Hacking qlutoo got a talk at 34c3's console hacking/security section!

[Kioku]

View attachment 109534

Should turn this image into a drinking game...

 

[ken28]

more interesting is that they mentioned that they could ignore efuses in the beginning if i remember right.

 

[Kioku]

more interesting is that they mentioned that they could ignore efuses in the beginning if i remember right.

Kind of sad really. Makes sense though.

 

[adrifcastr]

https://twitter.com/SciresM/status/946466371998597120

trustzone is pretty untrusted there is no need in hyping this, this gives us nothing as you heard in the talk, the secure monitor doesn't actually monitors anything on the switch.

 

[Garrincho]

Spoiler

 

[Resaec]

So this is the third time we have this pic...
Also please stop quoting posts from 10BC stating desinformation ;/

I also had the feeling they did not want to answer a question regarding their exploits... We might get a higher up one "soon" but its too buggy for public use OR its for exfiltration and will never be released untill patched. I dont mind. Keep it if you need it!

 

[Nezztor]

Guys ! reswitched team released snes emulator , with sound and video!

 

[ken28]

-snip-

please use a spoiler tag

 

[Tempest228]

I'm guessing they have a higher level exploit, just based on plutoos tweets. If they can keep it safe for higher firmwares, that's fine. Rather be able to use my switch for a lot of games and homebrew, than just homebrew and a couple games.

 

[Pandaxclone2]

Should turn this image into a drinking game...

It's the 3DS Soon™ fiasco all over again.

 

[V-Temp]

more interesting is that they mentioned that they could ignore efuses in the beginning if i remember right.

Only where the bootloader bugs are applicable, so only on low firmware can they basically bypass the check by hijacking the system.

 

[DSpider]

I love how Plutoo said "so the kernel is pwned, here's some code, yeah."

 

[Coto]

Guys ! reswitched team released snes emulator , with sound and video!

*tips hat to reswitched team*


edit:

also, thanks to those who documented and performed the talk this time as well, good job.

 

[Seelbreaker]

Guys ! reswitched team released snes emulator , with sound and video!

Source?

Shit:
https://github.com/reswitched/libtransistor-snes9x2010

 

[adrifcastr]

I love how Plutoo said "so the kernel is pwned, here's some code, yeah."

he used to handle his success the same way @ 32c3

 

[ehnoah]

Source?

Shit:
https://github.com/reswitched/libtransistor-snes9x2010

Now we need a Tutorial

 

[Garrincho]

Video of the snes emulator

 

[Greg956]

I think that there is no reason in buying Japanese Puyo Pugo, right? It was only as example...

 

[LukySplatoon]

So now we can play on snes games? On 3.0 only? Future tutorial?

 

[Resaec]

"I dont belive in fate, but [...]" - Plutoo as he found an out of bounds read in the pl microservice.

The entire hack (as i see it) currently bases on the sm service to escalate to kernel... In case they dont find a practical way to escalate from an universal usermode applet (preferably webkit) we are stuck at 3.0.0