3dbrew

Homebrew Exploits: Difference between revisions

← Older edit
No edit summary
No edit summary
 
(28 intermediate revisions by 13 users not shown)
Line 10: Line 10:
| [https://smealum.github.io/3ds/ *hax payload]
| [https://smealum.github.io/3ds/ *hax payload]
| Booted by all of the below non-sysmodule exploits. '''No longer needed as of [https://github.com/AuroraWright/Luma3DS/releases/tag/v8.0 Luma 8.0]'''
| Booted by all of the below non-sysmodule exploits. '''No longer needed as of [https://github.com/AuroraWright/Luma3DS/releases/tag/v8.0 Luma 8.0]'''
| From '''9.0.0-7''' up to and including '''11.3.0-36''', '''11.4.0-37''' .
| From '''9.0.0-7''' up to '''11.9.0-42'''.
|}
|}


Line 36: Line 36:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [[ninjhax|Ninjhax 2.x]]
| [[ninjhax|Ninjhax 2.x]]
| From '''9.0.0-7''' up to and including '''11.6.X'''.
| From '''9.0.0-7''' up to and including '''11.9.X'''.
|  A cartridge or eShop version (JPN-only, not available anymore for purchase) of "Cubic Ninja".
|  A cartridge or eShop version (JPN-only, not available anymore for purchase) of "Cubic Ninja".
| smea
| smea
Line 43: Line 43:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [http://plutooo.github.io/freakyhax/ freakyhax]
| [http://plutooo.github.io/freakyhax/ freakyhax]
| From '''9.0.0-7''' up to and including '''11.6.X'''.
| From '''9.0.0-7''' up to and including '''11.9.X'''.
|  A cartridge or eShop version (USA/EUR/JAP, not available anymore for purchase) of "Freakyform Deluxe".
|  A cartridge or eShop version (USA/EUR/JPN, not available anymore for purchase) of "Freakyform Deluxe".
| plutoo
| plutoo
| [http://plutooo.github.io/freakyhax/ Install]
| [http://plutooo.github.io/freakyhax/ Install]
Line 54: Line 54:
| plutoo
| plutoo
| [http://plutooo.github.io/smilehax/ Install]
| [http://plutooo.github.io/smilehax/ Install]
|-
| style="background: lightgreen" | Yes
| [https://github.com/zoogie/smilehax-IIe smilehax IIe]
| From '''9.0.0-7''' up to and including '''11.13.0-45'''
| SmileBASIC (JPN version 3.3.2 via app downgrade, USA/EUR 3.6.0, aka latest app version)
| zoogie
| [https://github.com/zoogie/smilehax-IIe/releases/latest Install]
|-
|-
| style="background: salmon" | No
| style="background: salmon" | No
Line 64: Line 71:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [[smashbroshax|smashbroshax]] (beaconhax)
| [[smashbroshax|smashbroshax]] (beaconhax)
| (New 3DS only) From '''9.0.0-X''' up to and including '''11.4.0-37'''.
| (New 3DS only) From '''9.0.0-X''' up to and including '''11.9.0-37'''.
| Super Smash Bros 3DS (full-game) and a way to broadcast raw wifi beacons. The demo (prior to the updated November 2015 [https://github.com/yellows8/3ds_smashbroshax version]) isn't usable with the *hax payloads. Game-version v1.1.3 fixed the vuln used with this, see the repo for a workaround for that.
| Super Smash Bros 3DS (full-game) and a way to broadcast raw wifi beacons. The demo (prior to the updated November 2015 [https://github.com/yellows8/3ds_smashbroshax version]) isn't usable with the *hax payloads. Game-version v1.1.3 fixed the vuln used with this, see the repo for a workaround for that.
| [[User:Yellows8|Yellows8]]
| [[User:Yellows8|Yellows8]]
Line 97: Line 104:
| MrNbaYoh
| MrNbaYoh
| [https://mrnbayoh.github.io/doodlebomb/ Install]
| [https://mrnbayoh.github.io/doodlebomb/ Install]
|-
| style="background: lightgreen" | Yes
| [https://github.com/MrNbaYoh/rpwng2 RPwnG 2]
| From '''11.7.0-X'''(?) up to and including '''11.9.0-X'''.
| A digital copy of RPG Maker Player (free) ver. 1.1.4 on EUR, ver. 1.1.2 on USA. A 3DS on firmware 11.7.
| MrNbaYoh
| [https://mrnbayoh.github.io/rpwng2/ Install]
|-
|-
| style="background: darkorange" | Only if installed before August 28, 2017
| style="background: darkorange" | Only if installed before August 28, 2017
| [https://twitter.com/MrNbaYoh/status/899394739543437313 RPwnG]
| [https://twitter.com/MrNbaYoh/status/899394739543437313 RPwnG]
| From '''9.0.0-X'''(?) up to and including '''11.6.0-X'''.
| From '''9.0.0-X'''(?) up to and including '''11.9.0-X'''.
| An  digital copy of RPG Maker Player (free) ver. 1.1.4 on EUR, ver. 1.1.2 on USA/JPN is required. As of August 28, 2017 the code is instantly removed after publishing.
| An  digital copy of RPG Maker Player (free) ver. 1.1.4 on EUR, ver. 1.1.2 on USA/JPN is required. As of August 28, 2017 the code is instantly removed after publishing.
| MrNbaYoh
| MrNbaYoh
Line 111: Line 125:
| MrNbaYoh
| MrNbaYoh
| [https://mrnbayoh.github.io/notehax/ Install]
| [https://mrnbayoh.github.io/notehax/ Install]
|-
| style="background: darkorange" | Only if you already purchased Blockfactory before it was removed from the eShop
| [https://github.com/Stary2001/haxfactory haxfactory]
| From '''9.0.0-X'''(?) up to and including '''11.9.0-X'''.
| A digital copy of "Blockfactory" (USA/EUR)
| Stary2001
| [https://github.com/Stary2001/haxfactory Install]
|}
|}
Note that ninjhax 1.x is still not obsolete. Even though ninjhax 2.x can be run on 9.3+, this was made possible (amongst other things) by sacrificing the memory remapping exploit used in ninjhax 1.x (rohax). Therefore, things like JIT engines for emulators can only be supported on ninjhax 1.x. Furthermore, ninjhax 2.x does not run on system versions below 9.0.0-X, while ninjhax 1.x does.


