XboxHacker BBS
 
*
Welcome, Guest. Please login or register.
Did you miss your activation email?
August 01, 2014, 05:27:19 PM


Login with username, password and session length


Pages: 1
  Print  
Author Topic: Create glitchhack with first 2MB of NAND?  (Read 1179 times)
Maniaxx
Master Hacker
****
Posts: 113


2064


View Profile
« on: February 12, 2012, 09:10:16 AM »

Hallo,
is it possible to create a glitchhack just by the first 2MB of the nand like its possible with JTAG hack (get keys, flash XeLLous->write full dump)?
« Last Edit: February 12, 2012, 09:12:33 AM by Maniaxx » Logged

Xbox v1.0 (Cheapmod 1st Generation 29-Wire - X2 - 120GB)
Xbox v1.6 (Softmod nkpatcher10/ShadowC/Virtual eeprom - 10GB)
Xbox360 Falcon, Jasper16, Jasper256
60/60/65 target temp (C)
TMS/AUD_CLAMP - TDI/TRAY_OPEN
fratslop
Member
**
Posts: 27


View Profile
« Reply #1 on: February 12, 2012, 09:28:05 AM »

It's recommended to get a full dump, But yes you can.
Logged
Maniaxx
Master Hacker
****
Posts: 113


2064


View Profile
« Reply #2 on: February 12, 2012, 09:38:54 AM »

Will the python script accept the 2MB image?
Logged

Xbox v1.0 (Cheapmod 1st Generation 29-Wire - X2 - 120GB)
Xbox v1.6 (Softmod nkpatcher10/ShadowC/Virtual eeprom - 10GB)
Xbox360 Falcon, Jasper16, Jasper256
60/60/65 target temp (C)
TMS/AUD_CLAMP - TDI/TRAY_OPEN
guerrierodipace
Hacker
***
Posts: 79


View Profile
« Reply #3 on: February 12, 2012, 05:03:21 PM »

you can use autoGG for that, is very easy
Logged

Maniaxx
Master Hacker
****
Posts: 113


2064


View Profile
« Reply #4 on: February 12, 2012, 06:56:00 PM »

Thx. Will try that once i have all things together.

@fratslop:
This method also delivers a fulldump. Once xell is running a fulldump will be made over http and the 2MB block will be replaced with the unpatched one.
Logged

Xbox v1.0 (Cheapmod 1st Generation 29-Wire - X2 - 120GB)
Xbox v1.6 (Softmod nkpatcher10/ShadowC/Virtual eeprom - 10GB)
Xbox360 Falcon, Jasper16, Jasper256
60/60/65 target temp (C)
TMS/AUD_CLAMP - TDI/TRAY_OPEN
nknave
Master Hacker
****
Posts: 144


View Profile
« Reply #5 on: February 13, 2012, 11:54:55 PM »

Thx. Will try that once i have all things together.

@fratslop:
This method also delivers a fulldump. Once xell is running a fulldump will be made over http and the 2MB block will be replaced with the unpatched one.

This is exactly how I do all my JTAG/Glitch hacks.

Beware of a glitch(not the hack) that happens when flashing via RawFlash v4, this has happened to me and it is why I warn.

Scenario: First 1.28mb of nand resides Xell Reloaded via .ecc image flashed, rest of nand contains the retail files untouched so that I backup via Xell's HTTP.

Sometimes, not always, as I have only seen it on JaspersBB and 1 trinity, where RawFlash begins to show badblock errors when writing, these errors report
in 3 flavors, 208, 210, and I forgot the other code.

Botom line is that when you open your original dump (reconstructed using the method you mention) it shows zero bad blocks, and Im like   Shocked

So I tried remapping the blocks manually, or letting rawflash do the job and the console will always boot to BlackScreen, except for Xell.

Solution: ONLY DO THIS AFTER YOU HAVE THE FULL RETAIL BACKUP OF NAND!!!

- delete nand with nandpro via LPT
- flash image_00....00.ecc with the +w
- leave the rest of the nand empty
- flash using RawFlash v4

This will get rid of the errors and you'll flashing just fine.
Logged
Maniaxx
Master Hacker
****
Posts: 113


2064


View Profile
« Reply #6 on: February 22, 2012, 08:33:40 PM »

Thx, everything worked fine. The timing issues (cable/capacitor) really gave me a hard time but in the end its an instant glitch jasper now.

I've had no problems with missing bad blocks. My image shows 4 bad blocks (in 360_Flash_Tool) that were properly processed by Xebuild/rawflash.
Logged

Xbox v1.0 (Cheapmod 1st Generation 29-Wire - X2 - 120GB)
Xbox v1.6 (Softmod nkpatcher10/ShadowC/Virtual eeprom - 10GB)
Xbox360 Falcon, Jasper16, Jasper256
60/60/65 target temp (C)
TMS/AUD_CLAMP - TDI/TRAY_OPEN
Pages: 1
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.11 | SMF © 2006-2009, Simple Machines LLC

Valid XHTML 1.0! Valid CSS! Dilber MC Theme by HarzeM