Yifan Lu Announces HENKaku - A New Native Vita Homebrew Enabler for 3.60.

yifan_lu · Aug 7, 2016

Madridi said:
@yifan_lu

I have been trying for hours to get the offline files to work properly, but I'm failing. The instructions on github is a bit vague in the running section. I'll just list the steps I did here and maybe you can point out my mistake (if any?)

So for the server, I have xampp setup with a folder for wiiu exploit hosting, and a folder for 3ds for spidertools hosting.
In addition to having an apache server, it also has PHP support so it supposedly should the only server I need.

So here is what I did:
1- Downloaded the source
2- Created a vita folder on my server
3- extracted and compiled the source using this command: "build.sh http://10.37.86.113:80/vita/ http://10.37.86.113:80/vita/pkg"
- Note: This IP is my internal IP, not my external IP
- Note2: Both are using port 80, which is what the apache server is using
4- I copy the entire "Host" folder to "vita" folder on my server
5- I run http://10.37.86.113:80/vita/exploit.html on my vita
6- I get the welcome screen, and when I press ok, I get the famous C2-12828-1 error

Now, I have tried clearing cookies, rebooting, rebuilding database and all other conventional methods mentioned (with the exception of memory card formatting), but nothing changes.
Henkaku.xyz works fine so my vita is also presumably fine.

So, what am I missing, I'm not quite understanding the "running" section in github (non-GO implementation).. am I supposed to do something for stage1 and stage2?
At one point, I thought I may have to run http://10.37.86.113:80/vita/stage2.php before exploit.html or something, but that returned the word "nope"

Once I get this up and running, I'll probably write a tutorial on how to get this working.

Thanks

http://10.37.86.113/vita/stage2.php

That's your first param to build.sh

Madridi · Aug 7, 2016

yifan_lu said:
http://10.37.86.113/vita/stage2.php

That's your first param to build.sh

So:
- Do all of the above except change to this : build.sh http://10.37.86.113:80/vita/stage2.php http://10.37.86.113:80/vita/pkg
- Run: http://10.37.86.113:80/vita/exploit.html

Is that correct?
Nothing changed. I get the same result..

A user on wololo comments reported having success only with GO, and that the PHP didn't work with IIS for him on windows 8

Thanks for the help

Madridi · Aug 7, 2016

@yifan_lu

Just a follow up on the above. The setup you explained works fine with stage2.go .. php still doesnt work for whatever reason.
Now I'd need to figure out why PHP doesnt work..

Sonic Angel Knight · Aug 7, 2016

So can offline server hosting be ported to android with functional ftp not requiring filezilla?

memomo · Aug 7, 2016

chocoboss said:
Nice no surpris about the kernel access, we can write where standard user can't so it can be seen as a kind of privilege esclation I guess.

But we will have to think about what will we do when we will have access to full source code. Use it for HB only to get them better or going to evil piracy...

I wish if we could utilise kernel access to have some sort of EmuNAND

That would be awesome

chocoboss · Aug 7, 2016

Emunand or a kind of devhook ( back on 1.50 psp ) can be cool to get updated version of the vita. Something that would be nice is a perma patch so we don't need to launch brower bla bla bla. Signature / licence check patch can be cool also but we all know where it will lead lol

perkel · Aug 7, 2016

Does 3DS hardware allowed for emunand or emunand is possible as long as there is kernel access ?

Scarlet · Aug 7, 2016

perkel said:
Does 3DS hardware allowed for emunand or emunand is possible as long as there is kernel access ?

Well... 3DS already has emuNAND, so yeah? Anyway, this surely isn't the right place to discuss this.

Swiftloke · Aug 7, 2016

perkel said:
Does 3DS hardware allowed for emunand or emunand is possible as long as there is kernel access ?

If you take over the arm9 (security processor) then yeah you can use emuNAND on it. Not sure why you're asking here though.

perkel · Aug 7, 2016

ScarletKohaku said:
Well... 3DS already has emuNAND, so yeah? Anyway, this surely isn't the right place to discuss this.

