Hacking [Info] Xbox One - Getting somewhat started

[Xeeynamo]

Console Revision: Unknown (0x0058)
Console Flavour: DEVKIT SRA

It's a X, probably the one with 44 CUs. What is the difference between SRA, ERA, MS and SP?

 

[Deleted User]

Console Revision: Unknown (0x0058)
Console Flavour: DEVKIT SRA

It's a X, probably the one with 44 CUs. What is the difference between SRA, ERA, MS and SP?

SRA is usually a UWA authorized kit which is given the SRA_DEBUG capabilities on its certificate.
ERA is any kit for using the XDK, writing and deploying games. This is given the SRA_DEBUG and ERA_DEBUG as well as XTF capabilities. (Xbox Tools Framework)
MS and SP are internal only development kits that can do everything from hardware debugging to kernel debugging.

 

[Yilmazakgunes]

Anyone try ransomware or cryptolocker on Xbox one ? Maybe they can escape sandbox

 

[Joom]

Anyone try ransomware or cryptolocker on Xbox one ? Maybe they can escape sandbox

There's no possible way that these types of malware would be able to achieve this. I imagine they'd actually be a detriment, provided one could actually achieve execution.

 

[kamill85]

....

Great progress! I would like to get a similar setup to try some of the things that I worked on in the past. There are several vulnerabilities in registry handling for example... also, the hypervisor is likely vulnerable, so never say never guys

Could you pm me a working discord invite?

 

[Deleted User]

Great progress! I would like to get a similar setup to try some of the things that I worked on in the past. There are several vulnerabilities in registry handling for example... also, the hypervisor is likely vulnerable, so never say never guys

Could you pm me a working discord invite?

Sure, the vulnerabilities for typical Windows won't carry over a lot of the time. The hypervisor is also different but sure would have a chance of being vuln.

 

[Deleted member 668561]

Huh, GliGli is involved with this too? I saw on another site that he was one of the people working on this? If so thats good.. He was one of the guys who first hacked the 360

Well don't forget about Felix

Th

Things are getting interesting again in this scene

UPDATES!

Flash reading/Dumping is now a thing thanks to XRF! Probably doesn't mean much for your average end user but no doubt will help Devs tinker with the inner workings of the Xbox One, which will in turn be good for said end user. SAVVY!?

Tings seem to be very interesting with the xbone, well what is the probabilities of this being patched out? Or the exploit fixed? My question is can the console "flag" it self like the knox on samsung

 

[ploggy]

Well don't forget about Felix





Tings seem to be very interesting with the xbone, well what is the probabilities of this being patched out? Or the exploit fixed? My question is can the console "flag" it self like the knox on samsung

I don't remember a Felix? unless he went by another handle back then?

Probably straight away knowing MS I think I read somewhere that MS basically sends back logs of everything you do on your Xbox so if you do tinker around with the inner workings MS will be able to see it and act accordingly, but your question would be better off aimed at @XVMM.

 

[Deleted member 668561]

I don't remember a Felix? unless he went by another handle back then?

Probably straight away knowing MS I think I read somewhere that MS basically sends back logs of everything you do on your Xbox so if you do tinker around with the inner workings MS will be able to see it and act accordingly, but your question would be better off aimed at @XVMM.

Felix domke and a few others back when running linux was the goal of Homebrew on consoles , when King Kong and jtag were used to run code, pretty much laid out the how the 360 worked down to the bare metal, iirc which lead to gligli figuring out rgh

 

[ploggy]

Felix domke and a few others back when running linux was the goal of Homebrew on consoles , when King Kong and jtag were used to run code, pretty much laid out the how the 360 worked down to the bare metal, iirc which lead to gligli figuring out rgh

Ahh, I came into the 360 after the first round of hacks (king kong) But still respect to Felix the OG lol

 

[RunFwrd]

anyway to play original and xbox 360 roms on xbox one?

 

[Deleted User]

anyway to play original and xbox 360 roms on xbox one?

There will be but right now we're still a bit far off unfortunately.

 

[RunFwrd]

There will be but right now we're still a bit far off unfortunately.

well shit i look forward to it. i still got my nintendo consoles to finish modding so i can wait still. thanks for the response!

 

[ploggy]

There will be but right now we're still a bit far off unfortunately.

Elaborate through devmode or...?

 

[Deleted User]

Elaborate through devmode or...?

Can't say at this stage.

 

[ploggy]

Can't say at this stage.

HYPE!! ok fair enough. Exciting times ahead then

 

[Frasser]

Nice, time to try some cool stuff on my xbox. I want to help about programming, PM me if you know how I can colab with you.

Thanks for your contribution.

 

[Pasho01]

Has the nand dump provided much progress for us so far? In terms of unsigned code in dev mode or shit like that

 

[ZeroXB]

Would it be possible to extract the secure processors firmware from one of the .bin files on the nand or hdd. cwering on github released a tool [psptool] that locates amd firmware files on secure boot image and dumps all memory addresses and types. With some modification and a proper way of privilege escalation. Is this a plausible way of gaining info on the custom processor?

I will continue my research and get back to you guys with an update.

 

[Deleted User]

The source for the functionality behind 'superfun' has been shared on GitHub: https://github.com/billyhulbert/XboxUnattend

Should be helpful for anyone who wants to look into the world of COM.