|
|
| Page 1 of 1 |
|
|
 Posted: Wed, 3rd Jan 2018 15:11 Post subject: |
|
 |
Wow, Xecuter, a blast from the Xbox days. I wonder what money making dongle thing they have in mind this time.
Speaking of which is slightly of the topic.. but is there a XboxOne scene?
*edit* Found some small teases regarding XboxOne stuff from the Xecuter forums and reported on logic sunrise.
| Quote: | | During the year 2017 we have secured information coming from the inside, it took us a lot of time, money and legal checks, after that our developers we start working on this data, it will take some time to make a product profitable and secure with support and updates, however things are moving in the right direction, when there will be more info you will see on the main page of the site |
https://translate.google.co.uk/translate?hl=en&sl=fr&u=http://www.logic-sunrise.com/news-965749-xo-la-team-xecuter-tease-quelque-chose-pour-2018.html&prev=search
|
|
| Back to top |
|
|
JackQ
Non-expret in Derps lagunge
Posts: 14141
Location: Kibbutznik, Israel
|
| Posted: Thu, 4th Jan 2018 05:36 Post subject: |
|
|
| ITRUK wrote: |  Spoiler: | Wow, Xecuter, a blast from the Xbox days. I wonder what money making dongle thing they have in mind this time.
Speaking of which is slightly of the topic.. but is there a XboxOne scene?
*edit* Found some small teases regarding XboxOne stuff from the Xecuter forums and reported on logic sunrise.
| Quote: | | During the year 2017 we have secured information coming from the inside, it took us a lot of time, money and legal checks, after that our developers we start working on this data, it will take some time to make a product profitable and secure with support and updates, however things are moving in the right direction, when there will be more info you will see on the main page of the site |
https://translate.google.co.uk/translate?hl=en&sl=fr&u=http://www.logic-sunrise.com/news-965749-xo-la-team-xecuter-tease-quelque-chose-pour-2018.html&prev=search |
|
Maybe it better to open new dedicate thread about xbone hacking and move this post there?
"Fuck Denuvo"
Your personal opinions != the rest of the forum
|
|
| Back to top |
|
|
JackQ
Non-expret in Derps lagunge
Posts: 14141
Location: Kibbutznik, Israel
|
| Posted: Fri, 14th Sep 2018 09:36 Post subject: |
|
|
Some progress
Xbox One Exploit Release: 'Gaining win32 code execution in UWP DevMode'
| Quote: |
Earlier today, @XVMM posted up some key info on 'getting started' on your path of enlightenment when using the 'dev mode' that is available on all Xbox One consoles, now normally this UWP is sandboxed, but thanks to the anonymous creators if this unique exploit you can now get a shell (cmd.exe) and win32 code execution on Xbox One in UWP Devkit mode.
Normally you can only deploy "sandboxed" UWP containers with very limited access rights, hence this write-up, which is very technical, but its aim at those that want to explore more of inner workings and power of XB1 console itself, and hopefully now with this information out to public, more developers will get on-board and help expand the scene of greatness in the Xbox landscape.
Preamble
This is not an exploit or breakthrough of any sort. It's simply taking advantage of provided debugging features in developer mode! This is for any one who may be curious and want to reverse engineer the Xbox One. This is also mainly provided for anyone who wants to just have a go at reversing the system. There's a lot to utilize with the public features anyway.
Prerequisites
Must be in developer-mode (obviously)
Have some form of SSH/telnet client. (PuTTy, etc)
At least have Visual Studio 2015 or 2017
To get started without putting up with developing UWP applications we can instead utilize the open SSH connection provided by the console. This is only available in developer mode, just in case you get any ideas. If you're using Windows and will be using standard command prompt for telnet then make sure you enable it first!
Control Panel -> Programs -> Turn Windows features on or off"
Tick "Telnet client"
Done
Howto
First open up whatever client you have for SSH, in this instance PuTTy, and connect using your console IP and default port. There will be a pop-up. Just hit yes.
Now it will ask for login details. Make sure you have Dev Home opened and hit __Show Visual Studio Pin__. Keep note of this pin but also remember it will change after a small period of time!
Use the following credentials:
```
Username: DevToolsUser
Password: The Visual Studio pin provided in Dev Home.
```
If all goes successfully then you can either stick with it or initialize telnet. Run the following command in order to do so:
```
devtoolslauncher LaunchForProfiling telnetd "cmd.exe 24"
```
Open command prompt on Windows and run:
```
telnet [consoleip] 24
# (Example: telnet 192.168.1.5 24)
```
The telnet session will be running under the VSProfilingAccount privileges which is the same as what the VS debugger runs under when building UWP apps.
