Pokémon R/B/Y: Bringing arbitrary code execution to other games
ฝัง
- เผยแพร่เมื่อ 26 ก.ย. 2024
- 8F not only gives us control over the whole game, but over the whole console. With enough trickery and cartridge swapping, it's possible to use 8F/'ws m' arbitrary code execution to affect other games than just Pokémon.
GCL thread: forums.glitchci...
Item list for the "game reboot" proof of concept:
8F
Any item
TM43 x22
Moon Stone x1
Master Ball x147
Antidote x121
Escape Rope x176
Fire Stone x250
Parlyz Heal x21
Guard Spec. x32
TM45 x175
Great Ball x111
Carbos x1
TM33 xAny
Byte sequences for other setups. Use any generic 8F/ws m RAM writer to get the byte sequences somewhere into memory, then execute them. An example setup for this can be seen in this video: • Pokemon Blue: Running ...
Force boot game in GB mode:
F3 16 0B 01 FF FF 0B 79 B0 20 FB 15 20 F5 C3 00
01
Force boot game in GBC mode:
F3 16 0B 01 FF FF 0B 79 B0 20 FB 15 20 F5 3E 11
C3 00 01
Infinite Master Balls in Pokemon Crystal:
F3 16 0B 01 FF FF 0B 79 B0 20 FB 15 20 F5 3E 0A
EA 00 00 AF EA 00 40 3E 01 EA E2 AB EA E4 AB 3E
11 C3 00 01
SML2 credits warp:
F3 16 0B 01 FF FF 0B 79 B0 20 FB 15 20 F5 21 00
D0 11 E5 01 0E FF 1A 22 13 0D 20 FA AF EA 30 D0
21 37 D0 3E 3E 22 3E 01 22 3E EA 22 3E D5 22 3E
A2 22 3E C3 22 3E 1C 22 3E 02 22 21 E0 D0 3E 21
22 AF 22 3E D1 22 3E 01 22 AF 22 3E 1F 22 3E AF
22 3E 22 22 3E 0B 22 3E 79 22 3E B0 22 3E 20 22
3E F9 22 3E C3 22 AF 22 3E D0 22 C3 E0 D0
First, run SML2 and turn it off at the title screen (this is to set the SRAM data to non-crashing values).
Afterwards run the above code with 8F or similar item, then swap the cartridges. SML2 will boot to a white screen - press Start and go to any stage to trigger the credits.
ASM code for the infinite Master Balls setup:
pastebin.com/ra...
ASM code for the SML2 credits warp setup:
pastebin.com/ra...
Pokemon Red is so broken, you can even glitch other games with it.
I love it.
That pretty much sums up everything.
I need glitches for my pokemon yellow vc edition. I like this post though
Next Up: Curing cancer using arbitrary code execution and hot-swap
+
Liam Horner "now you're going to feel a slight pixelly sensation..."
lol
10/10
And suddenly, the amount of the sixth organ was increased by 128.
I like to imagine that Pokemon Gold and Silver was programmed by a team of Japanese Gameboy devs 8Fing a copy of Pokemon Red.
They were either bored or masochistic (because why program in machine code when assembly exists)
*Iwata has entered the chat*
ROM cannot be modified by 8F.
@@bottinator22 Yet
@@dimandore7633 That would require hacking the Gameboy hardware, which is impossible. Read-only memory is read-only memory. The only way to modify it is to manually modify it outside of the hardware. There is no modification hardware the Gameboy can access. Writing to ROM just switches the bank.
In other words, "How to Turn your Pokemon Cartridge into a Fucking GameShark." I love it.
HAHAHAHAh
Yet Another Brony more like "how to turn your pokemon cardridge into a fucking hack"xD
LPFan Ehm, No?
Matteo Giorgi why? a gameshark cant do what those glitches can
LPFan Uhm, neither an hack? You are not funny, you just stole the original comment changing the world "gameshark" with "hacks", followed by a cringy "xD". I repeat: ehm, No.
