Due to so many misinformation, false claims and confusion that goes around the web I've decided to make this quick comparison of all most known backup enabling tools, hackable vita firmwares and which one you should be using and why.
Date of last update: 13.01.2020
| NoNpDRM Rips | Vitamin / MaiDumpTool Dumps | |
|---|---|---|
| All original files untouched | ✅ | ❌ |
| Support Retail DLCs | ✅ | ❌ |
| Support Ripped (NoNpDRM) DLCs | ✅ | ❌ |
| Support Dumped (Vitamin/Mai) DLCs | ✅1 | ✅ |
| #include <string.h> | |
| #include <stdio.h> | |
| #include <switch.h> | |
| static Handle g_port; | |
| static uint64_t g_procID; | |
| #define MODULE_HBL 111 |
So you want to decrypt switch content ? Well, the good news is that all the tools required to do that are written up! The great news is, since this is crypto we're talking about, you'll have to find the keys. Yourself. Like it's easter.
So here you can find a template of the $HOME/.switch/prod.keys file that hactool uses to decrypt content. It contains all the SHA256 and location of the keys and seeds, so you can find them yourselves.
Note that all the seeds (the keys that end with _source) are used along with the master_key_## to derive an actual key.
If you have somehow obtained the key without the seed, you can rename xxx_source to xxx_## (where ## is the master key number) and put your key there.
| #include <stdio.h> | |
| #include <stdlib.h> | |
| #include <stdint.h> | |
| #ifdef _MSC_VER | |
| #include <intrin.h> /* for rdtscp and clflush */ | |
| #pragma optimize("gt",on) | |
| #else | |
| #include <x86intrin.h> /* for rdtscp and clflush */ | |
| #endif |
| #!/bin/sh | |
| # /etc/NetworkManager/dispatcher.d/pre-up.d/randomize-mac-addresses.sh | |
| # INSTALL | |
| # | |
| # > curl -L 'https://gist.github.com/paulfurley/46e0547ce5c5ea7eabeaef50dbacef3f/raw/56ee5dd5f40dec93b8f7438cbdeda5475ea3b5d2/randomize-mac-addresses.sh' |sudo tee /etc/NetworkManager/dispatcher.d/pre-up.d/randomize-mac-addresses.sh | |
| # > sudo chmod +x /etc/NetworkManager/dispatcher.d/pre-up.d/randomize-mac-addresses.sh | |
| # Configure every saved WiFi connection in NetworkManager with a spoofed MAC |
| psvgamesd | NoNpDrm | Vitamin/MaiDumpTool | |
|---|---|---|---|
| Dumps physical games | ✅ | ✅ | ✅ |
| Dumps digital games, DLC, and updates | ❌ | ✅ | ✅ |
| Compatible with legit DLC & updates | ✅ | ✅ | ❌ |
| Saves usable on non-hacked Vitas | ✅ | ✅ | ❌ |
| All original data untouched | ✅ | ❌ | ❌❌ |
| No problems saving after suspend | ✅ | ✅ | ❌❌ |
| Format can be converted to work with other tools | ✅ | ❌ | ❌ |
| Installs physical games as bubbles | ❌ | ✅ | ✅ |
| using Microsoft.AspNetCore.Builder; | |
| using Microsoft.AspNetCore.Http; | |
| using Microsoft.AspNetCore.WebUtilities; | |
| using Microsoft.Net.Http.Headers; | |
| using System.IO; | |
| using System.Security.Cryptography; | |
| using System.Threading.Tasks; | |
| public class ETagMiddleware | |
| { |
On 7/29/2017, all hacked Vitas on 3.60 spoofing the latest firmware (3.65) were blocked from console activation. This is particularly odd because the PSN passphrase did not change in 3.65. Additionally with the release of ensō added to the confusion of what happened. Here is the result of a preliminary investigation of the situation.
Upon game activation, the Vita displays an dialog that shows the error number E-80558325. This error number is used in SceNpKdc, which is found in vs0:external/np_kdc.suprx. The error code itself is created when the activation response is received:
v5 = v45 | 0x80558300;
Here, v5 is the return code and v45 is the string error code from the server converted to a number. The request made to Sony's server looks like the following
| #!/usr/bin/env sh | |
| # DO WHAT THE FUCK YOU WANT TO PUBLIC LICENSE | |
| # Version 2, December 2004 | |
| # | |
| # Copyright (C) 2020 glaszig <glaszig@gmail.com> | |
| # | |
| # Everyone is permitted to copy and distribute verbatim or modified | |
| # copies of this license document, and changing it is allowed as long | |
| # as the name is changed. |
"When is the actual release?!? Why is this still beta?" Good question. Here's a secret: I have been constantly pushing small updates every couple of days without changing the beta number. Think of these release notes as status reports rather then, well, release notes. The idea of beta.henkaku.xyz is that since molecule has very limited resources, we cannot test all the different configurations, homebrews, and use cases. However, when I push an update to the beta site, I know that if something breaks I would get notified through Twitter, reddit, IRC, etc (although the perferred way of reporting bugs has always been the issue tracker). So if you don't notice any problems, that's good! It means I was able to fix any major issues before you woke up. These problems are usually very surface level (a misconfiguration/typo on my part) and the underlying code has a lot less bugs than HENkaku R6. So do I recommend everyone use beta.henkaku.xyz? Yes.