drstoopid
Newbie
Posts: 7
|
 |
« Reply #160 on: October 04, 2007, 11:04:01 AM » |
|
of course copy protection is of no interest to hackers...as if anyone would want/have wanted to make his own SS sometime soon!
|
|
|
|
|
Logged
|
|
|
|
|
|
|
MrPhunkee
|
|
« Reply #162 on: October 15, 2007, 10:40:39 AM » |
|
Many thx!
|
|
|
|
|
Logged
|
|
|
|
|
MoDInside
|
|
« Reply #163 on: October 15, 2007, 08:26:47 PM » |
|
Thanks robinsod.
|
|
|
|
|
Logged
|
|
|
|
robinsod
Global Moderator
Xbox Hacker
Posts: 648
Perl packed my shorts during global destruction
|
|
« Reply #164 on: October 16, 2007, 04:19:44 AM » |
|
Be careful if you patch an image, I think 0.86 has a bug. Works fine for extracting though. A fix will be available shortly
|
|
|
|
|
Logged
|
|
|
|
|
|
|
Arakon
|
|
« Reply #166 on: October 19, 2007, 04:11:25 AM » |
|
nice!  |
|
|
|
|
Logged
|
I do NOT give support by email, PM, ICQ or whatever. Anyone annoying me that way will have his balls removed. With a rusty butterknife. Slowly. And I'll enjoy doing it.
|
|
|
|
atiman
|
|
« Reply #167 on: October 19, 2007, 11:54:47 AM » |
|
Thanks a lots!
|
|
|
|
|
Logged
|
|
|
|
|
MoDInside
|
|
« Reply #168 on: October 19, 2007, 01:50:13 PM » |
|
Appreciated.
|
|
|
|
|
Logged
|
|
|
|
robinsod
Global Moderator
Xbox Hacker
Posts: 648
Perl packed my shorts during global destruction
|
|
« Reply #169 on: November 17, 2007, 05:11:56 AM » |
|
V0.86b http://rapidshare.com/files/70190523/tool.86b.rar.htmlMore bug fixes  1) Patching the KV works again 2) 5787 contains a modified CF, this build of the tool will now extract the HV & Kernel correctly. It doesn't change the way the extractor/patcher works but the change in CFs size broke my code |
|
|
|
|
Logged
|
|
|
|
|
Ellex80
Guest
|
|
« Reply #170 on: November 17, 2007, 06:46:05 AM » |
|
*note*
if someone want to extract kernel 5759 ... you have to ignore the error
"ApplyKernelPatch: Failed to apply Patch V4532, it appears to be corrupt"
the extraction works fine.
|
|
|
|
|
Logged
|
|
|
|
|
tmbinc
|
|
« Reply #171 on: November 18, 2007, 06:47:40 PM » |
|
robinsod: oh, good that you mentioned that, i missed that CF modification.
for the record, they do timing-constant hashchecks there now. Not that it matters, but a 2BL change will just be a matter of time. It has been changed in every updated code so far.
|
|
|
|
|
Logged
|
Please don't copy/quote full text outside this board. Instead, summarize and link to this post. Thanks! This lets me keep information updated and doesn't pull things out of context.
|
|
|
robinsod
Global Moderator
Xbox Hacker
Posts: 648
Perl packed my shorts during global destruction
|
|
« Reply #172 on: November 26, 2007, 10:42:08 PM » |
|
robinsod: oh, good that you mentioned that, i missed that CF modification.
for the record, they do timing-constant hashchecks there now. Not that it matters, but a 2BL change will just be a matter of time. It has been changed in every updated code so far.
