Hacking [WIP] KARL3DS - Kernel access on N3DS via Ninjhax + Loadcode

Kylecito · Mar 24, 2015

Let us run GW EMUnand with KARL d: you wouldn't get your own hands dirty right

overlord00 · Mar 24, 2015

Pretty stocked for the return of MSET on later firmware.
Very excited to see what's coming next.
Thanks for the updates devs

Kurt91 · Mar 24, 2015

Forgive me for if this is a stupid question, I just want to clarify.

So, I ordered a New 3DS online, along with a SKY3DS. KARL3DS should allow me to run homebrew with such a setup, correct? If so, you're telling us to make a NAND backup and that KARL3DS will have its own EmuNAND format. So, I should be able to back up and set up EmuNAND while only having a SKY3DS instead of a Gateway?

I didn't get a Gateway because Ocarina retail copies are much more expensive than they should be. I saw some going for over a hundred dollars! I really had my heart set at getting BlargSNES and LameBoy working on the 3DS, since the screen is actually large enough to not have to wreck the graphics squeezing it smaller than it was meant to be, like on my DS. I'd love to be able to still do this, even without a Gateway.

Nollog · Mar 24, 2015

Dazzozo said:
It works! 4.x DS card whitelist, 6.x mset, 6.x profile ROP, 6.x memdump payload and I got a memdump!

Karl is now to renamed, Franken3DS.

Zidapi said:
I must will feed the trolls.

pyon?

2Hack · Mar 24, 2015

Elusivo said:
ARM3²DS
ARM3²DS+2
ARM3²DS++

Here's my naming suggestions standing for arm3²=arm9 and 3²ds can be 3ds and even maybe 2ds, and the others with +2 or ++ at the end is to add 2 for arm11. Maybe it also needs an N somewhere in there for the n3ds too... no need for a KA as it's already implied I think.

I suggest calling it LEG3DS.

We talk about arms so much. >.>

ShadowOne333 · Mar 24, 2015

2Hack said:
I suggest calling it LEG3DS.

We talk about arms so much. >.>

LIMB3DS and let's call it a day.

Nollog · Mar 24, 2015

Kurt91 said:
Forgive me for if this is a stupid question, I just want to clarify.

So, I ordered a New 3DS online, along with a SKY3DS. KARL3DS should allow me to run homebrew with such a setup, correct? If so, you're telling us to make a NAND backup and that KARL3DS will have its own EmuNAND format. So, I should be able to back up and set up EmuNAND while only having a SKY3DS instead of a Gateway?

I didn't get a Gateway because Ocarina retail copies are much more expensive than they should be. I saw some going for over a hundred dollars! I really had my heart set at getting BlargSNES and LameBoy working on the 3DS, since the screen is actually large enough to not have to wreck the graphics squeezing it smaller than it was meant to be, like on my DS. I'd love to be able to still do this, even without a Gateway.

with sky you'll be able to run cubic ninja, which will let you make a nand backup of your system nand as it is now, and some things like dump retail saves etc.

You can't set up emunand or boot emunand without a gateway card, karl will do that herself when she wants to release it next year.
I'm unaware of any other software which can create an emunand on the n3ds yet.

Also, deggezezzo or whatever, you should re-enable the spiderhax too while you're at it.
Why not?

Ryccardo · Mar 24, 2015

Nollog said:
You can't set up emunand or boot emunand without a gateway card, karl will do that herself when she wants to release it next year.
I'm unaware of any other software which can create an emunand on the n3ds yet.

Unless it was changed recently, you can create emunand with the launcher only, but not use it

motezazer · Mar 24, 2015

If I understood :
-you managed (with shady tricks) to decrypt 9.6 FIRM but you didn't manage to bypass new NCCH encryption (so no 9.6 emuNAND);
-when doing RE of 9.6 Process9 you noticed that Nintendo fixed a new flaw;
-this flaw allow ARM9 code execution from ARM11 userland in 9.5 or lower.

Am I right?

tony_2018 · Mar 24, 2015

Zidapi said:
Yeah, I completely failed to read the very post I quoted.

I must will feed the trolls.

I must will feed the trolls.

I must will feed the trolls.

Yes. The devs have said that KARL will use its own more efficient emuNAND format, but that it will be easy to convert a Gateway emuNAND to the KARL format.

So use the Gateway make a backup of your NAND now (and you might as well setup an emuNAND partition if you have the space), it will work with KARL when it's eventually released.

Hype??? Great so who started the hype in a dev thread.

tony_2018 · Mar 24, 2015

WulfyStylez said:
Found a crazy vuln. Allow me to take this moment to remind people: IF YOU'RE ON SYSNAND 9.5 OR LOWER (9.6 or lower on old3ds maybe, don't chance it though) MAKE A NAND BACKUP. DO IT RIGHT NOW. You will regret not doing it in the future, otherwise.

That is all I'll say for now.

I suggest you keep it to yourself about what it is. I'd like to see what other devs will find.

Nollog · Mar 24, 2015

motezazer said:
If I understood :
-you managed (with shady tricks) to decrypt 9.6 FIRM but you didn't manage to bypass new NCCH encryption (so no 9.6 emuNAND);
-when doing RE of 9.6 Process9 you noticed that Nintendo fixed a new flaw;
-this flaw allow ARM9 code execution from ARM11 userland in 9.5 or lower.

Am I right?

I got
- opposite
- probably the shady trick
- dunno, she seems like she doesn't want to get your hopes up babe.

tony_2018 · Mar 24, 2015

2Hack said:
I suggest calling it LEG3DS.

We talk about arms so much. >.>

TOADS-3DS

The Only Advanced Development System

puss2puss · Mar 24, 2015

Nollog said:
with sky you'll be able to run cubic ninja, which will let you make a nand backup of your system nand as it is now,..

...wait what?..does it mean i hardmodded my n3ds for nothing?? didnt know it was possible to backup our nand with ninjhax..i dont understand how it can even be possible without full access..

motezazer · Mar 24, 2015

Nollog said:
I got
- opposite

WulfyStylez said:

So I quickly thought up some clever hax today, and long (and confidential) story short we can decrypt 9.6 NATIVE_FIRM now! That new encryption isn't the only problem, though...

Click to expand...

- probably the shady trick
- dunno, she seems like she doesn't want to get your hopes up babe.

MrJason005 · Mar 24, 2015

more teasers plz

tony_2018 · Mar 24, 2015

Dazzozo said:

You guys are such a tease, its no wonder its causing all this controversy on here about rom loaders and what not.

motezazer · Mar 24, 2015

MrJason005 said:
more teasers plz

Nephiel · Mar 24, 2015

puss2puss said:
...wait what?..does it mean i hardmodded my n3ds for nothing?? didnt know it was possible to backup our nand with ninjhax..i dont understand how it can even be possible without full access..

The hardmod would allow you to restore your sysNAND backup even if you updated sysNAND to 9.3+. And maybe even allow to recover from an eventual brick.
So no, not for nothing.

Maximilious · Mar 24, 2015

Very happy I decided to pick up a copy of CN even though I already owned OoT. Waiting for a proper release... and waiting again for all the seemingly eager beta testers in this forum...

Hacking [WIP] KARL3DS - Kernel access on N3DS via Ninjhax + Loadcode

eats warnings for breakfast

A motherfucking birdplane

Well-Known Member

Well-Known Member

HYPiavelli

QVID PRO QVO

Well-Known Member

watching Thames TV from London

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

.. well ..

Well-Known Member

√2

Well-Known Member

Well-Known Member

Artificer

Whistles a familiar tune

Similar threads