Recent content by HenryMin

  1. HenryMin

    How to restore Mariko partial keys?

    Keyslot keys will be always rewritten on keyslot at boot, so you don't need to worry about it. If you inject Lockpick_RCM and directly dump partial keys, you will get all 0-15 keyslot keys, but if you try to dump partial keys right after dumping normal keys(Dump from SysNAND / Dump from...
  2. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    It's normal that hekate shows sbk as FFF... on mariko. You need to use 'partial overwrite attack' to dump sbk on mariko, but no reason to do that.
  3. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    Nop, it's not console sepcific, especially on mariko. Erista has console specific part named 'keyblob' or 'EKS', but it is unused on fw 7.0.0 or higher.
  4. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    Did you fill the keyslot.keys file? It's empty, so you should fill it in with keys.
  5. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    Can you show me 'Validate keyslots' result after writing keys? Did you get 'Is BEK missing' error or just black screen? If you got black screen, you may have to write sbk too.
  6. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    I did research with my mariko console, and I realized that we need proper mariko_kek, mariko_bek, and sbk in keyslot to boot hos on mariko. keyslots are 'write only', and we can easily write keys to keyslots using hekate bdk, so I just made keyslot validator/writer payload. (Based on...
  7. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    It doesn't work that way. The keys are stored in Tegra Fuses, and will be loaded to keyslots by bootrom at boot. The issue is that modchip firmware(sdloader) messes up the keyslots. https://switchbrew.org/wiki/Fuses#Mariko
  8. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    Mariko BEK and KEK are not unique keys, they are all identical for retail consoles. You can dump it from any hacked mariko console using lockpick rcm and PartialAesKeyCrack(https://files.sshnuke.net/PartialAesKeyCrack.zip)
  9. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    The keys are stored in bootrom, and normally they will be loaded to keyslot at boot. But TX firmware just wipe keyslot at boot to prevent other CFW to boot(It was their DRM lol), so it is not permanent.
  10. HenryMin

    Hacking Hardware Picofly - a HWFLY switch modchip

    > hekate_keys.ini is not something that hekate actually supports. I don't know what you are talking about. Also refrain from illegally posting even a single part of the keys. hekate_keys.ini was used in some shitty closed source cfw packs, because original tx firmware wipes BEK. You should not...
  11. HenryMin

    Does anybody knows a file cup.ctx on atmosphere folder?

    It's just a temporary file for daybreak, so it's okay to delete it.
  12. HenryMin

    Switch OLED teardown V1/V2

    It's my friend's work so I don't know exactly what he used. The chip came with spacecraft 0.2.0 so it's safe to use.
  13. HenryMin

    Switch OLED teardown V1/V2

    Well, I know I have to use the latest spacecraft.
  14. HenryMin

    Switch OLED teardown V1/V2

    New modchip layout and installation example pics :D
  15. HenryMin

    Switch OLED teardown V1/V2

    Actually you should use latest spacecraft. SX stuff doesn't fully support OLED model.
See more
General chit-chat
Help Users
  • No one is chatting at the moment.
    SylverReZ @ SylverReZ: https://www.youtube.com/watch?v=0UeJincEpEM