xboxscene.org forums

Xbox360 Forums => Xbox 360 Hacking Forums => Software Exploits Development / Research => Topic started by: Burgleflickle on November 26, 2005, 10:50:00 PM

Title: Hmm...
Post by: Burgleflickle on November 26, 2005, 10:50:00 PM
What about attacking the 360 through it's emulation & Halo 2? XB 360 emulates parts of orig XB to play halo 2, so maybe we could make the 360 think it has a Halo 2 disc in the box. There has to be a way to use what we know about orig xb to sign homebrew xbes, patch halo 2, and create a disc that could unlock some of xb 360's features, add packages, or at least see what's on 360's roms and chipsets. I might be way off, but this sounds like it could work to me.

Title: Hmm...
Post by: krayzie on November 26, 2005, 10:55:00 PM
it still has to be signed correctly for it to run.... and we still don't have Bill's private key...
Title: Hmm...
Post by: tmh88 on November 26, 2005, 11:34:00 PM
how did they get the last key for the original xbox then?

btw krayzie, the softmod installer kicks ass. I used it for the first time last week for a friend.
Title: Hmm...
Post by: binjinx on November 27, 2005, 06:55:00 AM
has anyone looked at attempting going thru the WM9 or 10 files (dont have my 360 yet) but doesnt it support WM files no way to exploit this ?
Title: Hmm...
Post by: DaBiscuit on November 27, 2005, 08:58:00 AM
QUOTE(tmh88 @ Nov 27 2005, 06:41 AM) View Post

how did they get the last key for the original xbox then?


Most ofl the homebrew apps for X-Box are signed with the Habibi key, and part of the purpose of whatever the exploit you use was to make the x-box run Habibi-signed XBEs instead of MS-signed. As Globe_guyx said, the exploits take advantage of bugs to rewrite the key in memory to something that was managable. That's a gross oversimplification, but to my knowledge, the real key has never been cracked.
Title: Hmm...
Post by: BlueCELL on November 27, 2005, 09:34:00 AM
Any bugs in old games would crash the enumlator and not the system.  So I think that wouldnt work to well.  Plus the 360 has some sort of overflow protection in it (forgot exact name).

BlueCELL
Title: Hmm...
Post by: MaTiAz on November 27, 2005, 11:56:00 AM
Hmm, if the X360 can play WMAs from a disc, couldn't we hack a DRM'ed WMA file so it opens another file? I found once a "bug" in the WMA DRM, it opens a URL found in the file to obtain a licence. By modifying the URL, I could open any file I ever wanted, or run any program etc. But I guess it wouldn't work...
Title: Hmm...
Post by: xobdam on November 27, 2005, 09:42:00 PM
QUOTE(globe_guyx @ Nov 27 2005, 02:42 PM) View Post

They didn't.  The public portion of the key was altered in memory after a buffer underflow error in such a way as to make the key divisible by 3 rather than some extraordinarily huge unknown prime.



That reminds me of the movie cube...