Saturday, January 13, 2018

The Switch - State of Affairs

Let's kick off the new year with a new blog post!

Since this last year's CCC talk where derrek, naehrwert and plutoo showcased their progress on hacking the Switch, tons of misinformation began floating around about which firmware is necessary for homebrew.
I believe it's now time to put up a nice and comprehensive FAQ on all things Switch hacking related.
So, buckle up, and if you have the questions, here are the answers.


Q: Who the hell are you and why should I take your answers seriously?
A: I've been working on hacking the Switch since day 1. I've found bugs and developed exploits on my own at first and eventually ended up integrating a small loose crew of hackers that share the same interests. While we work together on a certain level, we also work either individually or among other groups (Switchbrew, ReSwitched, etc.).

Q: Were you involved in 34c3?
A: Not directly. Just like many others who were credited during the talk, I've worked with derrek, naehrwert and plutoo on hacking the Switch, but what was presented during the talk is a reflection of these hackers separate work.

Q: I have been told for quite a while that firmware 3.0.0 is where I should be at. They even said so during the talk! What does that mean?
A: Firmware 3.0.0 introduced a specific bug that allowed for userland code execution, but the same bug was patched immediately after on the next firmware update. This created the perfect starting point for publicly disclosing this vulnerability and laying down the foundations of homebrew.
The idea was simple: get as many people as possible on firmware 3.0.0 so everybody can start working on writing homebrew right away. What wasn't particularly clear is that this is ultimately an advice for homebrew developers and not the average end user.

Q: And what about [insert firmware version here]?
A: Here's something that you probably don't know yet: ALL current firmware versions are exploitable up to the point of running your own code.
Yes, you read that right. This includes firmware 1.0.0 all the way up to 4.1.0.

Q: So, can I just update my Switch?
A: Yes and no. This is a question many have been asking and conflicting answers are causing a great deal of confusion among people.
The basic principle is the following: if you have no reason to upgrade from your current firmware version (regardless of what it is), then simply don't upgrade.

However, the real answer is quite more nuanced. Increasing firmware versions obviously include additional patches for a myriad of vulnerabilities, therefore, the lowest firmware version (1.0.0) is the most vulnerable. Obviously, for a number of reasons, not everybody will be able to get their hands on a launch day system, so there's always interest in exploiting new updates.

In an effort to clear the air and promote a less toxic environment, here comes the current state of affairs regarding Switch hacks:
- Firmware 1.0.0:
-> Contains critical system flaws that allow code execution up to the TrustZone level;
-> Most of what was showcased during 34c3 originally targeted this firmware version;
-> Allows for a full blown emuNAND/CFW setup.

- Firmware 2.0.0-2.3.0:
-> Contains system flaws that allow code execution up to the kernel level;
-> Can be exploited to run homebrew using private methods (e.g.: nvhax).

- Firmware 3.0.0:
-> Contains system flaws that allow code execution on the userland level;
-> Can be exploited to run homebrew using private methods (e.g.: nvhax);
-> Can be exploited to run homebrew using public methods (e.g.: rohan).

- Firmware 3.0.1-4.1.0:
-> Contains system flaws that allow code execution on the userland level;
-> Can be exploited to run homebrew using private methods (e.g.: nvhax).

As you can see, the higher the firmware version, the less options you have. However, code execution for homebrew is still assured across all firmware versions.

Q: Wait, did I read that right? Firmware 2.0.0 to 2.3.0 can be exploited up to the kernel?
A: Yes, but no additional information will be disclosed at this point.

Q: What is that nvhax thing?
A: This is currently a private method that I originally discovered and exploited. Joined by SciresM and plutoo, we have successfully used it to exploit pretty much all firmware versions to the point where running homebrew is possible.

Q: Will nvhax be released? When?
A: Yes, but there are no plans to release it any time soon. Having code execution on the latest firmware version available is a privilege that ought to be maintained for as long as possible.
That said, when it stops being useful it will be released as an alternative for people on firmware versions above 3.0.0 to enjoy homebrew.

Q: Ok, so, I'm a developer with a strong passion for homebrew and would love to start right away. What do you suggest?
A: Update your Switch to firmware version 3.0.0, read about rohan and get to work!

Q: Now, I'm just a regular user that loves homebrew, but has no intent or knowledge to develop my own. I also want to play the latest games on my Switch and don't really mind waiting. What do you suggest?
A: Update to the latest firmware version and wait.

Q: What if I'm an avid hacker/developer who wants to explore the system as much as possible?
A: Find a 1.0.0 unit and stay there.

Q: And what if I just want to pirate games?
A: You're barking at the wrong tree.

Hopefully this FAQ will put to rest some of the doubts people have been expressing lately and help them understand the necessary steps to enjoy homebrew on their consoles.
More information will be shared when the time is right, but rest assured we are all working hard on really cool stuff and, hopefully, helping to build a strong homebrew community for the Switch.

