Nintendo 3DS

152 archivos

1. 

   melonDSi

   How to use melonDSi
   BE SURE TO READ THIS BEFORE USING MELONDSI. You are using a beta release, provided with zero polishing and with a debug console. I expect that you know what you are doing to atleast some extent.
   melonDSi will require several files to be dumped from a DSi. It's a bit messy right now, but we hope to come up with more user-friendly solutions in the future.
   So, if you have a DSi, you might want to install unlaunch on it.
   A quick rundown of the files melonDSi requires:
   * bios9.bin / bios7.bin: DS-mode BIOS images. Those are the same as the ones from a DS. They shouldn't be required to get DSi software running, but melonDSi will refuse to start if they aren't present.
   * bios9i.bin / bios7i.bin: DSi-mode BIOS images. Those can be dumped from your DSi using the good ol' dsbf_dump.nds.
   * firmware.bin: SPI FLASH image. See above. dsbf_dump.bin yields a 'FWxxxxxx.bin' file which you need to rename. It should be 128K.
   * dsikeys.bin: AES keys at boot time, dumpable using dsidumper.
   * initmem9.bin / initmem7.bin: Boot-time contents of ARM9 ITCM and ARM7 WRAM, containing several other useful keys. See above.
   * nand.bin: DSi NAND image, ideally dumped with fwTool. This should be dumped from the same console as dsikeys.bin and initmem9/7.bin.
   * boot2_9.bin / boot2_7.bin: Second-stage bootloader, to be extracted from the NAND with twltool, using the following command:
   twltool boot2 --in nand.bin
   Gives you files arm9.bin and arm7.bin, to be renamed to boot2_9.bin and boot2_7.bin respectively.
   BEFORE STARTING
   Make sure that your DSi-mode ARM7 BIOS is good. Open bios7i.bin in a hex editor. Ensure that the first 32 bytes are the following:
   06 00 00 EA 06 00 00 EA 1F 00 00 EA 04 00 00 EA 03 00 00 EA FE FF FF EA 13 00 00 EA 00 00 00 EA Make sure that your NAND dump has the 'nocash footer' at the end. Open it in a hex editor and check that it has the string 'DSi eMMC CID/CPU' at offset 0xF000000. This is the beginning of the 64-byte 'nocash footer', which holds the eMMC CID and console ID.
   Ideally make sure that direct boot is disabled.
   Using melonDSi
   As with regular melonDS, System->Run will boot the firmware, which should land you into the DSi menu if you did everything right.
   You will need to recalibrate the touchscreen through the system settings app to have it work correctly.
   melonDSi can boot some DSi-mode apps, but they currently don't work that well.
   Booting games
   melonDSi is able to boot DS-mode games from the DSi menu. They currently run with the DS-mode BIOSes and backwards-compatible touchscreen mode, but at the 133MHz clock speed and with 16MB of RAM.
   DSi-enhanced games do not boot yet.
   Direct boot is likely to break things as it hasn't been updated yet.
   Other issues
   Do not attempt using savestates, they can and will go wrong.
   melonDSi is based on melonDS 0.8.1, so it will have the bugs present in that version.
   Enjoy! Or atleast, try to.
   by Arisotura.
   
2. 

   Memory Pit

   Memory Pit is a new DSi exploit in the DSi camera!
   Using it is very simple:
   Download the attached file and put it in sd:/private/ds/app/484E494A Put the hbmenu.nds file on the root named boot.nds (can't be unlaunch, it won't work. Unlaunch can be booted via hbmenu however) open DSi camera, tap SD card at the top, and tap album Done! Enjoy modding your DSi!
   by hutterbug2000.
   
3. 

   mGBA for Nintendo 3DS

   mGBA is an emulator for running Game Boy Advance games. It aims to be faster and more accurate than many existing Game Boy Advance emulators, as well as adding features that other emulators lack. It also supports Game Boy and Game Boy Color games.
   Features
   --------
   - Highly accurate Game Boy Advance hardware support[^[1]](#missing).
   - Game Boy/Game Boy Color hardware support.
   - Fast emulation. Known to run at full speed even on low end hardware, such as netbooks.
   - Qt and SDL ports for a heavy-weight and a light-weight frontend.
   - Local (same computer) link cable support.
   - Save type detection, even for flash memory size[^[2]](#flashdetect).
   - Support for cartridges with motion sensors and rumble (only usable with game controllers).
   - Real-time clock support, even without configuration.
   - Solar sensor support for Boktai games.
   - Game Boy Camera and Game Boy Printer support.
   - A built-in BIOS implementation, and ability to load external BIOS files.
   - Turbo/fast-forward support by holding Tab.
   - Rewind by holding Backquote.
   - Frameskip, configurable up to 10.
   - Screenshot support.
   - Cheat code support.
   - 9 savestate slots. Savestates are also viewable as screenshots.
   - Video and GIF recording.
   - Remappable controls for both keyboards and gamepads.
   - Loading from ZIP and 7z files.
   - IPS, UPS and BPS patch support.
   - Game debugging via a command-line interface and GDB remote support, compatible with IDA Pro.
   - Configurable emulation rewinding.
   - Support for loading and exporting GameShark and Action Replay snapshots.
   - Cores available for RetroArch/Libretro and OpenEmu.
   - Many, many smaller things.
   #### Game Boy mappers
   The following mappers are fully supported:
   - MBC1
   - MBC1M
   - MBC2
   - MBC3
   - MBC3+RTC
   - MBC5
   - MBC5+Rumble
   - MBC7
   The following mappers are partially supported:
   - MBC6
   - MMM01
   - Pocket Cam
   - TAMA5
   - HuC-1
   - HuC-3
   ### Planned features
   - Networked multiplayer link cable support.
   - Dolphin/JOY bus link cable support.
   - M4A audio mixing, for higher quality sound than hardware.
   - Re-recording support for tool-assist runs.
   - Lua support for scripting.
   - A comprehensive debug suite.
   - e-Reader support.
   - Wireless adapter support.
   Supported Platforms
   -------------------
   - Windows Vista or newer
   - OS X 10.7 (Lion)[^[3]](#osxver) or newer
   - Linux
   - FreeBSD
   - Nintendo 3DS
   - Wii
   - PlayStation Vita
   Other Unix-like platforms, such as OpenBSD, are known to work as well, but are untested and not fully supported.
   ### System requirements
   Requirements are minimal. Any computer that can run Windows Vista or newer should be able to handle emulation. Support for OpenGL 1.1 or newer is also required.
   Downloads
   ---------
   Downloads can be found on the official website, in the [Downloads][downloads] section. The source code can be found on [GitHub][source].
   Controls
   --------
   Controls are configurable in the settings menu. Many game controllers should be automatically mapped by default. The default keyboard controls are as follows:
   - **A**: X
   - **B**: Z
   - **L**: A
   - **R**: S
   - **Start**: Enter
   - **Select**: Backspace
   Compiling
   ---------
   Compiling requires using CMake 2.8.11 or newer. GCC and Clang are both known to work to compile mGBA, but Visual Studio 2013 and older are known not to work. Support for Visual Studio 2015 and newer is coming soon. To use CMake to build on a Unix-based system, the recommended commands are as follows:
       mkdir build
       cd build
       cmake -DCMAKE_INSTALL_PREFIX:PATH=/usr ..
       make
       sudo make install
   This will build and install mGBA into `/usr/bin` and `/usr/lib`. Dependencies that are installed will be automatically detected, and features that are disabled if the dependencies are not found will be shown after running the `cmake` command after warnings about being unable to find them.
   If you are on macOS, the steps are a little different. Assuming you are using the homebrew package manager, the recommended commands to obtain the dependencies and build are:
       brew install cmake ffmpeg imagemagick libzip qt5 sdl2 libedit pkg-config
       mkdir build
       cd build
       cmake -DCMAKE_PREFIX_PATH=`brew --prefix qt5` ..
       make
   Note that you should not do a `make install` on macOS, as it will not work properly.
   #### Windows developer building
   To build on Windows for development, using MSYS2 is recommended. Follow the installation steps found on their [website](https://msys2.github.io). Make sure you're running the 32-bit version ("MSYS2 MinGW 32-bit") (or the 64-bit version "MSYS2 MinGW 64-bit" if you want to build for x86_64) and run this additional command (including the braces) to install the needed dependencies (please note that this involves downloading over 1100MiB of packages, so it will take a long time):
   For x86 (32 bit) builds:
       pacman -Sy base-devel git mingw-w64-i686-{cmake,ffmpeg,gcc,gdb,imagemagick,libelf,libepoxy,libzip,pkg-config,qt5,SDL2,ntldd-git}
   For x86_64 (64 bit) builds:
       pacman -Sy base-devel git mingw-w64-x86_64-{cmake,ffmpeg,gcc,gdb,imagemagick,libelf,libepoxy,libzip,pkg-config,qt5,SDL2,ntldd-git}
   Check out the source code by running this command:
       git clone https://github.com/mgba-emu/mgba.git
   Then finally build it by running these commands:
       cd mgba
       mkdir build
       cd build
       cmake .. -G "MSYS Makefiles"
       make
   Please note that this build of mGBA for Windows is not suitable for distribution, due to the scattering of DLLs it needs to run, but is perfect for development. However, if distributing such a build is desired (e.g. for testing on machines that don't have the MSYS2 environment installed), running `cpack -G ZIP` will prepare a zip file with all of the necessary DLLs.
   ### Dependencies
   mGBA has no hard dependencies, however, the following optional dependencies are required for specific features. The features will be disabled if the dependencies can't be found.
   - Qt 5: for the GUI frontend. Qt Multimedia or SDL are required for audio.
   - SDL: for a more basic frontend and gamepad support in the Qt frontend. SDL 2 is recommended, but 1.2 is supported.
   - zlib and libpng: for screenshot support and savestate-in-PNG support.
   - libedit: for command-line debugger support.
   - ffmpeg or libav: for video recording.
   - libzip or zlib: for loading ROMs stored in zip files.
   - ImageMagick: for GIF recording.
   - SQLite3: for game databases.
   - libelf: for ELF loading.
   SQLite3, libpng, and zlib are included with the emulator, so they do not need to be externally compiled first.
   Footnotes
   ---------
   <a name="missing">[1]</a> Currently missing features are
   - OBJ window for modes 3, 4 and 5 ([Bug #5](http://mgba.io/b/5))
   - Mosaic for transformed OBJs ([Bug #9](http://mgba.io/b/9))
   <a name="flashdetect">[2]</a> Flash memory size detection does not work in some cases. These can be configured at runtime, but filing a bug is recommended if such a case is encountered.
   <a name="osxver">[3]</a> 10.7 is only needed for the Qt port. The SDL port is known to work on 10.5, and may work on older.
   Copyright
   ---------
   mGBA is Copyright © 2013 – 2018 Jeffrey Pfau. It is distributed under the [Mozilla Public License version 2.0](https://www.mozilla.org/MPL/2.0/). A copy of the license is available in the distributed LICENSE file.
   mGBA contains the following third-party libraries:
   - [inih](https://github.com/benhoyt/inih), which is copyright © 2009 Ben Hoyt and used under a BSD 3-clause license.
   - [blip-buf](https://code.google.com/archive/p/blip-buf), which is copyright © 2003 – 2009 Shay Green and used under a Lesser GNU Public License.
   - [LZMA SDK](http://www.7-zip.org/sdk.html), which is public domain.
   - [MurmurHash3](https://github.com/aappleby/smhasher) implementation by Austin Appleby, which is public domain.
   - [getopt for MSVC](https://github.com/skandhurkat/Getopt-for-Visual-Studio/), which is public domain.
   - [SQLite3](https://www.sqlite.org), which is public domain.
    