==Secondary Exploits==
==Secondary Exploits==
Line 135: Line 154:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [http://vegaroxas.github.io/ steelhax]
| [http://vegaroxas.github.io/ steelhax]
| From '''9.0.0-X''' up to and including '''11.6.0-X''', for '''X''' up to and including 39.
| From '''9.0.0-X''' up to and including '''11.9.0-X'''
| A copy of Steel Diver: Sub Wars
| A copy of Steel Diver: Sub Wars
| Vegaroxas
| Vegaroxas
Line 142: Line 161:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [https://github.com/yellows8/oot3dhax oot3dhax]
| [https://github.com/yellows8/oot3dhax oot3dhax]
| From '''9.0.0-X''' up to and including '''11.6.0-X''', for '''X''' up to and including 39.
| From '''9.0.0-X''' up to and including '''11.9.0-X''', for '''X''' up to and including 39.
| A gamecard or eShop-install of Legend of Zelda: Ocarina of Time 3D. Besides using the installer app, writing raw saveimages with a save dongle for example is another option. Before compression was introduced in the 2016-7-18 release, the size of the *hax payload meant the exploit can't co-exist with regular saves on a physical version of the game.
| A gamecard or eShop-install of Legend of Zelda: Ocarina of Time 3D. Besides using the installer app, writing raw saveimages with a save dongle for example is another option. Before compression was introduced in the 2016-7-18 release, the size of the *hax payload meant the exploit can't co-exist with regular saves on a physical version of the game.
| Yellows8 / smea et al.
| Yellows8 / smea et al.
Line 157: Line 176:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [https://github.com/shinyquagsire23/supermysterychunkhax supermysterychunkhax]
| [https://github.com/shinyquagsire23/supermysterychunkhax supermysterychunkhax]
| From '''9.9.0-X''' (USA/JPN) / '''10.2.0-X''' (EUR) up to and including '''11.3.0-X''', '''11.4.0-X'''.
| From '''9.9.0-X''' (USA/JPN) / '''10.2.0-X''' (EUR) up to '''11.9.0-X'''.
| A gamecard or eShop-install of Pokémon Super Mystery Dungeon.
| A gamecard or eShop-install of Pokémon Super Mystery Dungeon.
| Shiny Quagsire / SALT team
| Shiny Quagsire / SALT team
Line 172: Line 191:
| style="background: lightgreen" | Yes
| style="background: lightgreen" | Yes
| [https://github.com/Dazzozo/humblehax humblehax]
| [https://github.com/Dazzozo/humblehax humblehax]
| From '''9.0.0-X''' (USA/EUR) up to and including '''11.2.0-X''', for '''X''' up to and including 35.
| From '''9.0.0-X''' (USA/EUR) up to and including '''11.9.0-X'''.
| An eShop-install of Citizens of Earth (either v1 or v2), featured in the Humble "Friends of Nintendo" Bundle.
| An eShop-install of Citizens of Earth (either v1 or v2), featured in the Humble "Friends of Nintendo" Bundle.
| Dazzozo / SALT team
| Dazzozo / SALT team
Line 179: Line 198:
| style="background: salmon" | No
| style="background: salmon" | No
| [http://mrnbayoh.github.io/basehaxx/ basehaxx]
| [http://mrnbayoh.github.io/basehaxx/ basehaxx]
| From '''9.0.0-X''' up to and including '''11.1.0-X''', for '''X''' up to and including 34.
| From '''9.0.0-X''' up to and including '''11.1.0-X'''.
| A gamecard or eShop-install of Pokémon Omega Ruby / Alpha Sapphire.
| A gamecard or eShop-install of Pokémon Omega Ruby / Alpha Sapphire v1 or v1.4 with the ability to have a secret base.
| MrNbaYoh
| MrNbaYoh
| [http://mrnbayoh.github.io/basehaxx/ install]
| [http://mrnbayoh.github.io/basehaxx/ install]
Line 218: Line 237:
| MrNbaYoh
| MrNbaYoh
| [https://mrnbayoh.github.io/doodlebomb/ Install]
| [https://mrnbayoh.github.io/doodlebomb/ Install]
|-
| style="background: darkorange" | Only if installed before August 28, 2017
| [https://github.com/ChampionLeake/RPwnG3 RPwnG3]
| From '''9.0.0-X'''(?) up to and including '''11.12.0-X'''.
| A Digital/Physical copy of "RPGMaker Fes Player/RPGMaker Fes" (USA/JPN 1.1.2 or lower ; EUR 1.1.4 or lower).
| [[User:ChampionLeake|ChampionLeake]]
| [https://github.com/ChampionLeake/RPwnG3/releases Install]
|-
| style="background: lightgreen" | Yes
| [https://github.com/luigoalma/nitpic3d nitpic3d]
| From '''9.6.0-X'''(?) up to and including '''11.13.0-X'''.
| A digital or physical of Picross 3D: Round 2
| Luigoalma and Kartik
| [https://github.com/luigoalma/nitpic3d Install]
|-
| style="background: lightgreen" | Yes
| [https://github.com/PabloMK7/kartdlphax kartdlphax]
| All system versions work.
| A digital or physical of Mario Kart 7 for the same region as both consoles
| PabloMK7
| [https://3ds.hacks.guide/installing-boot9strap-(kartdlphax) Install]
|}
|}


