Hacking Wii U Hacking & Homebrew Discussion

T

TheLoneWolfe

Well-Known Member
Newcomer
Level 2
Joined
May 2, 2014
Messages
67
Trophies
0
Age
25
XP
141
Country
Canada
Hey guys, so after discovering that the browser exploit was ported to my system menu version of 5.1, I took interest in playing around with it a bit, but I'm kinda stuck. I installed DevkitPPC and Python, cloned the wiiu-userspace repo, and ran build.sh on hello.c, but I'm supposed to get an rpx, right? I'm not getting an error, just a warning about being unable to find symbol _start, defaulting to some number and then a 0 on its own line. hello.o is appearing in the build folder, but no rpx is appearing. I'm on a Mac, by the way.
 
Relys

Relys

^(Software | Hardware) Exploit? Development.$
Member
Level 7
Joined
Jan 5, 2007
Messages
878
Trophies
1
XP
1,239
Country
United States
TheLoneWolfe said:
Hey guys, so after discovering that the browser exploit was ported to my system menu version of 5.1, I took interest in playing around with it a bit, but I'm kinda stuck. I installed DevkitPPC and Python, cloned the wiiu-userspace repo, and ran build.sh on hello.c, but I'm supposed to get an rpx, right? I'm not getting an error, just a warning about being unable to find symbol _start, defaulting to some number and then a 0 on its own line. hello.o is appearing in the build folder, but no rpx is appearing. I'm on a Mac, by the way.
Click to expand...


No, you built it correctly. It will generate test<VER>.html in the root directory of the repo. Copy it along with frame.html into directory on your webserver.
 
L

loco365

Well-Known Member
Member
Level 12
Joined
Sep 1, 2010
Messages
5,457
Trophies
0
XP
2,927
I want to try hosting it locally on my computer, but I'm not having any luck. I've told MSE to not look in a particular folder used by my local hosting program, HFS, but I can't seem to get the binary into that folder before MSE strips it. Could perhaps someone make a pastebin of the working file in its hex representation so that I can open a new document and paste it in and save it? I'd like to see if I can host this without being online so that I can execute the binary without internet access so I can keep my system offline.

Edit: I'm on 5.X so that's important and yeah.
 
Relys

Relys

^(Software | Hardware) Exploit? Development.$
Member
Level 7
Joined
Jan 5, 2007
Messages
878
Trophies
1
XP
1,239
Country
United States
Team Fail said:
I want to try hosting it locally on my computer, but I'm not having any luck. I've told MSE to not look in a particular folder used by my local hosting program, HFS, but I can't seem to get the binary into that folder before MSE strips it. Could perhaps someone make a pastebin of the working file in its hex representation so that I can open a new document and paste it in and save it? I'd like to see if I can host this without being online so that I can execute the binary without internet access so I can keep my system offline.

Edit: I'm on 5.X so that's important and yeah.
Click to expand...


Go to MSE quarantine and restore. Or just turn off MSE for a bit.
 
the_randomizer

the_randomizer

The Temp's official fox whisperer
Member
Level 27
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,969
Country
United States
I'm so bloody lost in this who exploit thing. Like, as in what I can or can't do at this point in time or how to do it. I'd best sit back for the next while till I feel less confused as to what's really going on.

Edit: Never mind, eff this.
 
Relys

Relys

^(Software | Hardware) Exploit? Development.$
Member
Level 7
Joined
Jan 5, 2007
Messages
878
Trophies
1
XP
1,239
Country
United States
the_randomizer said:
I'm so bloody lost in this who exploit thing. Like, as in what I can or can't do at this point in time or how to do it. I'd best sit back for the next while till I feel less confused as to what's really going on.
Click to expand...


My god, it's called a readme for a reason.
 
  • Like
Reactions: Vappy
the_randomizer

the_randomizer

The Temp's official fox whisperer
Member
Level 27
Joined
Apr 29, 2011
Messages
31,284
Trophies
2
Age
38
Location
Dr. Wahwee's castle
XP
18,969
Country
United States
Relys said:
My god, it's called a readme for a reason.
Click to expand...

No shit, I was mostly curious as to what people were doing is all, and why, because, what does this achieve, that's what I was trying to ask. It runs the code, but then what? What's so wrong with inquiring as to what is going on? People are running the code, I understand that. You needn't be so condescending about an inquiry. :rolleyes:
 
  • Like
Reactions: TeamScriptKiddies
NWPlayer123

NWPlayer123

Well-Known Member
Member
Level 17
Joined
Feb 17, 2012
Messages
2,642
Trophies
0
Location
The Everfree Forest
XP
6,693
Country
United States
TheLoneWolfe said:
Hey guys, so after discovering that the browser exploit was ported to my system menu version of 5.1, I took interest in playing around with it a bit, but I'm kinda stuck. I installed DevkitPPC and Python, cloned the wiiu-userspace repo, and ran build.sh on hello.c, but I'm supposed to get an rpx, right? I'm not getting an error, just a warning about being unable to find symbol _start, defaulting to some number and then a 0 on its own line. hello.o is appearing in the build folder, but no rpx is appearing. I'm on a Mac, by the way.
Click to expand...

No, we can't even run rpx files at this point, and DevKitPPC is irrelevant to the Wii U in Cafe OS mode. You should look for "test500.html" and copy it and frame.html to wherever you're testing from.


the_randomizer said:
No shit, I was mostly curious as to what people were doing is all, and why, because, what does this achieve, that's what I was trying to ask. It runs the code, but then what? What's wrong with asking about what exactly is going on?
Click to expand...
It's exactly that, it runs the code :P that's all there is to it, it allows code execution.
 
  • Like
Reactions: the_randomizer
L

loco365

Well-Known Member
Member
Level 12
Joined
Sep 1, 2010
Messages
5,457
Trophies
0
XP
2,927
Relys said:
Go to MSE quarantine and restore. Or just turn off MSE for a bit.
Click to expand...

Yeah, Quarantine/Restore failed to work, so I just disabled it and downloaded the file. I got it into my safe folder, then re-enabled it, and I have the exploit working and locally hosted for HFS to use.
 
D

Deleted User

Guest
Relys said:
Your anti-virus is probably removing the shell code. Inspect the HTML with editor.

Also, couldn't we encrypt the payload and do the decryption process on the Wii U with javascript so people wouldn't keep getting false AV messages?
Click to expand...



Funny thing is, I don't have any AV software. .
 
M

Marionumber1

Well-Known Member
Member
Level 14
Joined
Nov 7, 2010
Messages
1,234
Trophies
3
XP
4,045
Country
United States
TheLoneWolfe said:
Hey guys, so after discovering that the browser exploit was ported to my system menu version of 5.1, I took interest in playing around with it a bit, but I'm kinda stuck. I installed DevkitPPC and Python, cloned the wiiu-userspace repo, and ran build.sh on hello.c, but I'm supposed to get an rpx, right? I'm not getting an error, just a warning about being unable to find symbol _start, defaulting to some number and then a 0 on its own line. hello.o is appearing in the build folder, but no rpx is appearing. I'm on a Mac, by the way.
Click to expand...


You're not supposed to get an RPX, you get an HTML file (in this case, test500.html) which you navigate to on your Wii U to run unsigned code. Make sure that test500.html and frame.html are both on your server.

EDIT: Didn't see page 26. :P
 
RHOPKINS13

RHOPKINS13

Geek
Member
Level 11
Joined
Jan 31, 2009
Messages
1,356
Trophies
2
XP
2,638
Country
United States
Works for me! Is there any way I can help poke around for a kernel exploit? I'm a programmer but am n00bish when it comes to these exploits...
 
T

TheLoneWolfe

Well-Known Member
Newcomer
Level 2
Joined
May 2, 2014
Messages
67
Trophies
0
Age
25
XP
141
Country
Canada
Marionumber1 said:
You're not supposed to get an RPX, you get an HTML file (in this case, test500.html) which you navigate to on your Wii U to run unsigned code. Make sure that test500.html and frame.html are both on your server.

EDIT: Didn't see page 26. :P
Click to expand...

Haha, yeah someone beat you to it. But thanks for your work!
 
TeamScriptKiddies

TeamScriptKiddies

Licensed Nintendo (indie) Game Developer
Member
Level 9
Joined
Apr 3, 2014
Messages
1,970
Trophies
0
Age
36
Location
Planet Earth :P
XP
1,703
Country
United States
So from what I understand, the exploit for 5.0.0 also runs on 5.1.0 as well. Can anyone confirm this? I'm updating thehomebrewcometh right now. I need to know if I just need one button for both firmwares (to launch the exploit) or two separate ones for each of those firmwares. Marionumber1 NWPlayer123 Chadderz?
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Very annoying that Nintendo never fixed this bug

Pretendo not working with updated games?!

Hacking Emulation Homebrew  Could you explain to me why there are no standalone emulators on Wiiu using aroma?

Hacking Homebrew Tutorial  How to get Nintendo TVii icon back without downgrading + extras

Homebrew Tutorial  SDUSB - The modern way to play Wii U games from SD - at full speed

Wii U (bricked) Mii Maker

Installing a dumped Disc Title as digital on Wii U?

A Tale of Two vWii Systems

General chit-chat
Help Users
  • No one is chatting at the moment.
    K3Nv2 @ K3Nv2: Goku likes to flip the bean to get others healthy