   
4. 

   Mini vmac 3DS

   Port of Mini vMac to the Nintendo 3DS.
   
   Supported options:
   1 Bit colour depth 2 Bit colour depth 4 Bit colour depth 8 Bit colour depth Resolutions >= 512x384 Resolutions <= 1024x1024 Sound Sound sample size ...And many more, feel free to experiment 🙂 by TaraHoleInIt.
   
5. 

   MoonShell

   Moonshell is the most famous video and media player for the Nintendo DS.
   You can use it on any of the current NDS flashcarts such as the EZ-Flash Vi , R4, Acekard 2i, Supercard DSTWO and all others.
   This is the lastest version available called "Child Zwai Edition". 
   
   
   
   
   
6. 

   MSET9

   MSET9 es un exploit primario ARM9 para 3DS que puede ser lanzado con sólo datos de nombre de archivo añadidos a la tarjeta SD insertada.
   Cómo funciona
   En la implementación de FSPXI:EnumerateExtSaveData (llamada por MSET para analizar los ID de extdata de 3DS para la gestión de datos), no se comprobaba el valor de retorno de la llamada a la función interna P9 para abrir un directorio (al enumerar el contenido del directorio extdata). Por lo tanto, si la llamada falla, se utilizará un puntero no inicializado en la pila para una llamada vtable.
   Como tal, un archivo que comienza con 8 dígitos hexadecimales puede bloquear process9 si se coloca directamente dentro del directorio extdata. Puede bloquearse de varias formas basadas en sutiles diferencias en la forma en que el usuario desencadena el evento de bloqueo.
   Mientras que en la mayoría de los casos conduce a referencias nulas, en un contexto específico, process9 salta directamente a una cadena ID1 que se mantiene en la memoria ARM9. Sorprendentemente, la 3DS no discierne qué caracteres se utilizan para el nombre del directorio ID1 en la SD, sólo requiere exactamente 32 caracteres. Esto permite al atacante insertar instrucciones arm en el nombre de directorio ID1 unicode y tomar el control del ARM9, y por lo tanto, el control total de la 3DS.
   ¿Puedo hacerlo?
   Necesitas una 3ds 11.4-11.17, de cualquier región (probablemente, no las he probado todas) Un lector USB a SD PC Windows/Linux (esto podría ampliarse a MAC y/o Android en algún momento, si es posible) PREGUNTAS FRECUENTES
   P: ¿Esto instala boot9strap y escribe en la NAND?
   R: ¡Sí! ¿Qué más vas a hacer con el control de ARM9, a9lh? pastaCFW? sketchy tetris clones" 😛
   P: ¡Eso suena peligroso, Zoogie!
   R: Sí, lo es, pero la escena lleva años haciendo estas cosas peligrosas. Si te preocupa, no pases de la fase beta.
   P: ¿Qué pasa si no desinstalo el exploit cuando termine?
   R: Tendrás problemas para ejecutar los títulos instalados anteriormente, además de fallos aleatorios en el FBI y en la configuración del sistema. ¡Así que asegúrate de limpiar el exploit! (la opción 4 en el menú mset9.py hace esto)
   P: El archivo que activa el exploit (002F003A.txt) ... parece ... una dirección virtual, ¿no?
   R: Son los caracteres ":/", algo que no podemos mostrar en un nombre típico de archivo/carpeta. Un hecho conveniente de ese archivo (además de desencadenar la caída general) es que los primeros 8 caracteres de ese nombre de archivo hexadecimal se convierten a un u32 que resulta existir 0x44 pasado SP, por lo que puedo usarlo para rellenar los caracteres que faltan en la ruta de archivo de carga útil "sdmc??b9", y mantener feliz al sistema operativo del PC.
   P: Sugieres en la explicación del hack anterior que FS_EnumerateExtData es la función responsable de permitir el crash en MSET/ARM9, ¿podría ser llamada en userland homebrew para hacerse cargo de ARM9?
   R: ¿Quizás? Jugué brevemente con esta misma idea, pero no pude encontrar un contexto de crash que pudiera controlar, a diferencia del método pre-userland que es MSET9. Tal vez esto podría ser un ejercicio para que el usuario dedicado explore y desarrolle esta variante potencial de MSET9. Podría ser útil más adelante.
   Dato curioso: El archivo hexadecimal de 8 dígitos, si se deja en extdata, también bloqueará FBI al seleccionar la opción "Ext Save Data" en su menú principal. Es el único homebrew que conozco que llama a FS_EnumerateExtData.
   P: Acortaste SafeB9SInstaller.bin a SafeB9S.bin, ¿por qué?
   R: Mantiene el estándar de nombre de archivo 8.3 de FAT que evita Nombres de Archivo Largos, y por lo tanto permite un ahorro significativo de espacio en la biblioteca FatFs. "B9" también se utiliza por el mismo motivo, aunque no está relacionado con FatFs. En este exploit es de vital importancia que el código ocupe poco espacio.
   P: ¿Por qué no funciona en MAC?
   R: Porque se niega a renderizar la siguiente locura unicode: �﫿餑䠇䚅敩ꄈ∁䬅䞘䙨䙙꫿ᰗ䙃䰃䞠䞸退ࠊꁱࠅ캙ࠄsdmc退ࠊb9
   ( ͡° ͜ʖ ͡°)
   MSET9 es una aplicación creada por Zoogie.
   
7. 

   nds-bootstrap

   nds-bootstrap es una aplicación que permite el uso de homebrew de Nintendo DS/DSi y roms a través de la tarjeta SD en Nintendo DSi/3DS, en lugar de utilizar emuladores o flascarts.
   Frontends
   Para utilizar nds-bootstrap, necesitas utilizar un frontend. Estas son las tres posibilidades:
   TWiLight Menu++ (el más recomendado y actualizado) is an open-source DSi Menu upgrade/replacement for DS/DSi/3DS. TWLoader is a discontinued 3DS frontend. nds-hb-menu is a 3DS frontend based off the Nintendo DSi homebrew menu. Compatibilidad con ROMs
   nds-bootstrap ofrece soporte para la mayoría de ROMs de Nintendo DS, con algunas pocas excepciones. Puedes llevar más allá tu experiencia de juego con trucos y tiempos de carga más rápidos que los cartuchos normales (para los juegos que soportan estas características).
   El guardado de partidas está soportado también y los archivos serán almacenados con la extensión .sav.
   Los parches anti-piratería pueden ser cargados vía archivos IPS, pero no están incluídos dentro del software por si mismos.
   nds-boostrap también soporta muchas aplicaciones homebrew, como DSCraft.
   B4DS (nds-bootstrap para las flashcards con modo DS) solo ofrece soporte para algunas ROMs de Nintendo DS. Puedes ampliar la compatibilidad utilizando el DS Memory Expansion Pack.
   Instrucciones de instalación de nds-bootstrap
   Descargar la aplicación desde esta misma página de forma completamente gratuita. Extraer el archivo y pasar los dos con extensión .nds a la carpeta /_nds de la tarjeta SD. El archivo con extensión .ver lo metemos en la carpeta /_nds/TwilLightMenu. Listo. Créditos: ahezard, Gericom, Apache Thunder, RocketRobz, _catcatcat, shutterbug2000, damianoamatruda, and arraystock.
   
8. 

   NDStation

   NDStation is a flasher for the EZFlash 3-in-1 Expansion Pack which allows you to package a ROM within a .NDS file and therefore run it from your Slot 1 flash card's main menu. Its purpose is to make things feel more integrated and unified on your flash card.
   ----------------------
   Notes:               |
   ----------------------
   Wow, version 1.1 already. This one has PSRAM loading for ROMs smaller than 16MB, thanks to a great code snippet by cory1492, and support for a custom borders! Borders have a weird graphical error, but only the first time the NDS is run. I have no idea why.
   Also now included is a Linux and Mac GUI written by dg10050.
   Bugfixes are a small graphical hiccup in the GUI and an error in compilations caused by some cheap hacks I used, also in the GUI.
   An important note about mixing PSRAM and NOR ROMs:
   * * If you run a NOR ROM, then use a PSRAM ROM, your NOR ROM's
   * * save will no longer be present on the 3-in-1. To get it
   * * back you must run the NOR ROM's flasher again.
   The next release should be able to detect if a NOR ROM is already flashed and simply restore the save. Also, border support will be implemented soon. Future plans include compression, something no other 3-in-1 flasher has!
   ----------------------
   Usage:               |
   ----------------------
   To use NDStation, run the NDStation.exe included in this package. Some of the functions are self-explanatory, such as choosing the GBA ROM image you wish to use and where you want it to be copied.
   "Game title" defines the embedded title in the ROM. The first line is automatically set to the basename of the ROM chosen, although it can easily be changed. "Use PSRAM" allows for faster loading for ROMs smaller than 16MB.
   Clicking "Customize the NDS" will open a menu where you can change the icon for the NDS file and choose a custom border. "Preview NDS" gives you a rough idea of how the NDS will appear on R4DS's menu.
   "Go..." builds your .NDS file, and is finished when a message box pops up and says "Complete!" Don't forget to DLDI patch the NDS for your card.
   ----------------------
   Thanks:              |
   ----------------------
   cory1492    - My flashing code is based on GBAldr. Noda        - For the EFS library that made this possible. olimar      - Pointed me to FWNitro for GBA booting code. dg10050     - Came up with the name, since it is a lot like POPS  on the PSP (working title was EFSgba). Also made the Linux and Mac GUI for me, since I can't seem to leave Windows. ZiNgA BuRgA - The GUI is based off of Simple Popstation GUI 2 beta by chuckstudios.
   
9. 

   NeatDS

   Easily tidy up your NDS ROM File Collection by rename them using its Banner Text !
   Simply, put this tool inside folder which contains your NDS ROM Collection, or run this tool anywhere, then add directory that contain your NDS ROM Collection. Define your own naming format Then, click START Wait until the progress completed !
   by cimo95.
   
10. 

