Thread Status:
Not open for further replies.
  1. jamespoo

    OP jamespoo GBAtemp Advanced Fan
    Member

    Joined:
    Mar 4, 2011
    Messages:
    648
    Country:
    New Zealand
    back about 2012-2014 or so and off and on since then i used to keep up with the xbox hacking scene and wanted to know if there was any softmod yet

    just recently i saw there was a softmod for the ps3 now so i was hoping the xbox 360 also had a soft mod
     
  2. EmulateLife

    EmulateLife GBAtemp Psycho!
    Member

    Joined:
    May 30, 2016
    Messages:
    3,992
    Country:
    United States
    Nope, probably never gonna happen.
     
    jamespoo likes this.
  3. godreborn

    godreborn GBAtemp Guru
    Member

    Joined:
    Oct 10, 2009
    Messages:
    9,968
    Country:
    United States
    just flash your dvd drive, very easy. jungleflasher may look daunting, since last I checked, it was around 160-170 pages long, but you only need the part about your make/model drive.
     
  4. EmulateLife

    EmulateLife GBAtemp Psycho!
    Member

    Joined:
    May 30, 2016
    Messages:
    3,992
    Country:
    United States
    Or find someone to rgh it if you don't feel comfortable doing it yourself. I know playing games off hard drives is my jam though v.s. burning discs. I used to be all about burning discs but they just end up eventually going bad usually and I love just being able to sit back on my couch without having to get up and switch games (yes I'm lazy).
     
  5. morvoran

    morvoran Trumpican
    Member

    Joined:
    Dec 19, 2010
    Messages:
    798
    Country:
    United States
    People said the same thing about the DSi but look what's going on with that scene now. Same thing happened with the original Xbox. I wouldn't hold my breath waiting for a soft mod in the 360, but I feel it will happen one day.
     
  6. EmulateLife

    EmulateLife GBAtemp Psycho!
    Member

    Joined:
    May 30, 2016
    Messages:
    3,992
    Country:
    United States
    Well you can point to a Nintendo system in which every Nintendo system gets a softmod I'll point to another Xbox system since we're talking about Xbox the Xbox One it still can't even play backups. I believe Microsoft's security is the best and I don't believe there's going to be a softmod. Maybe it will happen one day maybe not but instead of hoping why not just get it rgh'd and enjoy it instead of just waiting maybe forever?
     
    teamlocust and jamespoo like this.
  7. DinohScene

    DinohScene Feed Dino to the Sharks
    Moderator

    Joined:
    Oct 11, 2011
    Messages:
    20,461
    Country:
    Antarctica
    There's no softmod for the 360.
    If there was, the hacking guide would've told you.

    Only thing close to a softmod we have now is flashing the DVD drive.
     
    DSUPERY92 and aadz93 like this.
  8. DSUPERY92

    DSUPERY92 GBAtemp Regular
    Member

    Joined:
    Jul 3, 2018
    Messages:
    108
    Country:
    Italy
    Sorry for the necroposting, the DSi was hacked now because before it was thought that the only change was only an R4, now everyone is understanding that this is not the case, Nintendo in terms of security is not as good as Xbox, see Nintendo switch and 3ds, those were hacked after a few years, because already from 3ds they realized that modifying the NAND is perhaps useful. The Xbox has never existed a free and REALLY softmod way in order to have the modification. (Useless you do, the LT 3.0 is not software, always touches the hardware.)
    On Xbox one you have to pay to have the dev mode.
    Obviously we hope a softmod for the 360 comes out, it's difficult if not impossible.
     
    Abar and aadz93 like this.
  9. godreborn

    godreborn GBAtemp Guru
    Member

    Joined:
    Oct 10, 2009
    Messages:
    9,968
    Country:
    United States
    the 360's exploit relies on the hypervisor from kernel 4xxx. it allowed unsigned code. the 360 also relies on efuses (Just like the switch) to prevent downgrading.
     
    aadz93 likes this.
  10. Important Posts: Why no softmod exists on 360
    aadz93

    aadz93 GBAtemp Аdministrator
    Member

    Joined:
    Jan 29, 2008
    Messages:
    314
    Country:
    United States
    Due to how the hardware is designed on the 360 and the security structure, NO not possible, the only SOFTMOD was the King Kong or really the 4532 syscall exploit which required you'd to still have a flashed dvd drive, that was patched in 4552, they patched king Kong, but not the syscall exploit, jtag was the the replacement (which is kinda both a soft and hard mod again due to how the hardware works) since the syscall exploit essentially is in the second stage bootloader (2bl) this was not updated from 4532 to 7371, your dashboard version (CF lockdown) are signed using the cpu key which is why you could downgrade between these dashes, once dash 2.8955.xx came out they updated the 2bl which also has its own lock down counter, but this value is not signed using your cpu key, it uses Microsofts private key, and if we knew this key then jtag and rgh would be going around your ass to get to your elbow, so once they update the bootloader you cannot downgrade it, as this is the lowest version you would be able to downgrade to. This is how rgh works, rgh is the exploit that does exactly what we want, it allows youto bypass your lock down values, rgh still runs a modified 8955 dashboard that boots using the 4532 kernel iirc to use the syscall exploit. The 360 is specifically designed against softmodding from the cpu die up.

