Hacking Installing VC/WiiWare from NUS

[BinFairy]

Steve007

Please start using legible text in your posts. I don't know of any messenger which you are looking for, and this post does NOT belong in this thread.

I assume you read the stickies in the end, there should be a link to a WAD Manager 1.5 somewhere on the forums. Search for it. It's probably what you are looking for.

 

[cwstjdenobs]

i hope you will forgive my noobness, but basically the ticket forging process how does it work rxactly?

Exactly the same as it always has. I'm sure a quick search will find the info you are after.

Until I've had a chance to have a proper talk to some people about this I'm keeping quiet on the details. I thought this was just a case of an idiot noticing something those in the know didn't. But it seems that's not the case. I should have probably approached some people directly first, but alas I'm a social coward.

 

[Leathl]

basically, everything you need to know is here: http://wiibrew.org/wiki/Ticket

 

[techboy]

becomes useless and it's plausible that older IOS vanish forever.

Won't happen...a site I use has a listing of the entire server uploaded to mediafire. Also, many IOSes can be had from discs.

As for how this works, where is it getting title keys? Or are those 24-byte files the keys?

Finally, I know many others offered, but I might as well offer too...I'll beta test if you need testers. Have a bootmii/boot2 wii with preloader 0.29 on 4.0U, as well as cIOS222v4 and cIOS249v14 and USB Loader GX.

 

[Leathl]

The 24bytes file is the title key plus probably the ticket id or w/e

 

[longtom1]

wads installed on real nand and installed on nand dump for triiforce are the same right??

if so if you look at the tickets of the wads on the nand dump the content of the tickets are all the same

 

[cwstjdenobs]

Leathl, pretty much spot on.

If people hadn't brought up the possibility of all of NUS getting secured, not just the shop side, I would just tell everyone how it's done. I don't think it could happen with how ninty set things up, but with some of the names that have brought up the idea it shouldn't be ignored. TBH I don't care if this would only work for a month and the Shop Channel get an update, but I don't want to break things like DOP-IOS et al.

 

[techboy]

wads installed on real nand and installed on nand dump for triiforce are the same right??

if so if you look at the tickets of the wads on the nand dump the content of the tickets are all the same
I have a feeling the tickets on a triiforce dump are different. Otherwise, it'd mean that the title key for everything was the same, which it's not.

The 24bytes file is the title key plus probably the ticket id or w/e
Thanks for that.

EDIT: Saw cws's post.

QUOTE

TBH I don't care if this would only work for a month and the Shop Channel get an update, but I don't want to break things like DOP-IOS et al.

How would they fix NUS? Sure they can check to see if the connecting device is a wii (check the MAC or something, which can be beaten), but what else? If they implemented some form of SSL or something, not only would it slow downloads down, but it'd break outdated wiis.

 

[Leathl]

wads installed on real nand and installed on nand dump for triiforce are the same right??

if so if you look at the tickets of the wads on the nand dump the content of the tickets are all the same

If the titles were purchased from the shop and weren't modified (like packed and reinstalled), yes. Else no.. Most wad packers change the title key while packing, e.g. bfgr's packer uses "BFGRBeFreeeeeee!"..
Btw I highly doubt they use the same title key for every VC.. I guess it's just a random key.

 

[tueidj]

tueidj I think you'd be surprised how much I agree. This is as wrong as me downloading a wad and installing it.

I do like discussing technicalities though, and that's what the law works on, not what's right or wrong unfortunately. But with that being said, I'm not a lawyer, so I'm going to stick to saying using this is just as illegal as dl'ing wads.

I didn't mean to sound like I was arguing with you at all, or giving an opinion about whether or not this app is a good or bad idea. I just want people to understand that (as you agree) it's really no different than installing .wad files.

On the topic of securing NUS: They wouldn't change it too much, but they could change it enough to break existing apps; in the past it has already been upgraded to change some parts from http to https, and this was specifically in response to people doing things that they shouldn't. Changes won't "break outdated wiis" since they can just require a shop channel update, but it does mean they probably wouldn't change the way IOSes and the system menus can be obtained.

 

[Adr990]

Cool.
You might could make this "Homebrew Browser" a-like.

But with Wii Shop style. But than all buttons like: Download: Free or Download Points 0

Putting all links into one .dol might be a pain for the size etc. So make it receiving a NUS DB you have on your PC. (Or let it use the NUSD xml DB, which you might update yourself time by time, if there is a new game.)

And may also a option to download it to your SD card (Like in WAD Manager 1.4 or above) For may Triiforce/SNEEK or SD Card Menu in 4.x. (or both)

And next to fake sing them, I would also like to see a option to choose Region free or a specific region.

Edit: oh, and a Size Check of NAND/SD before download/install.

 

[nitrostemp]

i want to see some updates~!

 

[WiiPower]

Leathl, pretty much spot on.

If people hadn't brought up the possibility of all of NUS getting secured, not just the shop side, I would just tell everyone how it's done. I don't think it could happen with how ninty set things up, but with some of the names that have brought up the idea it shouldn't be ignored. TBH I don't care if this would only work for a month and the Shop Channel get an update, but I don't want to break things like DOP-IOS et al.

Thank you. I don't know what the network stuff that is currently implemented in the system menu and IOS is capable of. But i could imagine a MAC filter for example. That would be easy to hack, but it would be a start to make things complicated.

And in general they could remove all versions from the server you won't get with regular methods, like system menu 3.2 and its IOS. Then they could make an update (5.0?) with changed secure network code. From then on, if you want to update, it would get 5.0, estabish a secure connection and then get the real update/shop item. (while 5.0 would be a fully working system menu in case something goes wrong)

 

[techboy]

A MAC filter would be useless. DOP-IOS & this app runs on the wii, so it'd only break PC tools like NUS Downloader.

If they implement a secure connection, the wii would be required to have the needed key on-board somewhere...so it'd be a matter of digging it out of a system menu or IOS and updating the tools we have to use the keys.

The best it would do is complicate things and make hackers waste time studying menus (and maybe cracking encryption if the data is encrypted).

It also should be noted that all this security enhancement won't stop piracy, since people are dumping VC/WW after buying it right now. Pirating it from NUS is just adding insult to injury.

 

[mew512]

I geuss this has been given up on then at least he tried

 

[XFlak]

as with all the best wii releases, things take time, just be patient

that's all i'm at liberty to say (but read between the lines)

this thread has served its purpose, see the first post "move along, nothing to see here"

 

[mew512]

hope ^ means what i think it means

Posts merged

hope ^ means what i think it means

Posts merged

hope ^ means what i think it means

 

[nitrostemp]

where are the lines im supposed to read between?

 

[mew512]

from what i am thinking he means that like when NSMBW was leaked it took time to get full comparability, it needed quite a bit of work so im thinking hes trying to develop the method to do this

 

[swissarmyknife]

anything ever come of this? to bad the first poster deleted his post.