The-Homebrew-Cloud/ROBChain
2
0
Fork 0
mirror of https://github.com/wiiu-env/ROBChain.git synced 2024-11-16 15:59:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update README with build instructions

Browse Source
This commit is contained in:
jam1garner 2019-01-18 17:05:13 -05:00
parent e55751d908
commit 67f5398d00
1 changed files with 24 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
README.md
View File

@ -3,7 +3,30 @@ PoC exploit for Super Smash Brothers Wii U to get arbitrary ROP execution under
Can go over any fighter (and possibly article) to gain arbitrary code execution (Only ROP atm). This is a variation of contenthax based around MSC (the main character scripting language) exploiting a heap overflow to gain arbitrary read/write within the MSC script. Use [pymsc](https://github.com/jam1garner/pymsc) to build. Can go over any fighter (and possibly article) to gain arbitrary code execution (Only ROP atm). This is a variation of contenthax based around MSC (the main character scripting language) exploiting a heap overflow to gain arbitrary read/write within the MSC script. Use [pymsc](https://github.com/jam1garner/pymsc) to build.
### Video ### Build PoC
Required:
* Python 3.6 or greater in path as python3 (Edit Makefile for other configs)
* make
```
git clone --recurse-submodules https://github.com/jam1garner/ROBChain.git && \
cd ROBChain/poc && \
make clean && make
```
### Install
Take the generated exploit.mscsb and install it in a patch over
```
/data/fighter/[fighter]/script/msc/[fighter].mscsb
```
then install via SDCafiine or fs contents replacement.
### Video of PoC
https://youtu.be/u3qKsbGPgn0 https://youtu.be/u3qKsbGPgn0