Yellows8 just realesed Smashhax

Discussion in '3DS - Flashcards & Custom Firmwares' started by DingusPingus, Sep 12, 2015.

Thread Status:
Not open for further replies.
  1. DingusPingus
    OP

    DingusPingus GBAtemp Regular

    Member
    104
    31
    Sep 7, 2015
    United States
    This is haxx for Super Smash Bros for 3DS, via local-WLAN beacon haxx. The haxx triggers while the application is scanning for local multiplayer sessions, when the beacon is being broadcasted. In certain cases the application may somewhat hang or crash prior to any actual ROP being run: this hax is not completely reliable, one reason is because the heap layout not always being in the intended state. Another reason(which actually seems to be the main cause usually) is that the ROP may fail to recv another beacon quickly enough, which results in jumping to using a stack which is all-zeros(there's no good way to do error checking/looping for that, partly because of lack of space). Also note that in some cases it may take a while for the hax to trigger.

    Supported application builds:

    • demo: USA+EUR supported and tested. There's no difference between the regular demo and the "Special Demo" with this hax. This was the only version of Smash-3ds supported by this hax initially, until after the USA version of the game was released.
    • v1.0.0. USA: supported+tested. "gameother": supported+tested.
    • v1.0.2. USA: supported, not tested.
    • v1.0.4. USA: supported+tested. "gameother": supported, not tested.
    • v1.0.5. USA: "supported". The target heap address for overwriting the target object varies, hence this hax doesn't actually work right with this version. This version is not fully supported due to this.
    • v1.1.0. USA: supported+tested. "gameother": supported+tested.
    https://github.com/yellows8/3ds_smashbroshax
     
    Ambassador, klear, ihaveamac and 3 others like this.


  2. codychaosx

    codychaosx GBAtemp Advanced Fan

    Member
    586
    593
    Mar 15, 2009
    United States
    Wisconsin
    So im kinda dumb and gna ask the noob question right away. does this have kernel access or what have you then (like the ability to launch a cfw) or would this be userland homebrew type stuff only?
     
  3. DingusPingus
    OP

    DingusPingus GBAtemp Regular

    Member
    104
    31
    Sep 7, 2015
    United States
    I don't know, there might be an entrypoint he found but didn't realese with Smashhax and expects others to find it
     
  4. WaffleWafer

    WaffleWafer GBATemp Novice Lurker

    Member
    239
    120
    Aug 1, 2015
    Mexico
    again thouh for demo users, can we only use this hack 30 times?
     
  5. Jiro2

    Jiro2 GBAtemp Advanced Fan

    Member
    757
    184
    Mar 28, 2011
    United States
    Could this be usable with the existing kernel access entry points on systems that are at 9.2 and less?
     
  6. endoverend

    endoverend AKA zooksman

    pip Contributor
    GBAtemp Patron
    endoverend is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,843
    3,547
    Jun 6, 2013
    United States
    Well you could use some kind of extdata tool to edit the remaining plays on the demo to 999 or something like that.
     
  7. TheRivo

    TheRivo Member

    Newcomer
    11
    0
    Sep 3, 2015
    Mexico
    Can I use the complete version of SSB to run this hax?
     
  8. endoverend

    endoverend AKA zooksman

    pip Contributor
    GBAtemp Patron
    endoverend is a Patron of GBAtemp and is helping us stay independent!

    Our Patreon
    2,843
    3,547
    Jun 6, 2013
    United States
    Yes.
     
  9. TheRivo

    TheRivo Member

    Newcomer
    11
    0
    Sep 3, 2015
    Mexico
    Thank you :)
     
  10. WaffleWafer

    WaffleWafer GBATemp Novice Lurker

    Member
    239
    120
    Aug 1, 2015
    Mexico
    Is this even possible? i've edited my play coins, but not sure if that kind of tool exists. If it does, I'd binge play SSB4 Demo for days.
     
  11. zoogie

    zoogie simple pimp tool

    Member
    6,162
    7,787
    Nov 30, 2014
    United States
    It seems like 4/5 questions on this thread could be answered by reading the damn github readme on the first post lol.

    btw - this is not easy to do for novices. At least not yet.
     
  12. q9p

    q9p GBAtemp Regular

    Member
    145
    74
    Aug 14, 2015
    United States
    Pensacola, FL
    I'm a little bit confused on setting this up properly. Anyone willing to help?
     
