A magician's secrets....
This post is mainly for the staff - (basically anyone who has created a guide / knows the ins and outs of the Wii). But as I was modding, using the step by step guide - I was thinking - Ok I see how it says to install these wads, and use these apps - but how in the world did these geniuses figure out HOW to make these wads and create these apps. Believe me, I never underestimate a computer programmer's capability to reverse engineer a particular product... and I certainly am no computer programmer.
So I guess my question is this - how does one even begin to crack the wii in the first place? Did you have to start with a modchip to first understand how the Wii worked internally - so producing things like Letterbomb would be possible?
I'm just confused (and impressed) by the fact that you start with what is essentially a closed platform - which did not even present the opportunity to create a program to hack it - and now there are dozens upon dozens of homemade applications that can be used on it. This, obviously is not a pressing issue - but I was just curious.
Most of the history is documented on the hackmii blog. It went something like this-
First other was the mod chip allowing you to play backups of retail games.
Then other was the twezzer attack where the common key was extracted from a running Wii with a pair of twezzers, with that they could decrypt the contents of Wii disc and examine the files.
Then the fakesign bug "trucha bug" was discovered, allowing custom code to be loaded on a Wii via disc with a modchip.
Then the twilight princess buffer over flow was developed allowing code to be loaded from an SD card without a modchip.
Several homebrew loaders where made, like loadmii, but the HBC channel became the king as an installable channel.
The trucha bug was killed with system menu 3.3, but it could be restored by downgrading back to 3.2. Many more iOS and system menu exploits where found. To hack the Wii you need two exploits, one to load an app, another to install to nand. There have been a lot of exploits, many have been fixed with system menu updates, just to be replaced by another.
Most of the debugging to do this is done with a USB gecko.
That is about all I know, the exploits are well documented at wiibrew and the hackmii blog has many interesting posts following the above developments.
Sent from my Nexus 7 using Tapatalk 2
Wow, that's pretty much exactly the answer I was looking for, thank you for all the details. And I must say, without your guide, I would never have been able to mod my wii, so thanks for that too!