Print

[nprice]

Kai and XBconnect let you play system link games online. It fools the Xbox into thinking these online games are games on the Xbox LAN, as if those consoles were there in the same room. This thread is discussing ways to play Live on a modded box, either by connecting to a "fake" XBL server or reporting "fake" data to the MS XBL servers, thus preventing XBL from detecting modified bios/files/whatever. This hasn't proven possible yet, all just speculation.

[Trisman]

Yes, while most of the features of XBox Live! have been emulated with Kai and XB-Connect, a few(in game headsets, stats, etc.) have not.  However, as I have stated befoe, there is no permanent solution for accessing MS's servers while using a modded box.  Therefore, we must somehow create our own servers.  

Since apparrently nobody else will take charge of this project, I feel that I must.  If you wish to be on this team please PM/IM me with what you believe you can add to the project, both with intelligence(programming ability, experience with cryptography, ...) and material goods(domain space, ...).  Preferably I would like to see people with experience on XBox components or at least embedded systems apply.

Also, we need to compile together all technical knowledge we have of the XBox Live! servers, both their software and hardware components, as well as the implementation of Live! on an XBox console.

[John Hoek]

 
Still, I can help with usefull info. I could have acces to some developer program for the XBOX; were also xboxlive routines, examples etc. are explained. Just email me.

Also; i did cracking and writing small programs into the old days in assembly (Commodore 64, AMIGA, PC). The last effort was to hack the ATI biosflasher for Radeon8500 cards (official Radeon8500Flash.exe) , based on a bootloader/realtime patcher from DOS environment. So yeh, i have some programmingskills i think....  


Basicly; it should be possible to hack dashonline.xbe; because all LIVE inlog-procedures are standardised; the encryptionroutines and methods MS uses also.
Not; or to late responding to a Live server is'nt a real problem for risk at Live banning; as LONG AS WE SEND NO OR ONLY 'GOOD' INFO BACK!).

I go to investigate the developer programsuite now.....  

[PedrosPad]

Anyone know a program than can capture, and replay network traffic? - Does such a thing exist?  A kind'a network simulator?  It maybe hiding out there under the guise of a network test utility.

[LordHomer]

Just to bump and share:

http://ettercap.sourceforge.net/

[triggernum5]

It can't replay the data I don't think, but there is a program called analyzer that is 100% free that is great for capturing packets..

[John Hoek]

EtherReal is the best analyzer of datapackets! Even on lots of wireless cards!

www.ethereal.com

[fghjj]

Word. Ethereal rocks most.

About replaying. Yes, it would be nice is someone build a start-pause-stop button in

But solutions already exist: http://tcpreplay.sourceforge.net/ . You can convert ethereal captures to libpcap format, so this tool can do the replay. Now we need 1) someone who's willing to sacrifice an EEPROM and 2) to hope that MS didn't put in date & time fields like most handshake protocols do.

Could some1 check if Xbox systemtime changes when connecting to Live? (set to 1980 or so)

[John Hoek]

quote:
2) to hope that MS didn't put in date & time fields like most handshake protocols do.
unquote:

Why should this be a problem?

We only have to get some Liveusers to log in.
use etherreal to snif all packets send to and back from MS.
get those data and check them about differences into each packet; just to know the 'important' packets and second; what the important differences are.

If i'm right informed; If you select Xboxlive;  
1) then first checking of dashversion is done; if to old; download of new dash is performed... >>> Checked and confirmed by perdorsPad and others. (Thanks you MS!)

2) Otherwise; Live-signin is started with an encrypted modes. The sessionkey is transmitted to the xbox and the xbox encrypts/decrypts all datapackets with those sessionkey. >> thios key should be into the first packets we retrieve from MS. If we can locate it into the right packetnr. (the procedure is always exact the same!)
then we have the second step; encrypt the data inside the packets.

3) If we can manage to encrypt data into the packets; we know also what info MS get's, want's and send back to you.  >> to analyse the data we learn 'the system'.

4) patch xboxonline so that it refers to a other Ip adres (those are fixed).
If we know the system, we can emulate the xboxlive server and get xlink kind of system running. >> The ultimate mod.

5) to be helpfull; into the latest MS Xbox SDK there seams to be lot's of info of xboxLive procedures, call's etc. and also there seams to be a xboxlive service EMULATE program for use on PC! Just for testing purposes.
>> Hopefully I can get acces to those XDK; to find more info regarding live.
  (MS is not helping me i think with it. But if they can; i like to get a complete developer package from them for free...   )

[gavroche]

this is one of the ongoing projects by consoletech.info.

the team is currently documenting the protocol and getting ready to build a custom asp webserver.

so, if anyone wants to join the project, and have usefull skills, please feel free to join in the effort.

[John Hoek]

For all banned xbox Live users, this is good news....

Henze, If MS don't want you on you're Live service anymore, then let them stick to that. Just use instead our own service.

[PedrosPad]

QUOTE (quicksilv @ Oct 28 2004, 05:42 PM)

gavroche: i can't surf to www.consoletech.info, is the site offline or bad url?

Just http://consoletech.info/  (Worked yesterday, but right now it does indeed appear to be offline. )

(And you have some very intresting ideas quicksilv)

PS. OutRun2 already has syslink play doesn't it?

[triggernum5]

Alot of the XBL necessities arise from the need to use a retail bios..  XBL Live servers don't need to check things like media_id or lock status since retail bioses refuse to run if these tests haven't already passed..  
Regarding your packet sessions, I'm pretty sure you are going to face session timestamp type issues.. But if you have some knowhow you might still be able to provide atleast a tidbit of information..
Regarding the xnet/xnets libs, wouldn't cross referencing those without actual sourcecode be about as tedious as guessing at the private key?
Maybe, with some info to go on it will someday be possible to patch out the secure aspects of xnets.lib calls with a bios though..

[remedee]

Okay, so maybe it hasnt picked up any momentum I'd hoped for, but maybe we can manage a nice little x-mas present if any of you guys have been working on this too!

[wafflezone]

I'm sure that the xbox live servers run on custom software that none of us have access to, so this is quite a pipedream unless I'm mistaken.