What ever happened to ntrccardhax?

Discussion in '3DS - Homebrew Development and Emulators' started by runetoonxx2, Jun 23, 2016.

  1. runetoonxx2
    OP

    runetoonxx2 GBATemp's Cancer

    Member
    1,345
    176
    Jan 15, 2014
    United States
    The GBATemp
    Just wanna know
     


  2. Vappy

    Vappy GBAtemp Advanced Maniac

    Member
    1,506
    1,153
    May 23, 2012
  3. runetoonxx2
    OP

    runetoonxx2 GBATemp's Cancer

    Member
    1,345
    176
    Jan 15, 2014
    United States
    The GBATemp
  4. Stoned

    Stoned GBAtemp Advanced Fan

    Member
    778
    112
    Mar 26, 2014
    Gambia, The
    What can it do?
     
  5. Jack54782

    Jack54782 GBAtemp Fan

    Member
    382
    233
    Jan 4, 2016
    United Kingdom
    A9LH CRUSADE
    ARM9 access with a NDS Card that was hacked or something
     
  6. zoogie

    zoogie simple pimp tool

    Member
    6,149
    7,728
    Nov 30, 2014
    United States
    @d3m3vilurr has been working on it
    https://github.com/d3m3vilurr/ntrcardhax/tree/more

    Problem is, the last piece of the puzzle is an app to flash the payload to an ak2i and @Normmatt says only an arm9 app can do this, which defeats the purpose.

    I still would very much like to see a POC anyway.
     
    Last edited by zoogie, Jun 23, 2016
    sweis12 likes this.
  7. Lilith Valentine

    Lilith Valentine GBATemp's Wolfdog™ I drool on my knife

    Member
    19,349
    19,662
    Sep 13, 2009
    Antarctica
    Between insane and insecure
    It kind of lost speed. It's a nice idea and would have been cool to see, but it seemed like the other options got more attention and this one just dropped out of the public's eye
     
  8. Quantumcat

    Quantumcat Dead and alive

    Member
    9,803
    5,122
    Nov 23, 2014
    Australia
    Canberra, Australia
    It can just be a secondary thing anyway, or people can resell flashcarts with the payload or whatever on them. Doesn't seem like a dealbreaker.
     
    Codename and zoogie like this.
  9. evandixon

    evandixon PMD Researcher

    Member
    1,652
    775
    May 29, 2009
    United States
    Ak2i cards have an updatable firmware using a .nds installer run from the cart itself. While I know Normmatt knows what he's talking about, it seems like this would be a non-issue.
     
  10. Wolfvak

    Wolfvak *yawn*

    Member
    798
    1,059
    Oct 25, 2015
    Uruguay
    FYI it also got completely murdered on 10.4
     
  11. gnmmarechal

    gnmmarechal Kirigiri > Naoto

    Member
    GBAtemp Patron
    gnmmarechal is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    4,477
    2,663
    Jul 13, 2014
    Portugal
    https://gs2012.xyz
    Pretty much dead, since it won't work with 10.4+ afaik, and 10.7 or less can be downgraded to an exploitable firmware just with software.
     
  12. Roboman

    Roboman GBAtemp Regular

    Member
    281
    68
    Jan 7, 2016
    United States
    It was overshadowed by the fact that with arm11 kennel you could downgrade.

    Everybody just downgraded rather than bother with the extra hardware.
     
    sweis12 likes this.
  13. d3m3vilurr

    d3m3vilurr Advanced Member

    Newcomer
    51
    27
    Jun 2, 2016
    i think, ntrcardhax still important for some asian regions.
    currently, ninjhax2 payload only support jap, eur, usa, and partially kor.

    but, kor n3ds only have 9.6~11.x firm, so they cannot use arm9 control feature until release other arm9 exploit.
    if we can launch hblauncher, still can downgrade or upgrade to 10.3, then can use ntrcardhax for the arm9 execution.
     
    Quantumcat likes this.
  14. shinyquagsire23

    shinyquagsire23 SALT/Sm4sh Leak Guy

    Member
    1,961
    3,231
    Nov 18, 2012
    United States
    Las Vegas
    Without an AK2i flasher or similar, the only way to do ntrcardhax would be custom hardware, but that is definitely a valid point.

    EDIT: Actually, the other alternative for KOR consoles would be to use a valid SecureInfo_A from a US,EU or JP console and when downgrading, use another region's files. This would cripple the console partially though and would be tricky, because you would also have to get to a point where you can remove KOR titles to make it stable again. That, or just get to ARM9 anyhow and then swap back and remove the US,EU,JP titles.

    EDIT: Actually you need ARM9 to install the SecureInfo_A, so nope @ that.
     
    Last edited by shinyquagsire23, Jun 24, 2016
    d3m3vilurr and Gray_Jack like this.
  15. Jair

    Jair Advanced Member

    Newcomer
    92
    8
    Apr 14, 2016
    Peru
    NTRCardhax won't work on 10.4+? Bummer I didn't knew that. I was actually hoping that maybe in the future that it could be used to downgrade 11.0 without hardmod.
     
  16. Roboman

    Roboman GBAtemp Regular

    Member
    281
    68
    Jan 7, 2016
    United States
    It's been public since Christmas.
    Nintendo usua)y patches public kexploits Within a month.
     
  17. d3m3vilurr

    d3m3vilurr Advanced Member

    Newcomer
    51
    27
    Jun 2, 2016
    yep. if can change region code, it is best option. but this action already require arm9 execution first if not use hardmod. :(

    Normmatt's code need ak2i flash dump and reflash, and he said these actions require arm9 code execution..
    but i have some problems for these works.

    1. dump
    launched ak2i mode, ak2i will change chipid. in this case, need to clear overlay data for dump. so require eject and reinsert to cart.
    this action make, cannot dump to ak2i's sdcard with dsl(lost dldi connection at the eject time.(i don't know dsi mode. maybe they can dump to device sdcard. but i'm not have dsi, so not tested..)
    currently, i try to use modified uncart code on the jap n3ds. current uncart code can send ntr commands to dscart.
    (but i think, my dumped header data is little weird, and i don't know right flashrom position)

    2. reflash
    reversed ak2i flasher show some custom commands and encrypted flash rom data,
    but i don't know direct write command.. (i need to dump before this work, so i will test next time..)

    anyway, Normmatt also confirmed, dumped ak2i flashrom data can use another ak2 or ak2i. so someone discover dump and flasher method, it can use all ak2i owners. :)
    (and i think, homebrew flasher can work with dsl and dsi)
     
    Last edited by d3m3vilurr, Jun 24, 2016
  18. shinyquagsire23

    shinyquagsire23 SALT/Sm4sh Leak Guy

    Member
    1,961
    3,231
    Nov 18, 2012
    United States
    Las Vegas
    Realistically you should also be able to do flashing from a DS I'm pretty sure? I mean, it would make sense to be able to...
     
  19. dark_samus3

    dark_samus3 GBAtemp Addict

    Member
    2,314
    1,712
    May 30, 2015
    United States
    Why exactly is arm9 needed to reflash? The arm11 has access to the ntrcard registers (why ntrcardhax works in the first place) so, why couldn't a flasher be made to work on arm11? Or is it just the fact that no one has made it yet?
     
  20. Roboman

    Roboman GBAtemp Regular

    Member
    281
    68
    Jan 7, 2016
    United States
    It is difficult if not impossible for the arm11 to interface with ntr cards fully and properly. It was designed to acess the card slot for 3ds games. Ds games also using that slot the premise of this hax