Infectus Modchip Forum

Welcome, Guest. Please login or register.

Pages: [1] 2
Print
Author Topic: Timing Attack !!!  (Read 7683 times)
Infectus
Global Moderator
Hero Member

Posts: 1675


« on: August 24, 2007, 01:29:59 pm »

Robinsod from XboxHacker forum, find a way to downgrade all the bricked or upgraded xbox360!!  Is needed an infectus a few external components.



Original thread:  http://www.xboxhacker.net/index.php?topic=8319.msg52826#msg52826
« Last Edit: August 24, 2007, 01:33:07 pm by Infectus » Logged
OscarHS
Global Moderator
Full Member

Posts: 166



« Reply #1 on: August 24, 2007, 09:49:58 pm »

FROM WEBSITE NEWS:

In collaboration with lasonnette team INFECTUS provided a simple DDL to manage the tests of a TIME ATTACK on the X360.

Robinsod managed to successfully boot his Xbox360 with one flashed eFuse with kernel 1888 using the timing attack. it might open homebrew and linux for the Xbox360 on a much larger scale soon. Of course once your 360 is back to an (older) vulnerable kernel (4532,4548), you won't be able to go on LIVE anymore (it only accepts the latest kernel (5766 atm)) ... but a dual kernel system is a possibility (using a xD memory card even).

TEAM INFECTUS Is working to include the PIC CODE inside the INFECTUS so only an infectus is necessary to manage the TIME ATTACK with a simple new option in INFECTUS PROGRAMMER !!!
A little pcb add on to manage 1V signal will be necessary, in develope too right now!

STAY TUNED
INFECTUS STAFF
Logged

OSCAR
INFECTUS SALES MANAGER
nikolausc
Newbie

Posts: 1


« Reply #2 on: August 25, 2007, 10:03:17 am »

Will we have to buy anything new? Or is it possible to build this extra PCB ourselves?

Anyway, thanks for the continued support of Infectus!
Logged
Textbook
Newbie

Posts: 2


« Reply #3 on: August 26, 2007, 12:21:14 am »

Amazing work to all involved, and I just wanted to say thanks for continuing to support the most versatile modchip I've ever purchased.  I can't wait until the timing attack is mature enough so that the average Joe can downgrade systems. 
Logged
rikimaer
Newbie

Posts: 1


« Reply #4 on: October 22, 2007, 10:54:06 pm »

Any ETA/price/photo  of the addon
Logged
playstation360god
Newbie

Posts: 17


« Reply #5 on: October 25, 2007, 02:40:43 pm »

so thanks to VMware's ESX server 3i which works over a flash chip maybe we can make this software run on the infectus allowing the PS3 NOT XBOX360 THE PS3 to do hardware or infectus enhanced virtulization of vista and other OSes and if there is lag create a firmware that links the infectus with the CELL using the CELL SDK that is available at IBM's website so the cell processor can enhance the infectus for faster performance
Logged
Arakon
Administrator
Hero Member

Posts: 510


« Reply #6 on: October 26, 2007, 03:23:36 am »

would someone ban that spamming, braindead cunt already please?
I'm getting really tired of that garbage.
Logged

No tech support by PM or email! Ask questions ONLY in the forums, so everyone can benefit from the solutions and discussions.
Diverge
Newbie

Posts: 6


« Reply #7 on: October 26, 2007, 07:33:31 am »

would someone ban that spamming, braindead cunt already please?
I'm getting really tired of that garbage.


i was thinking the same thing.. and if it's not a spam bot, take away it's crack pipe lol
Logged
Infectus
Global Moderator
Hero Member

Posts: 1675


« Reply #8 on: November 21, 2007, 09:26:07 am »

Robinsod has release last night, its nice downgrader:

http://www.xboxhacker.net/index.php?topic=8555.msg56982#msg56982

Infectus work with an homebrew level shifter or with the coming soon addon pcb.

BIG TNX TO ROBINSOD FOR THE GREAT WORK!!
Logged
Robinsod
Newbie

Posts: 7


« Reply #9 on: November 27, 2007, 12:28:13 am »

Hello peeps, I will be providing support for the Timing Attack and NAND tools here as well in future. Hopefully they will find a space to host the binaries....

Any good tutorials on "increasing my post count" or "levelling up"? Arakon? Giggles? Anyone?
« Last Edit: November 27, 2007, 12:30:46 am by Robinsod » Logged
MoDInside
Jr. Member

Posts: 70


« Reply #10 on: November 27, 2007, 01:00:54 am »

Hello peeps, I will be providing support for the Timing Attack and NAND tools here as well in future. Hopefully they will find a space to host the binaries....

Any good tutorials on "increasing my post count" or "levelling up"? Arakon? Giggles? Anyone?
Welcome, hope to see you around.
Logged
Infectus
Global Moderator
Hero Member

Posts: 1675


« Reply #11 on: November 27, 2007, 09:17:28 am »

WELCOME ROBINSOD!!
Logged
Robinsod
Newbie

Posts: 7


« Reply #12 on: November 28, 2007, 12:42:22 am »

Here's the latest binaries (average 1 hour to d/grade).....

http://rapidshare.com/files/72753456/iDGTool.rar.html

and

http://rapidshare.com/files/72753911/postbus.rar.html

Hosted on infectus.biz soon

Expect a new build with more debug soon. If you have already used the TA please download and trY again, post results....


Logged
Infectus
Global Moderator
Hero Member

Posts: 1675


« Reply #13 on: November 28, 2007, 09:13:01 am »

Tnx!!

You can also post the files in attachment...

I forgot.... TNX TO HOMMER TOO!!


Here the public , fixed and optimized PostBus counter!!

 infectus_pb_counter.rar (78.09 KB - downloaded 103 times.)
« Last Edit: November 29, 2007, 09:18:43 am by Infectus » Logged
Robinsod
Newbie

Posts: 7


« Reply #14 on: November 28, 2007, 11:37:57 pm »

Here is the finished Timing Attack, I have added a couple of options

Super Sample, will take a number of measurements and then average them before giving the result to the timing attack algorithm. Only useful if you have crappy hardware (like me). You should set this to '1' by default

Satistics mode, useful for debug & nerds only

Useage: DGTool SS File [X YY..YY]
File is "downgrader" flash image
SS is the "Super Sample" count, for now use 1 (unless you like waiting for stuff)
Optionally X YY..YY will restart with X bytes;
of guessed hash YY..YY

iDGTool 1 1888.bin will run the downgrader using SS = 1 and the file 1888.bin

iDGTool 1 1888.bin 5 AABBCCDDEE will run the downgrader using SS = 1 and the file 1888.bin with 5 bytes of the hash set to AABBCCDDEE

Finally, I have included the "statistics" option. Once you have guessed a good hash (and made a back up of it of course) you can measure how accurately your setup is performing.

iDGTool SS boots.bin X

Will run the timing measurement X times for each of the hash bytes and record the results in a sStats.cvs file. Again SS = 1

 iDGTool.rar (12.74 KB - downloaded 116 times.)
Logged
Pages: [1] 2
Print
 
Jump to:  

Powered by SMF 1.1.4 | SMF © 2006-2007, Simple Machines LLC
Triton design by Bloc