Using The NAND Dump Tool

[MrPhunkee]

Ok, here are coming the noobquestions.. :p

What vulnerable kernel should I upgrade too? 4532 or 4548? I downloaded the live cd from may 8th. Is there a xell shader exploit for that date or do they all work?

For dumping, I need this program, http://www.xboxhacker.net/index.php?topic=7913.20

After Ive gotten everything and verify its all good, how exactly do I flash my region from PAL to USA? Cant find a tutorial and I need to do it trough software. After that I want to set it in Japanese and upgrade prolly, so details on that too plz. Although I think we dont have a Japanese dump right now?

[litium]

1 - Both are OK, the 4548 has HD DVD support.  I would go for the 4532 if you don't need more.  before update you might consider desoldering the resistors that stops efuses from being burned.

2 - for dumping within linux you need this tool http://www.xboxhacker.net/index.php?topic=7913.msg50090#msg50090

3 - You better read more about it.  If I'm not wrong, to be able to extract a safe copy and write back NAND content you need to do it with infectus,

hope I helped
L

[robinsod]

I have split this out since it was OT but worth responding to

What You Need
1A) An XBox 360 with either 4532 or 4548 (I dont believe it makes a lot of difference) and RS232 level shifter to run XELL or
1B) An XBox 360 with a later Kernel for which the CPU key is known
2) An installed an infectus chip (Linux software solutions are coming but it isn't quite finished yet)
3) V0.8 of the Flash NAND dump tool

What You Do
1) Get the CPU key - To do this you need to run XELL, Go look at the free60 wiki, search XBH
2) Dump the 360's flash - see the Infectus website
3) Load the flash dump into the tool - make sure you enter the CPU key*
4) Hit the Extract button, choose an output directory
5) Edit the kv.bin file in a Hex editor (Winhex, Hexworkshop). To change the region go to offset 0xB8 replace the 2 bytes as follows

US  0x00,0xFF
JAP 0x01,0xFF
EU  0x02,0xFE

Save the KeyVault somewhere

6) In the tool hit the patch button, check the Patch KeyVault checkbox and select the KeyVault you saved in step 5. Select an output flash image filename.
7) Flash your 360 using the infectus chip

Once you have your CPU keys you can easily upgrade/downgrade (no resistor removal required, the tool can patch the lock down counter) and change region/DVD drive key at any time - just be sure to keep backups of your flash images after each update

Please use this thread to get help using the tool and not the technical threads. I (and others hopefully) will respond to n00b questions here, n00b posts in the technical threads face deletion (persistent n00bs get a ban request)

* Only the CPU Key is required to patch the KeyVault. It appears there is an issue that prevents KeyVault extraction/patching if the other keys are unknown. A small fix for this is in progress

[MrPhunkee]

Ok thx for the reply but the infectus seems like a real pain to install and no one in my country installs them so yeah.

How comes u cant set it to region free? Every console I know u could play every region if u had homebrew. And isnt it theoretly possible to emulate the kernel?

[Arakon]

uhm.. the infectus is quite easy to install on the 360.

and the 360 is NOT hacked fully. without a full hack, region free is IMPOSSIBLE. you can switch the region, but you can NOT change the kernel completely.

[MrPhunkee]

Ok, I must have misunderstood that it was possible to flash trough software. Yeah, install seems easy, must have been mistaken with install diagrams of another console or something. I have soldered, but thats like 10 years ago, so I dunno, tempting tho, cuz its all I ever wanted.

[Pringle]

Let the soldering job not hold you back, go to a electronics hardware store or so
The people should have plenty experience there.

I brought my first xbox 1 to a specialist shop for the 64 meg ram upgrade soldering

[zouzzz]

Hello,
Can we write the NAND flash from linux cd live Gentoo? (with WinSCP...)
Thanks.

[zouzzz]

It's not possible?
 

[oranginasprite]

Hello,
Can we write the NAND flash from linux cd live Gentoo? (with WinSCP...)
Thanks.

Tmbinc revealed that the write command were higher than 3 (related to the tmbincdump.bin program)but he did not described them. I do not know if it is because he is still testing them or choosed to keep them secret for now in order to avoid some rather uninformed noob to accidentally software-erase his NAND:  http://www.xboxhacker.net/index.php?topic=7290.40

Tmbinc     
Re: How to read the NAND flash from within the linux livecd
« Reply #40 on: 11-08-2007, 22:45:34 »

No, 3 is not an erase command. write commands need to be unlocked first (with 0x55, 0xaa), and i think i've identified the erase command (don't have my docs here.. but it was >3). In fact i've tried 3, and haven't had a difference (except for the last few sectors)

PS: Felicitations pour les tres bons et clairs tutos sur gxmod !