RELEASE CertNXtractionPack - Get your Switch cert from a NAND dump!

Discussion in 'Switch - Exploits, Custom Firmwares & Soft Mods' started by SimonMKWii, May 14, 2018.

  1. Dudamax

    Dudamax Advanced Member

    Newcomer
    1
    May 30, 2017
    United States
    Is the fact that my sd is not exFAT (i dont remember what it is) the reason to why rawnand gets dumped in parts?
     
  2. aslk

    aslk Member

    Newcomer
    2
    Oct 30, 2013
    Canada
    yes
     
  3. JaRocker

    JaRocker Advanced Member

    Newcomer
    1
    May 3, 2018
    Jamaica
    Hey I'm having some problems getting everything set up with python on Windows is there any other easier way of getting cert from my nand dump I already got my PRODINFO
     
    Last edited by JaRocker, May 16, 2018
  4. nachuz

    nachuz GBAtemp Regular

    Member
    2
    May 21, 2017
    Chile
    ...
    For reasons like this one, TX is working on an all-in-one
     
  5. aslk

    aslk Member

    Newcomer
    2
    Oct 30, 2013
    Canada
    you'll still need this if you plan on downloading games from nintendo's cdn in the near future 0.o
     
  6. Leonidas87

    Leonidas87 GBAtemp Fan

    Member
    4
    Jul 15, 2014
    Canada
    Toronto, Ontario
    There is a lot of steps involved in this portion of everything to get the main app/downloader up and running.

    It's at least a 20 step process.

    Must be some way this can be streamlined or made into and app or executable on a pc.

    It's hard to explain but I'm sure you get what direction I am going in. There must be a way to cut this 20 step process down to a 5 step process.

    Every step has a chance for mistake and I'm sure one mistake along the process and you will fail.

    Just an idea but should be considered.

    Once we have the nand backup for example copy it to the computer and run a program that does most of the steps in one.
    It's so difficult to do I'm having trouble following this tutorial the way it is described.
     
  7. chronoss

    chronoss GBAtemp Advanced Maniac

    Member
    5
    May 26, 2015
    Central African Republic
    How to obtain PRODINFO.bin file please ?
     
  8. Ghost92

    Ghost92 GBAtemp Regular

    Member
    2
    Jun 29, 2017
    Colombia
    I should add it in a new thread. So avoid that the last messages like this are not read and keep asking how to do it.
     
    chronoss likes this.
  9. chronoss

    chronoss GBAtemp Advanced Maniac

    Member
    5
    May 26, 2015
    Central African Republic
    Ok thanks !
     
  10. Kafluke

    Kafluke GBAtemp Psycho!

    Member
    11
    May 6, 2006
    United States
    In step 20 you say to replace the "ssl_aes_key_x" with "key_x_gak", and replace "ssl_rsa_key_y" with "rpk_key_y". The output from the BIS payload gives me these keys. Which ones go where in the certnxtractionpack?

    HWI: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    SBK: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    TSEC KEY: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    DEVICE KEY: xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 0 (crypt): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 0 (tweak): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 1 (crypt): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 1 (tweak): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 2 (crypt): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 2 (tweak): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 3 (crypt): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 3 (tweak): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
     
  11. aslk

    aslk Member

    Newcomer
    2
    Oct 30, 2013
    Canada

    BIS KEY 0 (crypt): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
    BIS KEY 0 (tweak): xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
     
  12. Kafluke

    Kafluke GBAtemp Psycho!

    Member
    11
    May 6, 2006
    United States
    So just to be clear, are you telling me to replece the words "ssl_aes_key_x" with "key_x_gak"? Or are you just saying put those keys in inside the parenthesis? Also what about the rsa_private_kek_generation_source and master_key? Do I need to change those lines or insert something?

    Last question for more clarity. When I insert my BIS KEY 0 (crypt) and BIS KEY (tweak) keys do I leave the single apostrophe or just delete everything between ( and ) and replace with key?
     
  13. SimonMKWii
    OP

    SimonMKWii GBAtemp Fan

    Member
    7
    Nov 18, 2017
    Australia
    Melbourne, Victoria
    No, no, no!!!
    That's completely incorrect.
    Assuming you're on 5.0.2, find "F5D06292E093C651E67AA7C1A93B3880.nca" then decrypt and extract it in hactool.
    Open the main file in a hex editor, then search for the hint bytes I gave in the script. Both are 16-bytes (32 characters) long.
     
  14. Kafluke

    Kafluke GBAtemp Psycho!

    Member
    11
    May 6, 2006
    United States
    I'm on 4.1

    — Posts automatically merged - Please don't double post! —

    How do I find that .nca file on 4.1? I followed the 20 steps by @aslk and I don't have that file
     
  15. aslk

    aslk Member

    Newcomer
    2
    Oct 30, 2013
    Canada
    o shit, so I did it wrong? rip
     
  16. SimonMKWii
    OP

    SimonMKWii GBAtemp Fan

    Member
    7
    Nov 18, 2017
    Australia
    Melbourne, Victoria
    If you're on 4.1.0, find "1FD444259440E23722CC0E0D0D8D0F0B.nca" in the system partition, and extract the exefs in hactool.
    Then, put the main file in a hex editor, and search for the leading bytes.
     
  17. Kafluke

    Kafluke GBAtemp Psycho!

    Member
    11
    May 6, 2006
    United States
    Not sure how to find that .nca in the system partition. Do I use hacdiskmount to extract system first to a bin file and then hactool to find that .nca file? I'm not sure how to use hactool
     
  18. SimonMKWii
    OP

    SimonMKWii GBAtemp Fan

    Member
    7
    Nov 18, 2017
    Australia
    Melbourne, Victoria
    It's a bit annoying to keep messaging back and forth, do you have a Discord account?
    If so, hop onto my Switch Hacking / general gaming server! Anyone is welcome.
    We'll help you out, (unless you ask how to get free games.)
    Invite link: http://discord.gg/K5nyTyj
     
    Ghost92 and chronoss like this.
  19. chronoss

    chronoss GBAtemp Advanced Maniac

    Member
    5
    May 26, 2015
    Central African Republic
    I have the file but it....
    [​IMG]
     
  20. bgbrendan

    bgbrendan Member

    Newcomer
    3
    May 17, 2008
    United States
    is there a method to install the files you download from the CDN to switch yet? wouldnt mind using this to get the mario tennis demo if so
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice