Hacking Wii U Hacking & Homebrew Discussion

the_randomizer

The Temp's official fox whisperer
Member
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,967
Country
United States
I honestly don't know what instruction set this was written in so I don't know exactly what the data represents, therefore, I'm afraid to post a screenshot. If its any sort of private key, I certainly don't want to plaster it all over the web. Although, its likely not, but still


Right, better safe than sorry. Still, the fact it can be made visible is good.
 

Alexander Prime

Member
Newcomer
Joined
Dec 12, 2013
Messages
22
Trophies
0
Age
36
XP
82
Country
United States
I converted it to decimal but still have no idea what it means (all depends on the instruction set). Its killing me.....


Scribbling out the binary and hex doesn't make much difference if you leave the characters clearly visible in the right column. :P

I'm having a hard time understanding what you're trying to do here. This file is only 32 bytes long, clearly not an executable of any kind, so I don't know what instruction set has to do with it. More likely it's just a checksum or a chunk of metadata. I haven't watched your video, so maybe I'm just out of the loop; where did you get this file from?
 

TeamScriptKiddies

Licensed Nintendo (indie) Game Developer
Member
Joined
Apr 3, 2014
Messages
1,970
Trophies
0
Age
36
Location
Planet Earth :P
XP
1,703
Country
United States
Scribbling out the binary and hex doesn't make much difference if you leave the characters clearly visible in the right column. :P

I'm having a hard time understanding what you're trying to do here. This file is only 32 bytes long, clearly not an executable of any kind, so I don't know what instruction set has to do with it. More likely it's just a checksum or a chunk of metadata. I haven't watched your video, so maybe I'm just out of the loop; where did you get this file from?


Snapshots (in game pictures) are saved as jpeg files, but there is a corresponding .bin file that goes along with each jpeg, that the game creates. This is being used to verify that the image hasn't been tampered with at all. What I want to ultimately do is be able to put in w/e we want for images so we can attempt to trigger code execution using a corrupted image file
 

Alexander Prime

Member
Newcomer
Joined
Dec 12, 2013
Messages
22
Trophies
0
Age
36
XP
82
Country
United States
Ah, I think I understand now. You want to be able to generate your own .bin files like this one to trick the game into loading compromised images, yes? I guess the assumption is that it's a hash of the image, and you're trying to sort out the algorithm.

Sounds interesting, actually. Maybe I'll take a crack at it too.
 
  • Like
Reactions: TeamScriptKiddies

TeamScriptKiddies

Licensed Nintendo (indie) Game Developer
Member
Joined
Apr 3, 2014
Messages
1,970
Trophies
0
Age
36
Location
Planet Earth :P
XP
1,703
Country
United States
Ah, I think I understand now. You want to be able to generate your own .bin files like this one to trick the game into loading compromised images, yes? I guess the assumption is that it's a hash of the image, and you're trying to sort out the algorithm.

Sounds interesting, actually. Maybe I'll take a crack at it too.


sweet, the more the merrier :). I did use winmd5free to compare a jpg to its corresponding bin file and the md5 hashes are certainly different, but perhaps that hex code in the bin file serves as some sort of internal nintendo only proprietary hash. If we can find it somewhere in the hex code for the image file itself, then we're golden, as long as they match up, it "should" work. That's assuming there's a matching code in the jpg file somewhere XD

UPDATE: line of code in bin file is no where to be found in the corresponding jpg file ><

UPDATE2: I'm beat, I'm heading to bed. If anyone else wants to take a stab at this you're more than welcome. I was going to upload an image with its corresponding bin file here, but bin files aren't allowed to be upload apparently lol. Just take a snapshot yourself and pull the corresponding files off it and open them in 010 editor. I'm done for now, been spending hours on this lol.

You can get the free trial of 010 editor here: http://www.sweetscape.com/010editor/

Both jpegs and the bin files can be opened in this, they can be properly displayed using the hex and binary options.
 

Alexander Prime

Member
Newcomer
Joined
Dec 12, 2013
Messages
22
Trophies
0
Age
36
XP
82
Country
United States
The image is probably created with third-party code, so it wouldn't contain any custom data. More likely the hash is generated from the file after the fact.

MD5 generates a 128-bit hash, while the accompanying binaries are 256 bytes each. That won't be it. Just tried sha256 as well, no dice. But those were the obvious choices.

I've got a friend who's a huge crypto nerd that I'm trying to get a hold of. In the meantime I'm going to try hitting it with a bunch of less common 256-bit hash functions to see if Nintendo was careless enough to hope obscurity would help.
 
  • Like
Reactions: TeamScriptKiddies

Bladexdsl

fanboys triggered 9k+
Member
Joined
Nov 17, 2008
Messages
21,042
Trophies
2
Location
Queensland
XP
12,061
Country
Australia
I honestly don't know what instruction set this was written in so I don't know exactly what the data represents, therefore, I'm afraid to post a screenshot. If its any sort of private key, I certainly don't want to plaster it all over the web. Although, its likely not, but still
yeah better not the last guy who posted a screenshot of something they weren't supposed to in here almost went to jail :creep:
 

WulfyStylez

SALT/Bemani Princess
Member
Joined
Nov 3, 2013
Messages
1,149
Trophies
0
XP
2,867
Country
United States
Crypto buddy and I are discussing the possibility that the hash is generated from only part of the image file, or maybe the decoded pixel data. Could also be salted, which is pretty much doom for anything but a grueling brute force crack. I'll be handing the files to him when he's off work.

