Hacking Wii U Hacking & Homebrew Discussion

Marionumber1 · Jun 16, 2015

steveroo said:
Pardon my rudeness what will exploiting the browser do?
What should I be scared/cautious about since I updated?

I hacked my wii u last year and updated the latest firmware last week. The console still works, I haven't played online yet or used my homebrew vwii in the couple of weeks and have shopped in the wii u eshop.

Exploiting the browser injects arbitrary code into the web browser process, which only lasts as long as the browser is running. If you use the kernel exploit, you'll be able to access memory with full kernel permissions for as long as the system is on.

TL;DR: Nothing is permanent.

motezazer · Jun 16, 2015

PamiPumiKyun said:
Not sure how to reply to such a message on a hacking subforum..

hack != pirate

PamiPumiKyun · Jun 16, 2015

motezazer said:
hack != pirate

Valid.

Anyway, ways of telling things matter.

So, the hack will come these days. What will that allow others to do?

Adr990 · Jun 16, 2015

Tonight?!
Well, that's a lot sooner then I expected. But I guess it was inevitable.

Great job sirs!
Time to try some stuff with "libwiiu".

steveroo · Jun 16, 2015

Marionumber1 said:
Exploiting the browser injects arbitrary code into the web browser process, which only lasts as long as the browser is running. If you use the kernel exploit, you'll be able to access memory with full kernel permissions for as long as the system is on.

TL;DR: Nothing is permanent.

Sounds like this is not for the general public, but for intelligent coders/hackers

motezazer · Jun 16, 2015

PamiPumiKyun said:
Valid.

Anyway, ways of telling things matter.

So, the hack will come these days. What will that allow others to do?

When userland will be released (this night), basic homebrews.
When kernel exploit will be released (very soon), game modding and advanced homebrews.
When IOSU exploit will be released (a day), total control of the console.

TheZander · Jun 16, 2015

motezazer said:
When userland will be released (this night), basic homebrews.
When kernel exploit will be released (very soon), game modding and advanced homebrews.
When IOSU exploit will be released (a day), total control of the console.

Do you have any idea of differentiating the exploits used in their demonstration videos? For instance the last one MN1 posted of the browser saying "5.3.2 yay" or something clearly was the browser (userland ) exploit right?
Then you have the Mario Kart modded tracks and other stuff, is that kernel or IOSU? Or both? Have they shown what IOSU does verses the kernel? I was just wondering because by what you said it seems like all you need is a kernel exploit to do the stuff they've shown.

fatsquirrel · Jun 16, 2015

What the..tonight is the night?
Damn boys, I better get some coffee ready.

motezazer · Jun 16, 2015

TheZander said:
Do you have any idea of differentiating the exploits used in their demonstration videos? For instance the last one MN1 posted of the browser saying "5.3.2 yay" or something clearly was the browser (userland ) exploit right?
Then you have the Mario Kart modded tracks and other stuff, is that kernel or IOSU? Or both? Have they shown what IOSU does verses the kernel? I was just wondering because by what you said it seems like all you need is a kernel exploit to do the stuff they've shown.

The "5.3.2 yay" was userland, but kernel exploit still exist (even in 5.4.0), so it will come soon.
Yes, for the mod of MK8 tracks, it was the kernel exploit.

--------------------- MERGED ---------------------------

fatsquirrel said:
What the..tonight is the night?
Damn boys, I better get some coffee ready.

Tonight is THE night...
...for userland. Kernel will come later.

soratheultima · Jun 16, 2015

my wiiu is ready!

razielleonhart · Jun 16, 2015

fatsquirrel said:
What the..tonight is the night?
Damn boys, I better get some coffee ready.

we need pizza, beer and energy drinks

TheZander · Jun 16, 2015

motezazer said:
The "5.3.2 yay" was userland, but kernel exploit still exist (even in 5.4.0), so it will come soon.
Yes, for the mod of MK8 tracks, it was the kernel exploit.

--------------------- MERGED ---------------------------

Tonight is THE night...
...for userland. Kernel will come later.

