If you can use the browser, I suggest that you use the new browserhax (up to 11.0.0-33!) in the meantime.

Try out Ubuntu 15.04: http://old-releases.ubuntu.com/releases/15.04/

This requires a New 3DS. The demo version doesn't work and is patched. If you have 1.1.3 or newer delete/disable the update data.
officially called smashbroshax sometimes smashax
Here is a new tool I call smashbroshax-helper. It is a graphical interface for the exploit which simplifies most of the process of broadcasting the packet. It requires almost no setup outside of creating a bootable Linux USB/DVD.

Important notes:

• This does not work on Fedora or Red Hat-based distributions because aircrack-ng needs to be compiled on it (and I can't figure out how to install the needed things).
  
• Don't use a virtual machine!
• This probably will never work on Old 3DS.

Download smashbroshax-helper beta

It is recommended that you use a live Ubuntu 15.04 image. Versions 15.10+ have issues. http://old-releases.ubuntu.com/releases/15.04/

1. Create a bootable USB/DVD with a Linux distribution (there are various guides online).
2. If possible, get a second USB/SD card/storage device, download and save the above .zip to it.
   • Don't extract the contents of it to the USB device, as it might cause problems. Just save the .zip file to it.
   • If you can't do this, you'll have to connect to the Internet while in Linux to download it.
   • If using a bootable USB, make sure you can use two ports at a time. Don't take out the Linux USB while it is being used!
3. Restart your computer and run the bootable USB/DVD you created.
4. Extract the contents of the .zip to the Desktop.
5. Open the smashbroshax-helper folder and double click "smashbroshax.sh".
6. Follow the on-screen prompts.
7. If everything goes well, you should now have homebrew!

Video demonstration, from boot to shutdown:

from https://gbatemp.net/threads/tutorial-using-smashhax-with-linux.397194/page-9#post-5842512

---

If you would like the full tutorial, involving terminal usage and compiling:

Spoiler: Everything

To reverse the changes to your wireless interface and remove issues connecting to networks after, rebooting your system or changing it to "Managed" instead of "monitor" should fix it. How to do that is in the second to last section.

---

@Cydget made a script that condenses most of this into a script. I have not tried it myself yet but it seems to work for others.

Spoiler

So, I made a little script for this. If anybody wants it, then unzip this file and read the readme. And yes, I like to pipe things. http://www.mediafire.com/download/oulnubnzkk9g3i0/smashhaxEZ.zip

---

Requirements

• Any Linux distribution should do (this has only been tested with Debian-based distributions). Windows and OS X users should wait or find a method for now, sorry!
  • Please do not use Linux in a virtual machine, it likely won't give direct access to your wireless card. Dual boot or use a live USB/disk.
  • The recommended distro to use is Ubuntu 15.04 (link to Ubuntu MATE 15.04).
• A Wi-Fi-capable wireless card.
• Super Smash Bros. for Nintendo 3DS Full or Demo.
• New 3DS. This does not work on Old 3DS.
• Patience. The hax is sort-of unreliable so your game will most likely crash a few times.
• Recommended: Another device to access the internet (phone, tablet, computer, console).

Preparing

• Install these packages using your package manager. For example, "apt-get" for Debian-based distributions (including Ubuntu).

  openssl libssl-dev libnl-genl-3-200 libnl-genl-3-dev libnl-3-200 libnl-3-dev pkg-config

• Find your wireless card's interface by opening a terminal and using the command "ip link". It would be something like wlan0 or wlp3s0.

  ian@ian-VPCEG34FX:~/Desktop/aircrack-ng-1.2-rc2/src$ ip link
  1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN mode DEFAULT group default 
      link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
  2: eth0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast state DOWN mode DEFAULT group default qlen 1000
      link/ether xx:xx:xx:xx:xx:xx brd ff:ff:ff:ff:ff:ff
  3: wlan0: <NO-CARRIER,BROADCAST,ALLMULTI,PROMISC,NOTRAILERS,UP,LOWER_UP> mtu 1500 qdisc mq state DORMANT mode DORMANT group default qlen 1000
      link/ieee802.11/radiotap xx:xx:xx:xx:xx:xx brd ff:ff:ff:ff:ff:ff

• You probably already have it, but get the homebrew starter kit and place it on your SD card.
• Download the smashhax .pcap files from the releases section of the smashbroshax repository.
• Determine the .pcap file to use. This should be straightforward using the file names.