Keep in mind that there is not too much of a difference at this stage. It just allows a tiny bit more flexibility.
Basic file system exploration:
You can do this by accessing the Xbox Device Portal on your computer and going to File Explorer tab. There will be an option near the top right that is called Browse. Using this will show you credentials that can be used to access the developer scratch. We can use the developer scratch to store our junctions to navigate throughout the mounted drives.
Code:
| Code: | Using telnet or SSH, go to `D:\DevelopmentFiles`.
```
>D:
>cd DevelopmentFiles
>mkdir Links
# And run the following:
>mklink /J "Links\System" C:\
# If the result is successful then double check:
>cd links\system
>dir
``` |
If it gives you a directory listing then there you go!
You can get easier access by opening File Explorer on Windows and typing the following into the file path bar: `\\<console ip>`
It will prompt for login details. If you open the device portal and go to File Explorer tab then on right side hit browse; you will be given details to use. Once in then you can access most but not all volumes.
(Refer to "Mount points" to find out more)
Next steps
So what now? Well, I'm going to provide a small "template" which you can use in order to write a standard "Win32" application. The only difference is that it will run on the Xbox One.
(Requires Windows 10 SDK compatible with Xbox One and probably Visual Studio 2017, at least 2015.)
XRF: Attached below.
Place anywhere on the console and run `xrf cinfo` for a basic spit of console info.
Additional information:
Basic introduction:
The Xbox One currently runs 3 separate operating systems with each prioritized with their own purpose.
These are known as:
Host OS
System OS
Game OS
System and Game OS both reside in their own partition:
Shared Resource Access - Runs apps and renders the UI experience.
Exclusive Resource Access - Runs games and has more priority with resources.
These operations are stored in an Xbox Virtual Disk (XVD) with a small bootloader, currently assumed based on previous data dumps, that contains the kernel, HAL and other important system files. These get stored in the
User Data section of each.
host.xvd | ExtHost.xvd
System.xvd
era.xvd
System and Host are stored in both the flash and on the console hard drive. The Game OS XVD is stored with each packaged game that is released for the Xbox One. Although this requires another look; it appears that when a user launches a game, System then initiates a call that mounts the package to the ERA partition which then boots into the Game OS before finally mounting and starting the game.
Mount points:
Within the SRA Partition, the following are mounted to each drive letter
Code:
| Code: | \\.\C:\ -> System.xvd
\\.\D:\ -> USB (typically for retail) (Development scratch for dev-mode)
\\.\J:\ -> SystemTools.xvd (dev-mode only)
\\.\L:\ -> en-%s (languages)
\\.\M:\ -> SystemMisc.xvd
\\.\P:\ -> Page file
\\.\S:\ -> Settings.xvd | Settings-devkit.xvd
\\.\T:\ -> Temp.xvd (or whatever)
\\.\U:\ -> user.xvd / user-devkit.xvd
\\.\X:\ -> SystemAux.xvd
\\.\Y:\ -> SystemAuxF.xvd)
|
|
https://www.maxconsole.com/threads/xbox-one-exploit-release-gaining-win32-code-execution-in-uwp-devmode.48513/
"Fuck Denuvo"
Your personal opinions != the rest of the forum
|
|
| Back to top |
|
|
|
|
| Posted: Fri, 14th Sep 2018 10:08 Post subject: |
|
|
Still a shame the console got no games which makes the purchase worth it
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
JackQ
Non-expret in Derps lagunge
Posts: 14141
Location: Kibbutznik, Israel
|
| Posted: Tue, 9th Jul 2019 12:00 Post subject: |
|
|
|
|
|
| Back to top |
|
|
JackQ
Non-expret in Derps lagunge
Posts: 14141
Location: Kibbutznik, Israel
|
|
| Back to top |
|
|
|
|
|
| Back to top |
|
|
Surray
Posts: 5409
Location: Europe
|
| Posted: Tue, 11th Jun 2024 09:58 Post subject: |
|
|
it's for series s and x too but it's unclear if some kind of pirated games will be possible with this
Likot Mosuskekim, Woodcutter cancels Sleep: Interrupted by Elephant.
|
|
| Back to top |
|
|
|
|
| Posted: Sat, 22nd Jun 2024 05:33 Post subject: |
|
|
I got my Series X all prepped for this (confirmed FW version, set as Home console, disconnected from the internet etc) but the next morning realised that with Game Pass, account sharing and cheap ARG/TRK/EGY/NGA games it just wasn't worth the hassle (particularly if you already have dev mode enabled)
|
|
| Back to top |
|
|
| Page 1 of 1 |
All times are GMT + 1 Hour |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
Powered by phpBB 2.0.8 © 2001, 2002 phpBB Group
|
|
 |
|
