1 / 13

Xbox Hacking

Xbox Hacking. Eric L. Frederich COT 4810 Sept 14 2004. Xbox Overview Xbox Hardware Hacking Legal Issues Software. Xbox Hacking. Overview. 733 MHz Celeron CPU Ethernet Sound Video USB 8 – 10 GB hard disk drive DVD Rom. Xbox Hardware Hacking. // key initialization routine

hoai
Télécharger la présentation

Xbox Hacking

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Xbox Hacking Eric L. Frederich COT 4810 Sept 14 2004

  2. Xbox Overview • Xbox Hardware Hacking • Legal Issues • Software Xbox Hacking

  3. Overview • 733 MHz Celeron CPU • Ethernet • Sound • Video • USB • 8 – 10 GB hard disk drive • DVD Rom

  4. Xbox Hardware Hacking // key initialization routine unsigned char K[256]; // 0xFFFFC80 in flash unsigned char S[256]; // 0x10000 in SDRAM for( i = 0; i < 256; i++ ) { S[i] = i; } j = 0; for( i = 0; i < 256; i++ ) { // RC-4 would do j = (j + K[i] + S[i]) % 256 j = (j + K[i] + S[j]) % 256; // swap S[i], S[j] temp = S[i]; S[i] = S[j]; S[j] = temp; } // decryption routine unsigned char cipherText[16384]; // 0xFFFFA000 in FLASH unsigned char plainText[16384]; // 0x400000 in SDRAM for( index = 0x400, i = 0, k = 0; index > 0; index-- ) { // xbox version t = (X[i] ^ cipherText[k]) % 256; plainText[k] = t; // swap( S[i], S[t] ); temp = S[i]; S[i] = S[t]; S[t] = temp; i = (i + 1) % 256; k++; } • Boot ROM • Cipher • Garbage

  5. Xbox Hardware Hacking What’s with this boot ROM ??? • Address and or data line scrambling • Secondary crypto processor • Boot code contained in the processor • Expensive • Changed from AMD to Intel at last moment • Boot code contained in the chipset

  6. Xbox Hardware Hacking What’s with this boot ROM ??? • Extracting the ROM image • Decrypting it ( RC-4 / 128 ) • Sliding window • Histogram • Symmetric Cipher • Generate your own code

  7. Xbox Hardware Hacking Running your own code • LPC Bus • Manufacturing costs • Development • