No edit summary |
No edit summary |
||
| Line 13: | Line 13: | ||
<youtube>-qq8Lw74LXI</youtube> | <youtube>-qq8Lw74LXI</youtube> | ||
= Boot9strap = | == Boot9strap == | ||
Boot9/Boot11 code execution. | Boot9/Boot11 code execution. | ||
| Line 19: | Line 19: | ||
For more details, refer to the presentation [https://sciresm.github.io/33-and-a-half-c3/ here]. | For more details, refer to the presentation [https://sciresm.github.io/33-and-a-half-c3/ here]. | ||
Install via [ | Boot9Strap is a bootrom exploit that runs a lot earlier in the boot process than A9LH, allowing access to new system files that A9LH didn't, as well as adding better brick protection, and update protection, because it's unpatchable without a hardware revision. It also may be more useful for devs, but idk where that reasoning comes from in all honesty. | ||
Oh also it uses ".firm" files instead of ".bin" files for payloads. Not really a benefit, but it's worth noting. | |||
Those are the benefits of using it, and Luma3DS will be switching to Boot9Strap because A9LH is outdated now, so yes, B9S is effectively replacing A9LH. If you use Luma3DS and would like to still be supported with updates, you have to switch to B9S. | |||
Install via [[SafeB9SInstaller 3DS]]. | |||
Launches "boot.firm" off of the SD card or CTRNAND. Hold Start + Select + X on boot to dump the bootroms/your OTP. | Launches "boot.firm" off of the SD card or CTRNAND. Hold Start + Select + X on boot to dump the bootroms/your OTP. | ||
==Credits:== | |||
[https://github.com/Normmatt Normmatt]: Theorizing the NDMA overwite exploit. [https://github.com/TuxSH TuxSH]: Help implementing bootrom payloads. [https://github.com/AuroraWright/Luma3DS Luma3DS]: Codebase used in the stage 2 FIRM loader. | [https://github.com/Normmatt Normmatt]: Theorizing the NDMA overwite exploit. [https://github.com/TuxSH TuxSH]: Help implementing bootrom payloads. [https://github.com/AuroraWright/Luma3DS Luma3DS]: Codebase used in the stage 2 FIRM loader. | ||
==Licensing:== | |||
This software is licensed under the terms of the GPLv3. You can find a copy of the license in the LICENSE file. | This software is licensed under the terms of the GPLv3. You can find a copy of the license in the LICENSE file. | ||
Revision as of 05:31, 18 September 2021
Boot9strap
Boot9/Boot11 code execution.
For more details, refer to the presentation here.
Boot9Strap is a bootrom exploit that runs a lot earlier in the boot process than A9LH, allowing access to new system files that A9LH didn't, as well as adding better brick protection, and update protection, because it's unpatchable without a hardware revision. It also may be more useful for devs, but idk where that reasoning comes from in all honesty.
Oh also it uses ".firm" files instead of ".bin" files for payloads. Not really a benefit, but it's worth noting.
Those are the benefits of using it, and Luma3DS will be switching to Boot9Strap because A9LH is outdated now, so yes, B9S is effectively replacing A9LH. If you use Luma3DS and would like to still be supported with updates, you have to switch to B9S.
Install via SafeB9SInstaller 3DS.
Launches "boot.firm" off of the SD card or CTRNAND. Hold Start + Select + X on boot to dump the bootroms/your OTP.
Credits:
Normmatt: Theorizing the NDMA overwite exploit. TuxSH: Help implementing bootrom payloads. Luma3DS: Codebase used in the stage 2 FIRM loader.
Licensing:
This software is licensed under the terms of the GPLv3. You can find a copy of the license in the LICENSE file.