|
|
|
Geremia releases app to get dvdkey/fw from LiteOn DG16D4S
|
|
|
jpizzle
Senior Member
|
14. October 2010 @ 21:17 |
Link to this message
|
Geremia has released an app to get the DVDkey/Firmware from the LiteOn DG16D4S
Quote:
I had no time, no will and no more than 2 drive to test, and i'm not willing to support it too much, it's just a proof of concept.
It can contain bugs and it's not an idiot proof app.
I spent 2 months of spare night-time on this, from decapping to fullrawdump, passing by descrambling fw, reversing fw, bruteforcing, finding usefull cdb commands, bugs and tricks. This is the result, not the beginning of something else.
Since it's my hobby, i'm free to do what i like, just enjoy it or hate it, i dont' care Smiley
Slim liteon is well detectable and also lockable to a permanent read-only SPI flash, it's just a matter of MS to push the red button.
Tarablinda v0.4b
Usage : Tarablinda [SATA PORT] [dump|erase|rewrite] [file to flash]
Example: Tarablinda E480 dump
Example: Tarablinda E480 rewrite newfw.bin
Special: Tarablinda E480 dump full
Experimental risky fulldump
Tarablinda is a collection of hacks and tricks which i discovered during hw and fw exploration.
It's only a proof of concept, I take no responsibility for any damage it may causes.
I've checked on Via controller (with drivers removed) and Intel ICH7 several time, against 2 different drives with same FW revision.
There could be different FW revision out here, it could not work for several reasons.
dump:
it dumps the dvdkey and checks it with MS drive auth protocol,
like the console does everytime you poweron, so it's good for sure.
It's not a destructive/invasive dump.
It dumps also serials (1FFE0 area)
It also dumps the whole dvdkeyarea, included the latest 0x10 bytes of such area, which are unique per drive too.
It also dumps sectors 3Dxxx 3Exxx
Dummy.bin is nothing else than a blank file with dvdkeyarea, 3D000-3EFFF and serials in place, not jf compatible.
//////////experimental-risky//////////////////
dump full:
Like above, then checks if 3D-3E sectors are the known ones, rewrites 3E with patched code to make the fw
send us the full dump.
It's a little risky cause we can't know for sure if the dumped 3D-3E sectors are really that sector numbers.
Since scrambling the same data at different addrress results in different scrambled data, we can be quite sure.
But again, this is beta software and consider you are risking on your own, it's your choice.
Erase and Rewrite(which is an erase+write) are mainly for studying purpose
Unless you have a full dump of your drive,
erase and rewrite are not recommended for the most
Special thanks to Kai Schtrom - Maximus - TeamModFreaks
As usual, use at your own risk
Geremia
Download: HERE
|
|
Advertisement
|
 |
|
|
Senior Member
|
14. October 2010 @ 22:31 |
Link to this message
|
|
Good old Geremia. This is great, and I'm wondering about his impeccable timing and his effect on all things scene related.
"All drives should be updated to Lite Touch + (LT+) firmware if playing on XBOX live. Samsung drives and pre-78/79 Hitachi drives do not utilize AP 2.5. All other drives are considered to be detectable by Microsoft (YMMV). Make sure all rips are ABGX verified, contain SSv2, and patched AP2.5 (where needed). XGD3 must currently be burned on new drive with PC Burner Max firmware for 100% rip. All modded consoles can be potentially unsafe for use on XBOX live."
|
|
coorva
Suspended due to non-functional email address
|
14. October 2010 @ 22:39 |
Link to this message
|
|
aw man,,edited by ddp is going to hate you,,
This message has been edited since posting. Last time this message was edited on 15. October 2010 @ 15:26
|
AfterDawn Addict
2 product reviews
|
15. October 2010 @ 14:33 |
Link to this message
|
|
There is more than 1 FW version out there so be aware that this may or may not work for you.
Edit -- Looks like it is working with FW version 9504 but not 0225.
This message has been edited since posting. Last time this message was edited on 15. October 2010 @ 14:54
|
|
widowmaka
Member
|
15. October 2010 @ 15:48 |
Link to this message
|
|
|
AfterDawn Addict
2 product reviews
|
15. October 2010 @ 15:56 |
Link to this message
|
|
|
coorva
Suspended due to non-functional email address
|
15. October 2010 @ 16:43 |
Link to this message
|
|
that looks real good,,i think there going to wait after the the november update,,or even after christmas,,when all the good boys get there slims from under the tree,
microsoft after a ban wave |
|
widowmaka
Member
|
15. October 2010 @ 16:49 |
Link to this message
|
|
no it will be before crimbo
|
|
coorva
Suspended due to non-functional email address
|
15. October 2010 @ 16:55 |
Link to this message
|
Originally posted by widowmaka:
no it will be before crimbo
you think so??,,that would be cool,,
microsoft after a ban wave
|
|
widowmaka
Member
|
15. October 2010 @ 17:15 |
Link to this message
|
|
c4 told me :)
|
|
coorva
Suspended due to non-functional email address
|
15. October 2010 @ 17:21 |
Link to this message
|
Originally posted by coorva:
aw man,,edited by ddp is going to hate you,,
sorry ddp,,i did not know how out of control this has gotten,,no more fuel,,
microsoft after a ban wave
|
Senior Member
|
15. October 2010 @ 20:58 |
Link to this message
|
|
Nice link widowmaka, it has been a while since I had to check that page...haha. If indeed the solution c4eva is developing, gets released before Christmas this year...anytime soon for that matter...it will be be a MAJOR blow to Microsoft's sales...our annual banwave tradition will indelibly change as well!
"All drives should be updated to Lite Touch + (LT+) firmware if playing on XBOX live. Samsung drives and pre-78/79 Hitachi drives do not utilize AP 2.5. All other drives are considered to be detectable by Microsoft (YMMV). Make sure all rips are ABGX verified, contain SSv2, and patched AP2.5 (where needed). XGD3 must currently be burned on new drive with PC Burner Max firmware for 100% rip. All modded consoles can be potentially unsafe for use on XBOX live."
This message has been edited since posting. Last time this message was edited on 15. October 2010 @ 20:58
|
|
Advertisement
|
|
|
|
widowmaka
Member
|
16. October 2010 @ 07:07 |
Link to this message
|
Originally posted by MrGreaser:
Nice link widowmaka, it has been a while since I had to check that page...haha. If indeed the solution c4eva is developing, gets released before Christmas this year...anytime soon for that matter...it will be be a MAJOR blow to Microsoft's sales...our annual banwave tradition will indelibly change as well!
true true.
|
|
