Hacking Idea For A New Homebrew Exploit Working On Wii/Wii Mini. Project : SoftMiiOut

Do You Think Is It Gonna Be A New Homebrew Entry Point?

  • Yes

    Votes: 1 12.5%
  • No

    Votes: 4 50.0%
  • Maybe

    Votes: 3 37.5%

  • Total voters
    8
  • Poll closed .
Status
Not open for further replies.

Jitoku

GBAtemp Guru
OP
Member
Joined
Feb 26, 2018
Messages
121
Trophies
0
XP
220
Country
United Kingdom
If You Did Not Softmod Your Wii, You Can Check The Newest Guide To Hack Your Wii


This Is Just An Idea. Its Not Something That Have Been Made Currently!!

So As You Know, Currenty There Is No Way To Softmod A Wii Mini Since It Does Not Have Any Internet Connection Or An SD-Card Reader. There Is Also A Way To Enable Internet On Wii Mini With The ModChip Method Which Is Also Known As Hardmodding. And This SoftMiiOut Could Be New Homebrew Entry Point For Wii/Wii Mini Without SD-Card.

Basically, the exploit will be based on WiiMote's Memory Which Is Like 45 KB. And The Way We Are Going To Place Exploit File Into WiiMote Is Mii Channel. You Can Store Mii's Into WiiMote Since The New Update. So The Plan Is Making An Modified Mii Channel To Place Exploit File Into Wiimote Instead Of Mii File. Also There Can Be Exploit Mii Which Is An Also Exploit Version Of Mii.

I Don't Currently Know Any Coding For Wii, But I Know That There Is Someone Who Will Make This Real And Wii Mini User's Softmodding Dream.

Thanks For Reading

The Names For Exploit (As I Found) : RemoteBomb, MoteHax, RemoteHax, WiiMoteHax, WiiHax, SoftMiiOut, (You Can Tell Me Names That Can Be)

You Can Also Reply Me If You Have An Idea Or Question :D
 
Last edited by Jitoku,

KiiWii

Editorial Team
Editorial Team
Joined
Nov 17, 2008
Messages
16,544
Trophies
3
Website
defaultdnb.github.io
XP
26,785
Country
United Kingdom
If You Did Not Softmod Your Wii, You Can Check The Newest Guide To Hack Your Wii


This Is Just An Idea. Its Not Something That Have Been Made Currently!!

So As You Know, Currenty There Is No Way To Softmod A Wii Mini Since It Does Not Have Any Internet Connection Or An SD-Card Reader. There Is Also A Way To Enable Internet On Wii Mini With The ModChip Method Which Is Also Known As Hardmodding. And This SoftMiiOut Could Be New Homebrew Entry Point For Wii/Wii Mini Without SD-Card.

Basically, the exploit will be based on WiiMote's Memory Which Is Like 45 KB. And The Way We Are Going To Place Exploit File Into WiiMote Is Mii Channel. You Can Store Mii's Into WiiMote Since The New Update. So The Plan Is Making An Modified Mii Channel To Place Exploit File Into Wiimote Instead Of Mii File. Also There Can Be Exploit Mii Which Is An Also Exploit Version Of Mii.

I Don't Currently Know Any Coding For Wii, But I Know That There Is Someone Who Will Make This Real And Wii Mini User's Softmodding Dream.

Thanks For Reading

Some Problems :
1. The Elf File For Homebrew Channel Is More Than 45 Kb.
2. We Can Not Currently Get WiiMote's Storage As An Usb

You Can Also Reply Me If You Have An Idea Or Question :D

Nice didnt @tueidj use the wiimote memory for disc verification in devolution?
 

x65943

hunger games round 29 big booba winner
Supervisor
GBAtemp Patron
Joined
Jun 23, 2014
Messages
6,194
Trophies
3
Location
ΗΠΑ
XP
25,984
Country
United States
The wii scene is silent these days, so not much hope someone will work on this. Further, wiis other than the wii mini are so cheap - that I don't think there is much interest in hacking the mini.

