Hacking Wii U Hacking & Homebrew Discussion

thorasgar · Dec 20, 2014

the_randomizer said:
But how does that solve the issue with the web exploit though? That's what I'm not understanding. The Wii U has to be on the most recent firmware to be able to use the browser app, does it not? My Google Fiber network box has no IP blacklisting in the firmware, I would have to get my own personal router and hook it up to that and then blacklist. I'm so bloody confused, and I would rather not have to rely on the WiFi and use the LAN adapter that I have for the Wii U instead, but, I'm just so lost. Isn't there a guide or will there be a guide to use? Will there ever be an exploit that doesn't require use of an internet connection? Dammit......ugh...

There are tons of old wrt54g routers on eBay for a couple of bucks. Flash tomato or ddwrt to it and you are good to go. Hell I bought a cheap Motorola router 10 years ago at CompUSA for $10 after rebate. Try Goodwill.

TheLoneWolfe · Dec 20, 2014

the_randomizer said:
This sucks....really sucks for me....damn Google Fiber and not having blacklisting.

My 6 Mbps connection would like a word with you.

Bug_Checker_ · Dec 20, 2014

NWPlayer123 said:
http://imgur.com/jrE8xwI
Does this help?

And now a take home version of the Holiday 2014 game that is sweeping the globe.

on windows: open a command prompt (do it as an administrator to make it look more professional.)
paste the following text and then hit enter/return on keyboard.

cls & echo C:\^>sha1sum test3 & echo 6a0b87fc98b306ae3366f0e0a88d0b06a2813313 test3 & echo off & C:\Windows\system32\cmd.exe >nul

or paste the following text and then hit enter/return on keyboard.

cls & echo C:\^>sha1sum test3 & echo 6a0b87fc98b306ae3366f0e0a88d0b06a2813313 test3 & echo C:\^>sha1sum test4 & echo 2b30b703c6676c8124c7347b30c7972ffeae2b39 test4 & echo off & C:\Windows\system32\cmd.exe >nul

And for the deluxe bonus/pro/ultra/ultimate version of the game paste the following text and hit enter/return

cls & echo C:\^>sha1sum test3 & echo 6a0b87fc98b306ae3366f0e0a88d0b06a2813313 test3 & echo C:\^>sha1sum test4 & echo 2b30b703c6676c8124c7347b30c7972ffeae2b39 test4 & echo C:\^>sha1sum test5 & echo d8b4970a7ed12e1002a0c4bf89bee171740d268b test5 & echo off & C:\Windows\system32\cmd.exe >nul

You can rename the *.txt files as *.bat files and the fun never ends.

please make payment in the form of non-traceable bitcoins and happy holidays.

btw super secret bonus extra test6(boot1 key) level now in beta,stay tuned. It costs A LOOT more (see what I did there) but it's worth it.

Source for pic:
http://imgur.com/jrE8xwI
http://imgur.com/download/jrE8xwI

VinsCool · Dec 20, 2014

Well, that is what could make me doubt the credibility of the screenshot posted pages back

Twili · Dec 20, 2014

That doesn't discredit the screenshot. Cynics will be cynics. Guess what happened the last time a big claim like this was made? CTR_Decryptor for the 3DS was released soon after.

VinsCool · Dec 20, 2014

Twili said:
That doesn't discredit the screenshot. Cynics will be cynics.

I didn't say that discredit screenshot, I just said that was easy to fake

TeamScriptKiddies · Dec 20, 2014

Twili said:
That doesn't discredit the screenshot. Cynics will be cynics.

not by a long shot XD. Its a hash, results are going to vary for each test. The key has already been obtained, just hasn't been released yet. In fact, I'm surprised this wasn't done a lot sooner as f0f pretty much laid out how to do it here: . While they didn't specifically mention the common key in this segment, its certainly possible to obtain THAT key as well using similar tactics. It just requires some custom python code running through an RPC client (just like f0f obtained the other keys) on your pc. One would just need to write their own code to obtain the common key.

Nintendo botched up the Wii U's security badly and team f0f clearly showed us that, shortly after the Wii U's launch. They just didn't give us every little detail. People have been struggling to put the pieces together and now finally things are starting come together for a full blown Wii U hack

.

the_randomizer · Dec 20, 2014

TheLoneWolfe said:
My 6 Mbps connection would like a word with you.

Because it's either them or some shitty ISP called Veracity. Google Fiber provides free 5 mbps internet. But...why the angry face....? Yes, why not hate someone for having Google Fiber, that's a class act.

Also, with people questioning the validity of the hash, keep it classy, Temp.

Ray Lewis · Dec 20, 2014

At first I thought those were real keys, lol. I am very ignorant with code and commands.

TeamScriptKiddies · Dec 20, 2014

Ray Lewis said:
At first I thought those were real keys, lol. I am very ignorant with code and commands.

haha no just hashes even in f0f's video. Keys are obtained however, its only a matter of time.

