Why is a flashcard working, but no software exploit available? Technical difference?

[Memfis]

Sorry, if this question is silly, but why is a flashcard like the Mig working on new switch models, but there is no software exploit available? According to my understanding the flashcard must use an exploit, because it's not signed by Nintendo. Could devs reverse engineer the software the flashcards are using and create a normal software exploit which can be used by everyone? What is the technical difference between using a flashcard to play pirated games / using homebrew and a normal software exploit?

Thanks to all, who will explain this to me in easy words, than could be understood by someone, who have no knowledge of hacking.

 

[linuxares]

Abuse of the SDK is something I've heard in the grapevine.
Also since it's from the same team that did the SX, so they probably know how to extract the keys from the Lotus3

 

[Deleted member 702243]

According to my understanding the flashcard must use an exploit, because it's not signed by Nintendo.

it doesn't need to be, the software doesn't see the flashcart. it just sees the signed files dumped from a legit cartridge

 

[Memfis]

So you mean Nintendo is checking the software on the card, but didn't check, if the game card itself is legit? If that is true, than it's a heavy fail and a real joke to prevent piracy, because flashcards exists at least since Nintendo DS (probably before)

 

[smf]

According to my understanding the flashcard must use an exploit, because it's not signed by Nintendo.

All the software that you run with the flash card is signed by Nintendo.

That is why there is no menu & you have to keep ejecting the card to switch between games.

 

[Kioku]

So you mean Nintendo is checking the software on the card, but didn't check, if the game card itself is legit? If that is true, thanks it's a heavy fail, because flashcards exists a least since Nintendo DS (probably before)

Spoofing cards isn't exactly impossible, it's when you start digging into the certs (legitimacy check for online use) it becomes a problem. It also doesn't help that the megaleak contained some things that may have helped a Switch flashcard come to fruition.

 

[MrQQ]

The sky3ds card worked very similar. It's now I got cubic ninja running back in the day to modify my system The SD card is simply replacing the storage. The storage on cartridges is not signed but the files etc themselves are.

 

[Viri]

So how exactly will Nintendo block this for the Switch and Switch 2? Will it be difficult or easy for them?

 

[ghjfdtg]

So you mean Nintendo is checking the software on the card, but didn't check, if the game card itself is legit? If that is true, than it's a heavy fail and a real joke to prevent piracy, because flashcards exists at least since Nintendo DS (probably before)

No. It's cryptographically secure. Years ago someone decapped the chips and extracted the secrets needed to pass all the checks. What happened then is unknown but the keys likely got sold.

 

[a_username_that_is_cool]

There WAS a Software Exploit (for some very old versions though) called PegaScape/PegaSwitch, but noahc3 (the person who hosted it) went nah imma head out cause he didn't have the motivation. I'd make a comment on my opinion, but I'd get hate for doing that (send me a DM or something if you really wanna know)

 

[Memfis]

Thanks for all. But there is no answer about the question, if it is possible to find out, which method is used to run the software and create an exploit for running software without the flash-card.

Since the flashcard is working on all switch-models and actual firmware, it should be interesting to find out how.

No. It's cryptographically secure. Years ago someone decapped the chips and extracted the secrets needed to pass all the checks. What happened then is unknown but the keys likely got sold.

Why can't the keys used for signing homebrew?

 

[The Catboy]

Thanks for all. But there is no answer about the question, if it is possible to find out, which method is used to run the software and create an exploit for running software without the flash-card.

Since the flashcard is working on all switch-models and actual firmware, it should be interesting to find out how.

I think they have. The tech used by flashcarts aren’t software exploits, they are just running Nintendo’s code and spoofing the carts. It’s not the same as a software exploit and doesn’t use a software
There hasn’t been any software exploits found/released. Software exploits don’t function the same way as spoofing a cart.

 

[Sir Tortoise]

There WAS a Software Exploit (for some very old versions though) called PegaScape/PegaSwitch, but noahc3 (the person who hosted it) went nah imma head out cause he didn't have the motivation. I'd make a comment on my opinion, but I'd get hate for doing that (send me a DM or something if you really wanna know)

By all means, host it yourself for all five people still using it, be the change you want to see in the world.

 

[a_username_that_is_cool]

By all means, host it yourself for all five people still using it, be the change you want to see in the world.

If they really needed it they coukd host it themselves

 

[ghjfdtg]

Why can't the keys used for signing homebrew?

It doesn't get around any software security and likely never will. It only bypasses the gamecart security which is why these flashcarts can't run anything else other than Nintendo signed software. The keys are entirely different and used for different purposes.

 

[ostebob]

Why can't the keys used for signing homebrew?

Read up on asymmetric cryptography. We do not have Nintendos private key.