Print

[BluhDeBluh]

Some posts on this thread are frankly bizarre weirdness from people who know even less than me as they don't realise WHAT bullshit they are posting. Unless you have some useful contributions that aren't just completely idle speculation with nothing to support it whatsoever, I don't think it's worth posting.

[unspoiledpuma]

Ok i change, the default.xex files to defaule.xex and do not recongnie the region.... anyway the files bo be booten has to be default.xex nothing else, only the default.xex

quote from xbox.com website:

 Be sure the update is named default.xex

The update will not run automatically unless the file is named default.xex and is the only file on the disc (i.e., not in a folder or directory).

so we have to create a little apps to test it otherwise it not gonna work...

[pablot]

omg.. I can't believe some of you even bother?

Can't you guys understand that this is INCREDIBLY complicated and all the ideas that you will come up (like renaming files and trying to run it on an xbox) simply is to easy?

Have you guys even got a clue of how difficult the xbox was to hack? If you don't understand that then don't bother...

so ok, the xbox got hacked quite fast but it was because the people who did that had the access to hardware (logic analyzers etc) and were very skilled. Bunny made his own hardware based on a fpga to snoop a bus for a key, do you even know which key or what RC4 encryption is?.. so stop your usless renaming and looking at files in notepad stuff.. It won't help any one...

[patto]

noobs.. please stop
if you think you have a chance at doing some hack forget it
wait for team xecuter, some mit guy etc. to really get somewhere

but above all practice safe xex

[chedabob]

why not just let the people who want to try, try. dont be so discouraging. let them mess about with the file, change stuff, find stuff out. you dont need to call them idiots. weve found quite a bit of info from this about what libraries it uses, what file format, where the dvd drive is located, what types of file the 360 runs etc...

let people do their own thing, and if they find out something, encourage them to do more. dont go "OMFG WTF LET TEAM XECUTER DO IT".

[pablot]

QUOTE(chedabob @ Nov 25 2005, 09:19 AM)

why not just let the people who want to try, try. dont be so discouraging. let them mess about with the file, change stuff, find stuff out. you dont need to call them idiots. weve found quite a bit of info from this about what libraries it uses, what file format, where the dvd drive is located, what types of file the 360 runs etc...

let people do their own thing, and if they find out something, encourage them to do more. dont go "OMFG WTF LET TEAM XECUTER DO IT".

QUOTE(chedabob @ Nov 24 2005, 08:54 PM)

IMHO we should really concentrate on getting the lpc running. maybe smartxxcould compare their dev kit to a retail kit (cos i heard they were almost identical) and see if they can find where the lpc is. then we could get a cheapmod running.

I'm really not saying let xecuter do it. But c'mon.. it's not as easy as finding the lpc port and hey! we are in!

It's like finding the door to the vault of a major casino. Knowing where it is helps nothing because it's the security arround it that is the problem, not finding the actual door.  The lpc port came quite late in the xbox hacking, first they had the 29-wire mod where you actually "highjacked" the flash bus or whatever you want to call it.

I'm just trying to clarify, it won't be as easy as just changing a small thing. You have to know your stuff.

[blerik]

For all those people that think MS would rather invent a new compression algorithm before using a standard one:

Why? Current compression algorithms work fine, no need to invent another one. And yes, MS obviously used encryption to secure the file as well. But, did they encrypt the whole file or just signed it with RSA. If they signed with RSA, you could read the contents, but never change them so hacking is out of the question anyway. But then at least you could read the contents, see how things are done.

My 2 cents

--Blerik

[ypsilon]

QUOTE(blerik @ Nov 25 2005, 10:08 AM)

...But, did they encrypt the whole file or just signed it with RSA...

As I said before, it looks like they encrypted the whole file.


I agree with some of the comments on this thread. Many of these posts are very very painful to read. Some of them are incredibly dumb. Too many people who know nothing posting useless non-information, and thinking they're somehow close to a softhack. No.

[Havok]

QUOTE(s1w @ Nov 24 2005, 05:31 PM)

Just my $0.02

Anything built can be broken, it's just a matter of time and patience.

