Hacking Update 10.4 and Homebrew: What you need to know

[Ashikoki]

Signing on to NNIND doesn't work on HANS 10.3 eshop. Still can't download updates.

 

[Deleted User]

I can confirm for you that APT:IsTitleAllowed does not have any sort of list to update. The titles and versions it blocks are hardcoded into the NS system module, requiring a system update to change.

 

[TheCyberQuake]

I just want to know some things:

If I update my emunand from 10.3 in system settings (I've Reinand, but not the latest version yet) will it boot normally? I'm coldbooting.

As far as I understand Browserhax won't works even in emunand so my only choice to enter to HBL in emunand would be through the CIA? As I was having problems to enter HBL through this method cause my coldbooting I've needed to modify a file, after the update it'll boot normally?

Sorry for the noob questions but I'm still get lost about emunand and sysnand, what I certainly understand is that there's no reason to update sysnand (9.2), the downgrade tool is patched and some hax, but about those ones I've the doubt in emunand not sysnand... I just down want to update and see that I cannot access to HBL which I use mostly to back up my saves.

And finally, if I've backed up my emunand using the emunand tool in 10.3, updated to 10.4 and want to get back 10.3, should I just inject back the 10.3 or that's not allowed?

If you are cooldbooting, my guess is you did something invovling you modifying your boot.3dsx file so that menuhax boots into emuNAND instead of HBL. Updating wouldn't affect that (if the NANDs are unlinked). I'd say if you are using menuhax to coldboot (which is the most common method) that's the most likely cause, which means you would have to replace the boot.3dsx with the standard one, and then modify the payload of menuhax to instead launch your modified boot.3dsx, which you would have to rename to something else that is four letters. So all other exploits could still access the proper boot.3dsx, but menuhax would load the modified payload and load the emuNAND.

And yes, if you create a backup you can simply inject to old 10.3 backup back into emuNAND if you don't like 10.4

 

[bunny_gg]

"Memchunkhax2, the kernel exploit used mostly for downgrading and to install legit CIAs, has been patched"
Does that mean I cannot install legit CIA via FBA or NASA on 10.4.0 by now?

 

[Exploithunter_69]

OK I'm fairly new to the 3ds scene and I was wondering what exploits can I do on system version 9.2? Thanks in advance.

 

[kratoz29]

If you are cooldbooting, my guess is you did something invovling you modifying your boot.3dsx file so that menuhax boots into emuNAND instead of HBL. Updating wouldn't affect that (if the NANDs are unlinked). I'd say if you are using menuhax to coldboot (which is the most common method) that's the most likely cause, which means you would have to replace the boot.3dsx with the standard one, and then modify the payload of menuhax to instead launch your modified boot.3dsx, which you would have to rename to something else that is four letters. So all other exploits could still access the proper boot.3dsx, but menuhax would load the modified payload and load the emuNAND.

Can you explain me this? Where do I get the standard boot.3dsx.

I also got confused cause at first you've said that I wouldn't need anything if I've been using MenuHax, which I do.

And yes, if you create a backup you can simply inject to old 10.3 backup back into emuNAND if you don't like 10.4

That's the most satisfying thing I've could ever read this week, that's a godsend that I definitely hadn't a clue.

 

[TheCyberQuake]

OK I'm fairly new to the 3ds scene and I was wondering what exploits can I do on system version 9.2? Thanks in advance.

You basically have free range to do anything you want if you have 9.2. Although this thread isn't really the place to post it. I highly recommend looking into emuNAND and Custom Firmware (CFW). Have and emuNAND and CFW will allow you to install and run any cia file, meaning you can install homebrew straight to your home menu (or pirated games, hey I won't judge I did my fair share of piracy when I was younger)
https://gbatemp.net/threads/tutorial-installing-rxtools-custom-firmware-3ds-and-2ds.390867/
That's if you are on o3ds

Can you explain me this? Where do I get the standard boot.3dsx.

I also got confused cause at first you've said that I wouldn't need anything if I've been using MenuHax, which I do.



That's the most satisfying thing I've could ever read this week, that's a godsend that I definitely hadn't a clue.

You can get the original boot.3dsx from the starter kit, found on http://smealum.github.io/3ds/
You can take your old boot.3dsx and call it something else, like emun.3dsx. Then open your menuhax payload (ropbingpayload_menuhax_x.bin, where x is region and other stuff) by right clicking, open with, and open with notepad. Ctrl + f to search, and search for boot.3dsx. Replace that with emun.3dsx, there should be two of them in there so replace both. Save the file, the place boot.3dsx, emun.3dsx (which is just a renamed version of your old boot.3dsx) and the ropbinpayload_menuhax_x.bin back onto the root of your sd card. That should cause menuhax to load whatever it did before, but still allow all other entry points to properly access HBL

 

[128bit_benny]

For buying a New 3ds console, is the Browser a dummy , like in card uodates, so i need to update to 10.4, or fully functional?

