2016-11-28 05:35:13 +01:00
|
|
|
# Haxchi
|
2016-11-07 02:32:23 +01:00
|
|
|
|
2019-01-24 13:40:18 +01:00
|
|
|
This is the continuation of Haxchi from FIX94 (initial PoC by smea).
|
2016-11-10 04:52:25 +01:00
|
|
|
|
2019-01-24 17:31:24 +01:00
|
|
|
# Usage
|
|
|
|
|
Put a payload `code550.bin` in the root of this project.
|
|
|
|
|
This payload should be statically linked to 0x18000000, and is called inside a thread.
|
|
|
|
|
Make sure to exit this thread via `OSExitThread(0);`, afterwards the rop switches automatically to the Mii Maker.
|
|
|
|
|
|
|
|
|
|
An example payload which perform the kernel exploit can be found [here](https://github.com/wiiu-env/haxchi_payload).
|
|
|
|
|
|
|
|
|
|
# Notes
|
|
|
|
|
|
|
|
|
|
Currently this ONLY executes a given `code550.bin`, nothing usable for the end user. Only one game, no CFW, no coldboothax, nothing.
|
|
|
|
|
|
2016-11-28 19:05:58 +01:00
|
|
|
## Dependencies
|
|
|
|
|
|
2019-01-24 13:40:18 +01:00
|
|
|
armnips and zip
|
2016-11-28 19:05:58 +01:00
|
|
|
|
2016-11-07 02:32:23 +01:00
|
|
|
## credit
|
|
|
|
|
|
2019-01-24 17:31:24 +01:00
|
|
|
smea, plutoo, yellows8, naehrwert, derrek, FIX94, dimok and orboditilt.
|