  The built beacon-hax pcaps are located under "pcap_out/". In the filenames, "vXYZ" means game-version "vX.Y.Z". Full-game filenames for USA include "gameusa", while the other regions filenames include "gameother".

• Get the "Otherapp payload" from the Homebrew Launcher site and save it to "smashpayload.bin" at the root of your SD card.
  
• Download and extract aircrack-ng's latest release source.
• Save aireplay-ng.patch from the smashbroshax repository in the folder "aircrack-ng-1.2-rc2".

Compiling aircrack-ng/aireplay-ng

• Open a terminal and go to the "aircrack-ng-1.2-rc2" folder.
• Use the command "patch src/aireplay-ng.c < aireplay-ng.patch". If you get the following then it has succeeded.

  patching file src/aireplay-ng.c
  Hunk #1 succeeded at 560 (offset 1 line).
  Hunk #2 succeeded at 573 (offset 1 line).

• Run "make" and wait. The program should be compiled with the patch now. If you get the following as the last line then it has succeeded.

  make[1]: Leaving directory '/path/to/aircrack-ng-1.2-rc2/src'

The moment of truth

• Run these 3 terminal commands in order, using the wireless interface (from "ip link") you found earlier.
  
  sudo ifconfig wireless_interface down
  sudo iwconfig wireless_interface mode monitor
  sudo ifconfig wireless_interface up
  sudo iwconfig wireless_interface channel 6​
  (the last line was suggested by @difool. and might make the payload trigger faster)
• Enter the "src" folder in your terminal.
• Run the following command to start broadcasting the packet: "sudo ./aireplay-ng --interactive -r /path/to/smashbros_version_beaconhax.pcap -h 59:ee:3f:2a:37:e0 -x 10 wireless_interface"
  Use the .pcap file and wireless interface you found out earlier.
• On the 3DS system, start the game, then choose Smash and Group. Wait for the magic to happen.

Encountering errors? Something confusing?

• Does running aireplay-ng end with "End of file"? You might be running your installed version of aircrack-ng. Don't forget the ./ for "sudo ./aireplay-ng ..."!
• Please tell me the distribution you are using and the error you've encountered. This will help me fix your issue faster.
• If you don't get something, don't hesitate to point it out! I want to help anyone I can.
• Did you spot an inaccuracy or mistake I made? It would be great if you can tell me that too.
• This was before the Otherapp payload selector was added to the HBL site. This is kept here for legacy reasons or something.
  Spoiler

  • Determine what file you need to get from the Homebrew Launcher Payload section:
    
    Spoiler: Homebrew Launcher Payload

    With the release builds, the hax loads the payload from SD "/smashpayload.bin". This should contain the hb-launcher(https://smealum.github.io/3ds/) otherapp payload. Until there's a proper otherapp payload selector on the hb-launcher site, the payload can be downloaded from the following URL(see also https://github.com/smealum/sploit_installer):
    

    • "https://smealum.github.io/ninjhax2/Pvl9iD2Im5/otherapp/{PAYLOADNAME}.bin" Where {PAYLOADNAME} is: "FIRMVER_REGION_MENUVER_MSETVER".

    FIRMVER values(without quotes):
    

    • "POST5" = non-New3DS
    • "N3DS" = New3DS

    REGION values(without quotes):
    

    • "U" = USA
    • "E" = EUR
    • "J" = JPN

    MENUVER values(without quotes):
    

    • "11272": Non-JPN, system-version v9.0.
    • "12288": System-version v9.2.
    • "13330": System-version v9.3.
    • "14336": System-version v9.4.
    • "15360": System-version v9.5.
    • "16404": System-version v9.6.
    • "17415": System-version v9.7.
    • "20480_usa": USA, system-versions v9.9-v10.0.
    • "19456": Non-USA, system-versions v9.8-v10.0.

    MSETVER values(without quotes):
    

    • "8203": System-versions below v9.6.
    • "9221": System-versions starting with v9.6.

