360haven works best with JavaScript enabled
How Microsoft killed the XOR Hack.
Loading
Register
Page 1 of 2 12 LastLast
Results 1 to 8 of 11
  1. #1
    Extorris
    Renegade is offline
    Join Date : Nov 2010
    Location : United Kingdom
    Posts : 2,626
    Array

    How Microsoft killed the XOR Hack.

    This is exactly as it seems. the XOR hack was patched with the recent update. It was pretty obvious that it was going to happen. But we can no longer RGH consoles on 15xxx without a CPU key and earlier exploitable dump (14719, 14717, 14699, 13599 or below)

    Code:
    With the new 15*** update, M$ has added a new key to their hash calculation for the rc4 key. 
    It's basically just the first 16 bytes of the header, which include the version number, entrypoint, and size. 
    These are all per-CB, per-version, so we cannot take a keystream 
    from a 15*** CBB and use it to make a 14*** CB 
    because the CBA on 14*** is unable to calculate the rc4 key no matter what we change. 
    
    What this means:
    In order to RGH2 an xbox with 15***, you need either: 
    
    1) The cpu_key 
    
    2) A previous exploitable dump from the SAME XBOX. Must fit one of the following:
    - Phats: 14717, 14719
    - Slims: 13146, 13599, 14699, 14717, 14719
    
    Older dumps will NOT WORK with RGH2/RGH3 !
    
    DO NOT UPDATE TO 15*** WITHOUT BACKING UP FIRST!
    
    What do we do now:
    We are looking into ways of exploiting the rc4.
    
    To make it clear, the new way of generating the CBB decryption rc4 key is as follows: 
    
    Secret = CBA[0x10:0x20]
    Ingest = CBB[0x10:0x20] + CPU_Key + CBA[0:6] + 0x0000 + CBA[6:0x10]
    
    Code:
    def decrypt_CB_Cpu(CB):
        assert cpukey
        secret = CB_A[0x10:0x20]
        h = hmac.new(secret,None, sha);
        h.update(CB[0x10:0x20]);
        h.update(cpukey);
        
        v = struct.unpack(">h", CB_A[0x6:0x8])[0]
        print " * checking flag: %X" % v
        if( v & 0x1000):
            print "  ** Using new encryption scheme"
            h.update(CB_A[0:0x6] + "\x00\x00" + CB_A[8:0x10]);
            
        key = h.digest()[0:0x10]
        CB = CB[0:0x10] +key+ RC4.new(key).decrypt(CB[0x20:])
        return CB
    Source - http://team-xecuter.com/how-ms-killed-the-xor-hack/

    Last edited by Sephiroth; 06-18-2012 at 10:36 AM.

  2. The Following 6 Users Say Thank You to Renegade For This Useful Post:


  3. #2
    Program Engineer
    Jappi88


    Jappi88 is offline
    Join Date : Dec 2010
    Age : 29
    Posts : 1,659
    Array

    Re: How Microsoft killed the XOR Hack.

    good share Ren , i was just reading this elsewhere , and thought about posting it... seems like u ninja'd me :P

    hope this will warn people to wait update if they want RGH, its a matter of time before this will be solved , and new dash gets exploitible.
    Downloads : 164 || Uploads : 31 || Rep Power : 6326 || Posts : 1,659 || Thanks : 187 || Thanked 10,729 Times in 599 Posts


    Programming is 10% science, 20% ingenuity, and 70% getting the ingenuity to work with the science.

    ~~~~~~~~~~~~~~~~~~~~~~~~~

    Programming is like sex:
    One mistake and you have to support it for the rest of your life.

  4. #3
    Haven Martial Arts God


    cybersam is offline
    Join Date : Jan 2011
    Posts : 1,193
    Array

    Re: How Microsoft killed the XOR Hack.

    meaning i need to get a new xbox as soon as possible so i don't have one with the new dash... -.-

    thanks for the share though ^_^
    Downloads : 17 || Uploads : 2 || Rep Power : 5157 || Posts : 1,193 || Thanks : 43 || Thanked 4,043 Times in 398 Posts


    Programming today is a race between software engineers striving to build bigger and better idiot-proof programs,
    and the Universe trying to produce bigger and better idiots.
    So far, the Universe is winning.

