|
i think i MIGHT have found a way to hack the Xbox
|
|
|
marcusj0015
Member
|
26. April 2011 @ 07:35 |
Link to this message
|
|
i think i MIGHT have found a way to hack the Xbox, probably not though, can anyone send me an Avatar file?
i want to see if Avatars are locked or signed or anything
|
|
Advertisement
|
 |
|
|
|
Modking30
AfterDawn Addict
|
26. April 2011 @ 08:07 |
Link to this message
|
|
Noob. Already done
|
|
marcusj0015
Member
|
26. April 2011 @ 21:24 |
Link to this message
|
Dont call me a n00b, i know more about hackong Windows and Xbox than you could ever know
Im talking about a way to run Xell on ANY console with ANY dash, im not talking about the DVD Drive hack which isnt a true hack, the Xbox is still secure, under MS control
|
Senior Member
|
26. April 2011 @ 21:52 |
Link to this message
|
|
I'm all ears.
|
Senior Member
|
26. April 2011 @ 22:27 |
Link to this message
|
|
lets see it or hear it?
|
|
marcusj0015
Member
|
27. April 2011 @ 00:02 |
Link to this message
|
DON'T FLAME ME
my idea is to take some unsigned file, such as an Avatar file, like where Avatars are stored, and gut it, and replace the guts, with Dashboard 4548, and hopefully, Xbox Avatar app would Buffer Overflow (hopefully) and the exploitable dashboard would load and be able to JTAG it
|
AfterDawn Addict
|
27. April 2011 @ 00:53 |
Link to this message
|
|
marcus, not to criticize, because I'm nowhere even near to being a hacker, as hacking is not my forté (it's not even my thirté, nor twenté) but anywé, that proposed hack seems too easy to be do-able. I hope to hell it can be done, as the world needs more JTAGs in it.
|
|
marcusj0015
Member
|
27. April 2011 @ 01:14 |
Link to this message
|
yeah, it does sound too easy to be done, but if we can find a way to load the dashboard .xex file, all the other files would load, i think that would be an awesome thing to do, but i need n Avatar save file, and i need to figure out how it works
oh, lol at anywé joke
|
|
marcusj0015
Member
|
27. April 2011 @ 01:14 |
Link to this message
|
yeah, it does sound too easy to be done, but if we can find a way to load the dashboard .xex file, all the other files would load, i think that would be an awesome thing to do, but i need n Avatar save file, and i need to figure out how it works
but i'm thinking it might buffer overflow, because as soon as the code is loaded it will try to run, and the fact that the entire kernel is like 7MB's which is much bigger than any REAL Avatar, so it wouldn't fit into the memory alloted
oh, lol at anywé joke
This message has been edited since posting. Last time this message was edited on 27. April 2011 @ 01:18
|
Senior Member
|
27. April 2011 @ 01:53 |
Link to this message
|
Not to burst your bubble either but that method has been approached and it has been deemed impossible without microsoft's magic key, again, another problem concerning efuses. You're on the right track though...that's what the best programmers in the community devoted a lot of their time to try and accomplish. If I find the threads relating to this topic over at the big boy's website I'll link you to them since you would understand the vernacular.
|
|
marcusj0015
Member
|
27. April 2011 @ 02:14 |
Link to this message
|
|
thanks MrGreaser
it's about time this bitch be blown the fuck open!
i noticed that the file i was using was an STFS file, AKA CON file
i'm gonna try a little more with it though, i think there's a few ways to approach this, such as using a good MS CON File, and a bunch of compliacated stuff, i'm not done with this method though
This message has been edited since posting. Last time this message was edited on 27. April 2011 @ 02:16
|
|
Modking30
AfterDawn Addict
|
27. April 2011 @ 16:57 |
Link to this message
|
Originally posted by marcusj0015:
thanks MrGreaser
it's about time this bitch be blown the fuck open!
i noticed that the file i was using was an STFS file, AKA CON file
i'm gonna try a little more with it though, i think there's a few ways to approach this, such as using a good MS CON File, and a bunch of compliacated stuff, i'm not done with this method though
lol, more than I could never know? I guess you know that my name is Kevin Mitnick, but hey what do I know.
