Extracting the ECC Key without xyzzy June 02, 2009 04:17PM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 02, 2009 07:33PM | Registered: 15 years ago Posts: 59 |
Re: Extracting the ECC Key without xyzzy June 02, 2009 07:55PM | Registered: 16 years ago Posts: 1,012 |
Even if the ECC key was on the NAND, it couldn't be extracted without getting the NAND key firstQuote
Sephiroth
as far as i know you can get the keys with a nand backup (using bootmii of course)...
Re: Extracting the ECC Key without xyzzy June 02, 2009 09:53PM | Registered: 15 years ago Posts: 59 |
Quote
daniel_c_w
from hackmii.com/2008/04/keys-keys-keys/
* One-Time Programmable Area: Inside the Starlet ARM core, there are a bunch of things:
1. SHA1 hash of boot1
2. Common key
3. ECC private key
4. NAND HMAC
5. NAND AES key
6. RNG seed
7. other stuff we can’t yet decipherEven if the ECC key was on the NAND, it couldn't be extracted without getting the NAND key firstQuote
Sephiroth
as far as i know you can get the keys with a nand backup (using bootmii of course)...
Re: Extracting the ECC Key without xyzzy June 03, 2009 12:03AM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 03, 2009 03:00PM | Admin Registered: 16 years ago Posts: 271 |
Re: Extracting the ECC Key without xyzzy June 03, 2009 08:19PM | Registered: 15 years ago Posts: 7 |
Quote
bushing
Um... the entire contents of OTP (including all keys) are tacked on the end of the nand.bin dump that BootMii creates. Xyzzy is officially obsolete.
The last 1K of the file contains both the OTP and SEEPROM; you can find the structure definitions here:
Re: Extracting the ECC Key without xyzzy June 04, 2009 12:56AM | Registered: 15 years ago Posts: 12 |
Quote
peter4432Quote
bushing
Um... the entire contents of OTP (including all keys) are tacked on the end of the nand.bin dump that BootMii creates. Xyzzy is officially obsolete.
The last 1K of the file contains both the OTP and SEEPROM; you can find the structure definitions here:
That being the case, how do I extract this final 1k from the nand.bin file?
Re: Extracting the ECC Key without xyzzy June 04, 2009 01:39AM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 04, 2009 10:05AM | Admin Registered: 16 years ago Posts: 271 |
Re: Extracting the ECC Key without xyzzy June 04, 2009 11:34AM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 05, 2009 07:10AM | Registered: 16 years ago Posts: 1,012 |
Re: Extracting the ECC Key without xyzzy June 07, 2009 03:41PM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 12, 2009 04:44AM | Registered: 15 years ago Posts: 4 |
Re: Extracting the ECC Key without xyzzy June 12, 2009 12:47PM | Registered: 16 years ago Posts: 1,012 |
Re: Extracting the ECC Key without xyzzy June 12, 2009 07:35PM | Registered: 15 years ago Posts: 7 |
Re: Extracting the ECC Key without xyzzy June 21, 2009 12:23AM | Registered: 15 years ago Posts: 116 |
Quote
acertain
WiiCrazy updated FE100's Key Grabber to extract the key from the nand.bin file. In his post he notes that he couldn't use the forgot-password link here, so I'm replying (this is exactly what I was looking for as well):
[wiicrazy.tepetaklak.com]
As for why you need the private key, it's explained here: [wiibrew.org]
Andrew
Re: Extracting the ECC Key without xyzzy June 21, 2009 01:21AM | Registered: 16 years ago Posts: 1,012 |
Re: Extracting the ECC Key without xyzzy June 21, 2009 12:01PM | Registered: 15 years ago Posts: 116 |
Quote
daniel_c_w
Can normal Wii software (games) access the keys?
Is there any trace of them in the unpacked savegames?
Re: Extracting the ECC Key without xyzzy June 21, 2009 08:22PM | Registered: 16 years ago Posts: 1,012 |
Quote
I.R.on
There are three pieces of information you can obtain from a savefile.
1. Console id
2. Mac address of wifi interface
3. Public ecc key of that certain wii
of that specific wii that the savefile is coming from...