|
jester
|
 |
« Reply #160 on: August 16, 2009, 07:46:50 PM » |
|
oh yeah - i remember old good days in soviet union  ))) Are you really criticizing the censorship of this bull$#!t? Trust me if it wasn't removed this thread would've gone way off topic. On topic: @Intersect how would we be compromising partnernet by booting into a dev dash? I'm sure they do signature checks of their own, and that would stop anyone from getting online. |
|
|
|
|
Logged
|
|
|
|
|
MastaG
|
|
« Reply #161 on: August 16, 2009, 07:52:06 PM » |
|
How paranoide would microsoft be when such a exploit like this is released?
If I buy an xbox360 console from the store will I get the fall09 849x software?
|
|
|
|
|
Logged
|
I understand. You found paradise in America, you had a good trade, you made a good living.
The police protected you and there were courts of law.
And you didn't need a friend like me.
But, uh, now you come to me, and you say: "Don Corleone, give me justice."
But you don't ask with respect.
You don't offer friendship.
You don't even think to call me Godfather.
Instead, you come into my house on the day my daughter is to be married, and you ask me to do murder for money.
|
|
|
|
B1N4RY
|
|
« Reply #162 on: August 16, 2009, 08:11:38 PM » |
|
As long as it was made before augest 09, you're fine
|
|
|
|
|
Logged
|
|
|
|
|
Intersect
|
|
« Reply #163 on: August 16, 2009, 10:32:16 PM » |
|
I was referring to someone talking about a whole dev filesystem.
|
|
|
|
|
Logged
|
|
|
|
|
leorimolo
|
|
« Reply #164 on: August 16, 2009, 11:37:20 PM » |
|
oh yeah - i remember old good days in soviet union ))) Are you really criticizing the censorship of this bull$#!t? Trust me if it wasn't removed this thread would've gone way off topic. On topic: @Intersect how would we be compromising partnernet by booting into a dev dash? I'm sure they do signature checks of their own, and that would stop anyone from getting online. Partnernet doesnt check nearly as many things as xbox live does. |
|
|
|
|
Logged
|
|
|
|
|
Intersect
|
|
« Reply #165 on: August 16, 2009, 11:58:16 PM » |
|
The point is not protecting the people from partnernet, it's protecting partnernet from the people.
|
|
|
|
|
Logged
|
|
|
|
shadeth
Newbie
Posts: 2
|
|
« Reply #166 on: August 17, 2009, 12:34:21 AM » |
|
The point is not protecting the people from partnernet, it's protecting partnernet from the people.
Couldn't we just get a dev filesystem from a banned kit? Or is it more complicated than that? |
|
|
|
|
Logged
|
|
|
|
|
Intersect
|
|
« Reply #167 on: August 17, 2009, 12:49:32 AM » |
|
Did you not read what I just said ?
|
|
|
|
|
Logged
|
|
|
|
|
Straßenkampf
|
|
« Reply #168 on: August 17, 2009, 02:13:09 AM » |
|
here's my noob-problem. $ python build1.py 7371-1.bin input/CB.1920.bin input/CD.1920.bin input/xboxupd.bin
build1.py:37: DeprecationWarning: the sha module is deprecated; use the hashlib module instead
import hmac, sha, struct, sys
* found flash image, unpacking and decrypting...
ECC'ed - will unecc.
Found 2BL (build 1920) at 00008000
Found 4BL (build 1920) at 00011390
Found 5BL (build 1888) at 00016a90
* found (hopefully) decrypted CB
* found (hopefully) raw CD
* found update
Found 6BL (build 4532) at 00000000
Found 7BL (build 4532) at 000044c0
* we found the following parts:
CB: 1920
CD: 1920
CE: 1888
CF: 4532
CG: 4532
* checking if all files decrypted properly...
Traceback (most recent call last):
File "build1.py", line 264, in <module>
assert allzero(CE[0x20:0x28])
AssertionError
CE is extracted from the file at first argument (in my case 7371-1.bin), the full 16mb flashdump, right? How can i get it properly decrypted? and also how to make the sha1-module workin? greetz |
|
|
|
« Last Edit: August 17, 2009, 02:15:08 AM by Straßenkampf »
|
Logged
|
|
|
|
|
tmbinc
|
|
« Reply #169 on: August 17, 2009, 04:20:06 AM » |
|
You're supplying a 1920-based image. In that case, you need to add the cpukey into decrypt_CD, so that CE can be decrypted properly (and CD, but that doesn't matter since you're also giving it a decrypted CD).
|
|
|
|
|
Logged
|
Please don't copy/quote full text outside this board. Instead, summarize and link to this post. Thanks! This lets me keep information updated and doesn't pull things out of context.
|
|
|
|
Straßenkampf
|
|
« Reply #170 on: August 17, 2009, 04:35:23 AM » |
|
strange.. i added the key but its still the same error. Kernel-Dump opens fine in Flash Tool with this CPU KEY.
|
|
|
|
|
Logged
|
|
|
|
|
utar
|
|
« Reply #171 on: August 17, 2009, 04:46:24 AM » |
|
Did you uncomment the appropriate code in the decrypt_cd function?