    For example, the payload URL for New3DS USA 9.9.0-X - 10.0.0-X is:https://smealum.github.io/ninjhax2/Pvl9iD2Im5/otherapp/N3DS_U_20480_usa_9221.bin
    The end result is a file named "smashpayload.bin" at the root of your SD card.

You are allowed to reproduce/reprint this tutorial, as long as a link back to this page (https://gbatemp.net/threads/tutorial-using-smashhax-with-linux.397194/) is included.

 

[TragicKnight]

I have a question about smashax my friend is sending me two n3ds mhgen on 10.7 and smash bros. I'm a bit confused about smashax. The part about the network adapter. Would the one in a laptop work? Or is everyone talking about ordering a USB one?

 

[MercuryCoughDrops]

I have a question about smashax my friend is sending me two n3ds mhgen on 10.7 and smash bros. I'm a bit confused about smashax. The part about the network adapter. Would the one in a laptop work? Or is everyone talking about ordering a USB one?

Yeah the one on a laptop should work. Mine was able to do it after I worked it out.

 

[TragicKnight]

Yeah the one on a laptop should work. Mine was able to do it after I worked it out.

Sweet thanks one more question. The helper software all I'll need to start smash hax is get umbuntu mate right? Then just launch the .sh?

 

[Ketchup901]

i bought a physical SSB and the version is 1.1.5

Can i do the pcap thing or am i screwed with this version?

You can delete the update (they're stored on your SD card).

Sent from my SM-G920F using Tapatalk

 

[RoyalTryHardd]

Hey, I'm using a ssb4 cart thats 1.0.1 and my "new" 3ds xl is 10.7.0-32U and I've tried all of the pcap files in this whole thread, I also have the whole starterpack extracted to the root of my micro sd card along with my respective otherapp payload also at the root of my micro sd card renamed to 'smashpayload.bin'. But despite all of this I am still unable to get any of this to work. I would definitely appreciate some help.

 

[thisisallowed]

Hey, I'm using a ssb4 cart thats 1.0.1 and my "new" 3ds xl is 10.7.0-32U and I've tried all of the pcap files in this whole thread, I also have the whole starterpack extracted to the root of my micro sd card along with my respective otherapp payload also at the root of my micro sd card renamed to 'smashpayload.bin'. But despite all of this I am still unable to get any of this to work. I would definitely appreciate some help.

Does it send the packets?

 

[Ian Kalshuk]

Hey, I'm trying to do this with a New 3DS XL running 11.0.0-33U with SSB4 v1.1.0, but I can't seem to get it to work. I checked 3dbrew.org, and it says the exploit is supposed to work with this firmware.
I see lots of people getting this to work on 1.1.2, but I'm not sure how I can update without it jumping right to the 1.1.6 update.
I'm also having the problem where it stops broadcasting (or maybe just stops counting) at 93 packets.
I have an Intel wireless card, and I read on the aircrack site that all the new Intel cards are supported, so I'm not sure why that is, either.
Any help is appreciated.

 

[ils123]

You can delete the update (they're stored on your SD card).

Sent from my SM-G920F using Tapatalk

Could you (or anyone else familiar with the process) explain how to start SSB without getting the update? I too bought a new physical copy, and it's 1.1.4. I don't see any way to actually launch the game without writing the update data to the sd card. I don't even have wifi turned on, so there's no way I'm getting it from the store.

Will the copy I have not work for this, or am I missing something?

 

[thisisallowed]

Could you (or anyone else familiar with the process) explain how to start SSB without getting the update? I too bought a new physical copy, and it's 1.1.4. I don't see any way to actually launch the game without writing the update data to the sd card. I don't even have wifi turned on, so there's no way I'm getting it from the store.

Will the copy I have not work for this, or am I missing something?

Really brand new smash bros come on 1.1.4 and are not compatible. I got one too, so my only option now is sky3ds due to reigon lock

 

[Ketchup901]

Could you (or anyone else familiar with the process) explain how to start SSB without getting the update? I too bought a new physical copy, and it's 1.1.4. I don't see any way to actually launch the game without writing the update data to the sd card. I don't even have wifi turned on, so there's no way I'm getting it from the store.

Will the copy I have not work for this, or am I missing something?

Apparently there are new issues of SSB that come with a preinstalled update.