Don't forget that since these files are on SD, they're almost definitely encrypted by some sorta SD common keys as well...
 

the_randomizer

The Temp's official fox whisperer
Member
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,967
Country
United States
Don't forget that since these files are on SD, they're almost definitely encrypted by some sorta SD common keys as well...


*Sigh* I don't know what to follow anymore, with so much uncertainty. When we think we reach something.... dammit....and I really thought they were on to something :( So much for an exploit...
 

TeamScriptKiddies

Licensed Nintendo (indie) Game Developer
Member
Joined
Apr 3, 2014
Messages
1,970
Trophies
0
Age
36
Location
Planet Earth :P
XP
1,703
Country
United States
*Sigh* I don't know what to follow anymore, with so much uncertainty. When we think we reach something.... dammit....and I really thought they were on to something :( So much for an exploit...


Not all is lost my friend. Its still being worked on :).
 

FPSRussi4

Well-Known Member
Member
Joined
Dec 1, 2013
Messages
671
Trophies
0
XP
609
Country
Laos
*Sigh* I don't know what to follow anymore, with so much uncertainty. When we think we reach something.... dammit....and I really thought they were on to something :( So much for an exploit...

They are! Just because we didn't get an exploit before smash doesn't mean this is all vaporware. The devs have learned their lesson with the browser bug(release before it was ready) and as a result it was patched early on. They now have a bug that allows KERNEL access, they're not going to talk about it actively. All you can do is be patient, and follow their instructions. If they say update is safe, update. If they say it isn't, wait until is is safe to. No offense, but you've made a ton of these posts and they're all mainly the same thing: there's no information, is it safe to update, or an internal debate whether you should update or not.
 

TeamScriptKiddies

Licensed Nintendo (indie) Game Developer
Member
Joined
Apr 3, 2014
Messages
1,970
Trophies
0
Age
36
Location
Planet Earth :P
XP
1,703
Country
United States
They are! Just because we didn't get an exploit before smash doesn't mean this is all vaporware. The devs have learned their lesson with the browser bug(release before it was ready) and as a result it was patched early on. They now have a bug that allows KERNEL access, they're not going to talk about it actively. All you can do is be patient, and follow their instructions. If they say update is safe, update. If they say it isn't, wait until is is safe to. No offense, but you've made a ton of these posts and they're all mainly the same thing: there's no information, is it safe to update, or an internal debate whether you should update or not.


For the cafeOS kernel access update info contact Marionumber1 or NWPlayer123 or possibly Chadderz (not sure if he's involved in the latest effort or not). If you care about the smash bros userland exploit me and others are working on, you can update to 5.3.0 if you'd like, but I wouldn't go any further than that
 

the_randomizer

The Temp's official fox whisperer
Member
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,967
Country
United States
Not all is lost my friend. Its still being worked on :).


Honestly, no idea why, actually, I'm just being weird as usual I suppose. :rolleyes:

They are! Just because we didn't get an exploit before smash doesn't mean this is all vaporware. The devs have learned their lesson with the browser bug(release before it was ready) and as a result it was patched early on. They now have a bug that allows KERNEL access, they're not going to talk about it actively. All you can do is be patient, and follow their instructions. If they say update is safe, update. If they say it isn't, wait until is is safe to. No offense, but you've made a ton of these posts and they're all mainly the same thing: there's no information, is it safe to update, or an internal debate whether you should update or not.


Don't mind me, just my daily bouts of pusillanimity I suppose. That's just it, I've heard Marionumber1 or at least, another developer say at one point that it isn't, but then say it is, therein lies the issue. Nothing more. I can't seem to locate that post where I saw that.
 
  • Like
Reactions: TeamScriptKiddies

dontay0100

Well-Known Member
Member
Joined
Mar 18, 2007
Messages
506
Trophies
0
XP
511
Country
United States
Ok can someone catch me up to speed, haven't really followed the Wii U scene since it appears to be non-existent but that's only what's seen from the outside I suppose. The main question is, is it safe to update or should I stay at 5.0.0. It's been disconnected from internet for the past 3 months or so, was waiting on any type of news since then but theres been nothing... Just mainly any progress? any new information, or should I just buy Smash now :)
 

the_randomizer

The Temp's official fox whisperer
Member
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,967
Country
United States
Ok can someone catch me up to speed, haven't really followed the Wii U scene since it appears to be non-existent but that's only what's seen from the outside I suppose. The main question is, is it safe to update or should I stay at 5.0.0. It's been disconnected from internet for the past 3 months or so, was waiting on any type of news since then but theres been nothing... Just mainly any progress? any new information, or should I just buy Smash now :)


There has been progress, there's a very good reason why there's little info about it (obvious reasons), as for updating, Smash has 5.2.0 on it and I've heard both it's safe and not safe.
 
  • Like
Reactions: TeamScriptKiddies

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
    SylverReZ @ SylverReZ: So true