Difference between revisions of "Talk:3DS System Flaws"

From 3dbrew
Jump to navigation Jump to search
Line 13: Line 13:
 
         How would you write a 3DS Exploit, Luigi2us?
 
         How would you write a 3DS Exploit, Luigi2us?
  
We should ask Neimod to use his RAM dumping setup to see where link's name is in OOT:3D. If it is not properly limited, and is near the regions the console executes next, we might be able to load homebrew. We should try to load a hello world program first, then make the loader that can load unsigned code in elf files.
+
We should ask Neimod to use his RAM dumping setup to see where link's name is in OOT:3D. If it is not properly limited, and is near the regions the console executes next, we might be able to get a system exploit. We should try to get a way to do a system exploit ASAP with this method
 
--[[User:Alex theman|Alex theman]] 16:00, 15 July 2013 (CEST)
 
--[[User:Alex theman|Alex theman]] 16:00, 15 July 2013 (CEST)

Revision as of 15:42, 15 July 2013

I have a way to freeze the 3DS which might be exploitable - see Talk:Internet Browser. R4wrz0rz0r 14:59, 20 June 2011 (CEST)

That crash isn't exploitable unless you're extremely lucky. Don't waste your time. --Luigi2us 20:44, 15 August 2011 (CEST)

It is not so bad to looking for buffer overflow.

But try to know about file system  is more important.

And we do not know enough about CCI,... formats to write an exploit with a loader which loads an executable file! Maybe we should try to make a savegame exploit...


Yeah, yeah, great hacking plans, kids. What are you going to do once you find a buffer overflow? Blindly write stuff to memory hoping to hit the PICA200 registers someday? Quit wasting your time with buffer overflows. Come back when more is known. --Luigi2us 20:42, 15 August 2011 (CEST)

        How would you write a 3DS Exploit, Luigi2us?

We should ask Neimod to use his RAM dumping setup to see where link's name is in OOT:3D. If it is not properly limited, and is near the regions the console executes next, we might be able to get a system exploit. We should try to get a way to do a system exploit ASAP with this method --Alex theman 16:00, 15 July 2013 (CEST)