SML2 cartswap% run confirmed. Kappa
sml2 cartswap% run for agdq/sgdq 2017
8F is one of the most powerful glitches I've EVER seen in ANYTHING. The fact you can even DO this is amazing. You can literally do almost ANYTHING with this game and I love it! Pokemon RBY is one of those games that are the glitchiest ever, but they can only happen on purpose and it's rare you see that in a game.
the "AnyGame%" category for pokemon is really shaping up.
WHERE THE FK DO I FIND THE OPTION IN BGB TO LOAD THE GAME WITHOUT RESET
The only issue with using this in a speed run is the monstrous amount of time needed in Pokemon to set up 8F and to write code for 8F. If you start the time when you boot the game, though, this works fine.
Imagine you just watch a kid bike erratically around a field for 5 minutes, stopping occasionally to look into his bag, only for him to warp into a different reality and all your memories of him are erased
sheeeeeeeeeeeeeeesh
what memories?
what bike? who?
What are you talking about, I never saw any biker kid???
What kid?
1997: look under a truck for mew
2017: speedrun mario by cartridge swapping with a hacked pokemon game
AND fund mew under the truck. (MrCheeze)
kind sir may i ask you what the fuck is that cirno pfp
5:38 Oh professor Oak what a soothing voice you have.
If we ever come in contact with alien civilizations, this is how I imagine their communication would look like.
someone knows where or how can i find or make more of this glitch sounds? is one of my favourite things in pokemon glitches
odioalospoopers search for game corruptions.
@Olliecyclops I think all that noise roughly translates to "YOU AIN'T FINISHING THE POKEDEX."
i think that professor oak forgot how to talk
Pokémon is so broken, it had to let other games know
Pokehero true
So it's basically a way to turn any copy of Pokemon Blue/Yellow as an extremely elaborate and hard to use but working Game Shark.
it's speedrun legitamate though, since it's not third party hardware.
@@involuntaryascetic3602 *is it, though?*
You have to clear your game before you can start playing, starting with a save file 2 minutes away from the final boss isn't allowed. Starting with precorrupted RAM may not be considered legal unless cart swap is its own category with specific rules on how you're allowed to do it.
@@shawnjoseph4009 That line of thought gets wayy more complicated though with consoles that don't properly clear their RAM between reboots. If starting with a dirty RAM or SRAM is not allowed (keep in mind, games almost never fully clear SRAM when you delete all saves, and sometimes cartridges came with nonzero SRAMs straight out the store, and a clean SRAM is to the game a sign of a dead battery or a bootlegged copy). With that in mind, what even _is_ a clean SRAM? There's no decisive, all-cases-fit answer. It has to be defined in a game-by-game basis by their communities. Often they settle with the good enough "Just tell the game to delete all save slots before you begin." though, unless that isn't good enough for any reason. If you deleted your Pokémon and SML saves before going through this setup, and time began in the Pokemon setup, you'd probably be legal in some ACE-dedicated, "corrupts memory" kind of category.
It can't be considered legitimate thanks to it never actually "booting". This is copying the boot code from cartridge, patching it, and executing it from RAM, not the intended address on ROM.
@@davidmcgill1000 If the boot code is executed (even in an altered state) the game has technically booted.
ACE exploits are their own category that involve exploiting game breaking glitches to hack and reprogram the game using the controller alone, without modified hardware or modified game cartridges.
This might as well be allowed under its own category of ACE, which is why TheZZAZZGlitch commented the possibility of a cartswap% run for Gameboy games. However, I'm not confident it'll be done extensively if Pokémon is the only starting point, and all they do is hack the games to skip to the ending. That concept gets old fast.
However, with ACE you can do anything. Patching the games to code new powers in, for example, or coding in mechanics from other/later games might be interesting.
at first, all we could do is duplicate master balls, then we could encounter any pokemon, then we could get any item, then this happened.
