More actions
No edit summary |
No edit summary |
||
Line 19: | Line 19: | ||
|image_alt=Kartminer7 | |image_alt=Kartminer7 | ||
}} | }} | ||
This is a BETA stage exploit for Mario Kart 7. This is the 3rd public exploit of this extremely popular game, this time targeting the extdata savegame on the sd card. It works with both the digital and cartridge version of the game on app version 1.2. | |||
== | ==User guide== | ||
'''Prerequisite:''' | |||
* An eShop, pack-in, or cartridge version of Mario Kart 7 ( | *Unhacked USA, EUR, or JPN new3ds or old3ds. | ||
* | *An eShop, pack-in, or cartridge version of Mario Kart 7 (pack-in means it came with your system out of the box). | ||
*Mario Kart 7 needs to be updated to game version 1.2. If you've played online recently, this should already be the case. | |||
* | *Windows PC with SD reader. | ||
'''Preparation:''' | |||
# Update your 3DS console to system version 11.17. | # Update your 3DS console to system version 11.17. | ||
# Follow the seedminer exploit guide at https://3ds.hacks.guide/seedminer.html until you obtain the movable.sed file. Place the movable.sed file inside the resources folder of Kartminer7. | # Follow the seedminer exploit guide at https://3ds.hacks.guide/seedminer.html until you obtain the movable.sed file. | ||
# Place the movable.sed file inside the resources folder of Kartminer7. | |||
# Boot up your 3DS console and start Mario Kart 7. Tap "Mario Kart Channel" at the bottom and then tap "Streetpass List" to initialize sd extdata, spotpass, streetpass, etc. Skip this step if you have already done it. | # Boot up your 3DS console and start Mario Kart 7. Tap "Mario Kart Channel" at the bottom and then tap "Streetpass List" to initialize sd extdata, spotpass, streetpass, etc. Skip this step if you have already done it. | ||
# Turn off Wi-Fi on your 3DS console to prevent spotpass from downloading and erasing the exploit payload. | # Turn off Wi-Fi on your 3DS console to prevent spotpass from downloading and erasing the exploit payload. | ||
# In the Release folder of Kartminer7, double click on the .bat file that matches your 3DS console's region | '''(Recommended) Back up your extdata save:''' | ||
# Follow the on-screen instructions to launch the exploit. Turn on your 3DS console, boot Mario Kart 7, and go to Mario Kart Channel | # Place your 3DS sd card into your PC. | ||
# Go inside the "backup" folder and double click the backup_???.bat script where ??? is your 3DS's region. | |||
# A folder like 306, 307, or 308 should appear in the backup folder if the backup worked. | |||
After the exploit is finished and you've installed cfw, you may run the restore_???.bat to restore your old unhacked save. | |||
'''Instructions:''' | |||
# In the Release folder of Kartminer7, double click on the .bat file that matches your 3DS console's region. | |||
# Follow the on-screen instructions to launch the exploit. Turn on your 3DS console, boot Mario Kart 7, and go to Mario Kart Channel > Streetpass List. Press the A button repeatedly (but slowly) to get past all the menu screens until the exploit launches. The bottom screen colors will change from red to blue to white. | |||
# If the exploit crashes without the colors changing, go to System Settings and change your language. Repeat this step if the colors still don't change after running the exploit. Note that JPN consoles only have one language, so language switching doesn't apply. | # If the exploit crashes without the colors changing, go to System Settings and change your language. Repeat this step if the colors still don't change after running the exploit. Note that JPN consoles only have one language, so language switching doesn't apply. | ||
If successful, you should arrive at a black and white screen titled "3DS ROP xPloit Injector". You now have a choice of further exploits to install: unsafe_mode or menuhax67. | |||
