Hacking Wii U Hacking & Homebrew Discussion

[nonamejohn]

http://gbatemp.net/threads/wii-u-homebrew-situation-and-faq.367627/
READ THE STICKIES PLS

Thank you for the response. I hope we here something then. I would love to be able to play emulators natively from the gamepad at some time in the future.

 

[ArbitraryTask]

So Smash Bros. 4 Wii U has SD support in the stage builder again. Maybe that'll be the ticket in?

 

[NWPlayer123]

Not to begin with (if at all) considering doing it blind would be almost impossible. You'd have to have access to the code/files to even have any chance of making it work.

 

[ArbitraryTask]

True (I guess I'm not an expert haha)

Just spit balling.

Also thanks. You're always on point clarifying things around here. It's appreciated by users like me who are basically just waiting for someone else to get an exploit/HBC fully loaded.

 

[TeamScriptKiddies]

Hey random thought. Would it be feasible to escalate privileges using an Arduino device!? Assuming you write a program that is able to cause an unhandled exception and then trigger code execution. If we are able to set it up to auto execute as soon its plugged in. It kind of reminds me of the usb dongles for the ps3 that acted as a usb hub (on drugs ) which would crash the hypervisor.

Now we all know that the Wii U doesn't have a hypervisor per se (although the IOSU kernel sort of serves as a half @$$ed one). Maybe we could set up and exploit some other hardware/software bug that would escalate privileges without crashing the IOSU, because if the IOSU kernel crashes (correct me if I'm wrong here) cafeOS will go *twitch* *thud* *die* and leaves us with nothing to work with.

Privilege escalation is really what we want to achieve to get anywhere with Wii U homebrew, due to way its setup up. Maybe we could even somehow combine the arduino script/device with a c script triggered by the webkit exploit. Now I know that the browser doesn't have permission to access usb devices or sd devices, but maybe we can work something out somehow... Just thinking outloud. Any thoughts on this Marionumber1, NWPlayer123, Maxternal

 

[Relys]

Hey random thought. Would it be feasible to escalate privileges using an Arduino device!? Assuming you write a program that is able to cause an unhandled exception and then trigger code execution. If we are able to set it up to auto execute as soon its plugged in. It kind of reminds me of the usb dongles for the ps3 that acted as a usb hub (on drugs ) which would crash the hypervisor.

Now we all know that the Wii U doesn't have a hypervisor per se (although the IOSU kernel sort of serves as a half @$$ed one). Maybe we could set up and exploit some other hardware/software bug that would escalate privileges without crashing the IOSU, because if the IOSU kernel crashes (correct me if I'm wrong here) cafeOS will go *twitch* *thud* *die* and leaves us with nothing to work with.

Privilege escalation is really what we want to achieve to get anywhere with Wii U homebrew, due to way its setup up. Maybe we could even somehow combine the arduino script/device with a c script triggered by the webkit exploit. Now I know that the browser doesn't have permission to access usb devices or sd devices, but maybe we can work something out somehow... Just thinking outloud. Any thoughts on this Marionumber1, NWPlayer123, Maxternal

Side Channel Attacks aren't at all easy to pull of and take a separate skill set to design (involving a deeper understanding of hardware on a circuit level).

 

[TeamScriptKiddies]

Side Channel Attacks aren't at all easy to pull of and take a separate skill set to design (involving a deeper understanding of hardware on a circuit level).

I'm an electronics engineering major and I'm currently learning MATLAB which can now be interfaced with Arduino devices... See what I'm getting at.... I'm thinking about attempting such a feat, issue is, I need some Arduino devices first to play with .

EDIT: The real issue that's going to hold me back is that I haven't learned C yet, which is what the Webkit exploit uses (for "apps" themselves). So as far as trying to use an Arduino in conjunction with that exploit, I'm not going to be able to get very far with it. I would need help with that end of the spectrum.

Designing circuits and understanding whats going on, on the component level is where I shine. I'm a MATLAB noob (currently in an Intro course for it), but this will just help strengthen those skills further.

We might be able to pull something off with this, my mind is going 90 miles/hr right now and I have to head to work *facepalm* lol. Go figure. I'll keep an eye on the thread when possible though.

 

[Ray Lewis]

I am going to build a stealth bomber. The only problem is I have no supplies, changed majors from aeronautical engineering, and have never even tried it before. I like the enthusiasm TSK but it is like an excited guy trying to pull a dead horse. Marcan killed the horse, and everyone else is trying to revive it or just drag it along. It has become a running joke. I've checked on this over the last year but really, aside from some minor stuff, there is nothing really useful. Maybe in 10 years we might see some real progress. I say this with some bit of optimism.

 

[Ray Lewis]

You really are hellbent on discrediting other people, aren't you.

Nothing to discredit Randomizer. There is nothing except talk and occasional some farce a person (or persons) dream up.

 

[Reecey]

Nothing to discredit Randomizer. There is nothing except talk and occasional some farce a person (or persons) dream up.

Yeah I agree with this guy, less talk and more action is needed! Why cant we have something concrete instead of whatifs, my WiiU is gathering major dust

 

[WulfyStylez]

You guys are talking so abstractly about this whole thing and it's really funny tbh

Calm down and wait a bit, sheesh. Maybe put the energy from all your poetics into building your own exploit since the kernel bug got leaked publicly by that nintendo guy anyways. Otherwise wait.
The reason it's all talk is because, get this, we're still building that bug into an exploit? There's nothing more than talk we can show you guys. Try and create an exploit plan, find a bunch of rop gadgets, figure out timing, and put everything together. Then get back to me. It's not a thing that's done quickly.

 

[Ray Lewis]

You guys are talking so abstractly about this whole thing and it's really funny tbh

Calm down and wait a bit, sheesh. Maybe put the energy from all your poetics into building your own exploit since the kernel bug got leaked publicly by that nintendo guy anyways. Otherwise wait.
The reason it's all talk is because, get this, we're still building that bug into an exploit? There's nothing more than talk we can show you guys. Try and create an exploit plan, find a bunch of rop gadgets, figure out timing, and put everything together. Then get back to me. It's not a thing that's done quickly.

I was talking about others over the last two years. I know you and others are working Wulfy and I respect you for that and sharing SOMETHING. Other stuff is silly though (to me).

 

[BullyWiiPlaza]

Maybe put the energy from all your poetics into building your own exploit since the kernel bug got leaked publicly by that nintendo guy anyways.

If he leaked a now patched kernel exploit why can't you guys use it on a low firmware including the browser exploit to exploit the Wii U some more before finding something else which works on a higher firmware? Might be a dumb move by him after all.

 

[Reecey]

You guys are talking so abstractly about this whole thing and it's really funny tbh

Calm down and wait a bit, sheesh. Maybe put the energy from all your poetics into building your own exploit since the kernel bug got leaked publicly by that nintendo guy anyways. Otherwise wait.
The reason it's all talk is because, get this, we're still building that bug into an exploit? There's nothing more than talk we can show you guys. Try and create an exploit plan, find a bunch of rop gadgets, figure out timing, and put everything together. Then get back to me. It's not a thing that's done quickly.

Why would we want to building our own exploit when you guys are doing all the shouting here, "were on this, were doing that, but hold on a minute it might take a while longer because the people that are working on the exploit are back at school"! What a load of horse shit!!! Shows us something concrete, if you say your so called near to cracking it and we have to wait just a bit longer!, shows a quick video, anything would do to keep people interested and believing in it instead of all the bullshit talk that you back yourselves up with and feed us!. Personally I have more faith in the wiikeyu team, I think your full of it until you can prove otherwise!

 

[NWPlayer123]

Why would we want to building our own exploit when you guys are doing all the shouting here, "were on this, were doing that, but hold on a minute it might take a while longer because the people that are working on the exploit are back at school"! What a load of horse shit!!! Shows us something concrete, if you say your so called near to cracking it and we have to wait just a bit longer!, shows a quick video, anything would do to keep people interested instead of all the bullshit talk that you back yourselves up with. Personally I have more faith in the wiikeyu team, I think your full of it!

What would you like us to show? If the exploit is unfinished/semi-working then there's not much you can show other then the code for it. Someone's just butthurt IMO

 

[ShadowOne333]

Showing an unfinished exploit off just so Nintendo can take actions even before the Wii U Brew commuity has a fully functional kernel exploit?
I'm sorry but... I'd rather leave it as it is.
Nothing to show off.

They would be risking way too much just to show something to satisfy "The Butthurt Ones"

 

[nonamejohn]

We should be grateful anyone is working on wiiu homebrew. The apparent lack of interest in it is evident. I am as eager any of you to see this to fruition, but we must be patient.

 

[Relys]

Why would we want to building our own exploit when you guys are doing all the shouting here, "were on this, were doing that, but hold on a minute it might take a while longer because the people that are working on the exploit are back at school"! What a load of horse shit!!! Shows us something concrete, if you say your so called near to cracking it and we have to wait just a bit longer!, shows a quick video, anything would do to keep people interested and believing in it instead of all the bullshit talk that you back yourselves up with and feed us!. Personally I have more faith in the wiikeyu team, I think your full of it until you can prove otherwise!

I'm just going to ignore the rest of your massive shit post and state that WiiUKey is dead.

 

[TeamScriptKiddies]

To all the nay sayers, go out there and becone informed in computer science and/or hardware before running your mouths.

You're just making fools out of yourselves.

You want justification for unfinished exploits not being released? Just look what happened when the webkit exploit was leaked early. Nintendo patched it asap abd the hope for decent homebrew gotait and see setback.

You can say we're all just talk now, but you wait and see once the scene explodes when decent exploits are properly released

 

[Marionumber1]

Why would we want to building our own exploit when you guys are doing all the shouting here, "were on this, were doing that, but hold on a minute it might take a while longer because the people that are working on the exploit are back at school"! What a load of horse shit!!! Shows us something concrete, if you say your so called near to cracking it and we have to wait just a bit longer!, shows a quick video, anything would do to keep people interested and believing in it instead of all the bullshit talk that you back yourselves up with and feed us!. Personally I have more faith in the wiikeyu team, I think your full of it until you can prove otherwise!

Last I recalled, none of us are being paid to work on this. We're doing this in our free time, and eventually giving it back to the community at no charge. Not a single one of us owes it to or you or anyone else to complete this in what you consider an acceptable time period, let alone at all. By the way, we're perfectly happy staying relatively silent during this, but people keep asking, so we try our best to answer. If you don't like the speed at which we're going, make the exploit yourself.