    Rich Cook

  5. #4
    Program Engineer
    Jappi88


    Jappi88 is offline
    Join Date : Dec 2010
    Age : 29
    Posts : 1,659
    Array

    Re: How Microsoft killed the XOR Hack.

    dont worry sam , this is just a little game of cat and mouse... eventually M$ will loose , and we will have every dash exploitibles.
    Downloads : 164 || Uploads : 31 || Rep Power : 6326 || Posts : 1,659 || Thanks : 187 || Thanked 10,729 Times in 599 Posts


    Programming is 10% science, 20% ingenuity, and 70% getting the ingenuity to work with the science.

    ~~~~~~~~~~~~~~~~~~~~~~~~~

    Programming is like sex:
    One mistake and you have to support it for the rest of your life.

  6. #5
    Haven Martial Arts God


    cybersam is offline
    Join Date : Jan 2011
    Posts : 1,193
    Array

    Re: How Microsoft killed the XOR Hack.

    yea i know... but that might take some time though... ^_^'
    Downloads : 17 || Uploads : 2 || Rep Power : 5157 || Posts : 1,193 || Thanks : 43 || Thanked 4,043 Times in 398 Posts


    Programming today is a race between software engineers striving to build bigger and better idiot-proof programs,
    and the Universe trying to produce bigger and better idiots.
    So far, the Universe is winning.

    Rich Cook

  7. #6
    Senior Member
    DarkOne
    Crimi Martin is offline
    Join Date : Aug 2011
    Posts : 202
    Array

    Re: How Microsoft killed the XOR Hack.

    Just wondering, but which update¿ My console hasn't asked me to update yet.
    I've been online on the console except for when working and sleeping.
    I'm currently watching the Suda 51 interview [Lollipop Chainsaw] on the Japanese Inside Xbox show.
    Do we get system updates silently now or something¿

  8. #7
    Dead
    SatsuinoHado

    Original Boss is offline
    Join Date : Jan 2011
    Location : Climbing a long ladder
    Posts : 4,029
    Array

    Re: How Microsoft killed the XOR Hack.

    Its always a waiting game for both sides may the force be with us lol

  9. #8
    Divided by zero and lived

    mojobojo is offline
    Join Date : Dec 2010
    Posts : 388
    Array

    Re: How Microsoft killed the XOR Hack.

    This makes me want to get me my hands on a 15*** dump.
    Downloads : 4 || Uploads : 1 || Rep Power : 3207 || Posts : 388 || Thanks : 52 || Thanked 1,031 Times in 236 Posts



 

 
Page 1 of 2 12 LastLast

Similar Threads

  1. CLOUD KILLED AERITH!!!
    By Emerald Lance in forum Youtube Famous
    Replies: 10
    Last Post: 07-03-2013, 06:51 PM
  2. Lion killed by electrical surge
    By Original Boss in forum Youtube Famous
    Replies: 7
    Last Post: 05-02-2012, 11:50 AM
  3. Replies: 1
    Last Post: 01-04-2012, 08:42 PM
  4. Dan Wheldon killed in crash at Vegas
    By BrayWyatt in forum Chit Chat
    Replies: 2
    Last Post: 11-20-2011, 12:21 AM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
This website uses cookies
We use cookies to store session information to facilitate remembering your login information, to allow you to save website preferences, to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners.
     

About 360haven

    360haven is an Forum Devoted To Game modding Fans from all over the world.

    An Awesome Community of Xbox 360 Gamers, Modders and Developers who Create & Share Tutorials, Applications, Gfx, Trainers and Gamesaves.

    A haven for the l33t.
    A scarce paradise for modders.

Like this page

Google+