    NesDS

    nesDS1.3c [NTR], using toolchain devkitARM r43 (/release folder NesDS.nds binary was compiled with it). master branch is the one and only branch that uses fully libnds sources. (for TGDS support I won't add support as of now, too busy right now) We spent a few weeks to port the original nesDS project to the GCC toolchain. Then we made a new EX Edition, and made it possible to emulate the the NES/FC games that the origianl nesDS didn't work well. Since the 0.40 version, I ported the code of EX Edtion to the original nesDS, now it is the best nes-emulator~! If you found any bug on nesDS, just tell me. Maybe I could fix it. 08-14-2018 coto: - nifi, sound, touchscreen works in NTR mode as of devkitARM r43. - fixed exception due to buffer overflow in Rom Database 2011-3-23 avenir contributed some codes to version 0.45a. 2011-9-32 avenir contributed some codes to version 1.0a. Q: What can I do if some pics had been crashed? A: You can try the 'sprite per-line type' under the 'Display' menu bar. If it does not work, just tell me, I will try to fix it. CAUTION: The extlink may cause some problems to nesDS, if does, please try the new moonshell. Even if the sram is auto saved, it may be lost. This may be related to the dldi cache... If you have the same problem, just shutdown your DS when rom menu is shown. The coming figures are: ???? Tell me what you need. UPDATES: -------- 2014-08: mapper5 update. current: FDS and vcr6 sound are enabled in NSF mode sprite0y is updated in sp-pertile mode 1.3a: alpha blend fixed. touch the current menu item to hide menu. cheat list bug fixed. fix the flicking of cheat list. all saving flushed. Sound update, the volume = sin(original * pi / 2) ^ 0.7, like a linear to log conversion. Load and save slot number merged to one. nsf play supported, use <left/right> to select song, use <up/down> to play/stop, use 'debug' menu to see the details. 1.2b: vcr6 sound channel for mapper24 and mapper26 is added. a sound reset button is added to menu>settings>config, which is used when the sound goes bad, when close and open the DS, this is probly needed. Mapper253 is added. fds saving is disabled when the game is not a fds. CRITICAL NOTE: the sound rendering has almost reached the ability of arm7, so ..... the arm7 will auto detect the IF, by which to fix the mess of sound. 1.1b2: every apu channel mirrored to a nds sound channel 1.1b: sound update, fds sound works fine. AutoFire config can be saved. game is more stable & sound goes bad? binary files converted to .c/.h, can be compiled by devkitARM r39 1.1a: fds sound added, just works. Mapper198 added, SRAM saving not supported. Sound update. Gesture update. 1.0: rom patch database added, which can select a PAL/NTSC timing or fix the header of rom. Nifi fixed. 'About' flicking fixed. Better flicker when PALTIMING is enabled. dswifix(which is for nifi) src is added. 1.0b: Mapper240 added. fixed the tmpfile. DPCM weakened, sounds better? A bug with ppustat fixed. e.g.'teenage mutant ninja turtles' A bug with palette fixed. Patch update. Battleloads (Europe) <Double Dragons> added. SRAM can be saved whatever a game supports. 1.0a: code of .gz replaced with a new one, still works. .zip supported. NOTE: Only one file is allowed in the .zip archive. code of ips been re-written. 'Double Screen Show' is supported to show all the pixels at the same time. Check 'About' for more info. Sprites with SP-perframe updated. Some bugs related to 'Scaling' are fixed. Some other changes. Thanks to avenir. 0.56a: Short-Cuts updated. Fast forward & rewind can be changed. Screen scaling can be saved to nesDS.ini gzip file supported. only .gz could work. Thanks to dszip. The decompression of large files would take a while. compiled with latest libnds(as required). 0.55b: Sound update. Sprites update. A bug of Memory fixed. Palette sync added, click Menu > Game > Display > OnOrOff to change. More info, see the 'About'. Pal sync needed:Fantastic Adventures of Dizzy, Micro Machines, Wizards & Warriors, Feng Shen Bang. 0.55a: A bug with nesDS.ini fixed, works with latest devkitARM-r34 Saving for FDS added. Menu > Game > Extra > Save FDS. Shows time on the top menu. Mapper 216 189 added. e.g. Magic Jewelry 2, Master Fight 2, Street Fighter 4... Some others.. 0.54a: Big nose freak out update. mapper225 226 227 229 230 231 255 added. Sound enhanced. Raw PCM update, nearly perfect. sprite0y update. nifi update. NOTE: unstable with devkitARM r33, using r32 instead. 0.53b: Mapper1 updated. Auto-fire adjusting added. Swap-Screens disabled if LIGHTGUN active. sprite0y for SP-pertile fixed. Careful to use Swap-Screens, which may shutdown DS. 0.53a: IPS supported. First, load a .ips file, then load the rom to start a patched game. The rom file won't be changed. The ips file should be smaller than 512kB. Barcode supported. Click Menu>Game>Extra>Barcode Gesture supported. Click Menu>Config>Short-Cuts to configure. When the menu is hidden or the LIGHTGUN is enabled, you can touch the sub-screen to draw a gesture. Mapper245 added. Mapper16 updated. Raw PCM updated. 'SP-Pertile' updated. E.g. The issue with Super Mario 3 is fixed. Some others... 0.52a: The 'menu' is re-designed. Raw PCM supported, not perfect, can be switched off in menu>Settings>Config. Settings of nesDS can be written to 'nesDS.ini' at runtime, done in menu>Settings. Short-Cuts can be configured in menu>Settings. 'LightGun' is placed in menu>Game>Extra, 'Micphone' and 'FDS disk' are also added there. 'Micphone' is not tested. Nothing more. 0.51a: Roll back some updates in 0.50b. Mapper90 added. It works fine. You need to reload the nes rom to get a 'Soft-Reset'. Light-Gun added. Under the 'Input' bar, click 'No LightGun' to active Light-Gun. When shooting, hold L-button and touch the sub-screen. 'Swap screens' is recommended. R-button can be used to rewind game play. sprite0y calculation for SP-pertile corrected, better. V-flip for SP-pertile corrected, better. A patch file added, used to correct the header of rom or modify the settings of nesDS. Below shows the games patched: PRGCRC Name 0x33AA Akumajou Densetsu 0x0A62 Joe & Mac 0x49B3 TMNT 1 0xE91E Duck Hunt(JUE) 0x15CF Wild Gunman 0x15CF Gum Shoe 0x9F65 Hogan's Alley (JU) 0xB2B5 Three Eyed ONE/Mitsume Ga Tooru 0x8A35 Feng Shen Bang(Chinese) 0xD796 Alien Syndrome (J) 0.50b: nesDS.ini commented. nesDS.ini: ScreenSwap added. If your DS' top-screen did not work well, set this value to 1. mapper 19, 71, 118 updated. NES cycles-per-scanline modified to 121, to make the graphic more smooth. E.g. tmnt, Akumajou Densetsu.... Also makes Joe&Mac work fine. A sound bug fixed, which may cause a panic.... Sub-screen will be closed if there is a NES_RESET. Cheat list can be loaded/saved from/to a file. EXTENTION:.cht FrameSkip for Pure-Soft rendering can be adjusted. If you have a DSi, frameskip 1 would be OK; For DS/DSL, frameskip 2 is recommended. frameskip 1 means that the graphic is updated at 30fps. 2 for 20fps. On the older nesDS, frameskip 2 equals to 30fps. sprite0y changed, which makes the graphic better. e.g. Super Mario... CRAM added.. 0.50a2: All memory needed is pre-allocated, and all malloc() are deleted.. This is done for those who cannot run nesDS well. The average length of roms' names MUST be lower than 64bytes, for saving memory. MAX_ROM_SIZE is set to 3M. Delay for multi-player is slightly lower. Mapper4 is updated. e.g. tmnt3 works well now. Path for nesDS.ini is updated. Available paths now are:"/","/_dstwoplug/","/ismartplug/","/moonshl2/extlink/","/_iMenu/_ini/","/_plugin_/" 0.50a: Nifi/Multi-players supported. Cheat re-added. About/Help tip added. NTSC/PAL timing supported. Roms menu cached, which will speed up the rom menu when start another game. some bugs fixed. 0.48b: Mapper68 updated. e.g. After Burner(U) Some bugs fixed. nesDS.ini updated. 0.48a: software-render re-added, to deal with the mappers 9, 10, 19, etc. 0.47b: sound update. L+UP to show NES on top screen when playing. L+DOWN for bottom screen. 0.47a: sound enhanced. MAX VOL x2. fds supported. Do NOT use realtime saving and loading.("save state" and "load state"). Safe to use KEY_R and KEY_L. R+UP = disk A R+LEFT = disk B R+DOWN = disk C R+RIGHT = disk D 0.46a: mapper163 added.. sound updated. MAX FILES enlarged. 0.45b: The memory region of "NES" is relocated from 0x23f0000 to 0x23ec000. advised by avenir. Now the nesDS on my DS could return to the homebrew menu. A software for sprite-scaling is added. Select 'Per-scanline' to active it. Mid-frame BG pal refresh is supported. Some games like 'Wizards Warriors' work fine. Some others not important... 0.45a_v2: sound fixed.. 0.45a: avenir write a patch to nesDS, what's new? He said... @----------- start -----------@ Extended the reset to "If not loaded from hbmenu/xenofile, returns DSi/3DS menu on DSi/3DS". stringsort() is now a wrapper for qsort(). extlink now accepts multibyte filename thanks to Unicode support. Directory listing is shown the same way as WinNT(8.3 lower case). <- If you name a file all lower case in 8.3... /nesDS.ini is used for configuration(minIni). @----------- end -----------@ updates: Add the shout-cuts for configuration. Sound fixed.. better than 0.44b. Almost no noise(not the noise channel). sprite0y of 'per-scanline' fixed. h-blank interrupt handler added, which was removed since 0.44b. some other chanegs.. No update for mappers. 0.44b: Since the nesDS file is larger, this version is NOT recommended for those who just want to play nes games. Port the whole project to devkitPro, using libnds, libfat.... Almost no update, but some figures may be worse. e.g. sound with the games that read reg4015. Some games' sounds work better... - -! You guys can try 'Start+Select+R+L' to exit your nesDS and return to the main menu of flash-card. On mine, it just shotdown my DS(R4SDHC with kernel1.34, no help with moonshell2 either). Since this version, the mem region cannot be accessed freely, be careful if anyone wants to write a patch. The libnds and libfat are too big... 128k around. Shit that! 0.44a: A bug of cartflags was fixed, which will definitely make the game unable to save.. something about 'fetch_c' was changed, which may cause some problem. the bug logged in 0.43 was related to this. set the nes ram reset value to 0x0, not 0xFFFFFFFF, which will cause the 'Super Mario' starting from world 0-1. Supprised that karateka(j) works now... 0.43: Warning: A bug of SRAM was fixed. It may cause the games that use SRAM crashed.... 0.43b: DPCM/DMC suppoted! I should say that this is just for testing.... DPCM causes a lot of sound crashes, and I am busy fixing them.. well, Mario 3 works fine, also 'Chan'.. no other updates. I need to slow down this project... 0.42b: no sound updates. short-cuts added.. extlink supported. some unused files of sound are removed. It is much clear now... no more... 0.41b: mapper 9, 10, 118, 228 updated/fixed. Punch-Out, Action 52 IN 1, and some others games play well now. The 'Flicker' function was slightly fixed. Our eyes will not be that hurt now ;p A new bg render method was added, but not actived in this version, there are still alot work to do. 0.40: 'roll back' fixed... I did not release this version because there is no need to... 0.40b named as 'nesDS 0.40', not 'nesDS EX 0.40', because the two versions had been merged into one. some bugs fixed .... 0.31 mapper 23, 25 supported rendering method changed scaling supported 0.30beta All the rendering sections has been re-written. Uses the NDS hardware to emu the NES graphic. Much better speed and sound. 0.22 uses software to cal the CRC, same as Virtuanes. mapper074 updataed, supporting some special games. mapper0, 1, 4 updated. fixed some bugs.. 0.22b mappers supported: 0, 1, 2, 3, 4, 10, 16, 19, 74, 246 (EX's mapper files is very different from the original.) function added: cheat CHANGES£º -------- Touch screen should work better now Fixed bug that was causing ARM7 to crash on emulators (ideas and desemu inputs were not working) CAUTIONS: --------- Run the nesDS EX Edition on ideas may cause a crush, because ideas does NOT support "swi". NOTES: ------ All other functionality should be identical to the original. nesDS inputs now work properly on emulators. You can run the nesDS on ideas by DLDI patching it with the R4 dldi patch using dlditool. You must then enable DLDI support for R4 under File->Properties. You can also run nesDS on desmume but you will need to create a filesystem image from some files and embed the files to the emulator (you need to use fcsr for this). COMPILING: ---------- You need devkitARM to compile this project. If you are compiling on windows you also need mingw. On linux you will need to have make installed. The project compiles on windows and linux using devkitARM r32 (devkitPro). To compile on windows use msys-1.0.15 (devkitPro) as well. You do not need anyhting else to comiple the project. Compiling on windows: 1) extract devkitARM to a folder 2) extract msys to a folder 3) add DEVKITARM environment variable and set its value to the path where you extracted devkitARM, e.g: /c/devkitARM (must be linux style path!) 4) (OPTIONAL) add path to msys binaries in you windows path, e.g: c:\msys\bin (must be windows style path!) You only need to do step 4 if you want to compile from the windows command shell. You can compile the project without step 4 by launching mingw using msys.bat in the msys folder. 5) change to the project main directory, either in the windows command shell (step4 required) or mingw then type make. Compiling on linux: 1) extract devkitARM 2) create a DEVKITARM shell variable with the path to where you extracted devkitARM, e.g: /usr/local/devkitARM You can create a variable in /etc/profile or in your home directory .bash_profile file as follows export DEVKITARM=/usr/local/devkitARM or just type this command in the shell before typing make 3) change to the project main directory then type make. To delete all object files type: make clean in the main project directory If you make changes to the emulator and want to add them to this project or if you want to join the project notify us on http://sourceforge.net/projects/nesds CREDITS: -------- Original nesDS team: Coding: loopy, FluBBa More code: Dwedit, tepples, kuwanger, chishm Sound: Mamiya ___________________________ ported to gcc by minitroopa EX Edition made by huiminghao 0.4x Edition made by huiminghao more credits: ------------- avenir (License) nesDS is released into the PUBLIC DOMAIN. You may do anything you want with it. If you make any changes you'd like to see added to the official version, please let me know. -- nesds@olimar.fea.st nesDS was compiled with ARM ADS 1.2. To build it, open the project file (nesDS.mcp) and click Project -> Make. --------------------------------------------------------- Memory map: 1ff8000-1ffffff: ITCM (6502 core, etc) 2000000-23fffff: cached ram 2400000-27fffff: uncached ram 2800000-2803fff: DTCM (misc tables and data) -------------------------- misc NES data 23f8000 -> 23fe000 sound and DMA buffers 27fe000 -> 27ffc00 (uncached) firmware settings 23ffc00 -> ... IPC 27fff00 -> 2800000 (uncached) scratch memory is (Image$$EWRAM$$ZI$$Limit -> 23f8000), used for file list storage, rom storage, game recording other ptrs: rombase = Image$$EWRAM$$ZI$$Limit freemem_start = end of rom freemem_end=23f8000 (all of freemem_start -> end is used for recording) --------------------------------- VRAM: A=MAIN OBJ (128k) 6400000-641ffff B=MAIN BG (128k) 6040000-605ffff C=MAIN BG (128k) 6000000-601ffff D=MAIN BG (128k) 6020000-603ffff E F G H=SUB BG 6200000-6207fff I 6000000-605e000 MAIN CHR (#? chr banks) 605e000 MAIN SCR
11. 