 

[TrashyClassy]

Nooo

--------------------- MERGED ---------------------------

"Memchunkhax2, the kernel exploit used mostly for downgrading and to install legit CIAs, has been patched"
Does that mean I cannot install legit CIA via FBA or NASA on 10.4.0 by now?

Sadly, yes.

 

[128bit_benny]

Nooo

Yes dummy or yes fully functional pre installed?

 

[TrashyClassy]

Yes dummy or yes fully functional pre installed?

Actually i wasnt talking to you, i dont know anything about the new 3ds browser since im using old3ds instead

 

[TheCyberQuake]

Well I need some sleep. Once I wake up and finish a little homework for sociology, I'll sign back on and continue searching for info. I also uploaded a video to hopefully warn the youtube community who don't go on GBATemp. Just briefly covered a few known "fixes", and then a link leading to this thread.

Also you get to hear my fantastic man-child voice. (Seriously I don't sound 19, at least to me)
I don't know anything about the 3ds and it's default out-of-box browser.

 

[rObOu]

Has anyone successfully upgraded an o3DS emunand from 9.2 to 10.4?
I get a black screen after the opening home menu loading screen. Using RxTools.

 

[Insidious611]

Reporting that I updated my EmuNAND to 10.4 and the HBL CIA is still working after replacing the payload. The payload seems to have a slightly lower boot rate now though? I get more yellow screens when launching HBL from the installed CIA.

O3DS (2DS actually), running rxTools

Thanks for clearing that stuff up for me, re: the HBL CIA, can't believe I believed that line in bull that the launcher was blocked on 10.4.

In case anything breaks I have a 10.3 EmuNAND backup. This probably goes without saying but anyone with an EmuNAND *make a backup before running the update*. It's probably going to be fine but you can never be too careful.

Of course, worst comes to worst you just have to clone your SysNAND and make a new EmuNAND on 9.2 or whatever.

 

[mashers]

Go with sky3ds. It has much more potential than cubic ninja, and if they every patch cubic ninja you can still have the functionality of the sky3ds cart (no one really plays cubic ninja), and you could still use .3ds homebrew, which could probably launch HBL straight from a .3ds rom

Sky3DS can't run homebrew.

 

[Insidious611]

Sky3DS can't run homebrew.

It can run Cubic Ninja, which can then be used to run homebrew. But the bit about "If they ever patch cubic ninja" is kind of wrong though.

 

[DjoeN]

@TheCyberQuake

You should mention that CakesCFW from @mid-kid also works with EmuNAND 10.4 in the OP

What has been confirmed:

• Latest CakesCFW build works with 10.4 in emuNAND on Old 3ds and New 3ds (use correct firmware.bin for your system)

 

[mashers]

It can run Cubic Ninja, which can then be used to run homebrew. But the bit about "If they ever patch cubic ninja" is kind of wrong though.

Running Cubic Ninja != running homebrew. The post I quoted said that with Sky3DS "you could still use .3ds homebrew, which could probably launch HBL straight from a .3ds rom", which is incorrect. Sky3DS does absolutely nothing to exploit the system itself. It just emulates a cart, and does not work with 3ds homebrew.

 

[leonshong]

• Gateway 10.4 emuNAND works with updated Launcher.dat (chizco06)

I confirm that, too.

Both my N3DSLL JPN with sysNAND 9.1 start from cold-boot through MenuHax into HBL, then boot into emuNAND 10.4 via Gateway Ultra fw 3.71 successfully.

Even my moded themes-set by CHMM2 works fine at the first boot into emuNAND 10.4

 

[DjoeN]

Running Cubic Ninja != running homebrew. The post I quoted said that with Sky3DS "you could still use .3ds homebrew, which could probably launch HBL straight from a .3ds rom", which is incorrect. Sky3DS does absolutely nothing to exploit the system itself. It just emulates a cart, and does not work with 3ds homebrew.

Just to add a note to it

You can write Cubic Ninja or Zelda OoT to Sky3DS(+) and launch HBL through this, since it acts like a real gamecart
but like @mashers said, Sky3DS itself can't launch homebrew cause it doesn't do a thing for this. it doesn't even run eShop games, only retail gamecart dumps.

I can confirm for you that APT:IsTitleAllowed does not have any sort of list to update. The titles and versions it blocks are hardcoded into the NS system module, requiring a system update to change.

So next Nintendo can do: Send out Updates for Cubic Ninja and Zelda OoT, add it to APT and it's game over for those to. pretty smart move from Nintendo and i suppose and not including a gamelist to, cause this can be hacked (i think)