It really is amazing to see how far the Pokemon glitching community has come from the days of playground Missingno rumors
@@ErikTheCleric yeah no shit right! One guy did a video of a TASed ACE of pokemon yellow and was able to do some crazy shit
@@djstapler the guy turned the game into pokemon gold, then into tetris, then into super Mario bros, then he got professor oak to sing Still ALive, and then he played a spongebob clip all on the same game
@@skapaloka222 link me
@@asackboyplush6508 th-cam.com/video/Vjm8P8utT5g/w-d-xo.html
playing pokemon red crashes paper mario
make it happen
lol
Nikitosnekit :D Maybe with the transfer pak?
Maybe with Pokémon Stadium's GB tower?
alas, there isn't a paper mario for SNES, or you could use an exploit like what TASBot used one year to take control of the SGB, then taking over the console using the SGB, then crashing Paper Mario.
In all seriousness, could you use this with any SNES game with the Super Game Boy? If so, this glitch goes really far.
Gen 1 is so broken it breaks every other gameboy game by extension. That's just special.
What do you think your doing?!
*YOU'RE CROSSING THE STREAMS!*
you're x2
WHEN WILL YOU LEARN THAT YOUR ACTIONS HAVE CONSEQUENCES!
Luke Turner
I'm crossing the streams without touching the stream.
so are you using a bridge?
MinecraftGuy8567
Yes. The bridge is called RAM.
Can you use arbitrary code execution to hack into people's bank accounts?
Can you play Pokemon R/B/Y on an ATM?
I mean, a lot of ATMs do run Windows CE...
rainbow_lizard Sure, just supply your SS# and account info and I'll show you how! /s
If you can find an ACE glitch in your bank, yes.
@@npc6924 if you can, you'd be making a lot of money
You have gone farther than any glitcher ever. This video should go viral.
+
We need to spread the word
Imagine any% speedruns of an x game where the speedrunner starts the run at pokemon R/G/Y, creates a 8F code, swaps the game and execute it in order to trigger the end credits of the x game, thus getting a new WR
@@daridon2483 For excruciatingly long or difficult games, it could actually hit a wr. Now all we have to do is figure out a way to get it to work on other consoles or escape emulators and the sky is no limit
@@jackmoseley4959 well the time from boot to credits is a few seconds
Oh wow, I'm very impressed. I was NOT expecting to be outdone this hard. Taking control over not just a single target game, but ALL possible target games, by leaving the power on and pausing execution in RAM during the cartridge swap? That's a genius idea.
However, with anything that depends on extreme corner cases of the console, hardware tests are extremely important, you can't rely on emulators to get everything right. Therefore I would recommend not treating any of this as "confirmed possible" until such tests have been done - ideally on all of the GB, SGB, GBC, and GBA.
(If this works at all, I actually think it's fairly likely that the GBA will work, because unlike in my own setup, power is never turned off when switching cartridges here. This is significant, because it would mean the Game Boy Player would also work, and therefore that it is possible to capture high quality footage of the phenomenon.)
The GBA restarts whenever you extract a GB/C cartridge unfortunately. I've already tried it :(
Ah, too bad. The Super Game Boy would also allow recording footage, though - albeit at the cost of not being able to play GBC exclusives. So be sure to try it out as well.
(It's too bad Glitch City got the hug of death, I'd love to read the full discussion around this.)
A GBA SP is the only console I own unfortunately. I set up a script in Crystal with ACE that would allow me to extract the cartridge and insert other Crystal cart in order to pass the RAM state of the former to the second. It works on an emulator but without a second Crystal cart and a GBC I can't test it in real hw lol
Incidentally, where can I find the "load ROM without reset" option in BGB? My copy of the emulator doesn't even have a file menu to begin with, only a right-click menu that includes no such option(??)
