitWonder

Small Homebrew Dev
Member
Level 15
Joined
Jan 23, 2016
Messages
2,489
Trophies
1
Location
47 4F 54 20 45 45 4D
XP
5,343
Country
United States
wikdclown said:
Wasn't it almost a month ago that sciresm said no point in holding the hack back and said he'd release in one week? I see that never happened.
Click to expand...
You're thinking of browserhax + nvhax, which only escalated to userland.
That has been released for a little while now through Pegaswitch.

 
  • Like
Reactions: wikdclown
ThatBenderGuy

ThatBenderGuy

Well-Known Member
Member
Level 3
Joined
Dec 16, 2013
Messages
150
Trophies
0
Age
31
XP
348
Country
United States
So me having a Switch on 8.0.0 means im still fucked right? My switch is on partially patched (XAW1011) and it automatically updated to 8.0.0 without my knowing (That or my gf did it by accident)

Will this work on my unit?
 

Site & Scene News

Go to forum More news

Popular threads in this forum

The MIG Switch Thread

Kingdom Come Deliverance Nswitch MOD

Homebrew Tutorial  Building Pagascape from source to running Self Hosted mode on Windows and MSYS

mig switch not working/updating??

Hacking Homebrew Tutorial  Portable PegaScape (Win32)

Hacking Misc  Getting the MIG Switch to load an XCI dump without its original Initial Data

Fusee.bin with the new Pre-release of Atmoshere 1.7.0

DBI language error

General chit-chat
Help Users
  • No one is chatting at the moment.
    K3Nv2 @ K3Nv2: https://youtu.be/MddR6PTmGKg?si=mU2EO5hoE7XXSbSr