Hacking Question SX OS License Hack?

Dvdxploitr

Well-Known Member
Member
Joined
May 24, 2008
Messages
705
Trophies
1
XP
1,295
Country
United States
A couple ideas, but probably not realistic or possible....

#1 a DNS server that you type into the Switch that automatically validates the license regardless of what code is typed in
#2 a license keyen of some sort? (not sure how that'd work)
#3 a way to spoof console fingerprint and use someone else's code...
 

PRAGMA

Well-Known Member
Member
Joined
Dec 29, 2015
Messages
2,247
Trophies
1
Location
Ireland
Website
github.com
XP
4,936
Country
Ireland
Using what was provided in OP, im gonna mitm with my router with a fake dns to see if I can figure out the requests being made.
EDIT:
Can confirm the SX OS doesnt do any requests at all. Atleast not on the Booter part.
Meaning, the "licence.dat" check when clicking Boot Custom Firmware, does a check based on the code somewhere in boot.dat.
With the tx_unpacker, this helps somebit, but still work to be done.

If we can figure out how the /?u=sign request on sx.xecuter.com works, we could figure out how to sign our own licence.dat's but it's pretty hard to do so as its serverside.
I guess we could also try spoof our Switch HWID which is conveniently mentioned in Licence tab in Album.
EDIT 2:
They call the HWID (Hardware-Identifier) as, Console Fingerprint. Its: [A-F0-9]{32} seemingly an SHA hash of something.
 
Last edited by PRAGMA,

yeniel

Well-Known Member
OP
Newcomer
Joined
Nov 15, 2016
Messages
51
Trophies
0
Age
32
XP
815
Country
United States
Upps!!!!
 

Attachments

  • 2BC5F3B9-F3E2-4BCB-B494-79B2139D0E2A.jpeg
    2BC5F3B9-F3E2-4BCB-B494-79B2139D0E2A.jpeg
    1.4 MB · Views: 4,416
  • Like
Reactions: BvanBart

guily6669

GbaTemp is my Drug
Member
Joined
Jun 3, 2013
Messages
2,236
Trophies
0
Age
33
Location
Doomed Island
XP
1,899
Country
United States
I hope they don't make it so we have to send our console info and put it into their server because after they will have our console info, I really hope someone can achieve this completely offline without having to use their server as who know what they can do with our nintendo info when the console gets online...

I just hope someone really discover a way to generate our own license and not messing a single bit with their authentication server.
 

LightOffPro

ユキオクン
Member
Joined
Jun 10, 2016
Messages
316
Trophies
0
Age
28
Location
In Papa Rei's closet.
XP
811
Country
Portugal
I give this thing two days max before it's cracked

photo.jpg


You're funny dude. Shit doesn't get cracked in days.
Weeks? Perhaps. Certainly not days.
This is TX btw, not some amateurs. They have been in the hacking scene for years, some of the old stuff that they made for the Xbox still isn't cracked until this day.
 
Last edited by LightOffPro,

SonyUSA

We're all mad here
Editorial Team
Joined
May 12, 2006
Messages
1,729
Trophies
2
XP
5,246
Country
United States
photo.jpg


You're funny dude. Shit doesn't get cracked in days.
Weeks? Perhaps. Certainly not days.
This is TX btw, not some amateurs. They have been in the hacking scene for years, some of the old stuff that they made for the Xbox still isn't cracked until this day.

Yeah, what do you think this is, the Nintendo Switch or something???
 

smf

Well-Known Member
Member
Joined
Feb 23, 2009
Messages
6,414
Trophies
2
XP
5,368
Country
United Kingdom
I guess we could also try spoof our Switch HWID which is conveniently mentioned in Licence tab in Album.
EDIT 2:
They call the HWID (Hardware-Identifier) as, Console Fingerprint. Its: [A-F0-9]{32} seemingly an SHA hash of something.

If you get to the point where you can spoof the hash, then you can probably remove the license check completely.
 

Pacote

Well-Known Member
Member
Joined
Jan 30, 2007
Messages
243
Trophies
1
Website
Visit site
XP
631
Country
Brazil
photo.jpg


You're funny dude. Shit doesn't get cracked in days.
Weeks? Perhaps. Certainly not days.
This is TX btw, not some amateurs. They have been in the hacking scene for years, some of the old stuff that they made for the Xbox still isn't cracked until this day.
quoting for posterity
 
General chit-chat
Help Users
  • No one is chatting at the moment.
    Skelletonike @ Skelletonike: