Hacking 5.4.0 progress

Nortix · Jan 15, 2016

Same here, crashed with media player

Xalyy · Jan 15, 2016

It still freezing this much?

memomo · Jan 15, 2016

Xalyy said:
It still freezing this much?

I feel it's close don't worry

ikarius031 · Jan 15, 2016

* Seeing the progress made, even though the difficulty of the task, they feel stronger.
* Feeling the community gathering to help...
* ...fills them with DETERMINATION !

(In other words, keep up the good work guys, I really like what I see here. I wish I was on 5.4 to help you guys out... Unfortunately 5.5.0 here -_-; )

Onion_Knight · Jan 15, 2016

EclipseSin said:
I'm assuming there's a curl issue here?

No

EclipseSin · Jan 15, 2016

Onion_Knight said:
No

I assumed it was curl, because yesterday it was requesting a wrong url when I checked the thread, and today it's not "finding the url". But, since your answer was so short. Have fun.

R@1n · Jan 15, 2016

Speeydisfast said:

Code:

/* find address left in ram */
    for(str = (unsigned char*)0x1A000000; str < (unsigned char*)0x20000000; str++)
    { /* Search for /payload which indicates the current address */
        if(*(unsigned int*)str == 0x2F706179 && *(unsigned int*)(str+4) == 0x6C6F6164)
        {
            leaddr = (char*)str;
            while(*leaddr)
                leaddr--;
            leaddr++;
            /* If string starts with http its likely to be correct */
            if(*(unsigned int*)leaddr == 0x68747470)
                break;
            leaddr = (char*)0;
        }
    }
    if(leaddr == (char*)0)
        OSFatal("URL not found");

The loop can't find the word /payload in the memory.
Maybe it's a good idea to find a other solution how we can search in the memory for this word. /payload = hex(2f7061796c6f6164) = 0x2F706179 and 0x6C6F6164

I state that I do not remember the C, then sorry.

Code:

            if(*(unsigned int*)leaddr == 0x68747470)
                break;

we do first to get out of the cycle? how many "http.../payload" do we need?

Code:

            if(*(unsigned int*)leaddr == 0x68747470)
                str=(unsigned char*)0x20000000; // We go out when it was found.

could solve the problem of the loop. I'm sorry I work in .net, I do not remember the C.

Onion_Knight · Jan 15, 2016

Speeydisfast said:

Code:

/* find address left in ram */
    for(str = (unsigned char*)0x1A000000; str < (unsigned char*)0x20000000; str++)
    { /* Search for /payload which indicates the current address */
        if(*(unsigned int*)str == 0x2F706179 && *(unsigned int*)(str+4) == 0x6C6F6164)
        {
            leaddr = (char*)str;
            while(*leaddr)
                leaddr--;
            leaddr++;
            /* If string starts with http its likely to be correct */
            if(*(unsigned int*)leaddr == 0x68747470)
                break;
            leaddr = (char*)0;
        }
    }
    if(leaddr == (char*)0)
        OSFatal("URL not found");

The loop can't find the word /payload in the memory.
Maybe it's a good idea to find a other solution how we can search in the memory for this word. /payload = hex(2f7061796c6f6164) = 0x2F706179 and 0x6C6F6164

I'm looking for ?sysver=

It could be simply set to point at eclipse sins site to fetch and it should work

Scuba156 · Jan 15, 2016

EclipseSin said:
I assumed it was curl, because yesterday it was requesting a wrong url when I checked the thread, and today it's not "finding the url". But, since your answer was so short. Have fun.

That is exactly how I feel at the moment, tried helping. Oh well

Lawletto · Jan 15, 2016

Thanks for your hard work I'm sure we'll run lastest versions of Loadiine on 5.4.0 today or tomorrow !

josh87402 · Jan 15, 2016

I guess there's not much we can do about 5.5.0 then...

JFalcon · Jan 15, 2016

josh87402 said:
I guess there's not much we can do about 5.5.0 then...

Not until we get a kexploit, we are likely to get the iosu exploit before we get the kernel for the webkit.

josh87402 · Jan 15, 2016

JFalcon said:
Not until we get a kexploit, we are likely to get the iosu exploit before we get the kernel for the webkit.

Well now that you say it, yeah you're totally right on that point. That'll most likely happen

Lichtblick · Jan 15, 2016

Does the System supports string functions? (i guess not)

EclipseSin · Jan 15, 2016

Lichtblick said:
Does the System supports string functions? (i guess not)

? You mean like strcmp, strlen, memset? You can do this. Elaborate if I'm misunderstanding your question.

BootsLoader · Jan 15, 2016

I have faith to everyone here and I'll think we can get at least loadiine v3 run clean on 5.4.0 but I also hope that iosu exploit comes tomorrow. In an other thread I made a prediction that the iosu exploit will be released January 16. I hope I am right

Lichtblick · Jan 15, 2016

Ok. You were right, thats what my question was.
Maybe i think a bit about it tonight.

Margen67 · Jan 15, 2016

josh87402 said:
Well now that you say it, yeah you're totally right on that point. That'll most likely happen

The Exploit Isn't Stable Yet™

Onion_Knight · Jan 15, 2016

Allright,

I've set it to automagically fetch from eclipsesins site, so lets see if that works.

Thanks
@EclipseSin

Dylon99 · Jan 15, 2016

Margen67 said:
The Exploit Isn't Stable Yet™

It will be Soon™

Hacking 5.4.0 progress

Active Member

Well-Known Member

( ͡° ͜ʖ ͡°)

Well-Known Member

Well-Known Member

Ignorant Wizard

New Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Active Member

Ignorant Wizard

Well-Known Member

Active Member

Dirty entited pirate

Well-Known Member

Attachments

Lord of Dank

Similar threads