In the debugger's top menu. File -> load ROM without reset
Pokemon is so glitchy, it can rewrite other games entirely!
More like the glitches in new games are much less useful. They're mainly just crashes, lag, or graphical issues. They're protected by modern operating systems, so buffer overflows and such usually throw an exception or trigger a segfault. Anything resembling ACE would just be a security flaw.
On the other hand, glitches in Minecraft are interesting and unique in their own way, but still nowhere near ACE.
The solution is to execute arbitrary script code, instead. :D See GTA:Vice City script stack pointer underflow
Gen 1 WAS pretty sloppily programmed...
@Alex Olmsted Not really - it just had a lot of problems and issues that were addressed in the generations that followed it.
Alex Olmsted no it was actually very well programmed for its time, it was the limitations on hardware that prevented them from having the luxury of throwing in tonnes of anti cheat/hacking code. gen 1 pokemon games are just good examples of what happens when companies don't/can't implement anti cheat systems
This is it. This is the pinnacle of glitches. We'll never again find something as amazing than this...
...is what I thought the _last_ time I watched an ACE video. Seriously, I don't know how this could be topped, but I know it's going to be. And when it happens, we'll be discovering more and more possibilities until the end of time.
keep up the good work!
+
fourth dimension romhacking in a three dimensional world using two dimensional games. so next level that the level counter overflowed.
So the Sun/Moon Missingno dream is dead. Think you can revive it?
5:38 And if you look to your left, you'll notice Dr. Doolittle, hard at work practicing his variety of animal languages and dialects.
You just broke speedrunning..... for LITERALLY EVERY GAME EVER ON THE GAMEBOY
Now every GB game can be theoretically given any% cartswap runs...
But other run genres are safe. It's not like this will replace all other non-cartswap runs, it's just gonna add options.
famous1622 Nah, like he said some of these ACE's are too big to fit the Gen I inventory, so he did it using a RAM writer. Any game where the ACE is too big for the inventory is gonna be considered a TAS run.
...but imagine the games that will fit it!
***** Well RAM writers can still be made to be position and keypress-based, so humans can write RAM too.
3l H4ck3r C0mf0r7 Huh, really? Even cooler then. May any% cartswap rise
You would have to be pixelperfect though. But that is something a human can do! Performing thousands of subframe-perfect inputs in a row is not.
"Lavender Town. The Nobel puple town" With that green overlay? Yeah. Right.
it's a color palette not an overlay
New pokemon run: AnyAny%, you credits warp to the end of any game as fast as you can, the more games in a row the better
4:21 Um, Professor Oak, I don't speak body parts
Oh man if this doesn't make it into GDQ somehow I'm going to be so disappointed.
Well, what do you even _call_ the run?
well since speed runs with glitches are allowed it needs to go in.
Pokemon%
Next there's going to be arbitrary code to run Game Gear games on a Game Boy
Game Gear carts can't fit in a Game Boy. :P But since the two run on very identical processors, maybe porting games from one to the other is possible. GBZ80 has slightly different instructions than normal Z80. I modify the 8-bit Sonic games for the Game Gear (and Master System), so diving into GBZ80 really wasn't difficult at all for me. (I actually have been wanting to port Red to the Game Gear myself... Or maybe Sonic Chaos to the Gameboy. xD But I doubt I'll ever get around to actually attempting to do so...)
Has Science Gone Too Far?
Well there's a GB emulator for TI-84+ calculator. It runs pretty well, the drawback: converted ROMs are often larger than the entire flash memory of the calc
I've been waiting for some insane banjo kazooie level cartswapping mischief. Your channel never stops delivering
... so now we're not even glitching or reprogramming Pokémon games anymore.
Now we're just flat-out reprogramming innocent, unrelated games _with_ Pokémon games.
How can this shit be SO broken!? How is this a thing!? Stop!
You need to stop! Haven't you done enough already... x'D
Ani Ga they need to stop! They *will* break the universe! I'm not kidding!
