Switch TrustZoneHax on 4.x

Discussion in 'Switch - Exploits, Custom Firmwares & Soft Mods' started by Lia, Feb 16, 2018.

  1. 8BitWonder

    8BitWonder Small Homebrew Dev

    Member
    11
    Jan 23, 2016
    United States
    47 4F 54 20 45 45 4D
    Assuming you can't push payloads on your switch in RCM, then yes unfortunately you're boned if you wanted to run CFW. 8.0.0 patched the last known TZ vulnerability.

    Unless a new vulnerability is found (could be a long time/never) the highest fw an ipatched unit will be able to run CFW is going to be 7.0.1.
     
  2. hippy dave

    hippy dave BBMB

    Member
    15
    Apr 30, 2012
    United Kingdom
    Partially patched isn't a thing, I guess your serial is in the range where some are patched and some aren't, so you need to find out if yours is or not by putting it in RCM mode and sending a payload.
     
  3. Ratatattat

    Ratatattat GBAtemp Regular

    Member
    3
    Mar 16, 2016
    United States
    Need I say more
     
  4. ZachyCatGames

    ZachyCatGames GBAtemp Addict

    Member
    9
    Jun 19, 2018
    United States
    Hell
    Huh? All the exploits necessary for trustzone hax on 4.x (FG patched systems included) have already been public for over a month...

    Edit: And all of them are now publicly implemented!
     
    Last edited by ZachyCatGames, May 21, 2019
  5. Massive20

    Massive20 Newbie

    Newcomer
    3
    Oct 18, 2018
    Portugal
     
  6. ZachyCatGames

    ZachyCatGames GBAtemp Addict

    Member
    9
    Jun 19, 2018
    United States
    Hell
    @Massive20 The exploits necessary to do shit on FG patched systems are public
     
  7. Nononoki

    Nononoki Advanced Member

    Newcomer
    4
    Jan 31, 2012
    Gambia, The
    Currently on 8.0 but my original fuses from 4.0.X are not burned, but lost my backup 4.0.X (6.2 is my earliest backup available). Anyway to downgrade without burning fuses and without backup? Just install old Firmware file with Choidujour? Never done that before, I just wanna know if there are major risks in downgrading. Or wait for 6.2+ support for warmboot?
     
    Last edited by Nononoki, May 20, 2019
  8. pLaYeR^^

    pLaYeR^^ Doctor Switch

    Member
    9
    GBAtemp Patron
    pLaYeR^^ is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    Sep 18, 2014
    Austria
    Austria
    Rebuild NAND for 4.0.X? If you don't need clean 4.0.X NAND you can also simply downgrade with ChoiDujourNX to 4.0.X.
     
    Last edited by pLaYeR^^, May 20, 2019
  9. Nononoki

    Nononoki Advanced Member

    Newcomer
    4
    Jan 31, 2012
    Gambia, The
    Ah thanks - any reports that downgrading with ChoidujourNX bricks consoles? Or is it (mostly) safe since I have backups? Never had a clean NAND so I don't care ;)
     
  10. ZachyCatGames

    ZachyCatGames GBAtemp Addict

    Member
    9
    Jun 19, 2018
    United States
    Hell
    if you don’t use the factory reset option in ChoiNX when downgrading you’ll likely get a fatal when you start the system
     
  11. Rimaahkehs

    Rimaahkehs Member

    Newcomer
    1
    May 21, 2019
    India
    I am very new to the seen and in desperate need of help please help me by telling me where to look for these exploits I (mean link) to hack my ipatched unit I am from India and unable to find help anywhere else please

    — Posts automatically merged - Please don't double post! —

    I am on 4.1 firmware
     
  12. hippy dave

    hippy dave BBMB

    Member
    15
    Apr 30, 2012
    United Kingdom
    Just keep waiting a bit longer, they will be posted on this forum when they're ready.
     
  13. Rimaahkehs

    Rimaahkehs Member

    Newcomer
    1
    May 21, 2019
    India
    Thank you for reply bud doing that now as you have said thanks again
     
    hippy dave likes this.
  14. Ratatattat

    Ratatattat GBAtemp Regular

    Member
    3
    Mar 16, 2016
    United States
    Many bits longer...........
     
  15. 8BitWonder

    8BitWonder Small Homebrew Dev

    Member
    11
    Jan 23, 2016
    United States
    47 4F 54 20 45 45 4D
    Feel free to write your own implementation if it's taking too long. ;)
     
    jakkal likes this.
  16. Ratatattat

    Ratatattat GBAtemp Regular

    Member
    3
    Mar 16, 2016
    United States
    Is there something wrong with the truth? He was baiting him into believing its gonna happen fast and he really doesn't know when.
     
    Last edited by Ratatattat, May 21, 2019
  17. ZachyCatGames

    ZachyCatGames GBAtemp Addict

    Member
    9
    Jun 19, 2018
    United States
    Hell
    There's currently public implementations of every single exploit in Deja Vu for firmwares <=4.1.0 ;). You can stop hating now :)
     
    hippy dave likes this.
  18. hippy dave

    hippy dave BBMB

    Member
    15
    Apr 30, 2012
    United Kingdom
    As above, nothing's holding up implementation for 4.1, so every reason to believe it will be available soon. Higher firmwares not so much.
     
    ZachyCatGames likes this.
  19. Sticker

    Sticker Advanced Member

    Newcomer
    3
    Oct 1, 2018
    Vietnam
    I remember someone said we can boot any CFW without care about furse count because ignoring count feature of hakate or something similar. So can we downgrade to 4.0 and take advanced of Trust Zone vulnerability without care about burning furses?
     
  20. Draxzelex

    Draxzelex GBAtemp Legend

    Member
    18
    Aug 6, 2017
    United States
    New York City
    If you can boot the console via Hekate and subsequently CFW, what would be the point of booting Deja Vu?
     
Quick Reply
Draft saved Draft deleted
Loading...