Also, stay tuned for a very special blog post in the following days. ;)

As always, have fun!

39 comments:

  1. cock eater says what

    ReplyDelete
  2. Will the 1.0 emuNAND/CFW setup be released in a forseeable future?

    ReplyDelete
  3. I had 1.0 but I wanted to play Mario Odyssey lol.

    ReplyDelete
  4. Your wording makes you look like your fedora is on a little too tight, tbh fam.

    ReplyDelete
  5. "I just wanna pirate games"
    "Your barking up the wrong tree"
    Like, no? Come one, you're hacking the Switch, you don't think it'll happen?

    ReplyDelete
    Replies
    1. The point is he can't/won't condone game piracy, idiot.

      Delete
    2. You can't even get 'you're' correct when it's copied LOL

      Delete
  6. I am absolutely loving your gorgeous blog!

    ReplyDelete
  7. I really like and appreciate your post.Thank you so much .

    ReplyDelete
  8. Your information valuable. I appreciate your experience. Thanks
    Photo editing service

    ReplyDelete
  9. I appreciate your experience. I really like and appreciate your post.Thank you so much .clippingpathindie.com/ecommerce.html

    ReplyDelete
  10. Excellent post, I really enjoy your article, Thank you so much.

    ReplyDelete
  11. informative Q&A blog here. I personally some knowing that unknown before. Thanks sharing valuable information. Keep sharing your valuable experience.
    clipping path service

    ReplyDelete

  12. Thank you So much for this Important and Useful Information.
    Jewelry Editing Services

    ReplyDelete
  13. Looking for the best Cleaning - Commercial in Dubai Dubai? Clean Arabia can assist you. When looking in Dubai, we know there are many local businesses to choose from, we recommend you consider Clean Arabia.

    ReplyDelete
  14. This is really a interesting blog. And I like and appreciate the post. Thank you so much dear. I have known a lot from the informative Q&A discussion.
    Verified Neteller account

    ReplyDelete
  15. Great post! As Paxum requires members to verify their identity to make full use of their service for their users, it is a bit time-consuming and tricky process. Verified Account is here to help you get a fully verified Paxum account easily.

    ReplyDelete
  16. It is a awesome post on hacking The Switch - State of Affairs to help people understand the necessary steps to enjoy homebrew on their consoles.
    Commercial Space Rent In Gulshan

    ReplyDelete
  17. At Verified Accounts, we provide a wide range of e-currency verified accounts. We like to keep everything verified. Bank account, nationality, and everything is completely verified. Verified Account offers fully verified e-wallet accounts for businesses and individuals.
    With our Coinpayments verified account , you can play a vital role in managing all the assets, business, and belongings.

    ReplyDelete
  18. Appreciating the time and effort you put into your site
    and detailed information you offer. It’s good to come across a blog every once in a while that isn’t the same outdated rehashed
    material. Great read! I’ve saved your site

    example

    ReplyDelete
  19. The Bren Zahara Apartment is a perfect project for the family that is looking for more space.The idea here is to create an aspiration for an aspiring workforce that can afford to add a little more for their extended stay needs. Bren Zahara price is affordable in budget

    ReplyDelete
  20. It is an amazing blog blog where you document and share your interesting hacking related adventures. I like your nice and comprehensive FAQs and answers.
    What is others in storage Android

    ReplyDelete
  21. Thanks for your new blog post about hacking. I like your nice and comprehensive FAQ on all things related to Switch hacking.
    Buy Verified Neteller Account

    ReplyDelete
  22. 온라인카지노사이트 I can see that you are an expert at your field! I am launching a website soon, and your information will be very useful for me.. Thanks for all your help and wishing you all the success ..

    ReplyDelete
  23. 온라인카지노사이트 Wow, excellent post. I'd like to draft like this too - taking time and real hard work to make a great article. This post has encouraged me to write some posts that I am going to write soon.

    ReplyDelete
  24. 온라인카지노 Amazing! Its really awesome paragraph, I have got much clear idea concerning from this post.

    ReplyDelete
  25. 온라인카지노 Greetings! Very useful advice within this article!
    It is the little changes which will make the most important changes.
    Many thanks for sharing!


    ReplyDelete
  26. 스포츠토토 I wanted to thank you for this great read!! I definitely enjoying every little bit of it I have you bookmarked to check out new stuff you post

    ReplyDelete
  27. 스포츠토토 Nicely researched and presented. Thanks for delivering genuine information
    hello~~I was surprised to see your writing. This is a really useful resource~
    I would like to see these materials often~
    I will come here often. Thank you!!

    ReplyDelete
  28. 토토사이트 Very interesting info !Perfect just what I was looking for!
    Here is my web page

    ReplyDelete