Topic: Devil 360: Xbox 360 Security Info (Read 969 times)

STEVEHABS · « **Reply #105 on:** May 08, 2006, 08:27:00 PM »

yeah thanks i did read the thread. there wasnt any need for you to post that really because like 4 other people replied already the first answering my question.

littlestevie360 · « **Reply #106 on:** May 19, 2006, 09:53:00 AM »

Ok point to draw to attention

it says in the caption of the picture of the NAND flash that it contains the encrypted bootcode

Where the F*CK did they pull that from

anyone who has been snooping around would know that the bootcode and kernal are "burned" into the cpu along with all the keys and other important security info, not to mention that information is thrown around inside the cpu under a 4-way lockable cache (ie: to keep it away from prying eyes), and those of you who seem to think anything is hackable, it would be easier to break into the mint and steal a large sum of money then what it would be to crack open the cache when its locked, not to mention once its cracked then decrypting it,

next point they have a plee to infion (or how ever you spell it) for a TPM (Trusted Platform Module for those who dont know anything about Paladium or Trusted Computing its a 8bit secure processor that holds important keys and operates the security of Paladium or Trusted Computing). What use would anyone have in researching a TPM, i have done alot of research into it but i dont need one in my hands. Just the datasheets are fine. These TPM's are designed to be secure so the TPM is no entry point unless your some genious hacker who can get information out of devices which are made in such a way that they will never in a million years disclose there contents.

I cannot see the "Man-in-the-Middle" attack working either. Communication to the drive is handled by SATA, which is a Hi-Speed Communication port. The time it would take to A) decrypt the information,

figure out what the xbox360 needs to know, and C) re-encrypt it and send it to the console, dont you think the kernal would be processing a WTF command, to elaborate on that, decryption takes time unless we know the key that it is encrypted with. The encryption key is randomly generated every time you turn on the console so the device cant have it stored in memory because it changes. so when the conole starts a challenge/responce protocal communtication with the drive and the device decrypts reads sends the kernal most likely would of paniced.. it would be a WTF the dvd-drive should have replied by now it musnt be present (thus why i call it the WTF command)

on another note i hope that Devil360 team can produce something that works (even though they dont seem to know some of the basics [not talking about the last point that was in responce to people on this board] of how the consoles security is built). i have been activly experementing with ideas on how to compromise the security of the xbox360, anyone who has any information on Paladium or the Bootsrap and Kernal please P.M me as im always looking for new information and possible vulnerabilities that i may have overlooked, credit will be given where due if anything does come out of information that is shared

Thanks in Advance,

Littlestevie360

Arch0n · « **Reply #107 on:** June 03, 2006, 12:47:00 AM »

3 days to go...

Maybe they're just stoked about going to see the Omen remake and wanted to share

JethroTul · « **Reply #108 on:** June 06, 2006, 01:31:00 AM »

most probably is another trick to get hits to his new site........an excuse will come out in the next few days like what happened on xboxers360

pash · « **Reply #109 on:** June 06, 2006, 01:29:00 PM »

QUOTE

Service Temporarily Unavailable
The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.
--------------------------------------------------------------------------------

Apache/1.3.33 Server at www.devil360.com Port 80

Yeah, so that is there excuse. And they have a lot of emails to abuse!

sniffinpoprocks · « **Reply #110 on:** June 07, 2006, 04:46:00 AM »

The site was updated today. Here's what they have posted(incase they have issues again)

-------------------------------
Our server is currently down due the huge amount of hits we received yesterday. We will move to more powerful servers and we hope to be back online tomorrow.

The Devil360 will be a modchip for the Xbox 360 console, the 'small' security hole has been found! This device is in no way related to the DVD firmware exploits - it's a totally different approach.
However we did not manage to get the product ready for today (6/6/6), because we are working hard on improving it to:
* Try to protect it from any type of update
* Make it programmable via PC
* Boot unsigned code
* Allow to swap HD with larger drive with a special interface between the 360 and the HD (all types IDE/SATA).

Submitted on Wed, 2006-06-07 06:44.

Ozy · « **Reply #111 on:** June 07, 2006, 04:49:00 AM »

I can believe they have developed a way to get the x360 run unsigned code but to have a mod chip, nah, I can't believe it.

sniffinpoprocks · « **Reply #112 on:** June 07, 2006, 05:02:00 AM »

they also had this under the read more box:

We understand, certainly after the ICE modchip story, that people will not easily believe this so we will send prototypes to some scene sites as soon as they are ready, so they can confirm it's real.
The modchip will be sold without any code.

We also discovered some shops already take pre-orders for this product. Do not pre-order it!
We did not announce any distributors yet and the device will not go on pre-order until at least after the prototypes have been tested/reviewed by independent sites.

Submitted on

Author Topic: Devil 360: Xbox 360 Security Info (Read 969 times)