Hardmod Downgrade - Drapplys/Guide GitHub Wiki

If you are on 10.4.0, 10.5.0, or 10.6.0, you must follow this guide to downgrade your NATIVE_FIRM using a hardmod in order to directly dump and restore your NAND.

If you are below version 9.0.0 then you should follow this guide instead to update.

If you are between 9.0.0 and 10.3.0 you can just follow the instructions here.

An excellent guide to getting a hardmod can be found here.

This is a currently working implementation of the "FIRM partitions known-plaintext" exploit detailed here.

This will work on both a New and Old 3DS.

Keep in mind throughout this that 10.4.0, 10.5.0, and 10.6.0 use the same NATIVE-FIRM. Also keep in mind that 10.2.0 and 10.3.0 use the same NATIVE-FIRM.

If you are on 10.6.0 (not 10.4.0 or 10.5.0), you must have an alternate entry point such as ninjhax or OOThax since browserhax was patched

What you need

A hardmod
Your 10.4.0, 10.5.0, or 10.6.0 NAND extracted using your hardmod
Raugo's autofirm pack (Mirror)
msvcr120d.dll (Mirror)
The 10.2.0 and 10.4.0 decrypted NATIVE-FIRM CIAs for your device:

Instructions

Extract the autofirm pack to a folder of your choice
Place a copy of your NAND file (named nand.bin) in the autofirm folder
Download the appropriate decrypted 10.4.0/10.5.0/10.6.0 NATIVE-FIRM and the decrypted 10.2.0 NATIVE-FIRM as CIA files
Rename the 10.4 NATIVE_FIRM file to firmoriginal.cia then put it in the autofirm folder
Rename the 10.2 NATIVE_FIRM file to firmnuevo.cia then put it in the autofirm folder
Place the msvcr120d.dll file in the autofirm folder
Run "start.bat"
If everything worked, then you will have a modified nand.bin containing the 10.2.0 NATIVE_FIRM on version 10.4.0, 10.5.0, or 10.6.0
Flash this nand.bin

Your version number will not have changed in the settings, but the exploit has worked.

You can now follow the rest of this guide from here as if you were on version 10.2.0.