Utar
|
|
|
|
|
Logged
|
|
|
|
|
Straßenkampf
|
|
« Reply #172 on: August 17, 2009, 04:55:56 AM » |
|
Did you uncomment the appropriate code in the decrypt_cd function?
Utar
yep def decrypt_CD(CD, CB, cpukey = "10xxxxxxxxxxxxxxxxxxxxxxxxxxxxB0"):
# enable this code if you want to extract CD from a flash image and you know the cup key.
# disable this when this is a zero-paired image.
# assert cpukey or build(CD) < 1920
secret = CB[0x10:0x20]
key = hmac.new(secret, CD[0x10:0x20], sha).digest()[0:0x10]
# if build(CD) >= 1920:
key = hmac.new(cpukey, key, sha).digest()[0:0x10]
CD = CD[0:0x10] + key + RC4.new(key).decrypt(CD[0x20:])
return CD
|
|
|
|
|
Logged
|
|
|
|
|
tmbinc
|
|
« Reply #173 on: August 17, 2009, 05:28:19 AM » |
|
it's cpukey = "\x10\xxx\xxx\xxx...\xb0". I.e. prefix each hex byte with a \x.
|
|
|
|
|
Logged
|
Please don't copy/quote full text outside this board. Instead, summarize and link to this post. Thanks! This lets me keep information updated and doesn't pull things out of context.
|
|
|
|
jz_5_3
|
|
« Reply #174 on: August 17, 2009, 08:34:13 AM » |
|
uncomment "# assert cpukey or build(CD) < 1920"
and "# if build(CD) >= 1920:"
|
|
|
|
|
Logged
|
|
|
|
|
Straßenkampf
|
|
« Reply #175 on: August 17, 2009, 08:41:08 AM » |
|
thx tmbinc and jz_5_3. i think the script doesn't like me^^ File "build.py", line 123
key = hmac.new(cpukey, key, sha).digest()[0:0x10]
^
IndentationError: expected an indented block
|
|
|
|
|
Logged
|
|
|
|
|
jz_5_3
|
|
« Reply #176 on: August 17, 2009, 08:50:42 AM » |
|
did you see the error meesage?
In python, statements are requied to be properly indented. replace the # with a space, instead of simply deteting it.
|
|
|
|
|
Logged
|
|
|
|
|
tmbinc
|
|
« Reply #177 on: August 17, 2009, 09:25:16 AM » |
|
It might be a spacing/tab issue.
|
|
|
|
|
Logged
|
Please don't copy/quote full text outside this board. Instead, summarize and link to this post. Thanks! This lets me keep information updated and doesn't pull things out of context.
|
|
|
|
Straßenkampf
|
|
« Reply #178 on: August 17, 2009, 01:05:37 PM » |
|
If i use xenon_hack.bin from xbins i get a little, little bit further, but script doesn't complete again. Now CB decryption is the bad guy^^ BTW im now just using $python build.py xenon_hack.bin 4532.bin File "build.py", line 262, in <module>
assert allzero(CB[0x270:0x390])
AssertionError
How is this possible, cause i'm allready usin the (hopefully) clean files from xbins?! |
|
|
|
|
Logged
|
|
|
|
|
jester
|
|
« Reply #179 on: August 17, 2009, 01:47:23 PM » |
|
If i use xenon_hack.bin from xbins i get a little, little bit further, but script doesn't complete again. Now CB decryption is the bad guy^^ BTW im now just using $python build.py xenon_hack.bin 4532.bin File "build.py", line 262, in <module>
assert allzero(CB[0x270:0x390])
AssertionError
How is this possible, cause i'm allready usin the (hopefully) clean files from xbins?! The file that they have has been heavily zero'd/FF'd out, hopefully they will have another version soon, though I hear from someone on IRC that it has worked for him. |
|
|
|
|
Logged
|
|
|
|
|
