xbox hacking l.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
Xbox Hacking PowerPoint Presentation
Download Presentation
Xbox Hacking

Loading in 2 Seconds...

play fullscreen
1 / 13
hoai

Xbox Hacking - PowerPoint PPT Presentation

164 Views
Download Presentation
Xbox Hacking
An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript

  1. Xbox Hacking Eric L. Frederich COT 4810 Sept 14 2004

  2. Xbox Overview • Xbox Hardware Hacking • Legal Issues • Software Xbox Hacking

  3. Overview • 733 MHz Celeron CPU • Ethernet • Sound • Video • USB • 8 – 10 GB hard disk drive • DVD Rom

  4. Xbox Hardware Hacking // key initialization routine unsigned char K[256]; // 0xFFFFC80 in flash unsigned char S[256]; // 0x10000 in SDRAM for( i = 0; i < 256; i++ ) { S[i] = i; } j = 0; for( i = 0; i < 256; i++ ) { // RC-4 would do j = (j + K[i] + S[i]) % 256 j = (j + K[i] + S[j]) % 256; // swap S[i], S[j] temp = S[i]; S[i] = S[j]; S[j] = temp; } // decryption routine unsigned char cipherText[16384]; // 0xFFFFA000 in FLASH unsigned char plainText[16384]; // 0x400000 in SDRAM for( index = 0x400, i = 0, k = 0; index > 0; index-- ) { // xbox version t = (X[i] ^ cipherText[k]) % 256; plainText[k] = t; // swap( S[i], S[t] ); temp = S[i]; S[i] = S[t]; S[t] = temp; i = (i + 1) % 256; k++; } • Boot ROM • Cipher • Garbage

  5. Xbox Hardware Hacking What’s with this boot ROM ??? • Address and or data line scrambling • Secondary crypto processor • Boot code contained in the processor • Expensive • Changed from AMD to Intel at last moment • Boot code contained in the chipset

  6. Xbox Hardware Hacking What’s with this boot ROM ??? • Extracting the ROM image • Decrypting it ( RC-4 / 128 ) • Sliding window • Histogram • Symmetric Cipher • Generate your own code

  7. Xbox Hardware Hacking Running your own code • LPC Bus • Manufacturing costs • Development • Modchips

  8. Legal Issues • Illegal • Modified Microsoft BIOS’s • Binaries (built with illegal copies of XDK) • Emulators • Media Players • Homemade games • Legal • Microsoft-free BIOS’s • Cromwell Linux • XDK-free Binaries • Gentoox Linux

  9. Xbox Software Hacks • Game save overflows • Permanent overflows http://www.xbox-linux.org/docs/007analysis.html

  10. Xbox Links / References http://www.xbox-scene.com http://www.xbox-linux.org/ http://www.xboxhacker.net http://www.modchipman.com Hacking the Xbox: an introduction to reverse engineering Andrew “bunnie” Huang No Starch Press, Inc. San Francisco 2003