|
|
marcusj0015
Member
|
28. April 2011 @ 02:57 |
Link to this message
|
|
1: i HIGHLY doubt that's your real name,
2: your "name" has NOTHING to do with Windows or Xbox does it?
good try, but now you look even more stupid that you had in the past
|
|
dagdaniel
Member
|
28. April 2011 @ 07:11 |
Link to this message
|
|
why the hate? :\
|
AfterDawn Addict
|
28. April 2011 @ 14:05 |
Link to this message
|
Originally posted by Modking30:
Originally posted by marcusj0015:
thanks MrGreaser
it's about time this bitch be blown the fuck open!
i noticed that the file i was using was an STFS file, AKA CON file
i'm gonna try a little more with it though, i think there's a few ways to approach this, such as using a good MS CON File, and a bunch of compliacated stuff, i'm not done with this method though
lol, more than I could never know? I guess you know that my name is Kevin Mitnick, but hey what do I know.
right....
need jtag help? Xbox 360 console repair? PM me or chat |
|
jpizzle
Senior Member
|
28. April 2011 @ 15:25 |
Link to this message
|
|
Jason Poth :p
|
Senior Member
|
28. April 2011 @ 15:34 |
Link to this message
|
Originally posted by jpizzle:
Jason Poth :p
:D!
"All drives should be updated to Lite Touch + (LT+) firmware if playing on XBOX live. Samsung drives and pre-78/79 Hitachi drives do not utilize AP 2.5. All other drives are considered to be detectable by Microsoft (YMMV). Make sure all rips are ABGX verified, contain SSv2, and patched AP2.5 (where needed). XGD3 must currently be burned on new drive with PC Burner Max firmware for 100% rip. All modded consoles can be potentially unsafe for use on XBOX live."
|
Senior Member
|
29. April 2011 @ 00:51 |
Link to this message
|
|
phukin A
|
Senior Member
|
29. April 2011 @ 12:47 |
Link to this message
|
Unfortunately, avatars are signed. This is why you can't share avatar items easily, from one console to another, they're signed with the console code.
I'm not sure that there is a single piece of unsigned code on the 360 (stock). It wouldn't run, if my understanding of the 360 security system is correct (it's very limited, so it may not be).
But if someone was good with cryptography and had endless amounts of time, cracking the code might happen. But, it's not feasible. If it hasn't happened yet, it's clearly more complex than most could imagine.
That's just my viewpoint. But thanks for sharing, you never know, sometimes things are overlooked and just need some attention.
Regards
Budro
|
|
snickle
Member
|
29. April 2011 @ 12:48 |
Link to this message
|
Sam Nickle
[Security] Tarnovsky Explains Infineon TPM Hack
Feb 14th, 2010 by J. Epstein
On the Black Hat 2010 conference in Crystal City notorious smart card hacker Christopher Tarnovsky explained how he managed to hack current Trusted Platform Modules by Infineon.
This time Tarnovsky managed to read secured data from TPM chips like RSA and DES crypto keys. His approach took six months and a lab consisting of devices for about US$ 200,000. After having found out the exacty way to compromise Infineon?s chips it took only six hours to compromise an XBox 360′s TPM chip.
On the Black Hat 2008 in Amsterdam Tarnovsky said he was offered US$ 100,000 to crack the Xbox 360′s TPM:
[b]A Microsoft engineer is wondering: ?Did you take an interest in the processor of our Xbox360 game console?? ? ?I was offered 100?000 dollars to break it?, says Tarnovsky. ?But I replied that that wasn?t enough.?
[/b]
For people generally interested in approaching smart card security check this article with a video Wired.com featuring Tarnovsky in his security lab.
This message has been edited since posting. Last time this message was edited on 29. April 2011 @ 12:52
|
|
Modking30
AfterDawn Addict
|
29. April 2011 @ 14:43 |
Link to this message
|
Originally posted by jpizzle:
Jason Poth :p
aka Kevin Mitnick LOL
|
|
Advertisement
|
|
|
|
coorva
Suspended due to non-functional email address
|
30. April 2011 @ 00:22 |
Link to this message
|
Originally posted by Modking30:
Originally posted by jpizzle:
Jason Poth :p
aka Kevin Mitnick LOL
hahahahahahahahahahahaha fell down hahahahahahaha
microsoft after a ban wave |
