Please don't derail the discussion again. This isn't a thread about piracy -_-
This.
If you want a CFW with antipiracy measures, you can follow the progress of other hackers interested in this concern.
Please don't derail the discussion again. This isn't a thread about piracy -_-
Lets end that discussion there.
Edit: when will peoples learn that physical things and software is basically the same things, the only difference is that you can't touch the software(at the moment) it still costs money to produce.
I didn't ask him to stop develop, I asked him to implement some kind of security against piracy in the future. If that takes as disrespect in your country, I'm sorry but you might be crazy, if you misunderstood I didn't mean that I said.The developers that gave fierce waffle the info he needed to build this ram dumper did not share it with him to so people can create a cfw rom loader. They shared it with him to enable (legal) homebrew.
If those developers did not share the info with fierce waffle then he would be nowhere. So thanks for the disrespect, no wonder good developers are a dying breed
succeeded on mine, but i used raw c code with polarssl library. the md5 of the output should be 646d685e2643b1e3234df3d0a15fd58bI got a bad decrypt error trying the first one on Launcher.dat. Is gateway.dat a different file? Because I couldn't find anything on it.
B9 F2 10 00 E0 FE 01 00 10 00 00 00 C4 4F 1C 00
00 94 27 00 FC 34 13 00 44 44 44 44 8C 3D 14 00
00 94 27 00 2F F7 1A 00 44 44 44 44 C4 4F 1C 00
01 00 7E 9A 58 B2 18 00 44 44 44 44 D4 14 10 00
84 7D 2B 00 8C 3D 14 00 88 01 27 00 18 CF 18 00
44 44 44 44 B9 F2 10 00 E0 FE 01 00 10 00 00 00
C4 4F 1C 00 00 94 27 00 FC 34 13 00 44 44 44 44
8C 3D 14 00 00 94 27 00 2F F7 1A 00 44 44 44 44
C4 4F 1C 00 02 00 7E 9A 58 B2 18 00 44 44 44 44
D4 14 10 00 48 01 2B 00 8C 3D 14 00 E4 EF 22 00
18 CF 18 00 44 44 44 44 08 30 10 00 E5 04 21 00
7C CF 2C 00 00 47 18 00 00 64 11 00 00 43 1B 00
00 32 11 00 00 B8 07 00 30 E6 21 00 F9 02 10 00
28 43 1E 00 44 44 44 44 55 55 55 55 66 66 66 66
yes, I know that there's no compiler for a r.o.p. Chain, what I meant was to "compile" it into a file, not compile the code, i should have been more clear on that one, also I know about the stack space already, anything more you can point me at?There are no compilers for rop chains. There is no executable code to compile. You are manipulating data on the stack - registers and data are pushed on the stack when a function is called - the return address is also stored on the stack. With rop you manipulate these return addresses to point piece of existing code that you want executed. The code has to exist but say in the case of a function call you can manipulate the parameters to suit your needs. Manipulating the parameters requires you to move values into registers by finding bits of code that modify a register and return. This is a very tedious process that needs to be done by hand. On top of that you may also have a limit to the amount of stack space that you are able to manipulate.
succeeded on mine, but i used raw c code with polarssl library. the md5 of the output should be 646d685e2643b1e3234df3d0a15fd58b
edit: you should have a header same as this one:
this is what i used:Got an identical header, but different checksum. Tried three different decryption methods, all gave me bad signature etc. Eh, I doubt this'd be much use to me anyway, I was just curious. At the least, interesting to see more people turning their eye to the 3DS! fierce waffle and megazig, naerhwert, saw 173210 say on twitter he might consider switching from Vita to 3DS.
There are no compilers for rop chains. There is no executable code to compile. You are manipulating data on the stack - registers and data are pushed on the stack when a function is called - the return address is also stored on the stack. With rop you manipulate these return addresses to point piece of existing code that you want executed. The code has to exist but say in the case of a function call you can manipulate the parameters to suit your needs. Manipulating the parameters requires you to move values into registers by finding bits of code that modify a register and return. This is a very tedious process that needs to be done by hand. On top of that you may also have a limit to the amount of stack space that you are able to manipulate.
this is what i used:
https://mega.co.nz/#!Yg8gAa5a!bpC7axeB-l8Dty5cqPnyBkwwBL191wx6Jcf3NsNtB9I
Obviously you need polarssl for that
One does not simply walk into mordor... Seriously though, I think you are not grasping the complexity of the task at hand. It is more of a puzzle where you need to track down several pieces that must be aligned just so, in order to accomplish a single step. Yes it is probably possible to write something along the lines that you described. But it would be much more useful to create a rop chain that can load and launch compiled code. This is most likely to be written in a hex editor - really any tool that can write raw untranslated data.It's probably not worth writing software to do it if you're just writing it once. But you could create some form of meta data that described what you wanted to achieve in your program and automate that. You could call that software a compiler.
I just bought a 4.5 XL. It works.
what can someone do with this exploit?
the flashcard has to be 3ds only? ...and i guess its only for developer use right? ;pDump 3 MB of your RAM