    new browserhax XL

    New-browserhax-XL is another primary userland exploit for the new3ds browser, Skater. It's the successor to new-browserhax, which bravely fell in battle against firmware 11.14. RIP.
    What's needed
    A new3ds (or new2ds) on firmware:
    11.14.0-46 on all 4 new3ds regions US,EU,JP,KR Directions
    In the release folder, find your region (USA, EUROPE, JAPAN, KOREA) and take all files inside that folder and put them on the root of your sd card. Do not copy the entire region folder over, just its contents. Place the homebrew launcher boot.3dsx from here also on the root of your sd card. With wifi on and working, scan this QR after pressing L+R should buttons together and tapping the QR button on the bottom screen. The link to the sploit page is https://zoogie.github.io/web/nbhax-xl/ if you want to type it in manually and/or bookmark it. The exploit should then immediately flash colors and load the homebrew menu. Make sure to add homebrews to the sdmc:/3ds folder first in order to have something to run. See other guides online about what you can do with homebrew. Exploit details
    This is a simple stack smash that occurs when a .css @import command contains a '#' (url fragment) at the beginning of the url. The webkit test demo this is based on can be found here.
    Troubleshooting
    Problem: The 3ds freezes on a yellow screen.
    Solution: Try again. Boot rate is about 75-80%. This has always been an issue with hax homebrew and not specific to this implementation. If this keeps occurring over and over, it's likely being caused by running browserhax while cfw (luma3ds + boot9strap) is already installed -- don't do this! Follow https://3ds.hacks.guide for proper instructions on how to launch .3dsx homebrew under cfw. Hard freezing with regular screens (ie no solid colored screen) can also indicate running under cfw.
    Problem: I get a "An exception occured" black screen with white text on both screens.
    Solution: You already have cfw and there's no reason to run browserhax. Consult this for instructions on how to run homebrew properly under cfw.
    Problem: The 3ds freezes on some other color screen or "An error has occured" prompt shows up.
    Solution: Make sure you have all the correct files. Check your region is correct.
    At minimum, make sure to have the below 3 files in the sd root as shown.
    sdmc:/arm11code.bin sdmc:/browserhax_hblauncher_ropbin_payload.bin sdmc:/boot.3dsx Note that these are the same files used as in the previous new-browserhax, so no need to change them if they're already there.
    Problem: I still can't get the exploit to work and the three solutions above didn't help.
    Solution: First, tap the bottom left star icon, then select top right History tab, and delete History button at the bottom. Then go to your browser's settings and select Delete Cookies. Now create a bookmark with https://zoogie.github.io/web/nbhax-xl/ as the address (or just edit an existing bookmark). Exit the browser, then launch it again, and then finally launch that nbhax-xl bookmark you just made. It may also be helpful to power cycle the 3ds in between attempts if the exploit is still being stubborn. FAQ
    Q: Will you support old3ds, old2ds?
    A: Planned. I already have a working exploit for spider but it's pretty unstable. Needs more time.
    Q: Can I install unSAFE_MODE with this to get cfw?
    A: Absolutely, be my guest : ) You can boot slotTool.3dsx and install the hacked wifi slots, then run the unSAFE_MODE exploit. No explicit directions will be given for that here, but guides should pop up soon with directions.
    Q: Where did this browser exploit come from originally?
    A: https://github.com/WebKit/webkit/blob/master/LayoutTests/http/tests/css/css-imports-url-fragment.css
    Q: I looked at the source and noticed the html file seems to import itself as a .css, wat?
    A: That's an html quirk that I don't quite understand myself, but it's convenient. It's actually not part of the vuln; I could've used a separate file for the .css code, but chose not to.
    Q: Why did you name it new-browserhax-XL?
    A: I am creatively bankrupt.
    Q: Will this exploit be fixed in a firmware update?
    A: Last time I suggested about 50% odds new-browserhax being fixed which turned out to be 100% odds. So I guess that means we average those two and get a 75% chance of it being fixed this time 😛
    I really don't know.
    by zoogie.
    
12. 

    New Super Ultimate Injector 3DS

    New Super Ultimate Injector 3DS is an app created by Asdolo94 which allows you to inject Nes, Snes, GameBoy, GameBoy Colour, GameBoy Advance, Mega Drive, Game Gear and TurbiGrafx 16 roms in to the 3DS, allowing roms of games from these popular classic consoles to be loaded from the 3DS home screen.
     