Also, in English only the first words in sentences and proper nouns (names of people, places etc) are capitalized.

->Well, If He Did. This Is An New Entry Point For Also Wii Mini :D
Should read
->Well, if he did. This is a new entry point for also Wii mini :D
 
  • Like
Reactions: Ryccardo

Jitoku

GBAtemp Guru
OP
Member
Joined
Feb 26, 2018
Messages
121
Trophies
0
XP
220
Country
United Kingdom
The wii scene is silent these days, so not much hope someone will work on this. Further, wiis other than the wii mini are so cheap - that I don't think there is much interest in hacking the mini.

Also, in English only the first words in sentences and proper nouns (names of people, places etc) are capitalized.

->Well, If He Did. This Is An New Entry Point For Also Wii Mini :D
Should read
->Well, if he did. This is a new entry point for also Wii mini :D

Thanks for reply, I saw some people asking to how they hack their wii mini. This is why i thought this :D i will fix my mistakes
 

Cyan

GBATemp's lurking knight
Former Staff
Joined
Oct 27, 2002
Messages
23,749
Trophies
4
Age
45
Location
Engine room, learning
XP
15,646
Country
France
I changed the title to look less like you already released something.
I know you worked on FlashHax (Thanks for that! I already told people to use it), and you might be capable of working on another entry point, but posting something before having a technical low level explanation, a Proof of Concept, or a working exploit rarely ends well. These threads often end in bashing and people expecting to see something usable.
I hope you will not get (too many) angry comments. if it ends bad, I'll close it.

I don't know if you can exploit Mii from the wiimote, the mii (and not the mii channel !) is very small, it would be hard to code something in it. you'd first need a vulnerability to exploit it.
it's possible to put mii on wiimote for years, it's not "since the new update" and I'm sure it has been thought and tried before.
 
Last edited by Cyan,

Jitoku

GBAtemp Guru
OP
Member
Joined
Feb 26, 2018
Messages
121
Trophies
0
XP
220
Country
United Kingdom
I changed the title to look less like you already released something.
I know you worked on FlashHax (Thanks for that! I already told people to use it), and you might be capable of working on another entry point, but posting something before having a technical low level explanation, a Proof of Concept, or a working exploit rarely ends well. These threads often end in bashing and people expecting to see something usable.
I hope you will not get (too many) angry comments. if it ends bad, I'll close it.

I don't know if you can exploit Mii from the wiimote, the mii (and not the mii channel !) is very small, it would be hard to code something in it. you'd first need a vulnerability to exploit it.
it's possible to put mii on wiimote for years, it's not "since the new update" and I'm sure it has been thought and tried before.
Thanks for changing the title I also understood that I made a mistake. (I forgot you cant change titles), and there was not a ability to transfer miis in Wiimotes in the first versions of mii channel (as i checked for internet) also thanks for community of here, I didnt get angry comments. And you understood somethings wrong

1. In my idea, Mii Channel is gonna be modified to transfer the exploit in Wiimote. We can launch it on dolphin emulator or an already soft modded wii to download wad into it.
2. When the exploit is in the wiimote, you are going to open real Wii, and transfer it into Real Mii Channel.
That was my idea. Its just and idea, I dont know if someone is gonna make it real based on my opinion, and thats not all.

According to wikipedia : "This function is also used in Super Smash Bros. Brawl, allowing the user to save controller configuration data to the Wii Remote."
You know, Super Smash Bros. Brawl is already vulnerable, I know that its vulnerable in SD-card, but we can also use other things to do too! (in my opinion)

Thx
 

Cyan

GBATemp's lurking knight
Former Staff
Joined
Oct 27, 2002
Messages
23,749
Trophies
4
Age
45
Location
Engine room, learning
XP
15,646
Country
France
You are right, it was the Mii parade which had that option, not the Mii channel.
there were also a hidden menu to transfer the mii to 3DS, but this was added on a new version.