    Tldr all 360 exploits rely on booting in some form of 4532 based kernel to run usigned code, the only reason homebrew existed is because of a extremely subtle flaw in programming that was introduced in this kernel and never again since appeared, rgh is the exploit that is the "downgrade" everyone hoped for, it still uses the 4532 syscall exploit by allowing you to bypass your lockdown values.

    Really the softmod for the 360 would be the leaking of the private signing key like ps3
     
    Last edited by aadz93, Aug 6, 2019
  11. Moddetboy221

    Moddetboy221 Newbie
    Newcomer

    Joined:
    Jun 18, 2019
    Messages:
    3
    Country:
    United States
    I wonder if the Windows Media Center MCEBrowser can lead to a potential exploit since it has Scripting
     
    jamespoo likes this.
  12. aadz93

    aadz93 GBAtemp Аdministrator
    Member

    Joined:
    Jan 29, 2008
    Messages:
    314
    Country:
    United States
    No
     
  13. Dontwait00

    Dontwait00 Unknown
    Member

    Joined:
    Sep 3, 2017
    Messages:
    272
    Country:
    Italy
    I triggered an unknown sc from internet explorer (from x360). He did relaunch the dashboard.
     
    jamespoo likes this.
  14. lisreal2401

    lisreal2401 GBAtemp Advanced Fan
    Member

    Joined:
    Jun 4, 2013
    Messages:
    786
    Country:
    United States
    Explain some more?

    I messed around with the IE9 client to see if you could trigger it to jump to (signed) code, but didn't get very far.

    I'm not attempting to hack anything, just toying with the amount of access it has to storage, execution etc.
     
  15. Dontwait00

    Dontwait00 Unknown
    Member

    Joined:
    Sep 3, 2017
    Messages:
    272
    Country:
    Italy
    Few years ago, which i did lots of research, and which i was already hesitated, i was playing with some old vunlerabilities. One day, i tested an (really) old JavaScript escalation, and played a bit. Till i triggered an invalid value, and which the kernel panic.

    Nothing too funcy. If you want to know more, PM me.
     
  16. Moddetboy221

    Moddetboy221 Newbie
    Newcomer

    Joined:
    Jun 18, 2019
    Messages:
    3
    Country:
    United States
    JavaScript was removed and the dll are xex plugins I looked at the files using velocity we should be working on getting the browser and other apps to work without Xbox Live so we can use older versions of apps without Live but you should first test on a RGH
     
    Last edited by Moddetboy221, Sep 23, 2019
    jamespoo likes this.
  17. Dontwait00

    Dontwait00 Unknown
    Member

    Joined:
    Sep 3, 2017
    Messages:
    272
    Country:
    Italy
    If that would work, that Will help a lot. Userland code exec :P
    At least homebrew will exist if possible
     
  18. lisreal2401

    lisreal2401 GBAtemp Advanced Fan
    Member

    Joined:
    Jun 4, 2013
    Messages:
    786
    Country:
    United States
    The problem here is the app doesn't work without Xbox Live sign in - so, stealth servers etc. and Live required xex flags are a thing so I have no idea how you'd get past that on retail.

    The only app I'm positive you can actually get anything over a non local connection is Windows Media Center without being online - and it's simply minor video streaming, at that.
     
  19. Dontwait00

    Dontwait00 Unknown
    Member

    Joined:
    Sep 3, 2017
    Messages:
    272
    Country:
    Italy
    Are any CVE already existing use the same crafts? Something like this?
     
    jamespoo likes this.
  20. jamespoo

    OP jamespoo GBAtemp Advanced Fan
    Member

    Joined:
    Mar 4, 2011
    Messages:
    648
    Country:
    New Zealand
    well that sucks that there will never be a softmod for the xbox 360

    my friend did tell me the other that you can flash the disc drive then using a special burnt disc you could run games you installed to the hdd without needing the original disc

    but im not sure if that is true
     
    Last edited by jamespoo, Nov 24, 2019
Loading...

Hide similar threads Similar threads with keywords - Softmod,

Thread Status:
Not open for further replies.