Hacking [RELEASE] drxtool - gamepad+drh firmware hacking utility

[darkridergsx]

i want learn to use this too

 

[tunip3]

i want learn to use this too

same

 

[darkridergsx]

I managed to use a gamepad from another region in the wii u but it is necessary another one to skip the update loop

 

[Ryccardo]

i want learn to use this too

Get a copy of gamepad firmware (connect to your console with ftpiiu-everywhere and download from MLC /sys/title/00050010/10043?00/content/drc_fw.bin)
Drag and drop the file over drxtool.exe and it will be extracted to a folder in the same place as the drc_fw.bin
Drag and drop the folder itself over drxtool when you want to recompress; of course it's not terribly useful unless you make some changes to the firmware first, but making changes is not the purpose of drxtool itself

 

[palsch]

Hello guys,
does anybody already tried to change the gamepad region?

I need a motherboard replacement for my european Gamepad, but all I can find to buy are US motherboards.

Thanks!

 

[insx]

Is there currently any way to flash firmware into a gamepad which is stuck in an update loop?

 

[Deleted User]

Is there currently any way to flash firmware into a gamepad which is stuck in an update loop?

Somebody managed to do that.

 

[puss2puss]

Great tool Wulfy! Pretty usefull!
Thanks for making and bringing it here

 

[nvjsandy]

Somebody managed to do that.

Who?!

 

[Madridi]

@WulfyStylez
Has there been any progress to region change a gamepad?

 

[guillaume633]

Is there any way with CBHC to completely change wiiu region to connect another region gamepad?
I have a US wiiu and a EUR gamepad; if not possible I will switch gamepad motherboard with a US one.

 

[Kurremkarmerruk]

Would it be possible to flash a US firmware to a EU gamepad?

 

[Brayton]

Yep, modifications to allow stuff like region unlocking/changing and enabling the DK Menu (not that you need it on retail, but...) are possible now. I'd check out libdrc's RE docs for a crash course on firmware format and gamepad internals, since there's quite a lot going on.
As an example, you can tear into the main ARM processor's firmware by loading LVC_.bin as ARM little-endian at address 0x0 in your tool of choice.

EDIT: I do have plans to release something allowing people to change boot screens too, as was demonstrated in the past. At the moment that tool's still in proof-of-concept state (haven't touched it since I made that video) and needs a rework, so expect to see it eventually.

What's DK menu? What all can you do in debug mode?

 

[LuLguy9999]

hello nice work but is there an offical disscord? cuz i would love to do region free gamepad then nothing stops me from getting an Base 8GB(J) unit i currently only own an Premium 32GB(E) unit. and looking at dates wow last post was in FEB 2019 was there some work don in that 1 yr gap?

 

[blackbrew]

hi there,

would like some tips to understand this line 100% correct

try bumping up the first big-endian u32 in blob_header.bin by 1

drc_fw blob header : 19 0C 01 17 00 00 04 00 00 00 00 04 00 2C DE A5 and the version on app.xml is 190c
what is the correct new values so i can the wii u detect the update and send it the pad

Thanks

 

[Anomaladox]

I don't know if I am understanding this correctly but I would assume that would mean doing something like this:
19 1C 01 17 00 00 04 00 00 00 00 04 00 2C DE A5 and then changing 190c in the app.xml to 191c.

 

[pedro702]

any chance anyone could make the gamepad rumble in wiivc injects? by using the wiimote rumble code or something?

 

[gavinlai]

Hope someone tried how to region-free.

 

[gavinlai]

I verified Euro and JPN GamePAD firmware from drc_fw.bin extract files. Only two files different: ERR_.bin and INDX.bin.

Indx.bin only one bit different: Japan is 0, Euro is 2, like WiiU console system. (nor sure, just think about it).

 

[GaryOderNichts]

I verified Euro and JPN GamePAD firmware from drc_fw.bin extract files. Only two files different: ERR_.bin and INDX.bin.
View attachment 300585

Indx.bin only one bit different: Japan is 0, Euro is 2, like WiiU console system. (nor sure, just think about it).
View attachment 300584

The region is read from the EEPROM not from the firmware. To change the region you would need to write to the EEPROM which might mess with other things.