 

[nicko79]

Looking for a quick assist please. My New 3ds XL is running 10.7.0 32-U. I beleive I am using an original copy of Super Smash as it does not show a version number at all. I am able to send the packets and Smash crashes to a black screen just like in the video. It then says " the homemenu robpin is ready " Just like in the video. But never leaves that screen. What have I done wrong?

 

[ils123]

Really brand new smash bros come on 1.1.4 and are not compatible. I got one too, so my only option now is sky3ds due to reigon lock

Ah, bummer, that was what I feared. Oh well - guess I'm going to Gamestop to try and find an older used copy!

 

[Felix954]

using live usb the smashbroshax.sh does not run for me goes straight to "if you are reading this you probably messed up" window in gedit. using ubuntu 15.04.

How do i run the file as executable instead of gedit?

 

[ils123]

using live usb the smashbroshax.sh does not run for me goes straight to "if you are reading this you probably messed up" window in gedit. using ubuntu 15.04.

How do i run the file as executable instead of gedit?

If you're using the script, you should be running Ubuntu MATE 15.04. If it opens the script as a text file, you're probably running vanilla Ubuntu. That's what the instructions link to, so it's semi-confusing

The official download for MATE 15.04 is broken right now, but if you Google there are several options on the first page. I think I downloaded it from some random university mirror.

 

[Felix954]

If you're using the script, you should be running Ubuntu MATE 15.04. If it opens the script as a text file, you're probably running vanilla Ubuntu. That's what the instructions link to, so it's semi-confusing

The official download for MATE 15.04 is broken right now, but if you Google there are several options on the first page. I think I downloaded it from some random university mirror.

Thank you, I have cart version 1.0.1 ill go back and read the thread on how to make that version work.

 

[ils123]

Thank you, I have cart version 1.0.1 ill go back and read the thread on how to make that version work.

I think I downloaded a copy of MATE 15.04 from this mirror: http://bit.ly/2acj7CN. The hashes checked out, and it works, but obviously download at your own risk!

Question for anyone who might know - I traded for a 1.0.1 cart at Gamestop earlier, but it looks like it has a save file from some later version. It immediately throws an error about not being able to find the latest data, and I think it's interfering with the payload delivery if I skip past. It won't let me clear the save data until I connect to the store and update (which I obviously won't do), and according to this other thread that wouldn't help anyway: https://gbatemp.net/threads/cant-save-smash-bros-3ds-on-9-0-n3ds-xl.382463

Is there any way around this? Or am I boned unless I have a buddy who can wipe the cart with SaveDataFiler or some similar utility? I'm about to give up

 

[Felix954]

I think I downloaded a copy of MATE 15.04 from this mirror: http://bit.ly/2acj7CN. The hashes checked out, and it works, but obviously download at your own risk!

Question for anyone who might know - I traded for a 1.0.1 cart at Gamestop earlier, but it looks like it has a save file from some later version. It immediately throws an error about not being able to find the latest data, and I think it's interfering with the payload delivery if I skip past. It won't let me clear the save data until I connect to the store and update (which I obviously won't do), and according to this other thread that wouldn't help anyway: https://gbatemp.net/threads/cant-save-smash-bros-3ds-on-9-0-n3ds-xl.382463

Is there any way around this? Or am I boned unless I have a buddy who can wipe the cart with SaveDataFiler or some similar utility? I'm about to give up

I'm on the 1.0.1 cart, downloaded mate and the pcap. renamed the pcap and swapped it out with an existing one.3ds says "The homemenu ropbin is ready" on my screen but thats it? any tips on what to do? the helper tool is not giving me any more prompts?

 

[Felix954]

https://github.com/yellows8/3ds_smashbroshax <- says 1.0.1 has been added and supported. is there a newer version of smashhax helper?

 

[ils123]

Just curious, did your 1.0.1 have newer save data on it too? Did you just skip past all of the warnings and go into Smash>Group? Maybe I just need to keep trying...

 

[Felix954]

Just curious, did your 1.0.1 have newer save data on it too? Did you just skip past all of the warnings and go into Smash>Group? Maybe I just need to keep trying...

i skipped the warnings and tried, not sure about the save data it is a Gamefly title but from what i was reading all save data would be on th console not the cart.

edit: keep getting stuck on the red screen : ( even with the official working 1.0.1