Hacking The "Go" Exploit Reverse Engineering Thread

[0xFFFF]

Go​

​

​

​

Q&A ( for those 'Out of the Loop' )​

​

Q: What is "Go"?​

A: "Go" is a 3DS vulnerability that originated from this webkit bug which allows ROP code to be inserted into memory.​

​

Q: Cool! How can I use it to play [insert homebrew here]?​

A: Currently, the only working form of the exploit is Gateway's version, which is (stupidly) "encrypted". It has been recently reverse engineered by Yifan Lu, which allowed custom launcher.dat files to be executed using Go.​

​

​

What can we do, and what people need to do with, "Go"? (As of January 17, 2015)​

Good Ones:​

• Use Gateway's Launcher to dump saves, your NAND, game cards, and downgrade to an older firmware version. (except for those with 2DS systems which are stuck with the latest firmware.)
• Certain developers are publishing their work which works with Go! For example, Smealum has recently released Regionthree which allows you to play games made for other regions.

The "Get-Your-Ass-Up-To-Work-On-This" Ones:

• A developer (or someone who is willing to contribute) should port Smealum's Homebrew Launcher to Go, so we won't need a Gateway to execute homebrew anymore.
• I'm too lazy to think of other ones so you may suggest some.

​

As I stated in the previous section, I'm a bit lazy to think of the rest, so you may suggest other content I may include in the thread.

 

[Ralph1611]

nice info..

first things first... the new 3ds

 

[coolfuze]

I'm pretty sure there is already a thread concerning this.

 

[0xFFFF]

I'm pretty sure there is already a thread concerning this.

If you are talking about the thread which is just a bunch of people circlejerking around the subject of getting anything else but Gateway's binary to execute, then yes. Which is not helpful at all.

 

[Vappy]

first things first... the new 3ds

You probably won't be able to port the webkit entrypoint to N3DS, it uses a newer, much more secure browser.

 

[Ralph1611]

You probably won't be able to port the webkit entrypoint to N3DS, it uses a newer, much more secure browser.

guess my daughter has to hang on to her regular 3ds.

 

[migles]

You probably won't be able to port the webkit entrypoint to N3DS, it uses a newer, much more secure browser.

source on this info?

 

[Arras]

Based on the thread title, this is what you want. http://yifan.lu/

 

[0xFFFF]

You probably won't be able to port the webkit entrypoint to N3DS, it uses a newer, much more secure browser.

Well, Gateway got their hax running on it, so I guess an exploit for the N3DS is not out of the question.

 

[Subtle Demise]

There's obviously something wrong with the new3ds exploit though, which is why 3.0 was delayed for so long, and why it still doesn't have new3ds support

 

[clemull]

There's obviously something wrong with the new3ds exploit though, which is why 3.0 was delayed for so long, and why it still doesn't have new3ds support

There probably perfecting or trying to perfect their bricking code.

 

[Vappy]

source on this info?

http://3dbrew.org/wiki/Internet_Browser
"New 3DS Internet Browser ... The WebKit source was updated since the Old3DS browser."
Plus multiple mentions by people in #3dsdev about the N3DS browser being more difficult to exploit.

Well, Gateway got their hax running on it, so I guess an exploit for the N3DS is not out of the question.

Not at all, but it won't involve this webkit bug, they'll have a different entrypoint.

 

[March_]

...
Try ... Youtube app for future entry point.
Version are verry old (on my 9.0 3DSXL, the version show on user agent is 1.7498, the version of... 4.X internet bowser )

 

[Vappy]

http://yifan.lu/2015/01/17/reversing-gateway-ultra-stage-3-owning-arm9-kernel/

Ask and ye shall recieve (if you're lucky)

 

[Ralph1611]

http://yifan.lu/2015/01/17/reversing-gateway-ultra-stage-3-owning-arm9-kernel/

Ask and ye shall recieve (if you're lucky)

what does that all mean..

 

[berichan]

Falo's post here might be of some use to those who are looking to build their own launchers from this exploit http://gbatemp.net/threads/loading-...unchers-using-gateway-go.378615/#post-5284089

 

[Sizednochi]

http://yifan.lu/2015/01/17/reversing-gateway-ultra-stage-3-owning-arm9-kernel/

Ask and ye shall recieve (if you're lucky)

"I believe that information on its own is amoral but it takes people to make it immoral. There’s no point in arguing if piracy is right or wrong or if making this information public would help or harm pirates. I am not here to ensure the 3DS thrives. I am not here to take business away from Gateway. I am not here to be a moral police. I am only here to make sure that information is available for those who thirst for knowledge as much as I do in a form that is as precise and accurate as I can make it."

Oh Senpai...

 

[WateredFire19]

So i looked all over Yifan Lu's pages, but i still dont get how to run custom Launcher.dat 's using the web exploit. Can someone please explain it to me?

 

[AmeenX]

From a noob perspective this guy broke down the GW legend

 

[williamcesar2]

Oh Senpai...

"I believe that information on its own is amoral but it takes people to make it immoral. There’s no point in arguing if piracy is right or wrong or if making this information public would help or harm pirates. I am not here to ensure the 3DS thrives. I am not here to take business away from Gateway. I am not here to be a moral police. I am only here to make sure that information is available for those who thirst for knowledge as much as I do in a form that is as precise and accurate as I can make it."

hands down !!!