    Changelog:
    - Beta 26: 2017-12-30 00:14:39 - Asdolo's commit: Hidden gpSP and mGBA injection methods. Coming soon in beta 27 2017-12-29 23:42:10 - Asdolo's commit: Hidden VirtuaNES injection method. Coming soon in beta 27 2017-12-29 23:03:56 - Asdolo's commit: Default per-injector settings configuration! 2017-12-18 12:42:48 - Asdolo's commit: Added cartridge color injection for Famicom (JPN) 3D banner 2017-12-18 10:52:01 - Asdolo's commit: Hidden ColorLCD edit field from BG, OBJ0 and OBJ1 palettes (not applies) 2017-12-18 10:31:18 - Asdolo's commit: Updated RetroArch forwarders to 1.6.7 2017-12-10 11:40:19 - Asdolo's commit: Added an option to toggle databases autoupdates. 2017-11-29 22:20:07 - Asdolo's commit: Auto-update Title ID databases 2017-11-28 20:00:00 - Asdolo's commit: Redesigned the Content Options window and added custom borders to Snes9x forwarders! 2017-11-27 15:32:04 - Asdolo's commit: Hidden the Options and Controls tabs and added info about how to use cheats in Snes9x forwarders 2017-11-27 13:36:24 - Asdolo's commit: Added Snes9x Content Options and updated to 1.21. Added descriptions to all the forwarders Core Options too. 2017-11-21 18:02:51 - Asdolo's commit: Fixed GBA sleep patch applying bug with certain roms - Beta 25: 2017-11-21 12:39:08 - Asdolo's commit: Export & install CIA from Library 2017-11-20 19:51:38 - Asdolo's commit: Finished with the adaptation of the new Library (for now) 2017-11-17 00:40:55 - Asdolo's commit: Polished the Library system plus some bug and databases fixes 2017-11-14 19:57:02 - Asdolo's commit: Fixed duplicated Library consoles 2017-11-14 19:31:55 - Asdolo's commit: Improved the GBA VC Save Type detection 2017-11-13 23:59:13 - Asdolo's commit: Changed the databases to more accurate ones 2017-11-13 22:47:46 - Asdolo's commit: Improved the UI 2017-11-13 21:16:38 - Asdolo's commit: Updated some icons and added the Video CIA menu (not available yet) 2017-11-13 19:21:09 - Asdolo's commit: Now using the NSUI folder as the temporal folder 2017-11-13 17:11:35 - Asdolo's commit: Improved a LOT the NES VC compatibility 2017-11-13 15:34:24 - Asdolo's commit: Merge fix 2017-11-13 15:33:58 - Asdolo's commit: New Library system by namanix 2017-11-13 14:03:09 - Asdolo's commit: Updated PlatformCommonUtils 2017-11-13 13:59:51 - Asdolo's commit: Updated the Library branch with some fixes. 2017-11-11 21:09:42 - Asdolo's commit: Merged Master into Library 2017-11-11 19:30:53 - Asdolo's commit: Custom button combo for GBA Sleep patch. Also added a hard-reset patch. 2017-11-11 19:29:44 - Asdolo's commit: Show Dark Filter preview in GBA VC 2017-11-11 19:29:44 - Asdolo's commit: Added a Retry button if the Push CIA feature fails 2017-11-11 19:29:19 - Asdolo's commit: Fixed GB/C VC Dark Filter not applying in Default Global palettes 2017-11-11 19:29:19 - Asdolo's commit: Improved the database search system and updated the thumbnails databases 2017-11-11 19:27:52 - Asdolo's commit: Fixed a bug that caused GBA VC CIAs to double in size when applying the Sleep Patch 2017-11-11 19:27:52 - Asdolo's commit: Set 6 button mode on Picodrive by default 2017-11-11 19:27:52 - Asdolo's commit: Basic VirtuaNES for 3DS forwarder 2017-11-11 19:27:51 - Asdolo's commit: Resolution options revamped 2017-11-11 19:25:31 - Asdolo's commit: Fixed black square around GB/C VC (again) 2017-11-11 19:25:30 - Asdolo's commit: Removed non-essential tooltips 2017-11-11 19:25:30 - Asdolo's commit: Added an option to hide the game from the Activity Log 2017-11-11 19:25:14 - Asdolo's commit: Disable SD Savedata Backups for non-VC (and GBA VC) 2017-11-11 19:25:14 - Asdolo's commit: Proper CIA flags 2017-11-11 19:25:14 - Asdolo's commit: Added an option to turn tooltips off 2017-11-11 19:25:14 - Asdolo's commit: Added a "CIA created" dialog and an option to toggle it 2017-11-11 19:24:32 - Asdolo's commit: Fixed Genesis 3D frame banner 2017-11-11 19:24:32 - Asdolo's commit: Rearranged some code 2017-11-11 19:24:32 - Asdolo's commit: Hide the black square around palette swap icon in GB VC 2017-11-11 19:24:32 - Asdolo's commit: Fixed GB Injector Long Name input text not being multiline - Beta 24: 2017-10-17 22:17:21 - Asdolo's commit: Added Tooltips to the other platforms 2017-10-17 21:14:45 - Asdolo's commit: Changed some phrases 2017-10-17 20:35:21 - Asdolo's commit: Added CIA Drag and Drop (pushing them to the 3DS) 2017-10-17 20:03:56 - Asdolo's commit: Changed GB(C) default Injection Methods to "Old GB(C) Virtual Console" 2017-10-17 20:00:37 - Asdolo's commit: Changed some phrases 2017-10-17 19:49:36 - Asdolo's commit: Changed phrase of Auto save/load state in RetroArch forwarders 2017-10-17 19:09:44 - Asdolo's commit: Revised Injection Methods descriptions 2017-10-16 13:00:57 - Asdolo's commit: Added homebrew database to the Title ID blacklist 2017-10-16 12:37:13 - Asdolo's commit: Fixed custom resolution input in theContent Options editor 2017-10-12 19:41:51 - Asdolo's commit: Added a button in the Color Picker to restore to the default color 2017-10-12 16:03:29 - Asdolo's commit: Added -nobatt and -nowarn arguments to bgb and removed the temp folder properly 2017-10-11 21:14:20 - Asdolo's commit: Improved the tooltip system and added some of them for NES 2017-10-10 20:09:30 - Asdolo's commit: Tooltips system 2017-10-07 20:05:01 - Asdolo's commit: Fixed the rewind warning 2017-10-07 19:21:40 - Asdolo's commit: Changed "Edit core options" to "Edit core-specific options" - Beta 23: 2017-10-06 19:22:08 - Asdolo's commit: Changed "Show a warning about the missing fonts for Footer Banner" to "Warn if {0} font for banner is missing" in settings 2017-10-06 17:58:10 - Asdolo's commit: Setted the default VC borders for GB and GBC instead of black border 2017-10-06 17:55:00 - Asdolo's commit: Show preview of game screen on GB/C border preview 2017-10-06 16:54:23 - Asdolo's commit: Added a button to swap the two global palettes in GB VC 2017-10-06 16:26:38 - Asdolo's commit: Hide the black square around player swap icon in New NES VC 2017-10-06 15:25:44 - Asdolo's commit: Removed the LCD color on GB VC if the user selected the No border option 2017-10-04 22:03:52 - Asdolo's commit: Fixed NSUI not asking to save unsaved projects if closed from the Title Bar 2017-10-04 17:48:41 - Asdolo's commit: Changed "JAP" to "JPN" on the names of banner styles - Beta 22: 2017-10-03 22:04:57 - Asdolo's commit: Fixed GB VC border injection. Now it fully supports 400x240 borders! - Beta 21: 2017-09-29 14:48:19 - Asdolo's commit: Added a volume control for SNES Virtual Console CIAs 2017-09-29 14:21:19 - Asdolo's commit: Added SNES9x for Old 3DS 2017-09-28 16:42:19 - Asdolo's commit: Small merge fix 2017-09-28 15:20:37 - namanix's commit: Merged Master into Library so i can use the Direct install CIA function 2017-09-28 12:04:18 - namanix's commit: MdiTabControl.dll isn't found on initial clone. Going to fix this later - Beta 20: 2017-09-27 18:06:34 - Asdolo's commit: Improved the whole database's search system, especially for GBA ROMs 2017-09-27 13:45:10 - Asdolo's commit: Disabled motion blur in the second palette of GB VC - Beta 19: 2017-09-26 21:30:54 - Asdolo's commit: Sega Genesis/Mega Drive injection! 2017-09-25 16:18:30 - Asdolo's commit: Drag and drop support for load ROM files 2017-09-25 15:06:55 - Asdolo's commit: Allow to pick multiple IPS files 2017-09-25 14:17:20 - Asdolo's commit: Better Title ID random generation (less official releases matches) 2017-09-25 13:55:16 - Asdolo's commit: Added a standalone CIA install feature 2017-09-25 12:49:54 - Asdolo's commit: Fixed numeration bug in projects with repeated names 2017-09-23 23:36:30 - namanix's commit: Rightmouse click menu works on projects in the library 2017-09-23 23:25:16 - namanix's commit: Open project / Delete project from library now working! 2017-09-23 22:28:48 - namanix's commit: Design is done. Added an import feature in the file menu that supports multiple projects at once 2017-09-23 17:49:15 - namanix's commit: Small merge fix 2017-09-23 17:47:39 - namanix's commit: Merged Asdolo's changes to the Library Branch 2017-09-23 12:41:16 - Asdolo's commit: Drag and drop support for .uip files 2017-09-23 17:38:00 - namanix's commit: (Fixed) library screen stayed in front of everything 2017-09-23 17:15:20 - namanix's commit: Icon in library is now shown but the panel is always on top of everything. Comitting to find a fix - Beta 18: 2017-09-23 11:50:01 - Asdolo's commit: Got rid of the admin privileges requirement 2017-09-23 16:47:32 - namanix's commit: Added the games to the list. Only the game icon remains now for the design 2017-09-23 15:56:51 - namanix's commit: You can now click on consoles to open them. Buttons and container for games are placed. Only design 2017-09-23 14:14:44 - namanix's commit: Basic design is done! Nothing functional, only design. Also adding everything to the language file so it can be translated 2017-09-23 11:51:34 - namanix's commit: Base comit for the new library system 2017-09-22 18:38:46 - Asdolo's commit: Updated the New GBC VC 2017-09-21 18:45:44 - Asdolo's commit: Fixed a translation error 2017-09-21 18:17:20 - Asdolo's commit: Now every Open/Save File Dialog will remember its last used directory 2017-09-17 20:33:11 - Asdolo's commit: Added settings to enable/disable the open output folder message 2017-09-17 16:21:14 - Asdolo's commit: Allow to multiselect project files when opening them 2017-09-17 16:17:12 - Asdolo's commit: Automatically refresh recent projects list in Homepage 2017-09-17 16:09:54 - Asdolo's commit: Added project to recent list when saving it to a new project file 2017-09-17 15:53:56 - Asdolo's commit: Added a basic Homepage - Beta 17: 2017-09-15 16:54:13 - Asdolo's commit: Now when adding an image for the icon from a file it will also be added for for the banner if no image is present. Also this works in reverse 2017-09-15 16:44:59 - Asdolo's commit: (GBA) Hide the save type list and sleep patch on non-VC Injection Methods 2017-09-15 16:36:16 - Asdolo's commit: (GBA) Now the list of save types will always show 2017-09-15 15:57:43 - Asdolo's commit: Fixed the initial language selection 2017-09-15 15:51:57 - Asdolo's commit: Fixed the initial language selection 2017-09-15 12:36:31 - Asdolo's commit: Changed all the ComboBoxes to being read only 2017-09-15 12:27:05 - Asdolo's commit: Hide the banner offset sliders when importing an external banner binary - Beta 16: 2017-09-14 21:28:13 - Asdolo's commit: Fixed language list now showing properly 2017-09-14 20:07:08 - Asdolo's commit: Added a context menu when right-clicking a tab - Beta 15: 2017-09-14 17:05:54 - Asdolo's commit: Added german translation! - Beta 14: 2017-09-14 13:42:26 - Asdolo's commit: Search GBA ROMs in database by internal name instead of CRC, so trimmed ROMs are now found - Beta 13: 2017-09-14 10:40:07 - Asdolo's commit: Fixed SNES VC volume 2017-09-13 13:21:20 - Asdolo's commit: Official GBA banner creation if banner color is the default one 2017-09-13 12:24:35 - Asdolo's commit: Remove a project from recent files if it can't be opened 2017-09-13 12:17:34 - Asdolo's commit: Fixed project not saving when closing a new unsaved project 2017-09-13 11:58:48 - Asdolo's commit: Fixed an english and russian string - Beta 11 & Beta 12: 2017-09-12 23:03:31 - Asdolo's commit: Full GBA VC compatibility (thanks to Aurora) plus some bugfixes - Beta 10: 2017-09-09 15:50:34 - Asdolo's commit: Fixed Super Famicom Banner in EUR consoles with French language 2017-09-09 15:26:30 - Asdolo's commit: Delete export log.cmd 2017-09-09 15:25:16 - Asdolo's commit: Delete log.txt 2017-09-09 15:24:45 - Asdolo's commit: Easier multiline footer banner 2017-09-09 14:00:57 - Asdolo's commit: Fixed line breaks in icon.bin generation 2017-09-09 13:04:55 - Asdolo's commit: Changed GBA injector icon plus fixed flat banner preview transparency 2017-09-09 12:58:38 - Asdolo's commit: Fixed GBA Banner sound and fixed banner export 2017-09-09 12:42:35 - Asdolo's commit: Added GBA EEPROM 8k save type plus a better rom save type recognition - Beta 9: 2017-09-08 10:42:11 - Asdolo's commit: Manual Pokemon GBA VC save patch fix 2017-09-08 09:39:14 - Asdolo's commit: GBA Sleep and SRAM patches - Beta 8: 2017-09-07 12:52:36 - Asdolo's commit: GBA button picker finished - Beta 7: 2017-09-07 01:03:24 - Asdolo's commit: GBA Injection! It also includes mGBA and gpSP forwarders! 2017-09-04 16:34:49 - Asdolo's commit: Updated About window 2017-09-04 16:19:22 - Asdolo's commit: Added a setting to disable the missing fonts warning 2017-09-04 15:40:05 - Asdolo's commit: Remember save path when creating the CIA 2017-09-04 14:47:16 - Asdolo's commit: Recent projects list 2017-09-04 13:05:00 - Asdolo's commit: Allow to keep using the injector while running the bgb emulator 2017-09-04 12:55:53 - Asdolo's commit: Fixed About window closing when closing Credits window 2017-09-01 00:08:23 - Asdolo's commit: CIA install via servefiles (Boop method) 2017-08-31 19:11:21 - Asdolo's commit: Option to export icon and banner finally added 2017-08-26 19:35:10 - Asdolo's commit: Translated some stuff 2017-08-26 19:27:34 - Asdolo's commit: Warning message the footer banner font is missing 2017-08-13 12:15:39 - Asdolo's commit: Bump 2017-08-07 02:04:51 - Asdolo's commit: GBC injection plus some bugfixes - Beta 6: 2017-07-25 13:39:51 - Asdolo's commit: Some fixes 2017-07-25 02:58:04 - Asdolo's commit: Basic applications settings, starting with language force setting 2017-07-25 00:19:49 - Asdolo's commit: Russian language! 2017-07-23 23:04:08 - Asdolo's commit: Added a preview button for colorization modes 1 & 2 (Game Boy VC) plus some bugfixes 2017-07-23 20:53:23 - Asdolo's commit: Moved all translatable strings to one file. Some bugfixes too. 2017-07-23 13:30:29 - Asdolo's commit: Option to disable the power LED on GB/GBC VC. Also now drawing the black bars to the sides of the custom borders 2017-07-19 18:14:39 - Asdolo's commit: Automatic palette application to downloaded title screens in Game Boy Injector 2017-07-19 17:32:25 - Asdolo's commit: Fixed stupid bug 2017-07-18 13:50:54 - Asdolo's commit: Import/Export Palettes Scheme - Beta 5: 2017-07-16 23:41:40 - Asdolo's commit: Game Boy borders! (with a small limitation) 2017-07-16 15:30:49 - Asdolo's commit: Color injection in the palette swapping popup (L+R+Y) for GB VC 2017-07-16 15:01:14 - Asdolo's commit: GB Injection Methods description fixes and small bugfixes 2017-07-16 13:54:48 - Asdolo's commit: VC .patch file injection 2017-07-15 20:09:34 - Asdolo's commit: Done all GB palette related stuff (for now) 2017-07-13 00:26:37 - Asdolo's commit: GB RetroArch core options 2017-07-12 20:59:23 - Asdolo's commit: Basic GB injection plus some bugfixes 2017-07-02 12:57:57 - Asdolo's commit: Added some credits 2017-06-30 16:27:02 - Asdolo's commit: CIA Version input check 2017-06-29 14:05:29 - Asdolo's commit: CIA Minor and Micro version plus small bugfixes 2017-06-27 14:28:03 - Asdolo's commit: Fixed banner inner image horizontal offset 2017-06-27 13:54:29 - Asdolo's commit: Fixed CIA not created on NES VC1 without Dowload Play and fixed ROM database bug 2017-06-26 20:23:06 - Asdolo's commit: Forgot to apply the offsets to banner.bin generation too :P 2017-06-26 19:55:25 - Asdolo's commit: X and Y offsets for banner inner image drawing 2017-06-26 18:25:16 - Asdolo's commit: Box Art download for banner 2017-06-26 14:54:42 - Asdolo's commit: Fixed some main menu strings 2017-06-26 14:52:30 - Asdolo's commit: Save and Save As menues fixed 2017-06-26 14:35:15 - Asdolo's commit: Added Download Play information and hiding option when selecting another injection method 2017-06-26 14:27:29 - Asdolo's commit: Selectable Download Play option and small bugfixes - Beta 4: 2017-06-26 01:10:21 - Asdolo's commit: NES Download Play support and fixed missing banners from Chinese and Korean languages - Beta 3: 2017-06-25 23:39:01 - Asdolo's commit: Dummy changes - Beta 1 & Beta 2: 2017-06-22 11:56:06 - Asdolo's commit: SNES support and some bugfixes! 2017-06-20 15:11:00 - Asdolo's commit: Translated and formatted remaining strings. 2017-06-20 01:28:42 - Asdolo's commit: Small bugfixes, code cleaned and translated some texts 2017-06-19 19:58:33 - Asdolo's commit: Bugfixes 2017-06-19 19:12:08 - Asdolo's commit: Fixed some bugs and finished with IPS patching 2017-06-19 14:09:19 - Asdolo's commit: IPS Patching and small bugfixes. 2017-06-19 13:32:43 - Asdolo's commit: Fixed main menu items 2017-06-19 11:11:11 - Asdolo's commit: Fixed small bug 2017-06-19 02:34:47 - Asdolo's commit: External Footer Banner image import 2017-06-19 01:59:20 - Asdolo's commit: Nestopia forwarder! 2017-06-19 01:11:52 - Asdolo's commit: QuickNES forwarder! (and small bugfixes) 2017-06-19 00:35:52 - Asdolo's commit: Small bugfixes 2017-06-19 00:10:09 - Asdolo's commit: Properly random Title ID and Product Code 2017-06-18 23:08:12 - Asdolo's commit: Fixed GBA 3D Banner not coloring properly 2017-06-18 22:56:50 - Asdolo's commit: Projects save and load 2017-06-18 19:07:37 - Asdolo's commit: Code prepared to implement projects save and load 2017-06-16 14:46:32 - Asdolo's commit: Fully working FCEUMM NES Forwarder 2017-06-15 01:40:43 - Asdolo's commit: RetroArch core options editor! 2017-06-15 00:34:45 - Asdolo's commit: First working CIA (nes)! 2017-06-08 01:10:52 - Asdolo's commit: CIA export: made Banner export method (need tests) 2017-06-06 01:27:38 - Asdolo's commit: Added some icons 2017-06-06 00:11:21 - Asdolo's commit: Content Options Editor finished (for now) 2017-06-06 00:07:36 - Asdolo's commit: Content Options Editor finished (for now) 2017-06-03 03:30:45 - Asdolo's commit: Added. Content Options Editor window, including Buttons layout editor 2017-05-29 23:39:42 - Asdolo's commit: Fixed small bugs on the footer banner creation. Added the Content Options Editor form, which will be like the Step 4 of my older injectors. 2017-05-26 00:44:19 - Asdolo's commit: Footer Banner generation completed (for now). 2017-05-23 00:07:54 - Asdolo's commit: All banner previews done. Added a new Color Picker, better than the one on my old injectors. The next commit should be the implementation of the footer banner creation. 2017-05-22 00:38:24 - Asdolo's commit: Made progress on the banner creation. 2017-05-18 01:20:42 - Asdolo's commit: Properly CIA icon handle, creation and import. Added Texture class. 2017-05-16 23:26:49 - Asdolo's commit: More UI improvements. Working on NES injector. 2017-05-16 01:04:32 - Asdolo's commit: About form added 2017-05-16 00:17:51 - Asdolo's commit: Final MDI testings: properly child form handling and improved UI 2017-05-12 01:56:52 - Asdolo's commit: Testing with MDI forms and tabs 2017-05-12 01:17:33 - Asdolo's commit: Initial commit: basic UI 2017-05-11 13:50:49 - Asdolo's commit: Initial commit  
    