===FAQ=== | |||
'''Q. Omg, online cheaters will thrive! How could you?''' | |||
The user has to knowingly install the exploit to their sdmc extdata using seedminer and a PC tool, it's not RCE in any way. | |||
'''Q. This could mess up my save!''' | |||
While I offer backup procedures in the instructions, I can make no guarantees this exploit can't mess up the overall savegame state somehow. I have no idea how the extdata save (or spotpass/streetpass) interacts with the normal savegame, for instance. This is why I need testers, and why I am calling this a BETA! Let's find out! | |||
'''Q. Why can't I just run kartdlphax?''' | |||
''' | |||
Well you certainly can, it's a great exploit. In fact, I'd recommend kartdlphax over Kartminer7, but you do need a 2nd hacked 3ds for it. If you don't have a 2nd hacked 3ds, I think kartminer7 could work well for you (after the beta phase, of course). | |||
''' | |||
'''Q | '''Q. Hi, I'm a famous youtube content creator and I'm not sure whether to credit Zoogie when I make video tutorials, does he like to stay hidden?''' | ||
I would like to be credited please, thanks. I'm not that secretive! | |||
''' | ==Media== | ||
'''Kartminer7 - a new Mario Kart 7 Exploit on 11.17.0-50 [Beta Preview] ([https://www.youtube.com/watch?v=Dwxu28yEHg4 NintendoBrew])'''<br> | |||
<youtube>Dwxu28yEHg4</youtube> | |||
==Changelog== | ==Changelog== | ||
'''v4.0-beta''' | '''v4.0-beta''' | ||
*Repeat redirect address strategy | *Repeat redirect address strategy. | ||
'''v3.0-beta''' | '''v3.0-beta''' | ||
* Wrong arg on Extmountsavedata fixed (US) | * Wrong arg on Extmountsavedata fixed (US). | ||
* Hotfix 7/24/23: add Linux/Mac. Thanks @danny8376 | * Hotfix 7/24/23: add Linux/Mac. Thanks @danny8376. | ||
'''v2.0-beta''' | '''v2.0-beta''' | ||
Line 74: | Line 86: | ||
'''v1.0-beta''' | '''v1.0-beta''' | ||
* First Release. | * First Release. | ||
==Credits== | |||
Thanks: | |||
*wwylele for [https://github.com/wwylele/save3ds save3ds] Installing the exploit to extdata from just seedminer and a PC would be impossible without this tool. | |||
*PabloMK7 for [https://github.com/PabloMK7/3dsropxploitinjector 3dsropxploitinjector] which makes tricky exploits like this much less of a hassle. Do you know he is also the author of a different mk7 exploit [https://github.com/PabloMK7/kartdlphax kartdlphax], and ALSO the famous mk7 plugin [https://ctgp-7.github.io/ CTGP-7]. | |||
*Yellows8 for this enduringly useful tool: [https://github.com/yellows8/3ds_ropkit 3ds_ropkit]. | |||
*All my testers in the issue threads. | |||
== External links == | == External links == | ||
* | * GitHub - https://github.com/zoogie/Kartminer7 | ||
* GBAtemp - https://gbatemp.net/threads/beta-release-kartminer7-another-mario-kart-7-v1-2-exploit-for-11-17-0-from-zoogie.635813/ |
Revision as of 10:19, 30 July 2023
Kartminer7 | |
---|---|
General | |
Author | zoogie |
Type | Exploits |
Version | 4.0-beta |
License | MIT License |
Last Updated | 2023/07/27 |
Links | |
Download | |
Website | |
Source | |
This is a BETA stage exploit for Mario Kart 7. This is the 3rd public exploit of this extremely popular game, this time targeting the extdata savegame on the sd card. It works with both the digital and cartridge version of the game on app version 1.2.
User guide
Prerequisite:
- Unhacked USA, EUR, or JPN new3ds or old3ds.
- An eShop, pack-in, or cartridge version of Mario Kart 7 (pack-in means it came with your system out of the box).
- Mario Kart 7 needs to be updated to game version 1.2. If you've played online recently, this should already be the case.