? No 3DS doesn't have emunand from Nintendo. Emunand was made by gateway people.
What i am wondering is if somehow 3DS hardware was special in sense that it allowed for creatinon of emunand.

Also ton of people read all forums not only 3ds ones.

Swiftloke · Aug 7, 2016

perkel said:
? No 3DS doesn't have emunand from Nintendo. Emunand was made by gateway people.
What i am wondering is if somehow 3DS hardware was special in sense that it allowed for creatinon of emunand.

Also ton of people read all forums not only 3ds ones.

It's nothing to do with hardware. Once we have our own code running on arm9, we can set it up to redirect NAND read/writes to the SD card, as arm9 is what controls that.

perkel · Aug 7, 2016

chocoboss said:
Emunand or a kind of devhook ( back on 1.50 psp ) can be cool to get updated version of the vita. Something that would be nice is a perma patch so we don't need to launch brower bla bla bla. Signature / licence check patch can be cool also but we all know where it will lead lol

I think that would require boot access which is still not hacked and judging by what people said about Vita security it probably won't be for a long time.

3DS boot was hacked because nintendo didn't secure it properly.

Scarlet · Aug 7, 2016

perkel said:
Also ton of people read all forums not only 3ds ones.

Sure, but the 3DS forums are there to discuss... 3DS things? And the Vita forum for Vita things. Anyway, I'll leave it at that ♪

perkel · Aug 7, 2016

Swiftloke said:
It's nothing to do with hardware. Once we have our own code running on arm9, we can set it up to redirect NAND read/writes to the SD card, as arm9 is what controls that.

In other world kernel access ? or just arm9 arm11 specific hardware setup that allowed this ?

Swiftloke · Aug 7, 2016

perkel said:
In other world kernel access ? or just arm9 arm11 specific hardware setup that allowed this ?

Umm what do you mean? :wtf:

perkel · Aug 7, 2016

ScarletKohaku said:
Sure, but the 3DS forums are there to discuss... 3DS things? And the Vita forum for Vita things. Anyway, I'll leave it at that ♪

But we are talking about Vita here getting emunand. You can't talk emunand without 3DS and how this was achieved...

DrDaxxy · Aug 7, 2016

Swiftloke said:
It's nothing to do with hardware. Once we have our own code running on arm9, we can set it up to redirect NAND read/writes to the SD card, as arm9 is what controls that.

Once you can get your code to be executed on arm9 during the boot process.

Swiftloke · Aug 7, 2016

DrDaxxy said:
Once you can get your code to be executed on arm9 during the boot process.

Not nessescarily. Remember, the DS profile exploit, menuhax, and every other *hax can all be used to achieve emuNAND, and they take over while the system is already running. Though i don't really know how emuNAND works, I do know there's no need for arm9 to be taken over during boot.

perkel · Aug 7, 2016

DrDaxxy said:
Once you can get your code to be executed on arm9 during the boot process.

So they need to get into system boot very early and switch which system gets loaded.
So it isn't just kernel access but hack that gets into system startup very early...

damn i hoped this was achieved only by kernel access.

Swiftloke · Aug 7, 2016

perkel said:
So they need to get into system boot very early and switch which system gets loaded.
So it isn't just kernel access but hack that gets into system startup very early...

damn i hoped this was achieved only by kernel access.

No, he's wrong. You don't have to hijack arm9 before system boot.

@yifanlu

Card Collector

Card Collector

Well-Known Member

( ͡° ͜ʖ ͡°)

Well-Known Member

Well-Known Member

Onion Soup

Hwaaaa!

Well-Known Member

Hwaaaa!

Well-Known Member

Onion Soup

Well-Known Member

Hwaaaa!

Well-Known Member

Member

Hwaaaa!

Well-Known Member

Hwaaaa!

Similar threads

Popular threads in this forum