I am fucking amazed. This game is so badly programmed you can _manipulate the fucking console itself_ and do almost anything you want provided you know what you're doing.
We finally did it.
Ladies and gentlemen, we have achieved true Stop 'n' Swop functionality.
Wouldn't Rare be proud.
5:38 Imagine you're a young new trainer, and are ready to start your Pokémon adventure. You head to the lab of your local professor, and open the door, eager to get your first Pokémon.
But upon opening the door, you find the lab is featureless, white, and void of, well, anything in general.
You are greeted by a figure; pale, motionless and with white, lifeless eyes. His face frozen in a stern glare.
It's the professor, just standing there. He stares blankly at you for a moment, then slowly opens his mouth.
Without any other movement, he starts screaming at you in strange electronic sounds.
He promptly disappears from view, with the only hint of his existence being fading echoes of electronic noises. Leaving you to wonder if he was ever there to begin with.
In his place, 3 odd looking Pokéballs appear, each with strange markings.
The only starter Pokémon availabe to you are MissingNo, M, and an unidentifiable ghost.
What do you do?
colapse and close my eyes forever
Wait, did - did you just turn Pokémon Red into a GAME GENIE?! D:
That is BEYOND rad! :D
THANK YOU ZZAZZ
it could probably do more than a game genie, or at the very least, be alot more precise then a game genie
2016 and we are still finding out new things about Pokémon R/B/Y and the good ol' GB(C)....
*Cartman voice* "I love you guys!"
After seeing the GCL thread I was sort of expecting a video like this to come from you and I'm glad I was right. :)
I already have a working setup in my Pokemon Crystal (spanish) cartridge, that delays the game for around 5 seconds (disabling interrupts too) using ACE with bad clones. The idea was to swap the Crystal cartridge with another one before the execution resumes, so the second one gets the RAM state of the first one and can get the save data of the first one upon saving.
Too bad, I need a second Crystal cart and a GBC, since I only have a GBASP right now and it restarts in GBA mode when you extract the cart. It apparently works on an emulator though. Heck, I can't evendo the trick of extracting and inserting back the same cartridge without the game crashing/restarting because I'd also need a GBC.
github.com/AntonioND/gba-switch-to-gbc
That only works on the GBA Micro. Crystal_ said that he has a GBASP.
There's a physical switch in the upper left of the cartridge slot when looking at a GBA or GBA SP right-side up. This is why GBA cartridges have that groove in the corner. You could maybe try taping it down or bending it slightly so it stays flush even without a cartridge.
Has science gone TOO far?
Your exploiters were so preoccupied with whether or not they could they never stopped to thing if they should.
Yup! Don't try this at home kids, you may just open a portal to the glitch dimension!
Arceus forbid you actually try it on real hardware! O.o
FoxMan
I say science hasn't gone too far enough
@@ReshiLuna i have one of those Portals getting it is fust 10 cubic Meters of consoles in a Portal frame Set it on fire and do a ritual dance
Playing pokemon yellow...
*CRASHES PAPER MARIO*
So does that mean N64 ACE is possible with the transfer pak? SM64 0 A Press run
Hey, the A presses in the setup count too.
Make it 0.5 then
first we need to talk about parallel universes
it is possible, but only games that support game pak
sm64 doesnt support it but pokemon stadium does
The N64's RAM only has a lifespan of one second after a game is shut off, so you'd either need insanely fast arms & hands or an ACE that can extend the lifespan of said RAM to a reasonable length of time.
That moment when something so thoroughly exploited you can use it to exploit other things.
But can you do it in half an a press?
Boorider7 not without crashing Paper Mario.
How many a presses does it take to do ace on Pokemon? If you said 0 your wrong, if you said 0.5, while it is true you can do ace in 0.5 a presses, we can do better, we can do it in 0.25 a presses. XD
Stop 'n Swop 3.0
Rare would be proud
Stop 'n Swop (original)
The Exchange (used in Hello's Mario fangames)
Stop 'n Cartswop (this)
"PLAYER AJDNNW"
I know what save you're using.
what?
