Hacking Privilege escalation achieved

CMDreamer

CMDreamer

Well-Known Member
Member
Level 13
Joined
Oct 29, 2014
Messages
1,690
Trophies
1
Age
38
XP
3,485
Country
Mexico
I was about to report this thread.

How about a little description of what is this about?

That link looks suspicious af. (No offense meant).
 
peteruk

peteruk

Well-Known Member
Member
Level 18
Joined
Jun 26, 2015
Messages
3,003
Trophies
2
XP
7,333
Country
United Kingdom
I'm surprised this has not been more heavily reported, this is great news for those who've been patiently waiting for developments on this console
 
  • Like
Reactions: KiiWii
T

TomChaai

Active Member
Newcomer
Level 4
Joined
Oct 17, 2022
Messages
31
Trophies
0
Age
32
XP
392
Country
China
Looks like it allows you to run stuff in SystemOS devmode as administrator, maybe more useful for curiosity and research than actually useful for devmode, you could run stuff as an administrator in a full feature Windows installation anyway.

It doesn't go down into hostOS or security processor so it will be entirely useless in terms of fully cracking the console as an actual console, it won't help dumping/running games.

Still may be good as an angle to look into the SystemOS.
 
F

FR0ZN

Well-Known Member
Member
Level 13
Joined
Nov 2, 2013
Messages
1,382
Trophies
1
Age
37
XP
3,878
Country
United States
peteruk said:
I'm surprised this has not been more heavily reported, this is great news for those who've been patiently waiting for developments on this console
Click to expand...
afaik we've been this far at least once and nothing more came out of it.
As impressive as it is, this exploit here was way more interesting for the average user:
https://gbatemp.net/threads/pop-a-shell-on-xbox-one-video.616810/
And this one also went dark in terms of interest from other people.
 
  • Like
Reactions: peteruk
peteruk

peteruk

Well-Known Member
Member
Level 18
Joined
Jun 26, 2015
Messages
3,003
Trophies
2
XP
7,333
Country
United Kingdom
TheStonedModder

TheStonedModder

Well-Known Member
OP
Member
Level 9
Joined
Dec 25, 2022
Messages
829
Trophies
0
Age
27
XP
1,634
Country
United States
peteruk said:
fingers crossed that enough talented people get involved with the project and open this wide for all to enjoy
Click to expand...
Honestly I doubt it anytime soon

Years ago the SDK and a bunch of other documents leaked on se7ensins for the Xbox one and nothing came from that either
 
ARVI80

ARVI80

Well-Known Member
Member
Level 3
Joined
Feb 25, 2016
Messages
197
Trophies
0
Age
43
Location
UK
XP
315
Country
Page tables are the way forward for this console as the PT's only require a certain amount of conditions met to bypass the hypercalls that request privileges. At the point of making A PT meet certain constraints and hypercalls being satisfied a small amount of memory access is all that is needed to setup new PT's in the memory or even existing PT's for a full memory breakout, at this point we are able to read and write arbitrary machine memory and control of the VM should not be to difficult.

Although this is a vulgar and oversimplified explanation it is what will work. The reason nobody wants to hack this console is that Microsoft has taken all the fun out of it by already giving us everything we would want to achieve, they have only really locked down piracy and left nothing else of interest.

Well done MS :)
 
Last edited by ARVI80,

Site & Scene News

Go to forum More news

Popular threads in this forum

XBOX One S Power On and then Off Q9F2

General chit-chat
Help Users
  • No one is chatting at the moment.
    Metoroid0 @ Metoroid0: im more interested in metroid prime 4