Homebrew supermysterychunkhax - Savegame Exploit for Super Mystery Dungeon

[Deleted member 373057]

Wow nice. Good thing I didn't sell my PSMD!

 

[Ricken]

Now i can downgrade my friends system!!!

i'll report results when i can rent a copy of the game then try with PlaiSysUpdater, just to see if it will bug out like Ironhax liked causing


and better than OoTHax imo, other than the 9.9=< (10.2 for others) FW limit. Otherwise more convenient than Ninjhax and OoTHax (No multiple QR/Powersaves/Installers)

And yes im Neglecting Smashhax. almost everyone does

 

[Buttsnake]

Nice job!!! Thank you so much

 

[Ricken]

b/c of the URL this can be dubbed Salthax for short right?

 

[shinyquagsire23]

notifications, my one weakness.

anyway congrats shinyquag, mind if i add this to the HBL page ? (just the icon and a link to your page from there, kind like how browserhax is there)

Yeah that'd be great, thanks.

 

[Salamencizer]

Can the save be modified with powersaves as it can be done for OOTHax?

 

[TimX24968B]

Code at https://github.com/shinyquagsire23/supermysterychunkhax,
For installation instructions and FAQ, see smd.salthax.org,
For a a technical writeup on the exploit itself, see here

I took out the "smd." in the link above (just to see if there was a "salthax.org" page), and..... :/

 

[Seriel]

I took out the "smd." in the link above (just to see if there was a "salthax.org" page), and..... :/

I get "A plugin is required to show this content"
What is it lol

 

[Ricken]

I get "A plugin is required to show this content"
What is it lol

Skeletor from He-Man banning a minion of his in meme style

 

[hab]

How to fine the exploited save file?

 

[Ricken]

How to fine the exploited save file?

Im assuming you're a Powersaves user? I dont think anyone has uploaded any exploited saves yet

If not, then just run the installer homebrew on your copy of PSMD. OP for details

 

[hab]

Once i run installer homebrew that is all i need ?

 

[Ricken]

Once i run installer homebrew that is all i need ?

Yep. Its a one-time thing asw, as after that you can hold select to load into a menu to install a new payload

just make sure its the right Payload

 

[hab]

does it work with CIA?

 

[Ricken]

does it work with CIA?

yes

 

[hab]

ok thanks

 

[GhostLatte]

dungeonhax is a better name

Does it really matter what it is called?

 

[Swiftloke]

So, to my understanding the payload does this:
An overflowed compressed buffer is loaded into memory. That overflow overwrites a memchunk pointer, which (somehow? Explain please) overwrites a function in the decompression method. The modified function copies the entire compressed buffer directly into the stack. This data is (somehow? More explanation please) interpreted as ROP which gspwn's the payload into .text, executing it (somehow).
I'm not a very good programmer, so if @shinyquagsire23 or someone else can explain the holes in my interpretation that'd be nice.

 

[chaosrunner]

Does it really matter what it is called?

meh i just think supermysterchunkhax is a bit too long

how bout smdhax

 

[JustAKirby]

It sucks that the games with exploits are hardly cheap (excluding ocarina of time)