That's the save from Twitch Plays Pokémon Crystal.
does zzazz run TPP? :0
This is genuinely incredible.
Especially running a gameboy colour game on an original gameboy. That's amazing.
I've seen a video on this, except it was a different (and rather obscure) game. I forgot the name of it. Anyway, was this inspired by that by any chance?
I think I also seen that video, I found it via Google Now.
That video was mine, and the obscure game in question was Magi-Nation. Actually, if you look closely in this video, you can see the forum post proposing their idea starts by linking it. :D
(The actual technical details of how the cartridge swap is carried out is rather different, however.)
Ah, thanks for that!
I will always be amazed by people who take the time and figure out these memory things
Theoretically, can you use this glitch to hotswap the Red and Blue cartridges and just continue from the same exact point, or will something break?
videogamemaniac83
good question
is there any limit to how much you can do in the original pokemon games?
At this point? No
Well, so far you can take over a GB/GBC (directly), or SNES (via the Super Game Boy), but other consoles are not yet possible. However there's a fairly good chance taking over the 3DS will become possible too, if the VC emulator has an exploit in it. :D
:D :D :D
probably yes. There is a limit to how much RAM the hardware has. If you want to simulate the universe with nice precision, you will probably run out of memory.
YK L It's important to remember that we have (theoretically) all the RAM of an N64, with limitations only being having only 12 boxes in 1 GB cartridge and up to 4 cartridges, along with however the hell ACE with expanded boxes works. So more than you initially thought, but again we're not creating a pocket dimension here. Just pocket monsters.
5:23
Someone finally finds that original "Pokemon Black" cartridge.
This is it. This is the pinnacle of Pokemon glitching... isn't it?
But in all seriousness, HOLY FUCK. You people are the Einstein of the GB era. Nintendo, your errors have given us a whole universe to work with, and it only took 20 years!
Holy f*ck. This did go beyond my imagination. I would have never guessed that Gen I Pokemon games are so broken, that you can actually program something to another cartridge. Btw, any news on 4 4? ;)
Would it be theoretically possible to use 8F to corrupt something in a gen2 game to, say, a legit celebi?
The amount to which the Game Boy and Pokémon red/blue have been retro-engineered is just... Waow :O
If it does work on the console, now I'm wondering if you could do something interesting with the 3DS virtual console.
Sorry for bringing this up 5 years later but I'd presume not. The ram values and execution are all sandboxed in the emulator, for the 3DS to load something from the values in the emulator would be fairly hard unless the 3DS has already been prehacked.
Now use Pokemon Red to Manipulate RAM addresses in Super Mario 64.
If only you could somehow use Pokemon Stadium to do this.
But first, we need to talk about PARALLEL CARTRIDGES.
Maybe on the GameCube's gameboy addon, we will be able to do this glitch, and manipulate the ram of the GameCube, then we can credits warp on Super Mario Sunshine!
And then we could use the manipulated GameCube ram to write a hack save file to a GameCube memory card, then put that memory card into a backwards compatible Nintendo Wii, and use it to credits warp Super Mario Bros Wii, then write some hack save dara to the SD card in the Wii, then bring it to a Wii u and (continues on forever eventually credits warping every game ever with every console ever)
Huh, I saw the MagiNation vid with a similar concept; this is pretty fascinating stuff, I didn't realize ACE could get this ridiculous.
Oh, Genwun, you gloriously broken mess of code.
Once upon a time my mind was blown by watching an ACE at AGDQ, now it's blown again.
Has anyone done these with actual hardware yet? I wouldn't do a video like this until you knew for sure, because emulators can never be completely the same as the actual hardware, no matter how one may try...
