It's been a while since Microsoft released the Xbox One, and despite its age, there haven't been any reliable softmod methods to hack the console. Until now. A post started making the rounds, saying that a method for executing kernel level code on the Xbox One had been found. A list of instructions for preparing Xbox One systems to be hacked was also provided, with the process being as follows:

1. Ensure your Xbox Live account Login-Type is configured as “No barriers” aka. auto-login with no password prompt
2. Set your console as “Home Console” for this account
3. Download the App Game Script
4. Start the app (to ensure license is downloaded/cached)
5. Take your console offline! To make extra sure it cannot reach the internet, set a manual primary DNS address of 127.0.0.1
6. Get a device/microcontroller that can simulate a Keyboard (rubber ducky or similar) - otherwise you have to type a lot manually

This method appears to use a UWP app called Game Script on the Xbox One to execute the code, and was discovered by a user named carrot_c4k3. It seems as though the hack will require a lot of manual typing, unless you have a device that can simulate a keyboard, according to the preparation instructions. Reportedly, the latest firmware update for the Xbox One has already patched the exploit out, with the last exploitable firmware being 10.0.25398.4478.

Source
Video guide on how to prepare your system
Proof of concept code

 

[makinator66]

.

 

[mtxn]

if anyone is looking for gamescript. here it is: (just remove spaces it's my second post. sorry for inconvenience)
gbatemp .net/download/game-script.38713/

 

[AwkwaBear]

What exactly does this hack make available on the console? is it the same as dev mode on the Xbox series X/S?

I am hoping to be able to access my save data from games to possibly export and decrypt it to attempt to import it into PC versions of games.

 

[Deleted member 681324]

What exactly does this hack make available on the console? is it the same as dev mode on the Xbox series X/S?

I am hoping to be able to access my save data from games to possibly export and decrypt it to attempt to import it into PC versions of games.

Anything that grants kernel level r/w, in our  pacific case, is a good thing given time to develop user-end application... so what if it's "just dev mode on retail side of things" that alone grants full power resources, unlike the actual dev mode. For all those black hats that are gaslighting people into this notion, fail to see its future potential. Only thing I can't speak/text on, the speed of and/or how much gets developed for XB1/S/X seeing how small the pool of a community that will be able to take advantage of kernel r/w access... who knows, it may extend beyond that scope given time to develop.

 

[Blakejansen]

What are the implications of this hack for Series X? Are Series X back ups on the horizon or is it mainly for xbox one games on the series?

 

[BigOnYa]

What are the implications of this hack for Series X? Are Series X back ups on the horizon or is it mainly for xbox one games on the series?

The creator of this has specifically said this will not be for piracy, or for playing backups.

 

[Blakejansen]

Is the kernel exploit able to take full advantage of the series x hardware?

 

[icantfly]

Is the kernel exploit able to take full advantage of the series x hardware?

series are affected same way as one probably

 

[mtxn]

kernel level access allows you to do literally everything in the system. there is good talk about kernel exploitation if someone is interested: %77%77%77.youtube.%63%6f%6d/watch?v=nauAlHXrkIk

at this stage hackers should try to extract xvd and bitlocker keys.

Post automatically merged: Jul 5, 2024

has anyone tried running Game Script from dev mode?

Post automatically merged: Jul 6, 2024

good news. the Game Script and exploits work in dev mode.

 

[jacobias13]

I'll have to get my xbox out and set this up. Thanks!

 

[Zwazwajool]

I'll have to get my xbox out and set this up. Thanks!

I think that I'm the only person who went out of my way to remove Homebrew off of my systems. Hurry up though, it won't last long or even might not work anymore.

 

[MopSec]

kernel level access allows you to do literally everything in the system. there is good talk about kernel exploitation if someone is interested: %77%77%77.youtube.%63%6f%6d/watch?v=nauAlHXrkIk

at this stage hackers should try to extract xvd and bitlocker keys.

Post automatically merged: Jul 5, 2024

has anyone tried running Game Script from dev mode?

Post automatically merged: Jul 6, 2024

good news. the Game Script and exploits work in dev mode.

This is not true. In the case of the Xbox One, kernel level code exec doesn't let you do much more than you'd be able to do in dev mode anyway.

 

[mtxn]

This is not true. In the case of the Xbox One, kernel level code exec doesn't let you do much more than you'd be able to do in dev mode anyway.

I didn't know that in dev mode you can freely use any WIN32 API function at the system privilege level

 

[NotStupidAhaAha]

This is not true. In the case of the Xbox One, kernel level code exec doesn't let you do much more than you'd be able to do in dev mode anyway.

yeah if someone gets host or doom from obscuregamers reveals the psp exploit i don't see what this does apart from
a, free devmode
b, dump games

 

[djinc91]

New update from carrot_c4k3

 

[ChibiMofo]

The creator of this has specifically said this will not be for piracy, or for playing backups.

The Creator has no say whatsoever in how it is ultimately utilized. Also, you meant to say "game preservation" when you said "piracy."

 

[Rya687]

The Creator has no say whatsoever in how it is ultimately utilized. Also, you meant to say "game preservation" when you said "piracy."

You misunderstand. Emma never said she doesn't want the exploit to be used for piracy. She literally said it can't.

It will give you full control over one of the operating systems, but it's not the one that runs games. It will enable modifying save data, which will allow using another exploit that just went public to trick certain games into dumping themselves or any other games. But those dumps still can't be played on actual hardware. So unless this exploit turns out to have more potential than expected, it won't enable playing unauthorized copies on real hardware. It might be possible to emulate them or otherwise get them to run on PCs, but piracy for the consoles themselves should remain impossible.

 

[Raydi]

Don't worry everyone. The industry rats will make sure it's not on current firmware so it'll never actually be useful for anything.

 

[stardaddler]

Don't worry everyone. The industry rats will make sure it's not on current firmware so it'll never actually be useful for anything.

Latest firmware is still exploitable and there is a way to Install Gamescript with a partner dev account.



http://github.com/Nun-z/XboxRetailModeAppGuideLegacy

 

[Raydi]

Latest firmware is still exploitable and there is a way to Install Gamescript with a partner dev account.



http://github.com/Nun-z/XboxRetailModeAppGuideLegacy

Doesn't matter without access to the unknown exploit lmao. That dirtbag rat smealum would say the same garbage too, but only ever release it years after it's relevant or when the Chinese would threaten his bottom-line (his Hatreon/GFM account).

That loser group that does the PS ones, uh... fail0verflow? Those worthless knobs hired by Sony to be security testers, do the same thing too.