13. 

    new-browserhax

    This is a new homebrew menu loading userland exploit for the new3ds browser, Skater.
    What's needed
    A new3ds (or new2ds) on firmwares:
    11.9.0-42 -> 11.13.0-45 for USA or JAPAN 11.10.0-43 -> 11.13.0-45 for EUROPE Note: The last number on the firmware version matters. If you updated from a cartridge to your current firmware, you will need to update to latest firmware as your browser would have been erased by the cart update.
    
    Directions
    In the release folder, find your region (USA, EUROPE, JAPAN) and take the two files inside that folder and put them on the root of your sd card. Do not copy the entire folder over. Place the homebrew launcher boot.3dsx from here also on the root of your sd card. With wifi on and working, scan this QR after pressing L+R should buttons together and tapping the QR button on the bottom screen. The link to the sploit page is https://zoogie.github.io/web/nbhax if you want to type it in manually and/or bookmark it. The exploit should then load homebrew menu. Make sure to add homebrews to the sdmc:/3ds folder first in order to have something to run. See other guides online about what you can do with homebrew. Exploit details
    This is the same Use-After-Free bug exploited in the WiiU version, with some changes. The input.type="image" -> "radio" is changed to input.type="image" -> "hidden" in this one to achieve compatibility, for instance.
    Troubleshooting
    Problem: The 3ds freezes on a yellow screen. Solution: Try again. Boot rate is about 75-80%. This has always been an issue with *hax homebrew and not specific to this implementation. Problem: The 3ds freezes on some other color screen or "An error has occured" prompt shows up. Solution: Make sure you have all the correct files. Check your region is correct. At minimum, make sure to have the below 3 files in the sd root as shown. sdmc:/arm11code.bin sdmc:/browserhax_hblauncher_ropbin_payload.bin sdmc:/boot.3dsx Problem: I still can't get the exploit to work and the two solutions above didn't help. Solution: Go to your browser's settings and select Delete Cookies first then Reset Save Data. After being exited automatically, relaunch the browser and go to bookmarks. Create a bookmark with https://zoogie.github.io/web/nbhax as the address (or just edit an existing bookmark). Exit the browser, then launch it again, and then finally launch that nbhax bookmark you just made. FAQ
    Q: Will you support old3ds, old2ds?
    A: I tried for a bit getting this to work but had no success. Can't even get the bug to crash old3ds. I'm certainly not saying old3ds support is impossible, so go ahead and try yourself! 🙂 It's open source. Let me know if you can at least get a crash and I might be able to do something with it.
    Q: Can I install unSAFE_MODE with this to get cfw?
    A: Absolutely, be my guest : ) You can boot slotTool.3dsx and install the hacked wifi slots, then run the unSAFE_MODE exploit. No explicit directions will be given for that here, but guides should pop up soon with directions.
    Q: Where did this browser exploit come from originally?
    A: CVE-2013-2857 https://bugs.chromium.org/p/chromium/issues/detail?id=240124 . It was ported to the WiiU a couple of years ago and I think it's still the main userland entrypoint for that homebrew scene.
    Q: The 3ds_browserhax_common code you used works in php server code, why does your hax just use a github io page?
    A: I used a local webserver to emit the unescape output of y8's hb loading code, then converted it to a u32int array for my implementation. I used this script for the conversion. I just really wanted to avoid having to set up a server or asking someone else for that favor.
    Q: Will this exploit be fixed in a firmware update?
    A: Don't know, but it's definitely possible. N has never fixed one of my exploits but they've always been proactive about fixing browser exploits. I give it 50/50 odds.
    Thanks
    Big thanks to @ChampionLeake for the bug tip! The devs who developed JsTypeHax for the WiiU. This sploit is loosely modeled after it. MrNbaYoh for the nice bit of advice to only use similar size objects to overwrite a freed object. Yellows8 for the hbmenu loader code. by zoogie.
    
14. 

    NGPDS

    NGPDS es un emulador de NeoGeo Pocket (Color) para Nintendo DS.
    Cómo utilizar NGPDS
    Primero parche DLDI el emulador para su tarjeta de memoria flash. Cree una carpeta llamada "ngpds" en la raíz de su tarjeta flash o en el carpeta de datos. Ahora coloque los archivos del juego en una carpeta donde tenga roms. Cuando se inicia el emulador, puede presionar L + R o tocar la pantalla para abrir subir el menú. Ahora puede usar la cruz o la pantalla táctil para navegar por los menús, A o doble toque para seleccionar una opción, B o la parte superior de la pantalla para retroceder un paso. Para seleccionar entre las pestañas, use R & L o la pantalla táctil. -------------------------------------------------- ------------------------------
    Menú:
    -------------------------------------------------- ------------------------------
     
    Archivo
    -----
    Cargar juego: seleccione un juego para cargar. Cargar estado: carga un estado guardado previamente del juego en ejecución. Guardar estado: guarda un estado del juego en ejecución. Load Flash RAM: carga la memoria RAM flash para el juego que se está ejecutando actualmente. Save Flash RAM: guarde la memoria RAM flash para el juego que se está ejecutando actualmente. Guardar configuración: guarda la configuración actual. Restablecer juego: restablece el juego que se está ejecutando actualmente. Opciones:
    --------
    Controlador: Autofire: seleccione si desea autofire. Controlador: 2P inicia un juego de 2 jugadores. Intercambiar A / B: intercambia qué botón NDS está asignado a qué botón NGP. Monitor: Paleta Mono: Aquí puede seleccionar la paleta para juegos en blanco y negro. Gamma: le permite cambiar el gamma ("brillo"). Desactivar primer plano: activa o desactiva el renderizado de primer plano. Desactivar fondo: activa / desactiva el renderizado de fondo. Desactivar Sprites: activa / desactiva el renderizado de sprites. Configuración de la máquina: Idioma: seleccione entre japonés e inglés. Máquina: seleccione la máquina emulada. Media velocidad de la CPU: esto reduce a la mitad la velocidad de la CPU emulada. Puede hacer que los juegos sean más rápidos. Cambie las pilas: cámbielas por unas nuevas pilas principales (AA / LR6). Cambiar batería secundaria: cambie a una batería secundaria nueva (CR2032). Configuración de BIOS: cargue una BIOS de NGP real. Ajustes: Velocidad: cambia entre los modos de velocidad. Normal: el juego se ejecuta a su velocidad normal. 200%: el juego se ejecuta a doble velocidad. Máx .: los juegos pueden ejecutarse hasta 4 veces la velocidad normal (puede cambiar). 50%: el juego se ejecuta a la mitad de la velocidad. Estado de carga automática: active la carga automática de estado de almacenamiento. Carga automáticamente el estado de guardado asociado con el juego actual. Autocarga Flash RAM: alternar flash / guardar memoria RAM autocarga. Cargue automáticamente el flash ram asociado con el juego actual. Configuración de guardado automático: esto guardará la configuración cuando saliendo del menú si se realizan cambios. Pausa automática del juego: alterna si el juego debe pausarse al abrir el menú. Powersave 2nd Screen: Si los gráficos / luces deben apagarse para el Pantalla GUI cuando el menú no está activo. Emulador en la parte inferior: seleccione si se debe usar la pantalla superior o inferior para emulador, cuando el menú está activo, la pantalla del emulador siempre está en la parte superior. Salida de depuración: muestra un medidor de FPS por ahora. Sueño automático: no funciona. Créditos
    Muchísimas gracias a Loopy por el increíble PocketNES, sin él este emú probablemente nunca se hayan hecho. Dwedit en busca de ayuda e inspiración con muchas cosas. NGPDS ha sido creado por Fredrik Ahlström.
    
