1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

i think i MIGHT have found a way to hack the Xbox

Discussion in 'Xbox 360 - Modding & Hacking' started by marcusj0015, Apr 26, 2011.

  1. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    i think i MIGHT have found a way to hack the Xbox, probably not though, can anyone send me an Avatar file?
    i want to see if Avatars are locked or signed or anything
     
  2. Modking30

    Modking30 Regular member

    Joined:
    Feb 16, 2010
    Messages:
    3,169
    Likes Received:
    0
    Trophy Points:
    46
    Noob. Already done
     
  3. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    Dont call me a n00b, i know more about hackong Windows and Xbox than you could ever know


    Im talking about a way to run Xell on ANY console with ANY dash, im not talking about the DVD Drive hack which isnt a true hack, the Xbox is still secure, under MS control
     
  4. MrGreaser

    MrGreaser Regular member

    Joined:
    Oct 27, 2009
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    26
    I'm all ears.
     
  5. infam0us

    infam0us Regular member

    Joined:
    Oct 23, 2005
    Messages:
    1,538
    Likes Received:
    0
    Trophy Points:
    46
    lets see it or hear it?
     
  6. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    DON'T FLAME ME

    my idea is to take some unsigned file, such as an Avatar file, like where Avatars are stored, and gut it, and replace the guts, with Dashboard 4548, and hopefully, Xbox Avatar app would Buffer Overflow (hopefully) and the exploitable dashboard would load and be able to JTAG it
     
  7. eebeejay

    eebeejay Regular member

    Joined:
    Nov 7, 2007
    Messages:
    2,765
    Likes Received:
    0
    Trophy Points:
    46
    marcus, not to criticize, because I'm nowhere even near to being a hacker, as hacking is not my forté (it's not even my thirté, nor twenté) but anywé, that proposed hack seems too easy to be do-able. I hope to hell it can be done, as the world needs more JTAGs in it.
     
  8. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    yeah, it does sound too easy to be done, but if we can find a way to load the dashboard .xex file, all the other files would load, i think that would be an awesome thing to do, but i need n Avatar save file, and i need to figure out how it works


    oh, lol at anywé joke
     
  9. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    yeah, it does sound too easy to be done, but if we can find a way to load the dashboard .xex file, all the other files would load, i think that would be an awesome thing to do, but i need n Avatar save file, and i need to figure out how it works

    but i'm thinking it might buffer overflow, because as soon as the code is loaded it will try to run, and the fact that the entire kernel is like 7MB's which is much bigger than any REAL Avatar, so it wouldn't fit into the memory alloted


    oh, lol at anywé joke
     
    Last edited: Apr 27, 2011
  10. MrGreaser

    MrGreaser Regular member

    Joined:
    Oct 27, 2009
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    26
    Not to burst your bubble either but that method has been approached and it has been deemed impossible without microsoft's magic key, again, another problem concerning efuses. You're on the right track though...that's what the best programmers in the community devoted a lot of their time to try and accomplish. If I find the threads relating to this topic over at the big boy's website I'll link you to them since you would understand the vernacular.
     
  11. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    thanks MrGreaser

    it's about time this bitch be blown the fusk open!

    i noticed that the file i was using was an STFS file, AKA CON file

    i'm gonna try a little more with it though, i think there's a few ways to approach this, such as using a good MS CON File, and a bunch of compliacated stuff, i'm not done with this method though
     
    Last edited: Apr 27, 2011
  12. Modking30

    Modking30 Regular member

    Joined:
    Feb 16, 2010
    Messages:
    3,169
    Likes Received:
    0
    Trophy Points:
    46
    lol, more than I could never know? I guess you know that my name is Kevin Mitnick, but hey what do I know.
     
  13. marcusj0015

    marcusj0015 Regular member

    Joined:
    Oct 12, 2010
    Messages:
    196
    Likes Received:
    0
    Trophy Points:
    26
    1: i HIGHLY doubt that's your real name,

    2: your "name" has NOTHING to do with Windows or Xbox does it?

    good try, but now you look even more stupid that you had in the past
     
  14. dagdaniel

    dagdaniel Regular member

    Joined:
    Jun 26, 2007
    Messages:
    141
    Likes Received:
    0
    Trophy Points:
    26
    why the hate? :\
     
  15. guessswho

    guessswho Regular member

    Joined:
    Aug 21, 2007
    Messages:
    2,826
    Likes Received:
    0
    Trophy Points:
    46
    right....
     
  16. jpizzle

    jpizzle Regular member

    Joined:
    Mar 3, 2009
    Messages:
    1,686
    Likes Received:
    0
    Trophy Points:
    46
    Jason Poth :p
     
  17. MrGreaser

    MrGreaser Regular member

    Joined:
    Oct 27, 2009
    Messages:
    528
    Likes Received:
    0
    Trophy Points:
    26
    :D!
     
  18. infam0us

    infam0us Regular member

    Joined:
    Oct 23, 2005
    Messages:
    1,538
    Likes Received:
    0
    Trophy Points:
    46
    phukin A
     
  19. budro

    budro Regular member

    Joined:
    Mar 27, 2007
    Messages:
    874
    Likes Received:
    0
    Trophy Points:
    26
    Unfortunately, avatars are signed. This is why you can't share avatar items easily, from one console to another, they're signed with the console code.

    I'm not sure that there is a single piece of unsigned code on the 360 (stock). It wouldn't run, if my understanding of the 360 security system is correct (it's very limited, so it may not be).

    But if someone was good with cryptography and had endless amounts of time, cracking the code might happen. But, it's not feasible. If it hasn't happened yet, it's clearly more complex than most could imagine.

    That's just my viewpoint. But thanks for sharing, you never know, sometimes things are overlooked and just need some attention.

    Regards

    Budro
     
  20. snickle

    snickle Regular member

    Joined:
    Apr 14, 2010
    Messages:
    341
    Likes Received:
    0
    Trophy Points:
    26
    Sam Nickle

    Code:
    [Security] Tarnovsky Explains Infineon TPM Hack
    Feb 14th, 2010 by J. Epstein
    
    On the Black Hat 2010 conference in Crystal City notorious smart card hacker Christopher Tarnovsky explained how he managed to hack current Trusted Platform Modules by Infineon.
    
    This time Tarnovsky managed to read secured data from TPM chips like RSA and DES crypto keys. His approach took six months and a lab consisting of devices for about US$ 200,000. After having found out the exacty way to compromise Infineon’s chips it took only six hours to compromise an XBox 360′s TPM chip.
    
    On the Black Hat 2008 in Amsterdam Tarnovsky said he was offered US$ 100,000 to crack the Xbox 360′s TPM:
    
        [b]A Microsoft engineer is wondering: “Did you take an interest in the processor of our Xbox360 game console?” – “I was offered 100’000 dollars to break it”, says Tarnovsky. “But I replied that that wasn’t enough.”
    [/b]
    For people generally interested in approaching smart card security check this article with a video Wired.com featuring Tarnovsky in his security lab.
     
    Last edited: Apr 29, 2011

Share This Page