TheLoneWolfe · Dec 20, 2014

the_randomizer said:
Because it's either them or some shitty ISP called Veracity. Google Fiber provides free 5 mbps internet. But...why the angry face....? Yes, why not hate someone for having Google Fiber, that's a class act.

The face doesn't look angry to me. Under the presumption you had much faster internet than I do, I was just poking fun at your post, complaining about a feature Google fibre doesn't have (that you could gain with a 3rd party router) when some of us have speeds less than a thousandth of GF. Obviously not your fault I don't live somewhere it's offered. Didn't know they had slower plans though.

the_randomizer · Dec 20, 2014

TheLoneWolfe said:
The face doesn't look angry to me. Under the presumption you had much faster internet than I do, I was just poking fun at your post, complaining about a feature Google fibre doesn't have (that you could gain with a 3rd party router) when some of us have speeds less than a thousandth of GF. Obviously not your fault I don't live somewhere it's offered. Didn't know they had slower plans though.

Oh...right, uh...sorry about that....yikes...didn't mean to uh well....yeah...

keine · Dec 20, 2014

What encryption methods are used for all those keys?

I wonder if you could use something like the ChipWhisperer to do low level hacks and get some leakage?
http://hackaday.io/project/956-chipwhisperer-security-research

Maybe you could target the starbuck itself....
Just interesting. Thats all.

IbbyPlays · Dec 20, 2014

I have 2 questions.
a. I have found some functions in the RPC client code that don't have a description on the bitbucket page (read_string, call, etc.). Does anyone know what these do?
b. To use the RPC client in IDLE to I just go to the python shell and import the RPC client as if it were a module
Much help appreciated.

Marionumber1 · Dec 20, 2014

TeamScriptKiddies said:
not by a long shot XD. Its a hash, results are going to vary for each test. The key has already been obtained, just hasn't been released yet. In fact, I'm surprised this wasn't done a lot sooner as f0f pretty much laid out how to do it here: . While they didn't specifically mention the common key in this segment, its certainly possible to obtain THAT key as well using similar tactics. It just requires some custom python code running through an RPC client (just like f0f obtained the other keys) on your pc. One would just need to write their own code to obtain the common key.

Nintendo botched up the Wii U's security badly and team f0f clearly showed us that, shortly after the Wii U's launch. They just didn't give us every little detail. People have been struggling to put the pieces together and now finally things are starting come together for a full blown Wii U hack .

Uh, no, that's completely wrong. The PPC ancast keys can be dumped in vWii mode with HRESET or SRESET, but all the other keys are unattainable without IOSU access.

Marionumber1 · Dec 20, 2014

IbbyPlays said:
I have 2 questions.
a. I have found some functions in the RPC client code that don't have a description on the bitbucket page (read_string, call, etc.). Does anyone know what these do?
b. To use the RPC client in IDLE to I just go to the python shell and import the RPC client as if it were a module
Much help appreciated.

a. Many of them are internal functions you don't need to worry about.
b. Start the RPC client in IDLE, then use its shell once the connection is made.

naxil · Dec 20, 2014

Marionumber1 hello! after a couple of month what u have discovered on wiiU? can u show some to us (noob,userbase..)? or tell to us some?

HEX1GON · Dec 20, 2014

NWPlayer123 said:
What homebrew gets made is up to you guys, we're just working on a kernel exploit to allow for more access to the system, once it's finished then you all are the ones who have to use that access to make stuff like media players, emulators, etc.
Once the kernel exploit is finished here sometime in the next few months, it shouldn't be that difficult to package it up into a homebrew launcher, we'd need some artistic people though since neither MN1 nor I are very artistically inclined. I'll let you guys know when the time comes. Once that's finished we can finally release it and homebrew creation can begin.

If you mean just visuals then I could knock something up. I can't code at all (wish I knew where to start) but I can help for visual things.

IbbyPlays · Dec 20, 2014

How do you start the RPC in idle & what's the diff between userspace and kernel mode

Marionumber1 · Dec 20, 2014

IbbyPlays said:
How do you start the RPC in idle

Open the file and press F5.

what's the diff between userspace and kernel mode

Almost every CPU has two modes of operation: supervisor/kernel mode, where the code has unrestricted access to the CPU and memory, and user mode, where the CPU's access is limited to what supervisor code allows it. The Cafe OS kernel runs in supervisor mode, whereas the Cafe OS userspace (games, apps, and libraries) is in user mode. When you call a Cafe OS kernel service, the CPU will switch itself into supervisor mode and jump to a specific piece of code in the Cafe OS kernel.

Hacking Wii U Hacking & Homebrew Discussion

Checkout my evil Soon-in-ator™

Well-Known Member

Well-Known Member

Attachments

Persona Secretiva Felineus

Banned!

Persona Secretiva Felineus

Licensed Nintendo (indie) Game Developer

The Temp's official fox whisperer

Banned!

Licensed Nintendo (indie) Game Developer

Well-Known Member

The Temp's official fox whisperer

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

YEEEEEERRRRRRSSSSS

Well-Known Member

Well-Known Member

Similar threads

Popular threads in this forum