from Jeff on x-s
Fixing the ECC of the XBR Image with the !Switch Function Removed:
Ok, so now we have busted the images ECC, and it will not flash with the Cygnos toolbox, no worries Surazal has found a quick and easy way to fix this. Run these commands EXACTLY as they are printed. take note of the read/write command case and triggers they are important to reset the ECC on the file.
nandpro xbr_8599_XX.bin: -R16 040.bin 040 1
nandpro xbr_8599_XX.bin: +W16 040.bin 040 1
Again note the capital Read/Write command and note the triggers.
After this is done, you ECC on your XBR nand is fixed and you can flash it to any nand on your Cygnos360 V2 Xbox 360.
Flash and enjoy!
rest of his very informative post:
Oh for the sake of cleaning this up a lil, im going to well uhh clean this up a little lol
In this Mini tutorial, I am going to assume you have already got all your tools set, that you are no going into the complete ignorance and can source your self the tools/apps i mention in this. I provide nothing software wise with this tutorial, just the correct proses to Get XBR Booting on any of your Cygnos360 V2 nands.
Orig.bin, Is your stock NAND image the one you created from the unmodified Xbox 360 Flash Chip. This contains your valuable console specific data such as your Keyvault. you can name yours anything. But in this Mini Guide this is how it will be referred to as.
rawkv.bin, This is your raw keyvault files extracted from your original nand image. You can name yours anything. But in this Mini Guide this is how it will be referred to as.
rawconfig.bin, This is your raw config file from your stock nand, this part is considered to be optional. If you have issues getting your XBR image to boot redo the proses with out injecting your consoles config data. You can name yours anything. But in this Mini Guide this is how it will be referred to as.
hack.bin, This is generated when you built your freeboot image. This is no provided for you and is needed for the prosses, as its the easiest way to get the encrypted SMC for the Cygnos360 V2 chip.
xbr_8599_XX.bin, This is your XBReboot Bin that would are going to inject and edit to work with your Cygnos360 V2 chip. You can find this in the usual places. you can re-name yours anything. But in this Mini Guide this is how it will be referred to as.
CY2SMC.bin,This is the Encrypted SMC, you can name yours anything. But in this Mini Guide this is how it will be referred to as.
Extracting Your Console Specific Data:
Place your Orig.bin in the nandpro directory for ease of use and run these commands to generate you keyvault and config bins.
nandpro orig.bin: -r16 rawkv.bin 1 1
nandpro orig.bin: -r16 rawconfig.bin 3de 2
Extracting Your Cygnos360 SMC:
Place you hack.bin in the nand pro working directory for ease of use and run the following command.
nandpro hack.bin: -r16 CY2SMC.bin 0 1
Injecting Your Console Specific Data and the Cygnos360 SMC Into Your XBR NAND:
place your XBReboot image in the nandpro working directory for ease of use and run the following commands to inject your XBR nand with your console data and SMC.
nandpro xbr_8599_XX.bin: -w16 CY2SMC.bin 0 1
nandpro xbr_8599_XX.bin: -w16 rawkv.bin 1 1
nandpro xbr_8599_XX.bin: -w16 rawconfig.bin 3de 2
Removing the Nand Switch Command From The Freeboot.bin:
This step is important if you want to run this on your Xbox 360 NAND. if you fail to follow this step the console will boot and switch to the Cygnos360 nand and then you will get dead air. Due to the nature of XBR they reuse key componants of Freeboot.
Freeboot is designed to switch to a second nand IF available. If its not available or is already on a second nand it continues to boot correctly. The issue is We do have a second nand so it WILL always switch to the second nand and stop the show for us with out removing this function.
Open your XBReboot image we just finished injecting with a hex editor.
navigate to offset 0x00108B08 and zero out "!Switch"
(Replace 21 53 57 49 54 43 48 0A with 00 00 00 00 00 00 00 00)