Description
Lockpick_RCM is a bare metal Nintendo Switch payload that derives encryption keys for use in Switch file handling software like hactool, hactoolnet/LibHac, ChoiDujour, etc. without booting Horizon OS.

Source: https://github.com/shchmue/Lockpick_RCM
Payload: https://github.com/shchmue/Lockpick_RCM/releases

Due to changes imposed by firmware 7.0.0, Lockpick homebrew can no longer derive the latest keys. In the boot-time environment however, there are fewer limitations. That means the new keys are finally easy to dump!

Usage

• Launch Lockpick_RCM.bin using your favorite payload injector or chainload from Hekate by placing it in /bootloader/payloads
• Upon completion, keys will be saved to /switch/prod.keys on SD
• If the console has Firmware 7.x, the /sept/ folder from Atmosphère or Kosmos release zip containing both sept-primary.bin and sept-secondary.enc must be present on SD or else only keyblob master key derivation is possible (ie. up to master_key_05 only)

Big thanks to CTCaer
For Hekate and all the advice while developing this!

Known Issues

• Chainloading from SX will hang immediately due to quirks in their hwinit code, please launch payload directly

 

[impeeza]

is it hosted on github?

Why not learn the lesson and keep going to GitHub?

¿?

is it hosted on github?
Has the developer taken the DMCA issue into account?

Nop, Was, hosted, and obviously was DMCA

Why not learn the lesson and keep going to GitHub?

Because the scene has been using GitHub for more than 10 years, and yes, people are looking for alternatives.

 

[urherenow]

Wait... how was lockpick updated before Atmosphere? I know how to update it, but I need Atmosphere source to get the relevant changes. Whomever did the update... TEACH ME!!!

 

[impeeza]

Wait... how was lockpick updated before Atmosphere? I know how to update it, but I need Atmosphere source to get the relevant changes. Whomever did the update... TEACH ME!!!

Yeah, some people on Discord got the numbers, normally we waited to the Atmosphere code teach us about that codes but well is on the air now.

 

[urherenow]

Yeah, some people on Discord got the numbers, normally we waited to the Atmosphere code teach us about that codes but well is on the air now.

where on discord? Can you DM an invite to the channel? Or is it even explained how it's done?

 

[J4115]

Needing some help here. It seems like my sdcard got corrupted and I'm trying to use lockpick to get the keys to use nandmanager to recover some saves before trying to format it.

This is what happens, it seems that the sdcard does not allow modifying its contents, I keep getting this error

[FatFS] error: WLIO
Unable to save keys to SD

Does anyone know if there is any way to fix this?

 

[duckbill007]

Does anyone know if there is any way to fix this?

Get working sd card.

 

[urherenow]

Needing some help here. It seems like my sdcard got corrupted and I'm trying to use lockpick to get the keys to use nandmanager to recover some saves before trying to format it.

This is what happens, it seems that the sdcard does not allow modifying its contents, I keep getting this error

[FatFS] error: WLIO
Unable to save keys to SD

Does anyone know if there is any way to fix this?

IMMEDIATELY try to copy the contents to your PC. If you use a RAW partition for emummc, you can use win32diskimager (Imagewriter: https://sourceforge.net/projects/win32diskimager/) to copy that, but may need to use widows disk management to assign a drive letter to the partition (and ignore Windows' requests to format it).

From there, you can either try to format with nyx, then copy everything back, or use a new card. It's highly recommended to use a new card.

Were you using exFAT?

 

[J4115]

I formatted it to fat32 before starting the hacking process.

I will try that later and communicate the results but I have no idea if it will work, I still have many doubts about this case.

Anyway thanks for the help.

 

[NotUsingAnAltAccount]

Did you make a test of your micrsd card in Hekate?

 

[impeeza]

Needing some help here. It seems like my sdcard got corrupted and I'm trying to use lockpick to get the keys to use nandmanager to recover some saves before trying to format it.

This is what happens, it seems that the sdcard does not allow modifying its contents, I keep getting this error

[FatFS] error: WLIO
Unable to save keys to SD

Does anyone know if there is any way to fix this?

Your card is corrupted, Backup all files on your SD card on your pc, format it to fat 32 using fat32 format (https://gbatemp.net/download/gui-format.33869/) or Hekate; then test your sd card using H2Testw (https://www.heise.de/download/product/h2testw-50539)

IMMEDIATELY try to copy the contents to your PC. If you use a RAW partition for emummc, you can use win32diskimager (Imagewriter: https://sourceforge.net/projects/win32diskimager/) to copy that, but may need to use widows disk management to assign a drive letter to the partition (and ignore Windows' requests to format it).

From there, you can either try to format with nyx, then copy everything back, or use a new card. It's highly recommended to use a new card.

Were you using exFAT?

Also EmuTool https://github.com/TheyKilledKenny/Emutool/releases allows you to backup/convert your RAW Partition EmuNAND to files, then you can use the set of files to create the Raw Partition on another SD Card or use these files for File Based EmuNAND.