15. 

    ninfs (fuse-3ds)

    ninfs (antes fuse-3ds) es un programa FUSE para Windows y macOS que nos sirve para extraer datos de las videoconsolas de Nintendo. Funciona presentando un sistema de archivos virtual con el contenido de tus juegos, la NAND o el contenido de la tarjeta SD, y puedes navegar y copiar sólo los archivos que necesitas.
    
    ninfs tiene soporte para:
    Nintendo 3DS Imagen del cartucho CTR (".3ds", ".cci") Contenidos CDN ("cetk", "tmd", y contenidos) Archivo importable CTR (".cia") Sistema de archivos ejecutables (".exefs", "exefs.bin") Copia de seguridad NAND de Nintendo 3DS ("nand.bin") NCCH (".cxi", ".cfa", ".ncch", ".app") Sistema de archivos de sólo lectura (".romfs", "romfs.bin") Contenido de la tarjeta SD ("Nintendo 3DS" de la SD) Contenido de los títulos instalados en la SD (archivos "*.tmd" y "*.app") Homebrew 3DSX (".3dsx") Nintendo DS / DSi Copia de seguridad de la NAND de Nintendo DSi ("nand_dsi.bin") Imagen de la ROM de Nintendo DS (".nds", ".srl") Reproductor iQue Copia de seguridad NAND de iQue Player (sólo lectura) ("nand.bin") Nintendo Switch Copia de seguridad de la NAND de Nintendo Switch ("rawnand.bin") Ejemplos de uso
    Montar una copia de seguridad NAND y navegar por CTRNAND, TWLNAND, y otros, y escribir de nuevo en ellos sin tener que extraer y descifrarlos primero. Examinar el contenido de la tarjeta SD descifrada. Volcar los juegos instalados y los guardados, o copiar los contenidos entre las SD de dos sistemas. Extraer los archivos de un juego de una CIA, CCI (".3ds"), NCCH, RomFS, contenidos CDN en bruto, simplemente montándolos y navegando por sus archivos. O utilizar el archivo virtual descifrado y comenzar a jugar el juego en Citra de inmediato
16. 

    ninjhax

    ninjhax 2.9 alpha is a piece of software that allows you to run unsigned code on your 3DS. In practice, this means being able to run homebrew applications such as games, tools and emulators! Additionally, ninjhax 2.0 allows you to run many out-of-region gamecards, as well as use custom themes on your console. What's pretty awesome is that this runs on firmware version 11.6, the latest one. 
    
    Please note that this is a beta and therefore there are bugs that are still being ironed out. Mainly, this build of ninjhax 2.0 does not support sleep mode, so do not close your system while running homebrew or you will be forced to reboot it. Closing your system while running an out-of-region game is totally ok though.
    What do I need to use ninjhax ?
    You need exactly three things to run unsigned code on your console : 
    A 3DS, 3DS XL or 2DS console with a firmware version between 9.0.0-X and 11.6.0-X. X can be any number.  An SD card compatible with your 3DS (the one it comes with will of course do).  A copy of the game CUBIC NINJA, either from retail or eShop (retail is available in US, EU and JPN; eshop was JPN-only) . How do I run ninjhax ?
    Go to the get ninjhax section of this page and enter your console's firmware version.  Submit the form; you should get your very own ninjhax QR code.  Download the homebrew starter kit and extract it at the root of your SD card. Alternatively, you may choose to only download The Homebrew Launcher menu executable and place it at the root of your SD card. No matter what, after this step, you should have a file named boot.3dsx placed at the root of your SD card.  Make sure your 3DS's wifi connection is enabled and connected to the internet (this is important!).  Start CUBIC NINJA on your console, choose "Create", then "QR code", and finally "Scan QR code".  Scan the QR Code. This step might take a couple tries; make sure you fill up as much of your 3DS's screen with the QR code. If scanning the QR code returns to menu with an error, try a few more times.  Follow the on screen instructions. You may choose not to install the exploit to your gamecard's savedata, though doing so is not recommended.  OPTIONAL - once the ninjhax is installed to your gamecard, just go back to the "QR code" menu and it'll run automatically!  OPTIONAL - you can now run homebrew apps on your 3DS! Simply drag and drop application folders into the "3ds/" directory that was created on your SD card by ninjhax. 
17. 

    Nintendo DS Firmware Dumper

    Aplicación para Nintendo DS que nos permite obtener un dump del firmware de la consola.
    by Dark Fader.
    
18. 

    nitpic3d

    nitpic3d, a secondary 3DS userland exploit for Picross 3D: Round 2 (Europe and USA) and カタチ新発見！ 立体ピクロス２ (Japan).
    Exploit explanation
    Summary:
    Out of bounds array access allowing to point to fabricated objects and vtable.
    Description:
    Game only checks save header. With the last interacted save slot index at +0xb270 in the save data unchecked we can achieve a predictable out of bounds access, as well inserting ROP data without detecting save corruption. Game references an object from an array of 3 elements and passes it to a function that will read object pointers and hit a vtable call. With a copy save data left in memory and a properly calculated index, we can point to a fake object position in the save, vtable jump to a stack pivot and start the ROP chain.
    Installing
    Place the nitpic3d_installer itself from releases or your built output in build/ and place it in the 3ds's SD card in /3ds/. After copying folder, place the desired otherapp.bin in the desired region folder inside /3ds/nitpic3d_installer/. otherapp.bin can be obtained here, except for European consoles running version 11.10 or above, for that go here instead. Select the desired system version exploit will be running on and download with Download otherapp. Run it from another another homebrew entrypoint, or another homebrewed console if planing to install to cart version. Instructions on provided README.md inside nitpic3d_installer, plus simple control on screen when installer is running. Running the exploit
    Just open the game, tap to enter the saves screen.
    If you get the message Welcome to the Picross 3D Café! (Europe and USA) or いらっしゃいませ。 立体ピクロス カフェへようこそ。 (Japan) with no save slots used, just tap again. If doesn't run, double check if you installed exploit properly.
    Credits and special thanks
    Kartik for finding that the game is crashable with random data, letting me investigate and helping me search initial pivot points. Also testing completed exploit save in EUR New3DS. (And enduring my excitement at given moments during exploitation.) yellows8 for the the very handy 3ds_ropkit Zoogie for helping with the 3ds_ropkit and finding stack pivot, as well helping me test out initial testing phase SAVEDATAs knight-ryu12 for testing completed exploit SAVE on JPN New3DS ihaveahax for testing on USA New3DS and Old3DS LunaDook for testing on JPN Old3DS and USA New3DS too Everyone I've may forgotten to mention that assisted and/or supported me If I forgot someone, or some detail, tell me by luigoalma.
    
19. 

    NitroEdit

    NitroEdit es un editor de ROMS de Nintendo DS y DSi para las propias consolas Nintendo DS y DSi, compatible con flashcarts o TwilightMenu, por ejemplo, permitiendo personalizar las ROMs con la simplicidad y la portabilidad de esta familia de consolas portátiles nintenderas.
    Formatos admitidos
    ROM NDS (i) Ver / editar información (título del juego, código del juego, código del fabricante) Ver / editar icono Explore su sistema de archivos NitroFs Archivos (NARC, CARC, etc.) Explore su sistema de archivos NitroFs NCGR, NCLR, NSCR Ver / editar la textura formada por NCGR + NCLR Ver la textura formada por un NCGR + NCLR + NSCR (aún no se admite guardar) SDAT Explore los archivos de ondas (SWAR) y sus muestras de ondas ¡Reproduce / edita esas muestras de ondas (SWAV), grabando con el micrófono de la consola! BMG Ver / editar sus cadenas
    TODO / Problemas conocidos
    Pasar de gráficos temporales a gráficos adecuados Mejore los tiempos de carga / ahorro, no se puede hacer mucho mejor debido a limitaciones técnicas que los editores de ROM existentes no tienen ... Detecta formatos de archivo con un sistema mejor que simplemente verificando la extensión (verificando encabezados, etc.) Implementar zoom para texturas grandes en el editor gráfico Permitir cambiar colores en la paleta de colores en el editor gráfico Implementar textura de ahorro como NCGR + NCLR + NSCR Admite otros formatos dentro de SDAT (STRM, SSEQ, etc.) Modelos y texturas de modelos (NSBMD, NSBTX), ¿tal vez admitan la edición de esas texturas al menos? Implementar el soporte utility.bin (contiene un sistema de archivos en su interior) Para texturas de paleta múltiple NCGR + NCLR, permita elegir la paleta para cargar Mejorar el código del menú (el parpadeo puede resultar molesto) Admite atributos ignorados en los datos de NSCR (verifique los enlaces acreditados a continuación) Soporte de la sección PMCP en NCLR ¿Agregar editores / visores hexadecimales / de texto? ¿Compatibilidad con la exportación e importación de archivos desde los sistemas de archivos NitroF? Admite más caracteres especiales (é, à, etc.) en el teclado. ¿Mejorar la (des) compresión de LZ77? Actualmente, utilizando una implementación portada de C #, podría haber implementaciones más óptimas por ahí ... Aplicación creada por XorTroll.
    
20. 

    NooDS

    A (hopefully!) speedy NDS emulator for Windows, macOS, Linux, Switch, PS Vita y Android.
    Overview
    The goal of NooDS is to be a fast and portable Nintendo DS emulator. It's not quite there speed-wise, but it does offer most other features that you might expect from a DS emulator. It even supports GBA backwards compatability! I'm doing this for fun and as a learning experience, and also because I'm a huge fan of the DS. It may not be a worthy competitor for the other DS emulators just yet, but I believe that I can get it there someday. If not, that's fine too; like I said, I'm just having fun!
    Usage
    NooDS doesn't provide high-level emulation of the BIOS yet, so you'll need to provide BIOS and firmware files dumped from your physical DS. The file paths can be configured in the settings. It also currently lacks automatic save type detection for DS games. If you load a new game and saving doesn't work, you'll have to manually change the save type. This information can be difficult to find, so it's easier if you have working save files already present.
    by Hydr8gon.
    
21. 

    NT-DSi

    Based on the DOS program NT-DOS MANAGER for MS-DOS apricot is an extra.
    
    by Glitchk0ud1001.
    
22. 