The wiimote can also keep other data (non Mii) like SSBB setting, or Devolution disc verification checksum.


I understand it's possible to write into the wiimote using a modified mii channel (you don't really need a modified mii channel, I'm sure you can use a homebrew to write what you want on a wiimote, even a computer with BT).
the issue I see is having the original unhacked mii channel read that data on the console you want to hack. you first need to find a vulnerability in the way the mii channel read the wiimote data. To my understanding the Mii data have a CRC (easy to fix), but then the mii channel read each Mii separately, and not as a full code of 750bytes you can use to write your exploit.

To my understanding (and by logic), the mii channel should do this:
1- check CRC of the first 750bytes (there is a 2nd 750bytes as backup)
2- read the full first 750bytes block in a buffer (at this point, it's not verified, not put in a place of executable memory)
3- use a struct of Mii to parse each mii one by one.
4- for each Mii, check if data match existing mii's value to generate a graphical mii. if one of the structure doesn't match expected value it will probably be marked as corrupted. I don't think the Mii channel will store on the console a corrupted mii (that you'll use to write your code to nand?).

you need a way to force the wii to execute that memory before point 3, right?

Maybe I'm wrong, I never messed with Wiimote's memory before.
 
Last edited by Cyan,

Jitoku

GBAtemp Guru
OP
Member
Joined
Feb 26, 2018
Messages
121
Trophies
0
XP
220
Country
United Kingdom
You are right, it was the Mii parade which had that option, not the Mii channel.
there were also a hidden menu to transfer the mii to 3DS, but this was probably added on a new version.

The wiimote can also keep other data (non Mii) like SSBB setting, or Devolution disc verification checksum.


I understand it's possible to write into the wiimote using a modified mii channel (you don't really need a modified mii channel, I'm sure you can use a homebrew to write what you want on a wiimote, even a computer with BT).
the issue I see is having the original unhacked mii channel read that data on the console you want to hack. you first need to find a vulnerability in the way the mii channel read the wiimote data. To my understanding the Mii data have a CRC (easy to fix), but then the mii channel read each Mii separately, and not as a full code of 750bytes you can use to write your exploit.

To my understanding (and by logic), the mii channel should do this:
check CRC
read the full 750bytes in a buffer (at this point, it's not verified, not put in a place of executable memory)
use a struct of Mii to parse each mii one by one.
for each Mii, check if data match existing mii's setting. if one of the structure doesn't match expected value it will probably be marked as corrupted.

Maybe I'm wrong, I never messed with Wiimote's memory before.

I never messed with it too. Even not loading an exploit from Mii channel, there should be some other beneficial advantages to use.
Also, since that Nintendo stopped support for Wii, I think its not something they would fix. Also u know ssbb is vulnerable, maybe we can make special code to make ssbb to read.
Btw, I never worked on Flashhax (If you meant my replies, they are just replies, I never did worked on it)
If u also meant my guide for SD-less homebrew, it was a guide for dream-broken guys (like me) I even bought a 2 gb sd card to load letter bomb. But thx for flashhax, they did it.

Sorry for my English I wrote is pretty fast
 
Last edited by Jitoku,
  • Like
Reactions: Eatingshark

Cyan

GBATemp's lurking knight
Former Staff
Joined
Oct 27, 2002
Messages
23,749
Trophies
4
Age
45
Location
Engine room, learning
XP
15,646
Country
France
ahh, sorry I mixed you with Fullmetal5, because you talked about Flashax. (sorry I don't remember all user's names and sometime get confused)
I wrongly thought you knew how to code and how the wii worked.

So, I now see this thread is just another random "idea of exploit" from someone who doesn't know how the console even works :/
I hoped you had some low level idea of what you were talking about and knew something I didn't.
 
