Print

[Xbox-Scene]

DosFlash v2.0 Build 20110903 Posted by XanTium | September 3 09:10 EST | News Category: Xbox360

Kai Schtrom released a new version of DosFlash - a PC tool to flash your drive via DOS. What's new/fixed: * Key extraction task "LiteOn Key V3 (Tarablinda)" now supports the Slim firmware versions 9504, 0272, 0225, 0401, 1071 and also tries to discover the key on unknown firmware versions. * 2 new tasks added named "Lock SPI Flash" and "Unlock SPI Flash". The new unlock SPI flash task is used in combination with Geremia's MXIC and  Winbond Unlock method. It is very much influenced by Geremia's unlockSPI program, which was the first bruter to unlock Winbond SPI flashes. To relock the flash after you have finished writing a patched firmware to it, use the lock SPI flash task. This will instantly make the SPI flash write protected for all blocks. BP0, BP1 and SRP status bits are activated afterward, so handle this function with care! * Read Flash task now can create a full firmware dump of the Slim firmware versions 9504, 0272, 0225, 0401 and 1071. To create full firmware dumps of 0225 drives and above you should get a compatible SATA2 controller and set it to IDE mode. In addition you should be able to do Geremia's MXIC or Winbond unlock method. The compatible SATA2 controller is needed to unlock the MTK. Any installed drivers should be uninstalled, because they will switch the controller back to AHCI mode. In combination with the SPI flash status register unlock you are able to write to the firmware and inject Geremia's 8051 trojan, which can then dump the complete firmware. A risk level is added to show you how risky it is for your individual flash chip and firmware combination to write the patched firmware to obtain a full dump. * Possibility during "Read Flash" task to write firmware sector 3E of Slim drives with unknown firmware version This feature should be useful if new, unknown Slim firmware versions get out. If you write the patched 3E sector to a new and unknown firmware version this could potentially kill your drive. So handle it with care! * Portio.sys reimplemented as separate driver for DosFlash32 and DosFlash64 The driver files portio32.sys and portio64.sys are again separated from the executable file. This way the user has the possibility to sign the drivers on his x64 system with the Driver Signature Enforcement Overrider. * SATA and IDE adapter list updated Official Site: n/a, by Kai Schtrom Download: here News-Source/Full NFO: xbins.org

[harrytasker]

Thanks for the hard work (IMG:style_emoticons/default/smile.gif)

[angrykid]

I guess this would be more responsive than jungle flasher doing the unlock ? but how would this interface with the x360usb pro ?

[Obveron]

Thanks, i'm a huge fan of DosFlash16

[deilzfcjk]

so you have to get a compatible sata2 controller. You can't use ordinary via 6421a sata1's? So, it's either this or use a lizard or x360usb pro.

[SNAAAKE]

noob alert

do you still have to do the dremel trick and stuff that was posted while back? u know..touch something to unlock the slim drives.

[kaldi's apostle]

Following is indicated for writing to a 16D4s

QUOTE

Write firmware on a "PLDS DG-16D4S 0225"
  DOSFLASH W 1010 1 A0 3 0 4 FWIN.BIN 0

What is the command for a phat 16D2s -02510c (was a 93450) ?

[vinnymac567]

Where can we find out what SATA2 Controllers are compatible? I would really like to know, since xbox360usb pro cost $$, and DosFlash is very easy to use.

How would we go about changing to IDE mode?

[The Dude Z]

QUOTE(vinnymac567 @ Sep 3 2011, 11:04 PM)

Where can we find out what SATA2 Controllers are compatible? I would really like to know, since xbox360usb pro cost $$, and DosFlash is very easy to use.

How would we go about changing to IDE mode?

You would set the mode in the bios prior to booting into windows.
I have 2 different Asus motherboards each has Jmicron eSATA controllers but it only works on the one of the two boards.

If you have a Jmicron eSATA port check the bios to see if it can be set to IDE instead of SATA/AHCI and if it can it will likely work.

[Serious Sam]

There's a thread on Team Xecuter forum that has users posting what chipsets work and what dont. I have AMD SB750 and it works perfect with 0225 drive both read key and write fw.

[The Dude Z]

QUOTE(SNAAAKE @ Sep 3 2011, 05:44 PM)

noob alert

do you still have to do the dremel trick and stuff that was posted while back? u know..touch something to unlock the slim drives.

Yes you will still need to use the Kamikaze method IE a Dremel tool or I have also seen people using a soldering pen (Videos Below) <Not Mine.

http://www.ixtreme.net/ixtreme-lt-lite-tou...ering-iron.html

[sunnyzhi]

jungleflash can't open the dummy.bin by dosflash2.0, i check the key.bin is okay

[OggyUK]

JF has stringent checks on the structure of dummy.bin

I imagine DF's output doesnt pass these checks for whatever reason.

If you email the files to me - oggieuk [at ] googlemail.com I'll create one for you in my spare time. Although not too sure why you dont just use JF to obtain the dummy?!?

It's a shame Schtrom and other dummy.bin 'creators' don't follow what could (should?) be the standard.

JF was the first to utilise a fake firmware file and set the precident. Would have been alot simpler for every to stick it for maximum cross app/platform compatability.