    NTRBoot

    The drag-and-drop method of setting up ntrboot for PC-less b9s installation.
    I designed this pack in order to easily carry only a few things and still be ready to exploit any console as quickly as possible
    This pack includes everything you need to get someone started with CFW and homebrew, all within 30mb, meaning it should easily fit on any modern SD card.
    To get started, you'll need to use the version of boot9strap_ntr that loads ntrboot.firm instead of the standard boot.firm. This version is included in the pack as well within the ntrboot folder.
    Tools:
    If you keep these four items on you, you will be able to hack any 3ds without using a PC:
    Flashcard with microSD: You'll obviously need a compatible flashcard in order to use ntrboot. The microSD within the flashcard will act as the source SD Magnet: Self explanatory. The magnet you will use to activate ntrboot. microSD to SD adapter: Allows you to use your flashcard microSD in systems that require a standard SD Screwdriver bit: A small screwdriver bit used to unscrew systems that have the SD covered by the back plate Setup:
    If you don't already have the specialty version of boot9strap_ntr (within the ntrboot folder) flashed to your flashcard, use the provided boot9strap_ntr.firm with ntrboot_flasher Copy the contents within the SD folder to the root of your flashcard microSD. Remember, the CONTENTS of the SD folder, not the folder itself. Usage:
    Turn off the target systems Remove the target system's SD card and replace with source SD (the SD card from your flashcard) Insert flashcard into target system, place the magnet and boot ntrboot (X+Start+Select+Power). The target system should boot into safeb9sinstaller follow any prompts to complete the install process (should take less than a minute) Once the SigHaxed FIRM installs, press A to continue. The console should reboot into godmode9 Once godmode9 boots, press home, go to "More...", then "Scripts...". Select copy_ntrboot, and accept any prompts that pop up. Once the script completes, press R+B, then remove the source SD and replace with target SD Select "[9:] RAMDRIVE" to open it. Scroll to "paste_ntrboot.gm9", select it, then select "Execute GM9 script". Accept any prompts the show up Once the script completes, press the start to reboot the system. The console should boot into Luma3DS configuation. Check these options then press start: -"Show NAND or user string in System Settings" -"Patch ARM9 access" - required for 3dsx versions of homebrew like FBI Once you system boots to home menu, open download play. Push L+Down+Select to open Rosalina. Go to "Miscellaneous options...", then select "Switch the hb. title to current app." Once that completes, push b and select "Save settings", then press b twice to exit rosalina menu. Press home, close download play, then re-open it. You should now be met with a blue screen with "DSP1 - zoogie" at the time. Let it run until it completes. Instead of pushing Start or B when prompted, press home, close the app then power off the 3ds. Hold start and power on the 3ds to boot into godmode9 Once godmode9 boots, press home, select "More...", then select "Scripts..." Select finalize and follow any prompts or instructions it gives, accepting them all When asked to relock, accept If you wish to make a nand backup (some users may not have enough space to do so), go back to the "Scripts..." once more and run "Backup SysNAND" Press start to reboot the 3ds. The process can very easliy be memorized and completed in under 5 minutes.
    All homebrew will run as a 3dsx from HBL (which is set to download play). No CIA installations to worry about! Future CIA installs still possible with FBI.3dsx
    Included homebrew:
    freeShop BootNTRSelector FBI JKSM Luma Updater FTPD Themely I also decided to remove a lot of the homebrew from the homebrew starter kit as most of it is pretty much deprecated and are replaced by luma functionality.
    Also includes a few custom themes by default
    Credits:
    @Ryccardo for the version of boot9strap_ntr that loads ntrboot.firm instead of boot.firm @squall14716 for giving me the original idea Creators of all homebrew used. They've made some seriously great stuff! And of course anyone that helped bring us ntrboot. Without that this would not even be possible! by TheCyberQuake.
    
23. 

    ntrboot_flasher

    A tool to flash that bootrom-hax goodness to your flashcart.
    Supported cads
    Acekard 2i HW-44 Acekard 2i HW-81 DSTT (some flash chips only!) Infinity 3 R4i (r4infinity.com) R4 3D Revolution (r4idsn.com) R4i 3DS RTS (r4i-sdhc.com) R4i Gold 3DS (RTS, revisions A5/A6/A7) (r4ids.cn) R4i Gold 3DS Deluxe Edition (r4ids.cn) (variants of this such as 3dslink, Orange 3DS, etc. may work as well, but have not been tested!) R4i Ultra (r4ultra.com) R4i-B9S (r4i-sdhc.com) R4i-SDHC Dual-Core (r4isdhc.com) R4i-SDHC Gold Pro (r4isdhc.com) R4i-SDHC RTS Lite (r4isdhc.com) R4 SDHC Dual Core (revisions 5.06/7.00/7.07) (r4isdhc.hk) (R4iGold.cc may work as well, but have not been tested!) Note: Flashcarts from r4isdhc.com tend to have yearly re-releases; all versions of these carts (2014-2017) should work but not all have been tested. Note that in some rare circumstances, it may be possible for the flashing process to brick a counterfeit flashcart and render it permanently unusable. This is unlikely, but nevertheless only the genuine (i.e. from the original manufacturer) versions of the listed flashcarts are officially supported. There is not a good way to test for counterfeit carts, unfortunately, as they usually report the same chip ID and revision as legitimate carts.
    Note that you are more likely to receive a counterfeit R4 than a counterfeit AK2i. Though there is a chance that many counterfeit versions of the listed flashcarts will work fine, there is too much variance to guarantee that any counterfeit is supported. As such, use this tool at your own risk.
    Credits
    @Normmatt for initial implementation, bug squashing, expertise... etc. @SciresM for sighax/boot9strap and flashcart RE. @hedgeberg for testing and flashcart RE. @handsomematt for UI, testing and flashcart RE. @stuckpixel for testing. @Myria for testing. @Hikari for testing. Huge props to @d3m3vilurr for figuring this out independently!
    by ntrteam.
    
24. 

    Old Browserhax XL

    Old-browserhax-XL is another primary userland exploit for the old3ds browser, Spider. It's the successor to old-browserhax, which was murdered by firmware 11.14. RIP.
    What's needed
    An old3ds (or old2ds) on firmware:
    11.14.0-46 on regions US,EU,JP,KR,CH,TW
    Directions (hbmenu)
    In the release folder (same as old-browserhax), find your region (USA, EUROPE, JAPAN) and take all files inside that folder and put them on the root of your sd card. Do not copy the entire region folder over, just its contents. Place the homebrew launcher boot.3dsx from here also on the root of your sd card. With wifi on and working, scan this QR after pressing L+R should buttons together and tapping the QR button on the bottom screen. The link to the sploit page is https://zoogie.github.io/web/nbhax if you want to type it in manually and/or bookmark it. Click on the "PROCEED TO HAXX" button, then press A twice to confirm two pop-ups. The exploit should then load the homebrew menu. Make sure to add homebrews to the sdmc:/3ds folder first in order to have something to run. See other guides online about what you can do with homebrew. Note that CH & TW regions cannot run hbmenu homebrew. Only cfw options like AGBhax are possible with these regions. This is a limitation of the *hax homebrew environment, not this exploit. Exploit details
    A certain line of javascript moves an object from an iframe to its parent while the iframe is still being parsed. This results in a Use-After-Free crash. It's based on the webkit test case here.
    Troubleshooting (hbmenu)
    Problem: The 3ds freezes on a yellow screen. Solution: Try again. Boot rate is about 75-80%. This has always been an issue with hax homebrew and not specific to this implementation. If this keeps occurring over and over, it's likely being caused by running browserhax while cfw (luma3ds + boot9strap) is already installed -- don't do this! Follow https://3ds.hacks.guide for proper instructions on how to launch .3dsx homebrew under cfw. Hard freezing with regular screens (ie no solid colored screen) can also indicate running under cfw. Problem: The 3ds freezes on some other color screen or "An error has occured" prompt shows up. Solution: Make sure you have all the correct files. Check your region is correct.  At minimum, make sure to have the below 3 files in the sd root as shown. sdmc:/arm11code.bin sdmc:/browserhax_hblauncher_ropbin_payload.bin sdmc:/boot.3dsx Problem: I still can't get the exploit to work and the two solutions above didn't help. Solution: Go to your browser's settings and select Clear History and Delete Cookies. Now create a bookmark with https://zoogie.github.io/web/nbhax as the address (or just edit an existing bookmark). Exit the browser, then launch it again (this saves your changes), and then finally launch that nbhax bookmark you just made. It may also be helpful to power cycle the 3ds in between attempts if the exploit is still being stubborn. FAQ
    Q: Will this exploit be fixed in a firmware update? A: Last time I suggested about 50% odds new-browserhax being fixed which turned out to be 100% odds. So I guess that means we average those two and get a 75% chance of it being fixed this time 😛 I really don't know. Q: Will this work with unSAFE_MODE and AGBhax? A: Works for me! The directions for these exploit chains are out of scope for this readme though. by zoogie.
    
25. 

    old-browserhax

    This is a new homebrew menu loading userland exploit for the old3ds browser, Spider.
    What's needed
    An old3ds (or old2ds) on firmwares:
    11.9.0-42 -> 11.13.0-45 for USA or JAPAN 11.10.0-43 -> 11.13.0-45 for EUROPE Note: The last number on the firmware version matters. If you updated from a cartridge to your current firmware, you will need to update to latest firmware as your browser would have been erased by the cart update.
    Directions
    In the release folder, find your region (USA, EUROPE, JAPAN) and take the two files inside that folder and put them on the root of your sd card. Do not copy the entire folder over. Place the homebrew launcher boot.3dsx from here also on the root of your sd card. With wifi on and working, scan this QR after pressing L+R should buttons together and tapping the QR button on the bottom screen. The link to the sploit page is https://zoogie.github.io/web/nbhax if you want to type it in manually and/or bookmark it. Click on the "PROCEED TO HAXX" button and the exploit should then load the homebrew menu. Make sure to add homebrews to the sdmc:/3ds folder first in order to have something to run. See other guides online about what you can do with homebrew. Exploit details
    This is a Use-After-Free based on the layout crash test here.
    Troubleshooting
    Problem: The 3ds freezes on a yellow screen. Solution: Try again. Boot rate is about 75-80%. This has always been an issue with *hax homebrew and not specific to this implementation. Problem: The 3ds freezes on some other color screen or "An error has occured" prompt shows up. Solution: Make sure you have all the correct files. Check your region is correct. At minimum, make sure to have the below 3 files in the sd root as shown. sdmc:/arm11code.bin sdmc:/browserhax_hblauncher_ropbin_payload.bin sdmc:/boot.3dsx Problem: I still can't get the exploit to work and the two solutions above didn't help. Solution: Go to your browser's settings and select Clear History and Delete Cookies. Now create a bookmark with https://zoogie.github.io/web/nbhax as the address (or just edit an existing bookmark). Exit the browser, then launch it again (this saves your changes), and then finally launch that nbhax bookmark you just made. FAQ
    Q: Will you support new3ds, new2ds?
    A: Always have: new-browserhax
    Q: Will you support the other 3 minor regions (Korea, China, Taiwan)?
    A: I'll think about it. It should be possible but it would be a lot of work, and I don't have consoles in these regions on hand for testing.
    Q: Can I install unSAFE_MODE with this to get cfw?
    A: Absolutely, be my guest : ) You can boot slotTool.3dsx and install the hacked wifi slots, then run the unSAFE_MODE exploit. No explicit directions will be given for that here, but guides should pop up soon with directions.
    Q: Where did this browser exploit come from originally?
    A: There's no CVE of this exploit that I know of. It is based on that webkit layout test I mentioned above. The adding and removing of objects, then crashing made it seem like a use-after-free was the obvious culprit. I tested my theory with heap spraying dynamically sized fuzz objects, and I got a crash with PC control pretty quickly : )
    Q: The 3ds_browserhax_common code you used works in php server code, why does your hax just use a github io page?
    A: I used a local webserver to emit the unescape output of y8's hb loading code, then converted it to a u32int array for my implementation. I used this script for the conversion. I just really wanted to avoid having to set up a server or asking someone else for that favor.
    Q: Will this exploit be fixed in a firmware update?
    A: Don't know, but it's definitely possible. N has never fixed one of my exploits but they've always been proactive about fixing browser exploits. I give it 50/50 odds.
    Thanks
    MrNbaYoh for his nice blogs. Yellows8 for the hbmenu loader code. by zoogie.