Maximus 1.1 Hitachi Firmware Stealth-Maker - ALL VERSIONS !!!

[carranzafp]

So my firmware was read after I hacked and it was named hacked.bin.  I then flashed the stealth sectors (stealth-e.bin)  To restore the sectors for a v47 drive (F: in Windows), would the commands be:

firm e hacked.bin hacked-e.bin
47flash f hacked-e.bin 90033000 1000
47flash f hacked-e.bin 90005000 1000

then from GaryOPA's package, run:

restore.bat


Sound right? 

Yep the commands are right

[carranzafp]

Get the MS28 FW on your Sammy and you're having the same stealth protection

Can you bold it?   Samsung MS28 Fw is is not un-readable so no stealth  (I used to think that too).  The only problem is that needs a specific timing to get readed

[klipseracer]

This is GREAT progress! Please, KEEP IT COMMING!!!!

[sTix]

So my firmware was read after I hacked and it was named hacked.bin.  I then flashed the stealth sectors (stealth-e.bin)  To restore the sectors for a v47 drive (F: in Windows), would the commands be:

firm e hacked.bin hacked-e.bin
47flash f hacked-e.bin 90033000 1000
47flash f hacked-e.bin 90005000 1000

then from GaryOPA's package, run:

restore.bat


Sound right? 

Yep the commands are right

Thanks

[djbase]

Get the MS28 FW on your Sammy and you're having the same stealth protection

Can you bold it?   Samsung MS28 Fw is is not un-readable so no stealth  (I used to think that too).  The only problem is that needs a specific timing to get readed

I think he meant it sarcastically... because the Samsung MS28 aren't that easy to flash!

[DeadTermi]

hi..i'm not understand who can I return to the NON stealth firmware??

i have to write 47flash g stealth-e.bin 90033000 1000??

if I write in this method..it says "fopen() failed"

help!!!

sorry for my english

[oscar4273]

THI IS FANTASTY JOB.... NICE....

[Abaddon]

So my firmware was read after I hacked and it was named hacked.bin.  I then flashed the stealth sectors (stealth-e.bin)  To restore the sectors for a v47 drive (F: in Windows), would the commands be:

firm e hacked.bin hacked-e.bin
47flash f hacked-e.bin 90033000 1000
47flash f hacked-e.bin 90005000 1000

then from GaryOPA's package, run:

restore.bat


Sound right? 

And if you don't have a hacked-e.bin yet but only the hacked.bin you get the encrypted one by using this command inside the tools dir
firm.exe e hacked.bin hacked-e.bin

Correct ?

[sTix]

Yeah, that command is the first command in my original post. 

[r1c4rd0]

how to make drive on b method ??
is necessary any code to firmware my hitachi 47d ?? 

[The M.A.R.T.]

Get the MS28 FW on your Sammy and you're having the same stealth protection

Can you bold it?   Samsung MS28 Fw is is not un-readable so no stealth  (I used to think that too).  The only problem is that needs a specific timing to get readed

You are right indeed after reading closer on MS28. The specific timing though is made by the VCC trick or 10 sec. switch off. How is MS gonna do that over Live?

And I guess... someone is working on the stealth like it is on the Hitachi now also. And then it's done, the T/S is more save because there is no way to upload FW by MS like with the Hitachi

[carranzafp]

Its gona be hard to implement firmware stealth on samsung, because the read/flash is handled by the built in circuitry on the Mediatek processor and not the firmware itself like on hitachi's.

[The M.A.R.T.]

Its gona be hard to implement firmware stealth on samsung, because the read/flash is handled by the built in circuitry on the Mediatek processor and not the firmware itself like on hitachi's.

Could you explain a little bit more? It's hardware driven allright, but if the hardware read/flash is directed by the FW to give the results needed, wouldn't it be working also? Just thinking a bit too simple maybe but well. T/S would be the 'safest' drive then compared to the Hitachi where a new uploaded FW can be executed on the fly from inside the DVD drive.

I hope you can explain a bit further,  I try to understand

[buzzar]

/it only gets better thanx

[carranzafp]

Well, I am not a hardware guru, so maybe somebody can give you a more indeepth answer.  The Mediatek Controller has some services built in, one of them is programming/reading the external flash chip.  Go to http://www.mtk.com.tw/product-lines.htm# and have a look at 1369 (wich is the more near I found to 1359 contained on the samsung drives for 360). 

Under HOST Microcontroller features:
* Up to XX bytes FLASH Programming Interface

That means, flash program interface handled by the Microcontroller, not the firmware

In the case of the hitachi, the "panic" mode is handled also by the firmware, so if you try to flash a 100% blank chip on a Hitachi you will fail, but if you try to flash a 100% blank chip on a Samsung you will succed

Also, I dont have any datasheet for the 1359 (anybody has it?, share with me).

[The M.A.R.T.]

Well, I am not a hardware guru, so maybe somebody can give you a more indeepth answer.  The Mediatek Controller has some services built in, one of them is programming/reading the external flash chip.  Go to http://www.mtk.com.tw/product-lines.htm# and have a look at 1369 (wich is the more near I found to 1359 contained on the samsung drives for 360). 

Under HOST Microcontroller features:
* Up to XX bytes FLASH Programming Interface

That means, flash program interface handled by the Microcontroller, not the firmware

In the case of the hitachi, the "panic" mode is handled also by the firmware, so if you try to flash a 100% blank chip on a Hitachi you will fail, but if you try to flash a 100% blank chip on a Samsung you will succed

Also, I dont have any datasheet for the 1359 (anybody has it?, share with me).

We need some Uberfry here

[carranzafp]

Uberfry comments can be useful, but you only need re-read what was posted by c4e (mainly first paragraph), this has been talked before: 

http://www.xboxhacker.net/forums/index.php?topic=2943.msg24446#msg24446

What can be and was fixed is a checksum routine only, not complete dumps

[DjoeN]

Starting after Fall, and in marketing push against the Sony PS3, you will see the x360's being sold
before XMAS and after XMAS, containing a new DVD drive designed by the merger of BenQ and Lite-On. The only problem is
that MS needs to have some type of flash device on the DVD drive, as they need to program it with your "drive key" themselfs,
plus be able to update during the repair process. If they are smart they will use eeprom to store the "drive key" and have all
the code in read-only non-writable memory.

If the do that, and our old x360 gets broken, then we are stuck with all those DL media (we can use them as wallpaper in our room then )
(i can already see old x360 with flashable dvd drives selling on ebay for much more value then in the stores if that happens)

[m4v3rick]

just a stupid question

when i dump my hitachi firmware and i get, for example, hitachi.bin, is this file encrypted or not?

just to know if i have to apply the stalth patch on an encrypted (or not) file

[The M.A.R.T.]

Is there any progression on the T/S stealth FW or did that one is left out in the cold at this point in time?