Last edited by Cyan,
  • Like
Reactions: x65943

Jitoku

GBAtemp Guru
OP
Member
Joined
Feb 26, 2018
Messages
121
Trophies
0
XP
220
Country
United Kingdom
Why Do You Post Every Word With A Capital?
It Makes Reading It Incredibly Annoying.

Why everyone is asking this Lmao

Btw do u mean this : "So As You Know, Currenty There Is No Way To Softmod A Wii Mini Since It Does Not Have Any Internet Connection Or An SD-Card Reader." ?

--------------------- MERGED ---------------------------

ahh, sorry I mixed you with Fullmetal5, because you talked about Flashax.
I wrongly thought you knew how to code and how the wii worked.

So, I now see this thread is just another random "idea of exploit" from someone who doesn't know how the console even works :/
I hoped you had some low level idea of what you were talking about.

Okay please close the thread. Im sorry. I will never create a thread again.
 
  • Like
Reactions: Eatingshark
Status
Not open for further replies.

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • S @ salazarcosplay:
    @K3Nv2 what was your ps4 situation
  • S @ salazarcosplay:
    did you always have a ps4 you never updated
  • S @ salazarcosplay:
    or were you able to get new ps4 tracking it \
    as soon as the hack was announced
  • S @ salazarcosplay:
    or did you have to find a used one with the lower firm ware that was not updated
  • K3Nv2 @ K3Nv2:
    I got this ps4 at launch and never updated since 9.0
  • K3Nv2 @ K3Nv2:
    You got a good chance of buying a used one and asking the seller how often they used or even ask for a Pic of fw and telling them not to update
  • RedColoredStars @ RedColoredStars:
    Speaking of PLaystation. I see Evilnat put out a beta for PS3 CFW 4.91.2 on the 22nd.
  • K3Nv2 @ K3Nv2:
    Don't really see the point in updating it tbh
  • BigOnYa @ BigOnYa:
    Yea you right, I thought about updating my PS3 CFW to 4.91, but why really, everything plays fine now. I guess for people that have already updated past 4.9 it would be helpful.
  • K3Nv2 @ K3Nv2:
    Idk if online servers are still active that would be my only thought
    +1
  • BigOnYa @ BigOnYa:
    Thats true, personally I don't play it online at all, in fact, I deleted all wifi details on it once I installed CFW, so it won't connect and auto-update itself
  • BigOnYa @ BigOnYa:
    I play most games that are on both PS3/360 strickly on the 360, but PS3 exclusives are really only games I play on the PS3 (You know me, I'm more of a Xbox junkie)
  • K3Nv2 @ K3Nv2:
    Ps3 really has no titles worth going online
  • BigOnYa @ BigOnYa:
    what is nps?
  • Xdqwerty @ Xdqwerty:
    @K3Nv2, what about GTA v onl... O Yea the PS3 versión got discontinued
  • K3Nv2 @ K3Nv2:
    I feel like the world's cheapest pc build can play gtaV
  • K3Nv2 @ K3Nv2:
    In modern standards
  • Xdqwerty @ Xdqwerty:
    @K3Nv2, then why mine can't?
  • BigOnYa @ BigOnYa:
    @K3Nv2 What is nps you mentioned?
  • K3Nv2 @ K3Nv2:
    Because your pc has a hamster innit
    +3
  • BakerMan @ BakerMan:
    R.I.P. LittleBigPlanet PS3 servers
  • BakerMan @ BakerMan:
    LBP2 still the goat tho
  • K3Nv2 @ K3Nv2:
    That can be played on ps5 iirc
  • BigOnYa @ BigOnYa:
    I'm surprised any PS3 servers are still up, tbh
  • K3Nv2 @ K3Nv2:
    Alot of manufactures do care about older consoles they just want to whine about piracy
    +2
    K3Nv2 @ K3Nv2: Alot of manufactures do care about older consoles they just want to whine about piracy +2