Sorry, I missed this one. "timing-constant hashchecks" in 5Bl? Hmmm. I'm sure future boxes will spoil our fun but the question is, will MS update 2BL on boxes in the field? Perhaps in time for Christmas? Doubtful if 5BL has changed I would have expected 2BL at the same time (if possible) but you may know better |
|
|
|
|
Logged
|
|
|
|
|
Homer2102
|
|
« Reply #173 on: November 27, 2007, 01:59:07 AM » |
|
Are there the same bugs in "degraded.exe"? I have a dump from an E71(should be "dash update error"). Not problem to open it in the FlashDumpTool, but degrade and probutus' readflash crashs. I would like to use degraded to test the new infectus timing attack. Any idea to fix it?
|
|
|
|
|
Logged
|
|
|
|
|
tmbinc
|
|
« Reply #174 on: November 27, 2007, 02:56:27 PM » |
|
robinsod: oh, good that you mentioned that, i missed that CF modification.
for the record, they do timing-constant hashchecks there now. Not that it matters, but a 2BL change will just be a matter of time. It has been changed in every updated code so far.
Sorry, I missed this one. "timing-constant hashchecks" in 5Bl? Hmmm. I'm sure future boxes will spoil our fun but the question is, will MS update 2BL on boxes in the field? Perhaps in time for Christmas? Doubtful if 5BL has changed I would have expected 2BL at the same time (if possible) but you may know better CF is 6BL  My feeling is that they will update it. They've got all the required stuff in place, it's just not used in field yet. A flash upgrade wouldn't be more risky that it is at the moment. So, why not. HV was updated (to use timing constant hashchecks) even before (5766, if i'm right). |
|
|
|
|
Logged
|
Please don't copy/quote full text outside this board. Instead, summarize and link to this post. Thanks! This lets me keep information updated and doesn't pull things out of context.
|
|
|
robinsod
Global Moderator
Xbox Hacker
Posts: 648
Perl packed my shorts during global destruction
|
|
« Reply #175 on: November 27, 2007, 05:57:42 PM » |
|
robinsod: oh, good that you mentioned that, i missed that CF modification.
for the record, they do timing-constant hashchecks there now. Not that it matters, but a 2BL change will just be a matter of time. It has been changed in every updated code so far.
Sorry, I missed this one. "timing-constant hashchecks" in 5Bl? Hmmm. I'm sure future boxes will spoil our fun but the question is, will MS update 2BL on boxes in the field? Perhaps in time for Christmas? Doubtful if 5BL has changed I would have expected 2BL at the same time (if possible) but you may know better CF is 6BL My feeling is that they will update it. They've got all the required stuff in place, it's just not used in field yet. A flash upgrade wouldn't be more risky that it is at the moment. So, why not. HV was updated (to use timing constant hashchecks) even before (5766, if i'm right). Yeah, you are correct, there is no fallback update anymore and so updating 2BL is no more risky than applying any other regular update. Oh well, we need a new hack ... |
|
|
|
|
Logged
|
|
|
|
|
|
|
zouzzz
|
|
« Reply #177 on: December 03, 2007, 05:16:49 PM » |
|
thanks.  |
|
|
|
|
Logged
|
|
|
|
|
Geremia
|
|
« Reply #178 on: December 03, 2007, 07:30:40 PM » |
|
Thanks robinsod:)
btw, does anyone has a minimal idea of the use of the extended.bin?
I've observed that probably at postcode6D (at least it seems from my ida), it's checked if present and valid, if not a new one is created.
I've observed this by updating several times from 1888-to-5759, or by deleting it on the FS root, or by exchanging it with a modified and reencrypted one (CPU key is used in the same way as for KV). Always a new one is created.
But seems that, if valid, it's mantained from an update to the other, from 4532 till actual version.
|
|
|
|
|
Logged
|
|
|
|
|
sliverstorm
|
|
« Reply #179 on: December 03, 2007, 08:58:55 PM » |
|
is the cpu key 100% neccesary for decrypting the KV? I'm sure you're all gonna yell 'yes' back at me, but I can't help but think;
if regions of the KV are consistent from box to box (i.e. region code and such) could you not do something like test a key, check to see if the region is decrypted properly, and if not try a new key? Also since the Xbox is made on the assembly line I would imagine that most CPU keys have similar regions (due to probably being at least partly serial in nature) so you could start w/ cpu keys from X to Y before doing Z and W
I am not very well versed in cryptography, so if this is entirely impossible could someone take a few seconds to explain?
|
|
|
|
|
Logged
|
|
|
|
|
