Toggle search
Toggle menu
383
310
482
10.7K
Hacks Guide Wiki
Toggle preferences menu
Toggle personal menu
Not logged in
Your IP address will be publicly visible if you make any edits.

User:Kuhprii/History on the DS hacking scene: Difference between revisions

User page
More actions
← Older editNewer edit →
VisualWikitext
Kuhprii (talk | contribs)
81 edits
months added
No edit summary
Line 1: Line 1:
Sources: https://gbatemp.net/threads/wondering-about-the-timeline-of-ds-hacking.663789/
Sources:  


https://darkfader.blogspot.com/2005/
* https://gbatemp.net/threads/wondering-about-the-timeline-of-ds-hacking.663789/


https://pineight.com/ds/pass/#passme
* https://darkfader.blogspot.com/2005/


https://www.gameboy-advance.net/nintendo_ds/passme.htm
* https://pineight.com/ds/pass/#passme
 
* https://www.gameboy-advance.net/nintendo_ds/passme.htm


== The Release of the Nintendo DS ==
== The Release of the Nintendo DS ==
Line 23: Line 25:


=== WiFiMe (April) ===
=== WiFiMe (April) ===
WiFiMe brought new ways to run homebrew. It ran through DS Download Play. To do this method, you need a PCI/PCMCIA wireless network card, you could achieve this with a Ralink chipset. You also would need a program called WMB (Wireless Multiboot). All of this works because the first version of DS Download Play used a run address from a header that wasn't located with the rest of the digitally signed code. WiFiMe specifically is a DS Download Play program that was extracted from SM64DS, it had it's run address changed to the GBA slot. This allowed WMB to act as DS, allowing you to send signed programs over to the DS.
WiFiMe brought new ways to run homebrew. It ran through DS Download Play. This method required a specific wireless network card (Ralink RT2560). You also would need a program called WMB (Wireless Multiboot), that program uploads the homebrew to the console using DS Download Play. All of this works because the first version of DS Download Play used a run address from a header that wasn't located with the rest of the digitally signed code. WiFiMe specifically is a DS Download Play program that was extracted from SM64DS, it had it's run address changed to the GBA slot. This allowed WMB to act as DS, allowing you to send signed programs over to the DS.<blockquote>Note: Needs to be rewritten?</blockquote>


=== FlashMe (Spring, Unknown Month) ===
=== FlashMe (Spring, Unknown Month) ===
Line 29: Line 31:


=== Nintendo's fixes ===
=== Nintendo's fixes ===
Nintendo fixes the vulnerabilities present in firm version 4. They added range checks to the DS card startup code which blocked PassMe devices. They also used a new run address in the signed section of DS Download Play blocking WiFiMe. The BIOS still has a vulnerability that allowed redirection of execution the the GBA SRAM space. (It was also discovered that Nintendo Wi-Fi code overwrites an area of the firmware. The original FlashMe developers didn't know this and Mario Kart DS was bricking people's consoles.
Nintendo fixes the vulnerabilities present in firmware version 4. They added range checks to the DS card startup code which blocked PassMe devices. They also used a new run address in the signed section of DS Download Play blocking WiFiMe. The BIOS still has a vulnerability that allowed redirection of execution to the GBA SRAM space. It was also discovered that Nintendo Wi-Fi code overwrites an area of the firmware. The original FlashMe developers didn't know this and Mario Kart DS was bricking people's consoles.


=== PPFlash (Add later, Unknown month and season) ===
=== PPFlash (Add later, Unknown month and season) ===
Retrieved from "https://wiki.hacks.guide/wiki/User:Kuhprii/History_on_the_DS_hacking_scene"