  13. zoogie
    This message by zoogie has been removed from public view by Sicklyboy, Sep 12, 2015, Reason: Double post.
    Sep 12, 2015
  14. q9p
    This message by q9p has been removed from public view by Sicklyboy, Sep 12, 2015, Reason: Double post.
    Sep 12, 2015
  15. Zidapi

    Zidapi GBAtemp Addict

    Member
    2,980
    1,781
    Dec 1, 2002
    It's highly unlikely this will lead lead to kernel exploit in its current state.

    Like Smea, yellows8 is strongly anti piracy, and like Smea he'd have only released this if he was sure it couldn't lead to a kernel exploit.

    But like Smea, he may have underestimated the devs in this community, so as Ninjhax was it may very well be used to get kernel access.

    But who knows, if you'd asked me yesterday, I'd have said yellows8 would never release an exploit, not ever. Hell, he sat on oothax for three whole years, he only published the source because Gateway used it. So this is a huge surprise to me.

    I'm still adamant that he wouldn't release anything he thought could lead to a kernel exploit. So why would he release smashhax? My guess is that it could be used with legit carts to make something like Project M for Smash 3DS.
     
    fmkid and puss2puss like this.
  16. q9p
    This message by q9p has been removed from public view by Sicklyboy, Sep 12, 2015, Reason: Double post.
    Sep 12, 2015
  17. shinyquagsire23

    shinyquagsire23 SALT/Sm4sh Leak Guy

    Member
    1,961
    3,231
    Nov 18, 2012
    United States
    Las Vegas
    Nope, just another entrypoints. And extra entrypoints don't lead to kernel exploits, it was purely coincidence the last time it happened with ninjhax 1.
     
    Cavioe likes this.
  18. Cavioe

    Cavioe GBAtemp Fan

    Member
    308
    72
    May 28, 2015
    United States
    This should be a sticky to hopefully stop the asking for new kernel exploits. It seems anytime a new entry is made many pages are filled with that same question making the threads a mess to go through.
     
  19. Dyshonest
    This message by Dyshonest has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  20. DingusPingus
    This message by DingusPingus has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  21. puss2puss
    This message by puss2puss has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  22. Dyshonest
    This message by Dyshonest has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  23. puss2puss
    This message by puss2puss has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  24. zoogie
    This message by zoogie has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  25. Zidapi
    This message by Zidapi has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  26. puss2puss
    This message by puss2puss has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  27. Dyshonest
    This message by Dyshonest has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  28. DingusPingus
    This message by DingusPingus has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  29. Dyshonest
    This message by Dyshonest has been removed from public view by Veho, Sep 12, 2015, Reason: Cut it out, mkay.
    Sep 12, 2015
  30. bakurage

    bakurage GBAtemp Regular

    Member
    223
    74
    Aug 9, 2015
    France
    Sorry if i'm noob but, this hack is for what ? And can i use ssb demo ? Thank's ^^
     
  31. N0n@me

    N0n@me GBAtemp Regular

    Member
    157
    38
    Jun 1, 2015
    United States
    It lets you use ssb4 lan multiplayer to boot into the homebrew launcher. Though it is not a simple thing to use as im having trouble setting it up. yes you can use the demo but you still have the demo play limits.
     
  32. DjoeN

    DjoeN Captain Haddock!

    Member
    5,135
    1,478
    Oct 21, 2005
    Belgium
    Somewhere in this potatoland!
    Seems the EU demo can be used, what about the EU full version, it's not mentioned?
     
  33. N0n@me

    N0n@me GBAtemp Regular

    Member
    157
    38
    Jun 1, 2015
    United States
    I think it works as it has a gameother folder next to the usa folder. which includes most of the same files that the usa one has.
     
    DjoeN likes this.
  34. DjoeN

    DjoeN Captain Haddock!

    Member
    5,135
    1,478
    Oct 21, 2005
    Belgium
    Somewhere in this potatoland!
    Yupz, seems like gameother means EUR and JPN :)
    Thanks
     
  35. bakurage

    bakurage GBAtemp Regular

    Member
    223
    74
    Aug 9, 2015
    France
    Okay, thank's !

    But, like oothax and ironhax ? Or this hack have more possibility/kernel exploit ?
     
  36. N0n@me

    N0n@me GBAtemp Regular

    Member
    157
    38
    Jun 1, 2015
    United States
    It is another entry point exploit. Though Yellows8 is not really known to release things.
     
  37. zoogie

    zoogie simple pimp tool

    Member
    6,162
    7,787
    Nov 30, 2014
    United States
    This is userland, exactly like those you mention.
    It's only special in that it's much much more difficult for the user to implement.

    I haven't heard of a single user who's successfully attempted it yet.
     
Thread Status:
Not open for further replies.