Giters

4g3v / steelhax

A secondary (primary) entrypoint for the 3DS.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

3ds3ds-homebrew3dshacks

steelhax

Steelhax is a secondary entrypoint for the 3DS game Steel Diver: Sub Wars, available for free on the shop. It allows you to get homebrew apps/userland code execution on your 3DS. Thanks to the work of @zoogie it turned into a primary entrypoint.

It basically works as follows:

  • Get control of the PC register by exploiting a vulnerability in the savedata parsing
  • Use rop to load a different ropchain from the SD card (Allows for easier updating)
  • This ropchain then loops through the code of the game to find a unique value which allows us to defeat PASLR
  • Use gspwn to load code from the SD card and actually get code execution
  • This code then loads the otherapp payload from the SD card, uses gspwn again which then loads the homebrew launcher.

About

A secondary (primary) entrypoint for the 3DS.

3ds3ds-homebrew3dshacks

Languages

Language:C 58.1%Language:Assembly 28.8%Language:Makefile 9.0%Language:Python 4.0%