Toggle sidebar

Hacking [WIP] KARL3DS - Kernel access on N3DS via Ninjhax + Loadcode

  • Thread starter Thread starter Rokkubro
  • Start date Start date
  • Views Views 924,242
  • Replies Replies 4,457
  • Likes Likes 43
Status
Not open for further replies.
motezazer said:
Well, clock glitching - voltage glitching - radiation glitching were all tried (not by me, of course). None of them worked.
And I read that the reset line of the SoC wasn't found, so no reset glitching.
Click to expand...
Well thanks for the info. So still a way should be found if it is planned to be done. At least JTAG isn't exposed..
Maybe could search for those cirterias about this subject (hardware injection/corruption?) on EI or I3E.
0-T0. 1/2*T0: HALT! ? Failed >> 1/4*T0...

BTW what about the usefulness of a ARM9 customizable patch loader (from file, no need to re-compile and load it)? (forgive me asking this here)
 
  • Like
Reactions: Margen67
There is also another way to completly break the security of past, present and future 3DS and New 3DS : factorize a semi-prime number into two prime numbers... :)

Syphurith said:
Well thanks for the info. So still a way should be found if it is planned to be done. At least JTAG isn't exposed..
Maybe could search for those cirterias about this subject (hardware injection/corruption?) on EI or I3E.
0-T0. 1/2*T0: HALT! ? Failed >> 1/4*T0...
Click to expand...

The most useful thing would be to find the SoC reset line. From here -> reset glitching -> fault -> in-bootrom code execution -> dump of bootrom and OTP registers -> you won.

Syphurith said:
BTW what about the usefulness of a ARM9 customizable patch loader (from file, no need to re-compile and load it)? (forgive me asking this here)
Click to expand...

Could be useful, but please discuss of it in another thread.
 
  • Like
Reactions: Margen67 and Syphurith
If rxTools continues, or if Pasta devs add emuNAND, there'd be little benefit to trying to crack SALT for sig checks. Might be worth it if they add N3DS keys that are still private at the time, though, and if Gateway haven't already obtained them themselves that's certainly an option for them :P
 
  • Like
Reactions: NaviLoz101 and Margen67
shinyquagsire23 said:
It certainly won't be as easy as RxTools was to crack, I'll tell you that much.


We have no such replacing scripts. Also why would we not up our security after RxTools was patched like nothing happened?
Click to expand...
my bad i misspelled all your names i meant to say yls8 x3 he's the one where all the work is coming from have fun ill see ''karl'' when its released and well go from there ;3 btw hey @Huntereb @Reisyukaku its starting gain ;P

--------------------- MERGED ---------------------------

Vappy said:
If rxTools continues, or if Pasta devs add emuNAND, there'd be little benefit to trying to crack SALT for sig checks. Might be worth it if they add N3DS keys that are still private at the time, though, and if Gateway haven't already obtained them themselves that's certainly an option for them :P
Click to expand...
@Huntereb @Reisyukaku this is why i like @Vappy at least someone makes good points on this thread :3 also hey vappy long time no chat ^.^/
 
  • Like
Reactions: Vappy
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

Why did the price of 3ds shoot up ?

Hacking Homebrew Project  BlazerTube - a YouTube 3DS revival using the REAL app!

[WIP] SMW 3DS Port - Early Playable Demo by ZalgonEn

Problems getting Homebrew to appear outside of the Homebrew Launcher (homebrew won't appear on the HOME menu)

Website for finding alternative games for 3DS

Homebrew app Emulator  [Release] 3DS-CLI - Run a real RISC-V Linux environment on the Nintendo 3DS

Homebrew  [Progress update] LCE Minecraft 3ds

Hacking Homebrew  Possibility to preserve UnityForN3DS-1_3_10? I found some files.