Depending how your target game is coded you might not even have to patch its init code. There might be some nice "run credits" subroutine you can call.
A similar trick was just found for the N64, which allows LoZ;OoT to beat Paper Mario.
Thats why I'm back here.
To anyone who might have had this idea: no, this doesn’t allow hotswap on the Pokémon Stadium emulator. Removing the GB cartridge instantly brings up the “problem with the GB Game Pak’s connector” screen, and there is nothing to do besides restarting the N64. (At least that’s what happened on my French Pikachu Edition N64.)
Speaking of the N64, achieving cross-game ACE on the N64 could be more useful than on the GameBoy, since there’s currently only one known N64 game with an ACE setup.
Super Mario Land 2 is a hint of what's to come
Pokemon Pancake confirmed
Well, there was also a Pokemon Gen 1 A Button Challenge too, so...
Cart swap doesn't work on GBA nor on GB Pocket. Original Gameboy still has to be confirmed, but is unlikely.
So only GBC then? Why so pessimist about the DMG?
Because AFAIK, the problem is caused by the GND pin disconnecting too early (this might be harmful to cartridge components btw), and the pin layouts are the same on DMG and GBP.
That's why :P
I would've thought it was the fact that the on/off switch locks the cart into place, meaning in order to even switch it you'd have to turn the console off first which defeats the point.
Of course there would be ways around that limitation but it seems the most obvious problem.
Yeah, but I laid my hands on a DMG for the first time a few weeks later, so I wasn't aware of that issue :P
The problem remains on Pocket GB, although someone of GLitch City Laboratories forums said it worked on theirs.
According to Cryo, the problem is the angle used to remove the cartridge.
you're going too far with this
it's time to stop
SuperMysticalGuy Nah we need to go deeper. YOLO!
we already had parallel universe memes and now this
aaaaaaaaaa
Never! We must know how deep the rabbit hole goes!
@AlternateLives But can you do it with half an a press?
i love pannenkoek.
iis time to start
So i found this out where if turning on a gameboy color with any game inside, but you quickly swap it with any original gameboy, the 'default palette' will change. Do you have any idea what could be causing this?
Benedani but cringy version
intredasting
I love concept of patching out ram clearing. I was thinking about how that would be an issue during the video and you addressed it perfectly.
5:38 what monstrosity has oak been developing in his lab
I don't understand half of it, but every time i watch one of your video, i become a little bit more interested in this !
That is absolutely nuts. Soon we will be runnung pokemon on a SML2 cartridge, or runnung a DS game on a GBC
is this stop and swop
that pokemon crystal GB dialogue is just how it feels to have an auditory processing disorder
With just the cart swap code, does that make any gameboy game playable in Pokemon Stadium, and any gb/gbc game playable with Stadium 2?
Can you use any of this to get control of the Pokemon stadium games?
"with a proper setup we could use any GBC along with Pokemon R/B/Y as an unnecessary elaborate save dumper" I fucking laughed so hard, lol.
5:38 Oak? I never knew you spoke Pokémon! You must of done lots of research then right?... yes?... um oak?... Oh it's a glitch... huh.
Oak: *appears*
Also Oak: *misunderstanderble garble*
5:38 Oak is about to give you the introduction when a horde of frenzied Pokémon bursts into the lab and slaughters everyone
I've been a fan since I first found you. You're really advanced now!
this stuff is why you are one of the best glitchers
Strangely, Super Mario Land 2 (1.0) has a bug to glitch below a level and fall into a representation of the ram for the gameboy. For blocks that Mario can interact with, he can change ram values (most will revert to their original state a frame later due to the game writing to the addresses in question).
This is absolutely brilliant. Well done!
"5."
-Professor Oak
"using 8F(/ACE) to speed run a Zelda game would be out of the question."
Oot
Now instead of starting in a different stage, Pannenkoek is going to start off his A press runs in a different game!
