It's been a while since Microsoft released the Xbox One, and despite its age, there haven't been any reliable softmod methods to hack the console. Until now. A post started making the rounds, saying that a method for executing kernel level code on the Xbox One had been found. A list of instructions for preparing Xbox One systems to be hacked was also provided, with the process being as follows:

1. Ensure your Xbox Live account Login-Type is configured as “No barriers” aka. auto-login with no password prompt
2. Set your console as “Home Console” for this account
3. Download the App Game Script
4. Start the app (to ensure license is downloaded/cached)
5. Take your console offline! To make extra sure it cannot reach the internet, set a manual primary DNS address of 127.0.0.1
6. Get a device/microcontroller that can simulate a Keyboard (rubber ducky or similar) - otherwise you have to type a lot manually

This method appears to use a UWP app called Game Script on the Xbox One to execute the code, and was discovered by a user named carrot_c4k3. It seems as though the hack will require a lot of manual typing, unless you have a device that can simulate a keyboard, according to the preparation instructions. Reportedly, the latest firmware update for the Xbox One has already patched the exploit out, with the last exploitable firmware being 10.0.25398.4478.

Source
Video guide on how to prepare your system
Proof of concept code

 

[johsam]

Prepped my One (all-digital) and Series X and taken them offline.. Let the waiting game begin. Did the Series X 2h ago, no update from MS yet in europe atleast.

 

[Reecey]

But none where you don’t have to open the console

You can’t be serious it’s easy to hack an Xbox360 straight through the disk drive all you need is jungleflasher a k probe x360usb pro (Jungle edition standard of course) to grab the bin file. I fitted to both my 360’s a ck3 blaster kit so it was easier when the 360 needed updating and flashing you never need to open it again

 

[Deleted member 681324]

One recorded newer OS live, in Modded Warfare's most recent vid pinned comment. I can't confirm location, nor if it's isolated event... hopefully it's not implemented system wide yet... trying to pick up a Project Scorpio X1X Friday no sooner though.

EDIT : If anyone not yet updated that's wanting to, I suggest using your mobile hotspot as the only network source to start update but kill the hotspot as soon as it starts. You'll get the update error but you'll get to see the target OS version it's trying to install.

 

[Bagel Le Stinky]

You can’t be serious it’s easy to hack an Xbox360 straight through the disk drive all you need is jungleflasher a k probe x360usb pro (Jungle edition standard of course) to grab the bin file. I fitted to both my 360’s a ck3 blaster kit so it was easier when the 360 needed updating and flashing you never need to open it again

yeah that's not exactly beginner friendly

 

[nickolag]

You can’t be serious it’s easy to hack an Xbox360 straight through the disk drive all you need is jungleflasher a k probe x360usb pro (Jungle edition standard of course) to grab the bin file. I fitted to both my 360’s a ck3 blaster kit so it was easier when the 360 needed updating and flashing you never need to open it again

you still need to open the console.. what's your point? it's also pretty crappy compared to RGH/JTAG..

 

[Luc20100]

Where is this Game Script on the app store? I don't see it.

 

[MasterJ360]

Where is this Game Script on the app store? I don't see it.

Microsoft took it down. So only those who installed it have the license to access it.

 

[Axido]

Microsoft took it down. So only those who installed it have the license to access it.

Yep, if you have a link to the Microsoft Store page of it, it tells you "Product not found".

So, we're at the stage where it's too late to join in for 99% of those who'd want to. And with the new update rolling out, the waiting game begins. That being said, I wonder if MS removed Game Script for good or if they will put it back up when the exploit is fixed.

 

[BigOnYa]

Yep, if you have a link to the Microsoft Store page of it, it tells you "Product not found".

So, we're at the stage where it's too late to join in for 99% of those who'd want to. And with the new update rolling out, the waiting game begins. That being said, I wonder if MS removed Game Script for good or if they will put it back up when the exploit is fixed.

Or worse, ban users for installing/ running the Game Script.

 

[MasterJ360]

Another note for those who are safe for the wait. Might as well do any game updates or purchases before it requires a system update.

 

[Deleted member 681324]

Remember how the emulation UWP's were taken down but developers kept changing the UWP's names and descriptions and making them private, yet giving access through Edge?

 

[Axido]

Another note for those who are safe for the wait. Might as well do any game updates or purchases before it requires a system update.

In a worst case scenario this comes with the risk of getting your Game Script app license revoked by Microsoft. We have yet to find out whether Microsoft actually does this, but it's a possibility.

 

[ArgonUK]

Remember how the emulation UWP's were taken down but developers kept changing the UWP's names and descriptions and making them private, yet giving access through Edge?

It would be really nice. Gives more people a chance.

I suspect that exploit wasn't patched in the June firmware update, waiting for the confirmation.

Does Xbox series S/X have same security mechanisms as Xbox One, meaning the same level of exploitation?

 

[Deleted member 681324]

... Does Xbox series S/X have same security mechanisms as Xbox One, meaning the same level of exploitation?

Yes, same OS 25398.4478 kernel r/w exploit. Uncertain if the developer(s) will pursue Series consoles code development, as Carot stated. This systemOS kernel exploit mainly focuses on XB1

 

[MasterJ360]

In a worst case scenario this comes with the risk of getting your Game Script app license revoked by Microsoft. We have yet to find out whether Microsoft actually does this, but it's a possibility.

That seems to be a paranoid rumor going around if the system has internet access or banned accounts. I updated only 2 of my games Halo collection took an hour. Still have G/script with the code pasted in. Once we are done then we can keep the system offline.

 

[orangy57]

The Retroarch stuff was good enough for me TBH, the xbox one is insanely weak by today's standards and I probably haven't booted the thing in ~4 years.
Would be cool to see some homebrew on the Series S/X, I wonder what they're capable of. We've only ever gotten to see unoptimized RAM-limited versions of emulators on those consoles IIRC

 

[InsaneNutter]

It will be great if we can mod / launch old betas of games that are no longer usable on the Xbox One. I love playing around with obscure content like that.

Emulators without any restrictions on the Series X would be very interesting to see though I agree.

 

[ChickensAss]

I have gamescripts source code but it does not have the UWP parts in it or sln that would build into a UWP app so how would I build it into a UWP? its in vcxproj form and does not say Universal Windows so are we screwed for the time being without any appx backup of the app too reupload ourselves or somthing?

 

[Blakejansen]

I was too lazy to get this done in time unfortunately. Now I regret it. Hopefully there is a work around although more than likely I know I am screwed.

 

[ChickensAss]

I now got the appx of the game script app could I send that?