That's the beginning of the romfs chunk we'll want to extract. If everything went right, the offset should bring you to the string "IVFC" in the file. Take the romfs offset we calculated earlier and press CTRL+G, enter that offset. We'll need both of them, so write them both down ! Since they're not in bytes, but in "media units" we multiply both value by 0x200, as one media unit is 0x200 bytes. Then copy the 32bits integer at 0x1B4, that's the size of the romfs chunk. Next, open that file in the hex editor, go to offset 0x1B0, copy the 32bits integer value in there that's the offset of the romfs chunk.And then you can either copy paste this into another file, or if you use Hex Edit right click and in the menu click on "write selection.". I use Hex Edit, so I just set my mark at the offset of the NCCH header - 0x100, went to the end of the entire file, and pressed CTRL+SHIFT+F9, this selected all the data past the beginning of the NCCH header. Since the NCCH header begins 256 bytes before the magic number, with a SHA-256 key, we need to start copying/exporting bytes from the offset of the NCCH header - 0x100. That's the header we'll need to locate for the next part. You'll need to search for the string "NCCH", or in bytes 0x4E, 0x43, 0x43, 0x48. So we need to get our hands dirty and grab an hex editor to cut out the actual ROM from all that junk. Next, the tools currently available won't be able to extract the rom from the ".cia", or at least, I wasn't able to.(Careful because a lot of 3ds roms floating around are just useless encrypted wastes of spaces ) If its encrypted, you won't find it, as it will be scrambled. You'll know that its decrypted if you find the string "paradise" in the cia file, by doing a a string search in an hex editor. I got a decrypted eshop package, as a ".cia". First you need to get a decrypted ROM.I'm fairly sure this is not the best way to do it, but I haven't found an easier way. Oh, and I kinda forgot to specify how to extract the rom's data ^^ So having someone with one willing to try things out would be nice! (EDIT: Actually,thanks to ironhax I can run homebrew on it now But not much else ) No way to test modifications/investigate on a 3DS/emulator.Here are some of the things that are currently holding us back right now: ![]() Here are some utilities for dealing with the file formats in PSMD/PMD:GTI : ![]() Here are some links to notes, or to the wiki on the various file formats and etc of the games. Lua 5.1 experimental sandbox escape exploit.A nice little cheat sheet + Lua primer for those interested!.Here are links to interesting posts in the thread, and to external websites. This thread is mostly for posting on-going research notes/progress and findings for the Pokemon Mystery Dungeon Gates to Infinity and Pokemon Super Mystery Dungeon games.īoth games use very similar formats, and work generally the same way, which is why they both share the same thread. Please be sure to hide any PSMD spoilers within spoiler tags, until the game is released in all regions !
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |