Hacking ROP from within IOS_USB (5.5.1)

piratesephiroth

piratesephiroth

I wish I could read
Member
Level 12
Joined
Sep 5, 2013
Messages
3,453
Trophies
2
Age
103
XP
3,234
Country
Brazil
I dunno, it's kinda suspicious how he(?) just showed up out of nowhere coming up with functional implementations of the IOSU exploits so quickly.

(I'm not complaining, of course.)
 
Last edited by piratesephiroth,
QuarkTheAwesome

QuarkTheAwesome

🦊
Member
Level 13
Joined
Apr 19, 2015
Messages
1,023
Trophies
1
Location
Stuck in the PowerPC
Website
heyquark.com
XP
3,914
Country
Australia
piratesephiroth said:
I dunno, it's kinda suspicious how he(?) just showed up out of nowhere coming up with functional implementations of the IOSU exploits so quickly.

(I'm not complaining, of course.)
Click to expand...
People use alternate accounts. It did happen quickly, I'll admit that. But nah, I can guarantee that this has nothing to do with SALT (unless you count the wiiubrew page). Wulfy's reaction pretty much confirms that. On top of that, you'd think a leaker would leak a little more than just this.
 
piratesephiroth

piratesephiroth

I wish I could read
Member
Level 12
Joined
Sep 5, 2013
Messages
3,453
Trophies
2
Age
103
XP
3,234
Country
Brazil
QuarkTheAwesome said:
People use alternate accounts. It did happen quickly, I'll admit that. But nah, I can guarantee that this has nothing to do with SALT (unless you count the wiiubrew page). Wulfy's reaction pretty much confirms that. On top of that, you'd think a leaker would leak a little more than just this.
Click to expand...
I think it could be just a minor, calculated leak to boost the scene a bit. A major leak would just make Team SALT stop their efforts and most likely never release anything.
 
QuarkTheAwesome

QuarkTheAwesome

🦊
Member
Level 13
Joined
Apr 19, 2015
Messages
1,023
Trophies
1
Location
Stuck in the PowerPC
Website
heyquark.com
XP
3,914
Country
Australia
piratesephiroth said:
I think it could be just a minor, calculated leak to boost the scene a bit. A major leak would just make Team SALT stop their efforts and most likely never release anything.
Click to expand...
Trust me, it's not a leak. The person behind this account made this from scratch; and at least the kernel portion of it was made in front of homebrew developers with no known affiliation to SALT.
 
  • Like
Reactions: rw-r-r_0644 and Maschell
Ghassen-ga

Ghassen-ga

Well-Known Member
Member
Level 10
Joined
Jul 21, 2016
Messages
794
Trophies
0
XP
2,030
Country
QuarkTheAwesome said:
Trust me, it's not a leak. The person behind this account made this from scratch; and at least the kernel portion of it was made in front of homebrew developers with no known affiliation to SALT.
Click to expand...
let him be the conspiracy theorists he wants to be , i'm just glad this was released , at least now we actually have something.
 
NWPlayer123

NWPlayer123

Well-Known Member
Member
Level 17
Joined
Feb 17, 2012
Messages
2,642
Trophies
0
Location
The Everfree Forest
XP
6,693
Country
United States
congrats on pwning IOSU kernel, can also back up that it's not from SALT, I'll get you nerds kinda started in the right direction
  • I posted the NUS title key for a Wii VC title on my tweeter, it has a bunch of goodies in /code
  • You can also decrypt OSv1 that boots it with the Starbuck Ancast key that's been out for a while, same as IOSU/fw.img
  • Since you have IOSU code execution with kernel permissions, you can do anything if you're clever enough, like mounting an SD card and reading a custom firmware from it for redNAND
  • I wouldn't recommend going too far cause SALT seems to have a bunch of stuff already in the works for it, the fun part was the actual exploit, still not involved with their affairs tho
  • Don't randomly make syscalls to stuff like IOS-CRYPTO like comex did cause bad stuff will happen
  • Have fun bbys try not to bricc
Still looking forward to booting into something like Nintendont from emuNAND or straight into the game, should be fun
 
  • Like
Reactions: awtgrduzwt5r9, Ryccardo, montero3006 and 24 others
piratesephiroth

piratesephiroth

I wish I could read
Member
Level 12
Joined
Sep 5, 2013
Messages
3,453
Trophies
2
Age
103
XP
3,234
Country
Brazil
NWPlayer123 said:
congrats on pwning IOSU kernel, can also back up that it's not from SALT, I'll get you nerds kinda started in the right direction
  • I posted the NUS title key for a Wii VC title on my tweeter, it has a bunch of goodies in /code
  • You can also decrypt OSv1 that boots it with the Starbuck Ancast key that's been out for a while, same as IOSU/fw.img
  • Since you have IOSU code execution with kernel permissions, you can do anything if you're clever enough, like mounting an SD card and reading a custom firmware from it for redNAND
  • I wouldn't recommend going too far cause SALT seems to have a bunch of stuff already in the works for it, the fun part was the actual exploit, still not involved with their affairs tho
  • Don't randomly make syscalls to stuff like IOS-CRYPTO like comex did cause bad stuff will happen
  • Have fun bbys try not to bricc
Still looking forward to booting into something like Nintendont from emuNAND or straight into the game, should be fun
Click to expand...
yeah adding new features to Loadiine should be a better option right now.
 
Pachee

Pachee

Well-Known Member
Member
Level 5
Joined
Nov 3, 2015
Messages
480
Trophies
0
XP
562
Country
United States
NWPlayer123 said:
congrats on pwning IOSU kernel, can also back up that it's not from SALT, I'll get you nerds kinda started in the right direction
  • I posted the NUS title key for a Wii VC title on my tweeter, it has a bunch of goodies in /code
  • You can also decrypt OSv1 that boots it with the Starbuck Ancast key that's been out for a while, same as IOSU/fw.img
  • Since you have IOSU code execution with kernel permissions, you can do anything if you're clever enough, like mounting an SD card and reading a custom firmware from it for redNAND
  • I wouldn't recommend going too far cause SALT seems to have a bunch of stuff already in the works for it, the fun part was the actual exploit, still not involved with their affairs tho
  • Don't randomly make syscalls to stuff like IOS-CRYPTO like comex did cause bad stuff will happen
  • Have fun bbys try not to bricc
Still looking forward to booting into something like Nintendont from emuNAND or straight into the game, should be fun
Click to expand...
frisbiiU.rpx :huh:
Is that Nintendo's code for throwing a bone to Wii U owners?
 
  • Like
Reactions: PabloMK7
W

wiiman.au

Active Member
Newcomer
Level 2
Joined
Sep 2, 2009
Messages
32
Trophies
0
XP
182
Country
it's a small step in the right direction for a fully hacked Wii U, maybe the dev of this can collaborate with the guys from SALT to get the IOSU done
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Homebrew Tutorial  SDUSB - The modern way to play Wii U games from SD - at full speed

Very annoying that Nintendo never fixed this bug

Pretendo not working with updated games?!

Hacking Emulation Homebrew  Could you explain to me why there are no standalone emulators on Wiiu using aroma?

Hacking Homebrew Tutorial  How to get Nintendo TVii icon back without downgrading + extras

Unable to dump OTP.bin

Wii U (bricked) Mii Maker

Installing a dumped Disc Title as digital on Wii U?

General chit-chat
Help Users
  • No one is chatting at the moment.
    Veho @ Veho: Nope.