QJ.NET | Videos | Forums | iPhone | MMORPG | Nintendo DS | Wii | PlayStation 3 | PSP | Xbox 360 | PC | Downloads | Contact Us

Wii homebrew - Xyzzy v1.1
Posted Nov 26, 2008 at 9:00PM by Glenn M. Listed in: Wii Tags: Bushing, nand
Ó

xyzzy - Image 1


Bushing is back, and he brings the very useful Xyzzy v1.1 with him. Wii homebrew devs out there may want to give this thing a shot, 'cause it's very useful in extracting OTP encryption keys. It should automatically save the keys to a text file on your SD, but it also displays them on-screen if ever you need to write them down by hand.

xyzzy extracts the following data:
  • ECC Private Key - used for signatures in various places
  • Console ID - the unique identifier for your Wii
  • NAND AES key - used to encrypt and decrypt the Wii's NAND
  • NAND HMAC - used to generate or verify a hash of the NAND, and therefore judge its integrity
  • Common key (AES) - used to decrypt keys found on items distributed from Nintendo
  • PRNG seed - a random seed
  • SD key (AES) - used to encrypt and decrypt anything being written to/read from the SD card
  • Device cert - you Wii's personal cert

You've probably seen this before, but for information's sake, I'll put it here. This is what xyzzy does automatically.
  • Download IOS11 from the Nintendo Update Server
  • Patch it to remove the MEM2 protection (so the PPC can access all 64MB of it)
  • Patch it to allow it to delete itself later using ES_DeleteTitle()
  • Find an unused IOS slot (counting downward from IOS255)
  • Install the hacked IOS11 there
  • Reboot into the hacked IOS
  • Copy the private key structure from the IOS address space into MEM1
  • Reboot back into a sane IOS
  • Delete the temporary, hacked IOS
  • Display the keys on screen
  • Try to write them to a file on the SD card — keys.txt
  • Pause for 60 seconds to allow you to copy the keys down using pen and paper,if necessary
One last thing. It ain't pretty, but at least it no longer contains copyrighted code. Bushing reckons you only need to run this once on any given Wii, but it should be safe to run multiple times.

Download: Xyzzy v1.1


More on xyzzy:


   
 
237 Jumps  Custom Firmware 5.50GEN-D3 and 5.03HEN-C dated
217 Jumps  Custom Firmware 5.50GEN-D3 and 5.03GEN-C coming tomorrow
147 Jumps  Custom Firmware 5.03GEN-C released *UPDATE* CFW 5.50GEN-D3 now available
145 Jumps  Tiger Woods Wife Outrun Flash Game now out
111 Jumps  Custom Firmware 5.50GEN-D3 final released
46 Jumps  Dead or Alive: Paradise coming to PSP
28 Jumps  John Koller: motion control, 3D gaming, PSN for Sony in 2010
27 Jumps  FBI: console theft up 285% in the last three years
26 Jumps  PSP Comics will have audio commentary
25 Jumps  Erik Estavillo now has his own community site

Comments

by z32tt3z - 2008-11-27 12:19:36
bushing = sell out

how can he even still show his face in the homebrew scene after snitching to nintendo??? we dont need this guy anymore we have waninkoko!!!

Add New Comment




You must be logged in to post comments
Contact Us:

The QJ.net Network

RSS Feeds
Site Feed
QJ.NET RSS
Nintendo DS RSS
PlayStation 3 RSS
PSP Updates RSS
Wii RSS
Xbox 360 RSS
MMORPG RSS
Personal Computer Games RSS
iPhone - iPod Touch RSS
QJ.NET Forums RSS
Add QJ.NET
Add to My Yahoo!
Google Reader Subscribe with Bloglines
Add to your Kinja digest Subscribe in NewsGator Online
Subscribe with Pluck RSS reader Add 'www.qj.net' to Newsburst from CNET News.com
Subscribe with SearchFox RSS del.icio.us www.qj.net
Add to Technorati Favorite! Add to My AOL
furl! it Stumble for Treehugger!
User Favorites - December
Most Commented
MaGiXieN explains release.. (103)
Custom Firmware 5.50GEN-D3.. (73)
Brazilian senator wants cr.. (62)
Custom Firmware 5.03GEN-C.. (49)
FFXIII PS3 audio and video.. (47)
NPD Study: US kids as youn.. (44)
Custom Firmware 5.50GEN-D3.. (43)
Sony starts talking about.. (39)
PlayStation celebrates 15t.. (35)
Traveller's Tales to Sony:.. (35)
Final Fantasy XIII boxart.. (33)
Custom Firmware 5.50GEN-D3.. (32)
Tecmo's Quantum Theory no.. (30)
EA CEO wants to turn pirat.. (29)
Sony: Get a free game with.. (27)
Rumor: Logitech has PSP Go.. (24)
More Estavillo subpoenas -.. (23)
November NPD sales: hardwa.. (22)
Pokemon: the world of the.. (22)
Scan: New character confir.. (21)
Sony sells 440,000 PS3 uni.. (20)
Girlfriend dumps Andy Murr.. (20)
Buy two, get one free at B.. (19)
Time Magazine reveals Top.. (19)
iSuppli: Sony close to bre.. (19)
User Favorites - December
Top Jumps
Custom Firmware 5.50GEN-D3.. (2584)
Custom Firmware 5.50GEN-D3.. (947)
MaGiXieN: 6.xxGEN is not w.. (394)
Tiger Woods Wife Outrun Fl.. (356)
MaGiXieN explains release.. (354)
Custom Firmware 5.03GEN-C.. (231)
PSP Homebrew: CFW 5.03 GEN.. (180)
Custom firmware 5.50GEN-D.. (139)
Custom Firmware 5.50GEN-D3.. (104)
Wii homebrew - Custom IOS3.. (88)
Naruto Shippuden: Ultimate.. (85)
PS3 optional update 3.15 d.. (84)
PSP homebrew - DaedalusX64.. (79)
PSP Homebrew - PSPDisp v0... (72)
Sony starts talking about.. (71)
PSP homebrew game: PSP Mar.. (69)
PS3 is year's best platfor.. (69)
Sony sells 440,000 PS3 uni.. (66)
PSP Revolution v0.3 (64)
PSP homebrew - PSP Live TV.. (63)
PSP homebrew - DaedalusX6.. (61)
Sony: PS3 Slim could have.. (61)
PS3 3.15 system software u.. (60)
No plans for custom firmwa.. (59)
PSP homebrew - PSP live TV.. (58)

 Username: 
 Password:
Forgot password
New user registration

Categories Archives


Use of this Web site constitutes acceptance of the TERMS & CONDITIONS and PRIVACY POLICY
Copyright © 2009, QJ.NET. All Rights Reserved. Web Cluster 4.
Contact Us