BlueBomb Wii

BlueBomb is a known exploit that targets Broadcom's Bluetooth stack, which is utilized in the Nintendo Wii gaming console. This exploit allows for unauthorized access to the Wii's system and can potentially be used for malicious purposes such as running unauthorized software or modifying system settings.

The exploit takes advantage of a vulnerability in the Wii's Bluetooth stack and can be executed by sending a specially crafted packet to the affected device.

Due to the nature of the exploit, it is important for users to keep their Wii's firmware and software up-to-date to ensure protection against potential attacks utilizing BlueBomb.

Note: You will need a Linux computer to do this. Download the pre-built binaries from the releases page and follow these instructions (a detailed guide is available on WiiBrew).

• Disable your bluetooth service by running sudo systemctl disable --now bluetooth.
• Run bluebomb with the arguments to the app-specific payload and the stage1 you would like to run. Ex. sudo ./bluebomb ./stage0/MINI_SM_NTSC.bin stage1.bin for a NTSC Wii Mini's System Menu. You can also specify which hci device to use with bluebomb by adding before the stage0 and stage1 arguments. Ex. sudo ./bluebomb 1 ./stage0/MINI_SM_NTSC.bin stage1.bin to use HCI1.
• Start your Wii and navigate to the app that you are exploiting, for the System Menu you only need to turn on the Wii, you can leave it sitting on the Health and Safety screen.
• Turn OFF your Wiimote at this point. Do not let anything else connect to the console via bluetooth.
• Make sure you console is close to your bluetooth adapter, you may have to move it closer to get it in range, this will depend on your adapter.
• Click the SYNC button on your console. You may have to click it several times in a row before it sees the computer. You will know it is connected when bluebomb prints "Got connection handle: #" Stop pushing the SYNC button and wait for bluebomb to run, what happens will depend on what stage1.bin you are using. The one from this repo will load boot.elf off the root of a FAT32 formatted USB drive and run it. You can use the HackMii Installer's boot.elf from here to get the Homebrew Channel.

Important: The steps above will have disabled the bluetooth service on your machine to run the exploit. To enable the bluetooth service again run sudo systemctl enable --now bluetooth.

How to Homebrew the Wii Mini! (BlueBomb Tutorial) (Michael MJD)

https://github.com/Fullmetal5/bluebomb/issues

You can open an issue on this repo, or join the Wii Mini Hacking Discord.

v1.5

• Remove BlueZ dependency and refactor.

v1.0

• Initial Release.

• WiiBrew - https://wiibrew.org/wiki/Bluebomb
• GitHub - https://github.com/Fullmetal5/bluebomb