Homebrew [WIP]Flipnotehax, Flipnote 3D Exploit

  • Thread starter Deleted User
  • Start date
  • Views 14,640
  • Replies 60
  • Likes 6
Status
Not open for further replies.
D

Deleted User

Guest
OP
Hello:
In my search of new exploits, I have found something interesting:
Flipnote Studio 3D has a vulnerability on the browser: The flipnotes (.kwz) are stored on an uncrypted amazonaws hosting. This can be easly modified or redirected, cause there are on plain text.
Servers:
Main server: https://web.jkz.ctr.app.nintendo.net (protected)
Server for UI images, .kwpcfs and certificates: *
Server for Flipnotes (.kwz): *
Server for Comments (.kwc): *
Server for Flipnote thumbnail images: *
Server for User's icons: #
NOTE: The servers with an (*) are the important servers for the exploit, so I can't release them preventing a Nintendo patch.
NOTE(2): Due to requests, I have decided to hide the servers (at least for now) preventing patch. You can still request them, or help me developing this. All the servers with (#) are hidden servers. There are also deleted servers that can be shown if neccesary. Thanks for your help!
If you want to help please create an issue on the github repository. NOTE: The code is currently private.
NOTE 3:
I think you guys are not going to belive me so I'm gonna close this and create another with a release (when I have it).
Thanks to the guys that belived this!
COULD A MOD DELETE THIS THREAD?
 
Last edited by ,
  • Like
Reactions: Tigroid, Thunder Hawk, Games&Stuff and 3 others
zoogie

zoogie

playing around in the end of life
Developer
Level 24
Joined
Nov 30, 2014
Messages
8,560
Trophies
2
XP
15,000
Country
Micronesia, Federated States of
It's probably not a good idea to publicize an exploit before you've released it (if you even have one).
Nintendo has shown in the past it will pull (or block) games based on a threat alone.
 
  • Like
Reactions: Zidapi, randomdev and Xenon Hacks
D

Deleted User

Guest
OP
Well if Nintendo sees this and fixes it, it wont really matter because the game isnt even available on the e-shop. The most they could do is a "An update is available" thing like Ironfall and you can just not update.
 
  • Like
Reactions: Hoppy and Xenon Hacks
darklordrs

darklordrs

Well-Known Member
Member
Level 4
Joined
Aug 16, 2015
Messages
791
Trophies
0
Age
23
XP
434
Country
United States
I have my doubts this is real, but if it is, god bless me having Flipnote 3D.

imagine somehow getting kernel through this (it's never happening. fully admitted. -1% chance of it happening. but still)
 
D

Deleted User

Guest
OP
Googie2149 said:
The repo is just a readme.md. This is literally nothing.
Click to expand...
I said: The code is currently private. If it is private, it means that it isn't public. And, if it isn't public, you can't view it.
 
Googie2149

Googie2149

Member
Newcomer
Level 2
Joined
Jul 6, 2013
Messages
16
Trophies
0
Age
27
XP
156
Country
United States
The repo is just a readme.md. This is literally nothing.
100pcrack said:
I said: The code is currently private. If it is private, it means that it isn't public. And, if it isn't public, you can't view it.
Click to expand...

Based on your history (both here and reddit), I don't think you've ever actually released anything. If you have something that's awesome, but at least don't create a hype thread on something that might not go anywhere before you have a proof of concept. A video even.
 
D

Deleted User

Guest
OP
Googie2149 said:
The repo is just a readme.md. This is literally nothing.


Based on your history (both here and reddit), I don't think you've ever actually released anything. If you have something that's awesome, but at least don't create a hype thread on something that might not go anywhere before you have a proof of concept. A video even.
Click to expand...
If i post this here is because i am searching collaborators, not to promote me.
 
Status
Not open for further replies.

Site & Scene News

Go to forum More news

Popular threads in this forum

I will Make you a 3DS custom theme if you don't know how!

Hacking Homebrew  Animal Crossing New Leaf (ACNL) help: data corrupt??

Citra AES Keys

Pokemon Ultra Sun/Moon from piracy site doesn't work

Black icon Mii Plaza + Streetpass isn't working properly

Better n64 emulator?

3DS cheats request?

Does anybody have the old Health and Safety Information CIA?

General chit-chat
Help Users
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, you played that Mario flash game called Mario 63?
  • SylverReZ @ SylverReZ:
    @Xdqwerty, No, but I've seen it on Vinesauce's stream.
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, that game is one of the reasons i met newgrounds bc the full versión of it is in that site
  • Xdqwerty @ Xdqwerty:
    Also somebody is remaking it
  • SylverReZ @ SylverReZ:
    @Xdqwerty, Reason how I found Newgrounds: https://www.newgrounds.com/portal/view/249365
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, the other game where I found newgrounds is new york shark
     +1
  • SylverReZ @ SylverReZ:
    Spoke to Tom Fulp the other day, if he can find his old Newgrounds site content like the mini Flash animations from the 2000's that played on the portal.
  • SylverReZ @ SylverReZ:
    So far no response, but he did say that he'll find them. Wayback Machine doesn't have em.
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, atleast the 1999 versión of pico's school is avaliable (the difference between it, the 2006 versión and the 2016 versión is that the speed of the game depends of the speed of your computer and that it had the og soundtrack)
  • SylverReZ @ SylverReZ:
    @Xdqwerty, Another being Pico VS Bear, the original 1999 version before Jim Henson filed a DMCA takedown.
     +1
  • Xdqwerty @ Xdqwerty:
    The 2006 versión was made when the flash portal was made
  • SylverReZ @ SylverReZ:
    Many people thought it was lost, but was discovered that he hid it on the same page.
  • SylverReZ @ SylverReZ:
    https://tcrf.net/Pico_VS_Bear
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, although the "secrets" system where the game was has been removed. Also pico vs uberkids had a netplay versión that was shutdown, although the swf file has been found
  • SylverReZ @ SylverReZ:
    @Xdqwerty, Nope. There are two download buttons on the same page, where you can download the original under a file called "bear.exe". "bear2.exe", however, is the updated game in a Flash projector. P.s. this was on the archived Pico page from 2000.
  • SylverReZ @ SylverReZ:
    @Xdqwerty, That's been there for a long time, too. People who search for lost media don't look hard enough lmao.
     +1
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, also the pico 2 demos used to be only for the newgrounds patrons but they are on internet archive too (https://archive.org/download/picos_school_2)
     +1
  • Xdqwerty @ Xdqwerty:
    Iirc the demos were removed from newgrounds in 2022
  • Xdqwerty @ Xdqwerty:
    @SylverReZ, or well only the demo with mindchamber's style was on newgrounds
     +1
  • Xdqwerty @ Xdqwerty:
    Fun fact @SylverReZ: iirc one of the goals on the fnf Kickstarter stated that pico 2 would be finished but the Kickstarter didnt get enough money for that goal to be fullfiled
  • SylverReZ @ SylverReZ:
    @Xdqwerty, FNF sucks, their community is toxic as hell.
  • The Real Jdbye @ The Real Jdbye:
    @SylverReZ its a single player game
  • Xdqwerty @ Xdqwerty:
    @The Real Jdbye, Yea but it has a shitton of mods with their own songs and stuff
  • Xdqwerty @ Xdqwerty:
    @The Real Jdbye, and quite a lot of people involved in those mods get cancelled
  • SylverReZ @ SylverReZ:
    Newgrounds wasn't the birth of FNF; rather, it was games where you beat up celebrities and parodies.
    SylverReZ @ SylverReZ: Newgrounds wasn't the birth of FNF; rather, it was games where you beat up celebrities and parodies.