Hey all...

I don't know too much about the way the xbe's are signed in either xboxs, but... wouldn't it be worth putting a program together to do a distributed brute force attack on the key? If we can figure the private key out, we can sign our own executables.

Is this feasible, or is the key too large for even a distributed attack?

Hi everyone,

I have been searching for ages now on how the Xbox1 bios is constructed and how one would go about dissasembling it/unpacking it... whatever.

It seems that people have managed to do so (eg, the LBA48 hack), but I cant find any technical documentation on how it is achieved.

I would like to have a look into FAT32 support to see if it is at all possible to modify/replace the fatx driver to support a FAT32 partition. I am not interested in keeping games working, just XBMC.

Any help would be much appreciated.

Hey,

After reading your posts, I would have to say that I dont think that xbox will ever work again. A hole in the mobo is not just a hole... they call it a throughole, its for connecting a trace from one layer in the board to another, not just from the top to the bottom as the pcb is multilayered. By enlarging the hole, you will have destroyed any internal links that may have existed (and by the sounds of it, did exist).

After doing some research, I found that pin 5 of the LPC bus is the LRST line. This line when pulled to ground (0v) will trigger a soft restart of the LPC hardware. This like should not be nessary for the modchip to function as it is pulled high by default.

Does the box boot with no chip installed and the D0 wire pulled high (or disconnected)?. The xbox boots from the modchip rom when the D0 line is pulled low.

Personally I think its beyond recovery, but I hope you get it going again.

Edit:
Whoops, I just re-read it all, and realised you are getting it to boot with no video.
The one thing I know about the focus chip is that pins 35 and 36 are the vertical and horizontal sync, and pin 40 is a good 1.5v source to connect a buffer if you plan to use those pins. I know that if they are shorted, the xbox will still boot fine, just no image.

hrmm, just did some reading of the structure of the DVD disc and I dont think its as simple as I first thought, but it still may warrant further investigation, who knows, there may be a bug in the dvd player software in the 360 that can be exploited (video/audio decompressor with overflow bugs?).

Hi,

I have been reading this form for the last few days (excellent source of info), I wouldnt call myself a hacker, but I do have a technical background with software dev, reversing the odd x86 app, and playing with microcontroller, electronics, etc.

Anyway, I was thinking, correct me if I am wrong... but doesnt a DVD video disc have executable code on it for the menu... extra features and stuff? Would it be possibe to make a malformed dvd that could exploit this and run un-signed code on the machine?

I dont actually own a 360, so I dont really know, but thought it would be a valid path to try.