edit: removed link if its not wanted
its hard in this time to do find out whats wanted or not ;-)
btw real nice introduction to ROP on your forum ;-) thanx
Last edited by FunThomas,
Hacking Firmware Reverse Engineering (Info Dump)
- Thread starter NWPlayer123
- Start date
- Views 54,700
- Replies 151
- Likes 82
edit: removed link if its not wanted
its hard in this time to do find out whats wanted or not ;-)
btw real nice introduction to ROP on your forum ;-) thanx
Damn, this got buried.
I actually have a question. So, does loadiine actually load modded games? (I don't know because I don't use it)
If it can load modded games then what would stop me from modding a pause menu of a game to be a terminal?
From there I could call to the sd where my capstone framework is and proceed to disassemble things.
Also, may be able to build a linux tree and install it to the sd card and run it from the terminal in my modded game.
The modded game would allow full access to all the hardware as well. I ask this because I am considering having a go at modding assassins creed black flag and taking some swings at the Uplay channel. This may also allow a way to not be so dependent on the pc running as a webserver.
Just a thought...
I actually have a question. So, does loadiine actually load modded games? (I don't know because I don't use it)
If it can load modded games then what would stop me from modding a pause menu of a game to be a terminal?
From there I could call to the sd where my capstone framework is and proceed to disassemble things.
Also, may be able to build a linux tree and install it to the sd card and run it from the terminal in my modded game.
The modded game would allow full access to all the hardware as well. I ask this because I am considering having a go at modding assassins creed black flag and taking some swings at the Uplay channel. This may also allow a way to not be so dependent on the pc running as a webserver.
Just a thought...
It should be. With the work from triunix I should be able to upright a terminal. Just need to replace a few files in the game so when it goes to pause it pulls from different library then previous pause menu. Just not sure if loadiine is capable of loading such things.
Is this confirmation loadiine cannot load unsigned files?
Because I am doing some reading and starting to see file modding is able to be done via loadiine. Much like a mod menu worked on wii I am thinking it will work for the U.
This actually appears to be real promising the more about loadiine I am reading.
Last edited by FaTaL_ErRoR,
A. Games have not full access to hardware and 90% of them neither have access to SD
B. If you runn a Game from Loadiine making the WiiU think that you are running MiiMaker, it obviously give you the same access as MiiMaker
C. WiiU doesn't have a terminal
D. The files would anyway need a lot of patches to work in WiiU mode
E. It would be a lot easier (and would have the same results) running something from MarioNumber1's OSLoader
So sorry but no, it's not possible
I had a dream about using skylanders and writing a sploit to nfc tag and had usb access...pity it was just a dream.
The game has enough access to hardware to do what I need and one could modify the game in question to access the sd the same way smash does. MiiMaker has enough access to onboard library. Wii u doesnt need a terminal as I am injecting one. And lets just say I have access to "wiiu mode" and not really worried about "patching". And if I am asking the limitations to loadiine so I can upright a terminal via a game why on earth would I want to run something from an OSLoader?
Not doing the lettering thing there.
In wii this is very possible. Works much like the twilight princess hack. And with the latest skylander game two characters and a car can be placed on the portal. Payload in the first tag, usb parameters in second tag, and hbc in third tag. Between all three tags there is enough space to execute such an attack.
Last edited by FaTaL_ErRoR,
I'm sorry if my previous reply appeared a bit rude, that wasn't my intention
Also I guess I didn't corrctly explain some points; with WiiU Mode I mean not-vWii-mode because trinux was made to run on WiiU's vWii mode. And OSLoader is a very useful program made by MarioNumber1 that is able to load another kernel, so in that case, the Linux kernel.
Anyway there are no reasons to patch a game with loadiine when you can easily load elf files from the homebrew launcher: "just" patch a lot of source of trinux, make osldr an elf and make it load from sd and you are done
no not rude at all. I was saying im too lazy to do it in that format. (Abc...ect)I'm sorry if my previous reply appeared a bit rude, that wasn't my intention
Also I guess I didn't corrctly explain some points; with WiiU Mode I mean not-vWii-mode because trinux was made to run on WiiU's vWii mode. And OSLoader is a very useful program made by MarioNumber1 that is able to load another kernel, so in that case, the Linux kernel.
Anyway there are no reasons to patch a game with loadiine when you can easily load elf files from the homebrew launcher: "just" patch a lot of source of trinux, make osldr an elf and make it load from sd and you are done
And I think you missed my point. My intention is to trigger this in game. And from there hope to jump through it and exploit the uplay channel. This is because the uplay channel gets triggered ingame. And uplay accesses ios. Also uplay has usb access as well. The terminal and capstone framework will help with working in console. That and smack nint in the face. And making a run at this will force another area they have to watch and patch. Which will in turn result in patches that arent so well thought out and riddled with new bugs. Im not interested in linux itself, just pushing the limits on modded games a bit in search of a new point of entry
Similar threads
- No one is chatting at the moment.
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
@
Jayro:
Eventhough the New 3DS XL is more powerful, I still feel like the DS Lite was a more polished system. It's a real shame that it never got an XL variant keeping the GBA slot. You'd have to go on AliExpress and buy an ML shell to give a DS phat the unofficial "DS Lite" treatment, and that's the best we'll ever get I'm afraid.+1 -
-
@
SylverReZ:
@Jayro, I don't see whats so special about the DS ML, its just a DS lite in a phat shell. At least the phat model had louder speakers, whereas the lite has a much better screen.+1 -
@
SylverReZ:
They probably said "Hey, why not we combine the two together and make a 'new' DS to sell".
-
-
-
@
Veho:
Nothing special about it other than it's more comfortable than the Lite+1
for people with beefy hands. -
-
-
-
