xb360 jtag exploit - Discussion

[MohsinNisar]

tmbinc is right, once you update you cannot go back because of the revocation fuses, even on a dual nand setup.  You update, you are outta luck on that console.

You mean even with cygon you will not be able to play new games. you either have to choose the hack or the new games and live?

[nickcas]

tmbinc is right, once you update you cannot go back because of the revocation fuses, even on a dual nand setup.  You update, you are outta luck on that console.

You mean even with cygon you will not be able to play new games. you either have to choose the hack or the new games and live?

No, you could modify the most recent kernel and boot it with the exploit if u wanted. You won't be able to use LIVE, but you can play the newer games.

[MohsinNisar]

tmbinc is right, once you update you cannot go back because of the revocation fuses, even on a dual nand setup.  You update, you are outta luck on that console.

You mean even with cygon you will not be able to play new games. you either have to choose the hack or the new games and live?

No, you could modify the most recent kernel and boot it with the exploit if u wanted. You won't be able to use LIVE, but you can play the newer games.

HAHA
Who needs live just give me the hack
Thank God

[nickcas]

tmbinc is right, once you update you cannot go back because of the revocation fuses, even on a dual nand setup.  You update, you are outta luck on that console.

You mean even with cygon you will not be able to play new games. you either have to choose the hack or the new games and live?

No, you could modify the most recent kernel and boot it with the exploit if u wanted. You won't be able to use LIVE, but you can play the newer games.

HAHA
Who needs live just give me the hack
Thank God

Also, a rebooter would need to be released after this hack is released for you to boot into a MS dash.

[B1N4RY]

Chances are that tmbinc will release a rebooter.
Stop quoting posts, it's unnecessary.

[nickcas]

It's not tmbinc's to release. It's up to the team that created it.

[MohsinNisar]

Now that u mention a rebooter Arnezami was developing a rebooter too what happened to that. Now it can come handy since the hack is gonna be released.

i cant wait and imagine
xbmc360 HD
or homebrew mame emulators

one more thing if the console is hacked and guys have taken control of it then y r they still not able to run unsigned xex.

@B1N4RY
quoting is fun

[nickcas]

We are able to run unsigned XEX's, but we need to write an XEX loader to do so.

[Intersect]

Pretty sure tmbinc stated that he's only releasing the exploit and a way to boot linux and any other results of this are up to what others do with it. It takes a lot of skill to not only hack a dash, but get one running even with an exploit, and there are only a hand full people with the skills to do it. So I too hope that it gets done and or released, but for the sake of homebrew and not just easy piracy. I doubt you'll see it very soon.

[B1N4RY]

Running linux on most xbox is suffice for now.

We are able to run unsigned XEX's, but we need to write an XEX loader to do so.

...AND we need to find a way to remove all the sigchecks within the kernel, similar to how the PSP custom firmware was initially created

[Intersect]

Ya, it's just people talking about it being automatic homebrew, hacked dash, emulators, etc, might be setting themselves up for dissapoinment.

[nickcas]

@Binary: Well, a kernel loader/rebooter was already created, so I'm sure these same people know how to remove the sig checks from the kernels. Whether they release or not is a different story...

[B1N4RY]

I am aware of that. The problem is that the hackers who have accomplished so will not likely to release them.

[arnezami]

Pretty sure tmbinc stated that he's only releasing the exploit and a way to boot linux and any other results of this are up to what others do with it. It takes a lot of skill to not only hack a dash, but get one running even with an exploit, and there are only a hand full people with the skills to do it. So I too hope that it gets done and or released, but for the sake of homebrew and not just easy piracy. I doubt you'll see it very soon.

Correct. tmbinc has made it quite clear they will be releasing an expoit. This exploit is really cool. But it will give the exact thing we already had, just more convenient: a point where you have complete control of the entire system. But nothing more. So nobody should expect miracles from this exploit by itself.

And if one wants to run homebrew and/or other dash versions etc you need to build on top of (one of) the two exploits, namely one based on a DVD (KK) and now one based on JTAG+SMC. For this purpose I started the rebooter project which I divided into several phases. The first phase is being able to reboot cleanly (without any patches to the kernel). I have released my rebooter and have worked on it a couple of weeks. We made some progress and I released all I found but I got stuck and have repearedly asked for some help on the front of the GPU/interrupts/hardware programming etc since this is not a one man's job. At some point I lost interest and considered the project "on hold" as long as nobody of the top hackers/programmers could lend a hand to debug this (kernel) problem. Maybe this new hack will free up some of these hackers/hardware programmers. It's a hard problem which requires tedious debugging (or maybe one stroke of genius by resetting something that hasn't been reset, I don't know).

One thing is fundamentally different though: the current DMA attack takes place at around POST 6C so it is possible rebooting (or even patching the kernel on-the-fly) may be easier now. From what I understand the GPU has not been initialized by then and I always had a gut feeling this initialization was preventing the rebooter from working. We'll see how it goes.

Regards,

arnezami

[SUDDEN73]

Mmm.. Dolphin emu possible on XBOX PPC? 

[MohsinNisar]

Wow i really missed arnezami's long posts glad u r back.
lets hope for the best and r u going to resume your work on the rebooter project? I mean its the best time now

[jacksback]

Awesome news!!

Great job to all involved.

Quick question regarding the paring data: I have an Xbox 360 that I destroyed the nand flash on before making a backup. Does this mean I will be able to flash a custom image from another box and have the 360 boot into Linux using the Jtag exploit?

[tmbinc]

jacksback: yes.

[jacksback]

jacksback: yes.

Even Better News!!! 

Thanks tmbinc, and again great work!

[Ced2911]

So if i understand well.
First we use jtag to write a new smc code in nand ?
After the smc-panel connected on the jtag port will write into memory the exploit ?

Did xell (or any linux loader) will be a part of the exploit sending by the smc ? or the exploit will load the xell.elf in the nand ?