People said that about Digital Cable boxes which is just as big as a game system and industry can make just as much money on it.

Guess what.... Digital Cable can not be hacked.... (or hasn't been yet after much effort by millions and many years)

[dneray22]

QUOTE(Havok @ Nov 25 2005, 09:35 PM)

People said that about Digital Cable boxes which is just as big as a game system and industry can make just as much money on it.

Guess what.... Digital Cable can not be hacked.... (or hasn't been yet after much effort by millions and many years)

The true hackers cant possibly be trying too hard on digital cable, bcaz everything can be hacked, there is NO such thing as total security, any the kind of userbase that xbox attracts will only help speed it up

[saunders73]

QUOTE(patto @ Nov 24 2005, 08:35 PM)

noobs.. please stop
if you think you have a chance at doing some hack forget it
wait for team xecuter, some mit guy etc. to really get somewhere

but above all practice safe xex

QUOTE(chedabob @ Nov 25 2005, 03:19 AM)

OMFG WTF LET TEAM XECUTER DO IT".

OMFG WTF LET TEAM XECUTER DO IT thats not what he said he said it meaning that they have more of a chance at cracking it

[Toran]

QUOTE(dneray22 @ Nov 25 2005, 11:49 PM)

The true hackers cant possibly be trying too hard on digital cable, bcaz everything can be hacked, there is NO such thing as total security, any the kind of userbase that xbox attracts will only help speed it up

Ok, let's assume that you are correct, and that everything can be hacked and nothing can be totaly secure.
The point is that the 360 does not have to be totaly secure for it to be infeasable to hack. For instance, for a given security system, it is possible do a brute force attack and test all possible keys.  Thus, the system is hackable. However, is the method feasible? It most certantly is not.

To put this into context, the 360 does not have to be completely secure in order for the scene to unseccessful in hacking it. It only has to be secure enough to delay the hacking of it X number of years.

Actually, the 'security' of the console as a whole could be implemented though 'obscurity', meaning that the system is hard to hack because it is (very) hard to figure out how the system works. However, this would not result in a totaly secure console, only a console that is secure enough (for the scene's hacking attempts to fail).

To conclue: what I wish to emphasize is that the 360 only has to be secure enough for it to be inhackable in practice.

[tmnt4ever]

Has anyone tried running a backup of one of the Backwards Compatible games with this update?  Because if you can just burn a file to a disc and the Xbox 360 will read it, maybe it will read a backup Xbox game as well.  I wish i had a 360 so I could try it.

[jizzlobber]

eeerrrr, do you really think it'd be that easy?  

[Cthulhu32]

Hex editing xbe files was totally legit on the Xbox 1.  If there was a game that checked if the default.xbe was on the cdrom or not, you could just hex edit it and change the value from d:\default.xbe to .\default.xbe, I believe some teams even released auto-programs that would do this for you.  So hex editing files and seeing if they run is not a bad method, I'm sure Xecuter is trying this.  If there is a true RSA signature then after hex editing any part of the file it should not run correct?  So changing one of the many 00 00 00 00 sections to 00 00 01 00 should make it see it as an invalid .xex.  If, however, changing this bit does nothing, then we know it does not use RSA signatures, and the entire file is encrypted.  I've read a few places that they were using DES encryption, but I highly doubt it as DES is one of the easier encryption algorithms to crack now a days.  Hell we could crack a DES encryption of any length with 10 computers all set to start at different values in probably less than 2 weeks.  
Hex editing is also useful for changing regions.  If the region of the game is within the top values which are all unencrypted, such as the libraries running or the name of the files its loading them from (kernel, etc.), then we can also find the hex value of the US region, then attempt to modify it and get new regions, including finding a region free code.  This can also help in reverse engineering the boot code as we can watch for the region to be checked in the boot code when we are that far along.

btw, I'm actually debating joining the Ghost2 mod chip team, they have a contest to explain some of their code and write new mod chip code, my only dillema right now is finding the time to actually code this kinda stuff.  It's great fun but there's also the legal aspect of things, and getting in trouble as a mod chip programmer can get you in deep crap in the states.