==Exploits without Homebrew Launcher (Not recommended)==
==Exploits without Homebrew Launcher==


<u>'''Warning:'''</u> The following exploits can run code, but are missing a 3DSX launcher. They cannot launch any homebrew in the 3DSX format.
<u>'''Warning:'''</u> The following exploits can run code, but are missing a 3DSX launcher. They cannot launch any homebrew in the 3DSX format, but could still prove useful by chaining to exploits with higher privileges.


{| class="wikitable" border="1"
{| class="wikitable" border="1"
Line 232: Line 272:
!  Author
!  Author
!  Install
!  Install
|-
| style="background: lightgreen" | yes
| [https://github.com/zoogie/MSET9 MSET9]
| From '''3.0.0''' to '''latest'''.
| Works on all consoles, but for CHN consoles, will need SD card with preinstalled titles or movable.sed for generating valid SD title database.
| zoogie
|[https://github.com/zoogie/MSET9 Install]
|-
| style="background: salmon" | No
| [https://safecerthax.rocks safecerthax] (Safe Mode System Updater)
| (Old3DS (2DS) (XL)) From '''1.0.0''' to '''11.14.0'''
(New3DS (New2DS) (XL)) '''NOT SUPPORTED'''
|An O3DS or O2DS that can be booted into [[Recovery_Mode|Recovery Mode]] (hold L+R+Up+A at startup) & an internet connection.
|[[User:Nba_Yoh|MrNbaYoh]]
|[https://safecerthax.rocks/user-guide/ Install]
|-
| style="background: lightgreen" | Yes (partially)
| [[bannerbomb3]] (System Settings)
| (USA / EUR / JPN) '''11.5.0''' to '''11.16.0'''
(KOR / TWN) '''(11.4.0)''' '''11.5.0''' to '''latest'''
An exploit that uses a buffer overflow in a TWL export banner's title strings to gain rop execution.
|A USA, EUR, JPN, KOR, or TWN system with its movable.sed keyY extracted.
|[[User:zoogie|zoogie]]
|[[bannerbomb3|Install]]
|-
|-
| style="background: salmon" | No
| style="background: salmon" | No
Retrieved from "https://www.3dbrew.org/wiki/Homebrew_Exploits"