Boot9strap
Boot9/Boot11 code execution.
For more details, refer to the presentation here.
Install via SafeB9SInstaller.
Launches "bootonce.firm" from the SD and deletes it (if it exists).
once bootonce.firm exits, boots "bax.firm" if it exists or "boot.firm" off of the SD card or CTRNAND.
Hold Start + Select + X on boot to dump the bootroms/your OTP.
Credits:
Normmatt: Theorizing the NDMA overwite exploit.
TuxSH: Help implementing bootrom payloads.
Luma3DS: Codebase used in the stage 2 FIRM loader.
Licensing:
This software is licensed under the terms of the GPLv3.
You can find a copy of the license in the LICENSE file.