Toggle sidebar

Front-page

Modders hint at potential kernel exploit hack for Xbox One consoles

xbawks.png

It's been a while since Microsoft released the Xbox One, and despite its age, there haven't been any reliable softmod methods to hack the console. Until now. A post started making the rounds, saying that a method for executing kernel level code on the Xbox One had been found. A list of instructions for preparing Xbox One systems to be hacked was also provided, with the process being as follows:

  1. Ensure your Xbox Live account Login-Type is configured as “No barriers” aka. auto-login with no password prompt
  2. Set your console as “Home Console” for this account
  3. Download the App Game Script
  4. Start the app (to ensure license is downloaded/cached)
  5. Take your console offline! To make extra sure it cannot reach the internet, set a manual primary DNS address of 127.0.0.1
  6. Get a device/microcontroller that can simulate a Keyboard (rubber ducky or similar) - otherwise you have to type a lot manually :D
Click to expand...

This method appears to use a UWP app called Game Script on the Xbox One to execute the code, and was discovered by a user named carrot_c4k3. It seems as though the hack will require a lot of manual typing, unless you have a device that can simulate a keyboard, according to the preparation instructions. Reportedly, the latest firmware update for the Xbox One has already patched the exploit out, with the last exploitable firmware being 10.0.25398.4478.

:arrow: Source
:arrow: Video guide on how to prepare your system
:arrow: Proof of concept code
 
  • Like
  • Love
  • Haha
Reactions: mtxn, PandaPandel, jeffyTheHomebrewer and 36 others
Click to expand...
Axido said:
I cannot rule out that it already had the preview updates enabled at the store where I bought it assuming it was brand new (fyi it was a reputable electronics store chain), but I can assure you that neither did the packaging look suspicious when I bought it nor did I ever sign up to be a beta tester for what amounts to a home menu. And I can think of nobody other than me who had the 6-digit passcode I initially set up... But most notably I couldn't think of anyone feeling the need to somehow get access to said console in order to download the hub application, enroll into preview updates and wipe all traces afterwards. Having seen how MS treats users on Windows I found it way more plausible if they felt like they didn't have enough beta testers for their updates and decided to "help a little".

That being said I'm 99 per cent sure the console shouldn't have had that update installed in the first place. If you think it's more plausible that someone bought it, enabled preview updates and then returned it, I understand that, but from my perspective the chances of that having happened are next to none. And I'm definitely not buying a new Xbox just for a conspiracy theory.
Click to expand...

None of that changes the fact that you need to literally enroll as an insider AND enroll in the preview builds after that. Not a chance all of that was done by MS without consent. I don't buy it for a second. Shrug.
 
So does anyone here know of any reason to use this (when it releases) over dev mode? Like, would we have access to more system resources? I'm fairly ignorant to how this works. I have used dev mode before.
 
jacobas92 said:
So does anyone here know of any reason to use this (when it releases) over dev mode? Like, would we have access to more system resources? I'm fairly ignorant to how this works. I have used dev mode before.
Click to expand...
Retail has always had more resources than dev mode on an off the shelf console. Xbox one was the rare exception of a console where *any* off the shelf unit could be converted to a developer console, in full.

Iirc, gamers nexus had ended up with a developer series x (unfortunately already banned from running such code), and the board showed something around 40gh of memory modules to allow overhead for debugging and tinkering purposes.
 
Interested to see where this goes, but not got my hopes up for anything amazing. The Xbox modding/hacking scene has always been a bit lacklustre since the original Xbox and 360 days, dev mode kinda made it this way since there’s no real reason to hack/mod unless you want to /s play your original back-ups /s
 
Axido said:
Do what floats you boat, fanboy.
Click to expand...

Awe. Poor lil fella is all upset. It would be much easier to just admit you forgot that you joined both programs. And fanboy? How stupid. I have a Switch, Series X, PS5, gaming PC, N3DSXL, PS One, PS2, and PS3. Yeah. I'm quite the MS fanboy. :lol:
 
  • Like
Reactions: digipimp75
I think it might be the only modern console to come and go with no piracy what so ever. Some of the older consoles were just emulated but you could still play the pirated games somehow somewhere which is the point.
 
  • Like
Reactions: FFTW and BigOnYa
simbin said:
Sadly, it seems this may not meet the expectations of many. Personally, I was hyped about the possibility of accessing obscure and delisted titles, such as early Kinect demos, or even unofficial OG Xbox and 360 games.

View attachment 441645
Click to expand...
perma ban for retail hb use in 3...2...1 remember both users and uploaders got wacked for running/publishing retail emulators (though i hope punishment won't be too heavy hander like the switch
 
Asylumexp said:
can anyone verify if the offline update file on Microsoft’s website is the exploitable version? Grabbing an Xbox one but won’t be able to get it for another day and a bit, but hoping the update file up rn is still fine

Also if a new update gets released, will i still be able to download the app?
Click to expand...

Even if the offline update file is the correct version, you still need to go online and download the Game Script app from the MS store, at which point they'll force you to update to whatever the latest system update is. So if they patch this exploit while you're waiting for the Xbox to arrive, unfortunately it might be too late
 
simbin said:
Sadly, it seems this may not meet the expectations of many. Personally, I was hyped about the possibility of accessing obscure and delisted titles, such as early Kinect demos, or even unofficial OG Xbox and 360 games.

View attachment 441645
Click to expand...
Damn, the Xbox really needed a W too!
 
MariArch said:
Why would they give instructions rn???
Click to expand...

Probably due to that tidbit at the bottom, "Reportedly, the latest firmware update for the Xbox One has already patched the exploit out, with the last exploitable firmware being 10.0.25398.4478."

So unless you're already on it then it doesn't matter.
 
Thank god for Microsoft!
I knew the moment they started to aggressively delete emulators, ban them off of retail mode and made life unbearable for homebrew devs that this was finally around the corner!

Had they actually offered an "okay"-experience for homebrew devs we would have never seen any exploits.

Im so happy MS are stuck up, pigheaded morons. Im glad i kept my One X now.
Microsoft, never change!
 

Site & Scene News

Go to forum More news

Popular threads in this forum

Pokemon Platinum PC port gets a surprise release

Steam Deck gets a major price bump, more than 40% increase for US buyers

Sony announces PlayStation Plus price increase for new customers starting May 20

Nintendo Direct June 9, 2026 roundup - Ocarina of Time remake announced, Kingdom Hearts IV trailer

Pokémon Crystal gets a PC port titled "suiCune" based on C/C++ language

Paper Mario PC recompilation "ReCut" gets its first pre-release build

Low-level 3DS emulator 3Beans released alongside setup tutorial video

PlayStation State of Play June 2, 2026 broadcast - new God of War announced