Good luck doing this with Pokemon Prism. Our crash handler also checks to see if something's being executed from RAM and calls crash screen if so. (Although you could force the debug menu up if you really wanted)
Btw, ProjectRevoTPP here. TPP says hi.
EDIT: Oh, wait, darn! This starts with a di instruction. That gets around our crash handler. CURSES!
Btw, error codes here:
; err codes
; 00 = rst 00
; 01 = rst 38
; 02 = division by zero
; 03 = invalid character
; 04 = text script runs asm code outside ROM
; 05 = code isn't running in ROM (under normal conditions) (PC >= $8000)
; 06 = stack underflow (SP >= $c100)
; 07 = stack overflow (SP < $c000)
; 08 = invalid build number (loaded a savestate from another build)
; 09 = invalid script command
; 10 = invalid command for cmdwitharrayargs
; 11 = script stack full
Just read the forum at 0:38
When you program in "Lemonades", "Heal Burn" and "Bicycle"...
Does the GBC use extended VRAM to display text separate from the layer graphics like a PC? Because the text glitches up and the Zelda Oracle games apparently use proper ASCII values for text, with macros to save space...
Here comes Professor Oak to demonstrate every Pokemon call ever!
This video is 4 years old, any day now we’ll see a news story about this guy managing to transition the arbitrary code to modern software using hot swaps & obscure backwards compatibility peripherals until he’s got into the pay-to-win era of gaming, from there the code finally executes and he gets unlimited money IRL.
Hi!
Can I use your clips for making "We are number one but every one replaced with 4 4's true cry but at the ed of every "pikachu" start "pokémon advaced" from italian pokémon advanced opening, every time getting more slowly, satanic and distorted"?
I'm watching on mobile and all of the text is too small/fast to read, no voice really hinders my appreciation for such a great thing for the retro gaming community
5:35 man...I mean...Professor Oak, that was...very educative...
Perhaps one day, we'll see "Catching MissingNo. Crashes Paper Mario (and other outrageous ways to make Pokémon Gen 1 break _non-Pokémon_ games)".
Returning to this video 7 years later, it would still be really cool to see if you could somehow modify G/S/C to have the HM for surf in the PC or on a Pokemon, and the badge to use it, so that you could surf to Kanto and start from there! 💙 I have waited to see that video for 7 years (although I kinda did forgot about leaving the first comment), but I would love to see what things you could achieve with this!
Wario: You can't defeat me.
Mario Speedrunners: I know, but they can.
Pokémon Speedrunners:
At this rate in 2021 we should be able to beat any game using arbitrary code execution
Just wait till someone manages to execute arbitrary code in games of different hardware (like one from a GB game to a GBA one, or from GBC to PS4/Xbox One X/Nintendo Switch)
Did you know that in Super Mario Land 1 if you either brake a brick and pause the game in mid sound effect it will disable the hi-hat sound but if you hit another brick with out pausing then the hi-hat sound in the music will come back same thing happens with the fireball sound not the fireballs that Mario shoots the big fireballs that the enemies shoot same with that sound for example in the first level when you hit one of those flying enemies and they just sit there a couple of seconds then they clear off the sound it makes when it clears off if you pause that sound effect will also kill off the hi-hat sound in the music the same with when you hit a koopa and it turns into a bomb the exploding sound also has the same affect but to do it you have to pause it in mid sound effect not after or else it won’t work in the music there are other sound effects in the game that will have the same affect when paused mid sound effect and when you jump and pause it mid sound effect then some other parts of the music is affected the and most of the other sound effects if you pause them in mid sound effect will affect other aspects of the music like for example if you go down a pipe into one of those coin areas and if you either jump and pause it in mid sound effect or pause the coin sound in mid sound effect then it kills the echo effect in the music until you either jump or get another coin without pausing then the echo effect comes back
Who were to know that Pokemon Gen I games would be capable of such magic.
7:15 Well, the music certainly puts the LOL in lol credits