- Windows PC with SD reader.
Preparation:
- Update your 3DS console to system version 11.17.
- Follow the seedminer exploit guide at https://3ds.hacks.guide/seedminer.html until you obtain the movable.sed file.
- Place the movable.sed file inside the resources folder of Kartminer7.
- Boot up your 3DS console and start Mario Kart 7. Tap "Mario Kart Channel" at the bottom and then tap "Streetpass List" to initialize sd extdata, spotpass, streetpass, etc. Skip this step if you have already done it.
- Turn off Wi-Fi on your 3DS console to prevent spotpass from downloading and erasing the exploit payload.
(Recommended) Back up your extdata save:
- Place your 3DS sd card into your PC.
- Go inside the "backup" folder and double click the backup_???.bat script where ??? is your 3DS's region.
- A folder like 306, 307, or 308 should appear in the backup folder if the backup worked.
After the exploit is finished and you've installed cfw, you may run the restore_???.bat to restore your old unhacked save.
Instructions:
- In the Release folder of Kartminer7, double click on the .bat file that matches your 3DS console's region.
- Follow the on-screen instructions to launch the exploit. Turn on your 3DS console, boot Mario Kart 7, and go to Mario Kart Channel > Streetpass List. Press the A button repeatedly (but slowly) to get past all the menu screens until the exploit launches. The bottom screen colors will change from red to blue to white.
- If the exploit crashes without the colors changing, go to System Settings and change your language. Repeat this step if the colors still don't change after running the exploit. Note that JPN consoles only have one language, so language switching doesn't apply.
If successful, you should arrive at a black and white screen titled "3DS ROP xPloit Injector". You now have a choice of further exploits to install: unsafe_mode or menuhax67.
FAQ
Q. Omg, online cheaters will thrive! How could you?
The user has to knowingly install the exploit to their sdmc extdata using seedminer and a PC tool, it's not RCE in any way.
Q. This could mess up my save!
While I offer backup procedures in the instructions, I can make no guarantees this exploit can't mess up the overall savegame state somehow. I have no idea how the extdata save (or spotpass/streetpass) interacts with the normal savegame, for instance. This is why I need testers, and why I am calling this a BETA! Let's find out!
Q. Why can't I just run kartdlphax?
Well you certainly can, it's a great exploit. In fact, I'd recommend kartdlphax over Kartminer7, but you do need a 2nd hacked 3ds for it. If you don't have a 2nd hacked 3ds, I think kartminer7 could work well for you (after the beta phase, of course).
Q. Hi, I'm a famous youtube content creator and I'm not sure whether to credit Zoogie when I make video tutorials, does he like to stay hidden?
I would like to be credited please, thanks. I'm not that secretive!
Media
Kartminer7 - a new Mario Kart 7 Exploit on 11.17.0-50 [Beta Preview] (NintendoBrew)
Changelog
v4.0-beta
- Repeat redirect address strategy.
v3.0-beta
- Wrong arg on Extmountsavedata fixed (US).
- Hotfix 7/24/23: add Linux/Mac. Thanks @danny8376.
v2.0-beta
- To deal with mk7's shifty heap, we cast a web of shellcode snippets every 0x20B to compensate.
- No need to pick different scripts for old/new 3DS, it's just 3 for USA, EUR, JPN now.
- Color coded hax progression to inform users how well exploit is working.
- Many other stability things.
v1.0-beta
- First Release.
Credits
Thanks:
- wwylele for save3ds Installing the exploit to extdata from just seedminer and a PC would be impossible without this tool.
- PabloMK7 for 3dsropxploitinjector which makes tricky exploits like this much less of a hassle. Do you know he is also the author of a different mk7 exploit kartdlphax, and ALSO the famous mk7 plugin CTGP-7.
- Yellows8 for this enduringly useful tool: 3ds_ropkit.
- All my testers in the issue threads.