Lockpick RCM v1.8.3 Released

Lockpick RCM v1.8.3

shchmue has released a new version of Lockpick RCM, which is a bare metal Nintendo Switch payload that derives encryption keys for use in Switch file handling software like hactool, hactoolnet/LibHac, ChoiDujour, etc. without booting Horizon OS. This is the app that produces the prod.keys file that you can rename to keys.txt for use with various hacking tools.
Instructions

-Launch Lockpick_RCM.bin using your favorite payload injector
-Upon completion, keys will be saved to `/switch/prod.keys` on SD
-If the console has Firmware 7.x, the `/sept/` folder from [Atmosphère] or [Kosmos] release zip containing both `sept-primary.bin` and `sept-secondary.enc` must be present on SD or else only keyblob master key derivation is possible (ie. up to `master_key_05` only)

Credits

Massive Thanks to CTCaer! - This software is heavily based on Hekate. Beyond that, CTCaer was exceptionally helpful in the development of this project, lending loads of advice, expertise, and humor.

Changelog v1.8.3
Improved the general aes-xts crypto function to match the diskio algorithm (only 2 total aes-ecb calls instead of one per block) and perform the xor operations in 32-bit chunks. Also updated for gcc 10 and merged latest Hekate commits.

Sysmmc runs get a slight speed improvement, emummc gets a large speed improvement, especially file-based.

Also now supports parsing sept from sept-secondary if FSS0 entry is present in hekate_ipl.ini
Download: Lockpick RCM v1.8.3

Post a Comment

0 Comments