mirror of https://github.com/wiiu-env/haxchi.git synced 2024-06-28 12:16:05 +02:00

Persistent WiiU DS VC Exploit

Go to file

orboditilt 2ff7a483fe Execute a given `code550.bin`, update readme		2019-01-24 17:31:24 +01:00
.gitignore	Remove everything to again have a simple and clean PoC with brainage.	2019-01-24 13:40:18 +01:00
brainage_defs.s	Remove everything to again have a simple and clean PoC with brainage.	2019-01-24 13:40:18 +01:00
coreinit.s	Switch to Mii Maker after calling the payload.	2019-01-24 17:22:30 +01:00
haxchi_rop.s	Switch to Mii Maker after calling the payload.	2019-01-24 17:22:30 +01:00
haxchi.s	Remove everything to again have a simple and clean PoC with brainage.	2019-01-24 13:40:18 +01:00
Makefile	Execute a given `code550.bin`, update readme	2019-01-24 17:31:24 +01:00
README.md	Execute a given `code550.bin`, update readme	2019-01-24 17:31:24 +01:00

README.md

Haxchi

This is the continuation of Haxchi from FIX94 (initial PoC by smea).

Usage

Put a payload code550.bin in the root of this project.
This payload should be statically linked to 0x18000000, and is called inside a thread.
Make sure to exit this thread via OSExitThread(0);, afterwards the rop switches automatically to the Mii Maker.

An example payload which perform the kernel exploit can be found here.

Notes

Currently this ONLY executes a given code550.bin, nothing usable for the end user. Only one game, no CFW, no coldboothax, nothing.

Dependencies

armnips and zip

credit

smea, plutoo, yellows8, naehrwert, derrek, FIX94, dimok and orboditilt.