So we haven't seen what IOSU can do? if it allows more than kernel. I wonder what full control of the console allows, like install channels? To bypass the browser? But everything is still sent from python. The ISOU and Kernel exploits cannot be patched right? So if you install them maybe you can update afterwards? Or install the old exploitable browser over the the latest via those NUS files. i have no idea..

motezazer · Jun 16, 2015

TheZander said:
So we haven't seen what IOSU can do? if it allows more than kernel. I wonder what full control of the console allows, like install channels? To bypass the browser? But everything is still sent from python. The ISOU and Kernel exploits cannot be patched right? So if you install them maybe you can update afterwards? Or install the old exploitable browser over the the latest via those NUS files. i have no idea..

IOSU allows emuNAND, backups, etc.
It allows unsigned channels installation, but whenever you rebbot the console, you won't be able to launch these channels until you run the IOSU exploit again.

TheZander · Jun 16, 2015

motezazer said:
IOSU allows emuNAND, backups, etc.
It allows unsigned channels installation, but whenever you rebbot the console, you won't be able to launch these channels until you run the IOSU exploit again.

Oh, I had no idea what IOSU was then apparently. I thought that emuNAND stuff was all theory. The way to launch this exploit though is through the browser though right? But it bypasses the need for python though it seems. However watching those caffine videos made it seem like you need to live edit files.

JustPingo · Jun 16, 2015

TheZander said:
Oh, I had no idea what IOSU was then apparently. I thought that emuNAND stuff was all theory. The way to launch this exploit though is through the browser though right? But it bypasses the need for python though it seems. However watching those caffine videos made it seem like you need to live edit files.

The python was actually only to compile/convert C to an exploitable webpage if I'm right.

NWPlayer123 · Jun 16, 2015

Basically, use kernel and/or IOSU exploit to run TCPGecko, load your preferred game and dump all files, then reboot and load Cafiine and you can modify those files and load them. It's pretty standard though, you should only need to compile kexploit once, and you can rename it as its own html file and bookmark it, and do the same for Cafiine. Then you can click one bookmark for kexploit, get kicked out, reopen and load Cafiine, get kicked out again and then go into the game you want to mod, start up the server, and start poking. We're the ones who have to do so many recompiles and revisions to develop it.

naxil · Jun 16, 2015

@NWPlayer123 the great work is public?

PamiPumiKyun · Jun 16, 2015

motezazer said:
When userland will be released (this night), basic homebrews.
When kernel exploit will be released (very soon), game modding and advanced homebrews.
When IOSU exploit will be released (a day), total control of the console.

So:
userland -> Unsigned applications (as emulators?)
kernel -> Modify game memory ?? (just guessing) and more unsigneds
iosu -> Even use the console to cook food

? Right?

SirByte · Jun 16, 2015

motezazer said:
IOSU allows emuNAND, backups, etc.
It allows unsigned channels installation, but whenever you rebbot the console, you won't be able to launch these channels until you run the IOSU exploit again.

I'm thinking that would allow a 3DS-like Internet approach? In SysNAND, you configure Internet manually (e.g. IP = 192.168.1.100, Default Gateway 192.168.1.10 (your computer, not your router), no DNS or manual/bogus). Then you only need to load the exploit from a httpd on your computer (say on port 27272) so your browser shortcut would be http://192.168.1.10:27272/wiiuhack.html and your computer would serve it the exploit.
This would then load the EmuNAND, which has proper Internet setup, so you can go online to e.g. a "homebrew shop" or play GBA games against friends over the network (if the emulator supports that).

Edit:
which reminds me, there should be an option to "dump" your EmuNAND, in case it updates to a version that some unfortunate "stability improvements" (with IOSU and all keys you might be able to disable auto-update, but some will need to test the newest FW to see if it's safe). From SysNAND you should then be able to inject the backupped EmuNAND to the loaded-from location and roll back the unwanted update.

motezazer · Jun 16, 2015

PamiPumiKyun said:
So:
userland -> Unsigned applications (as emulators?)
kernel -> Modify game memory ?? (just guessing) and more unsigneds
iosu -> Even use the console to cook food

? Right?

userland --> unsigned applications (as basic pong)
kernel -> modify memory and complex homebrews (as emulators)
IOSU -> Everything (but you have to launch the exploit at each reboot)

Hacking Wii U Hacking & Homebrew Discussion

Well-Known Member

Well-Known Member

Well-Known Member

To boldly go where no man has gone before!

Well-Known Member

Well-Known Member

1337

Well-Known Member

Well-Known Member

Well-Known Member

RazzyDee

1337

Well-Known Member

1337

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Similar threads

Popular threads in this forum