Recent content by MLT

  1. M

    Hacking Wii U Hacking & Homebrew Discussion

    try this
  2. M

    Hacking Wii U Hacking & Homebrew Discussion

    use ida pro....
  3. M

    Hacking OSDriver kernel exploit - a technical description

    just dumping the kernel and reversing the tables.....kernel code are at FFF00100
  4. M

    Hacking OSDriver kernel exploit - a technical description

    for make online functions to works for loadiine i need to access to this area 0x0DD00000 wich is mapped on the kernel here: 0xFFEAAA30 value 0x0DD00000 virt addr 0xFFEAAA34 value 0x02300000 size 0xFFEAAA38 value 0x8DD00000 phy addr 0xFFEAAA3C value 0x2FF09400 memory flags.... any idea to can...
  5. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    i not added a autolaunch for the two new ways to boot , just press Y it's back to menu and there you run karaoke or ssbb or mii maker or art academy atelier
  6. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    amazing improvements @dimok @golden45 on my side with the new build 3.0 still have the same issue loading the rpl my error is 0xBAD1002E also on your code you still print the result's code bad... need to be 0x%08X the handler of the 0xBAD1002E code is on RAM:01029BB0 error_2e: are inside...
  7. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    i found why not work i think , the rpl got booted but the rpl attempt to boot the others rpl's over other function called NdSysRPLModule::gotoRPL((char const *,int,uint)) this are boot.rpl i think why not work , the boot.rpl boot's but cannot load the other rpl's like menu.rpl in this...
  8. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    i dumped the kernel using pygecko and loaded on ida just untick rom , tick ram , load 0x01000000 size 0x800000 and on load addr put 0x01000000 first u need to get your kernel from pygecko dumping the 01 area... and the patches are for avoid my error when loading a rpl on mario party 10 ... but...
  9. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    the loader have some problems setting the size of the chunk's i think i see the code force every chunk to 0x400000
  10. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    *(volatile unsigned int*)(0xC1000000 + 0x01029BE0) = 0x60000000; *(volatile unsigned int*)(0xC1000000 + 0x01029BF8) = 0x48000084; with this patch i get : 3] LogString =>("/vol/external01/wiiu/games/wiiu party/content/common/bin/dummy.bin") 3] FSGetStatFile() 3] FSCloseFile() 2] LogString...
  11. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    [5] FSOpenFileAsync("/vol/content/common/bin/dummy.bin") [4] LogString =>("OSDynLoad_Acquire: real name boot") connected [169] Accepted connection from client 192.168.0.102:4865 [169] Trying to mount SD card [5] LogString =>("/vol/external01/wiiu/games/wiiu party/content/common/bin/dummy.bin")...
  12. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    // do more initial FS stuff FSInitCmdBlock(pCmd); FSAddClientEx(pClient, 0, FS_RET_NO_ERROR); rpl_struct->size = 0; // avoid older offset affect the new one int fd = 0; if (real_FSOpenFile(pC size get fixed = it's normal the...
  13. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    maybe this helps loading wiiu party , enter on a strange loop because boot not success "boot.rpl" ,hangs on wiiu party screen...: i see a problem on the size i fixed it with this : __os_snprintf(buffer, sizeof(buffer), "CheckAndLoadRPL(%s) file loaded 0x%08X %i", rpl...
  14. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    also i think if can modify that u can enable sd card access on any game .. also , wii karaoke u , uses SD card too...i tried to setup as a boot game but the hook don't work with this title, only i'm able to boot the loadiine selection menu with if(title_id) , but this way not work at loader...
  15. M

    Hacking [OLD] Loadiine backup loader for WiiU 5.3.2 ONLY (NO 5.4 NO 5.5!)

    <permissions type="complex"> <p0 type="complex"> <group type="unsignedInt" length="4"> 1</group> <mask type="hexBinary" length="8">000000000000FF00</mask> </p0> <!--BSP--> <p1 type="complex"> <group type="unsignedInt" length="4"> 3</group> <mask...
See more