Check out this video about the arbitrary code execution exploit we found in Super Mario Bros.: The Lost Levels.
Full arbitrary code execution payload for Super Mario Bros.: The Lost Levels.
Disassembly of All Night Nippon Super Mario Bros., built on the common SMB2J disassembly with a compile time flag to switch between 2J and ANN.
Look at bowser frames for different framerules to determine the difficulty of a given 8-4 entrance framerule.
Adds level select and sockfolder information to relatively basic SMB1 romhacks.
Adjust firebar rotation in 5-4 to get good bars as small mario or small fire mario while losing minimal time.
Explore the glitched worlds of Super Mario Bros. There are some weird things hidden away in there.
Reference splits on a straight line, move up/down one step per framerule as you gain or lose time.
FPG right release locations for 1-1 and 4-1, BBG positioning reference, bot-generated TAS 8-2 setups, and various SMB hacks on github.
FCEUX Lua-compatible headless NES emulator running the QuickNES core. Blazing fast, built for brute forcing billions of input variations.
Run 6502 assembly files in your terminal with a tracelog showing cycle usage as it executes.
Converts NES ROMs and FCEUX CDL files into DA65 project files. Makes starting a disassembly a lot less painful.
NES/SNES input display for Windows. Supports keyboard, USB controller, and NES controller connected through an Arduino.
Custom resin-printed device with a PCB and firmware that detects NES latches and extends inputs between them to prevent dropped inputs. Writeup coming eventually, if I get around to it.
Everdrive N8 Pro modification that lets you store a RAM dump from a real cartridge by cart swapping to the Everdrive.
Modified Mesen build for RTA speedrunning.
Load your ROM and it generates a graphical map of the full game world from the ROM data and graphics. Shows hidden items, layouts, bomb orders, jump entrances and how many jumps are needed to remove blocks.
A full disassembly of "Jaws" for the NES. Hundreds of hours of work, so I hope someone reads it.
WIP disassembly, practice ROM, and a map generator that works with the original game and romhacks. Generates every room, store contents, enemy spawns with HP and damage, chest locations and contents, shop prices, and inn locations.
Assorted speedrun tools: answer key, console RNG state identifier, optimal keyboard pathing, and answer validation frame counts.
Tracks the overflow scoring system and what the graphics actually look like in-game for each revision and dip switch setting. Useful for high score attempts where the display turns into symbols and you need to strategically burn lives.
An RNG manipulation that guarantees a first drop orb in the second room of the game.
Map of the game laid out as it exists in the files. Shows chest contents and glitch navigation routes.
Answer keys for Wheel of Fortune Family Edition and Jr Edition on the NES.
Helped Kosmic figure out how to get past the kill screen in Donkey Kong.
Dying on the same frame you enter a store in Fantasy Zone (Master System) corrupts memory and writes random garbage. Mostly useless, but not fully explored. Yet.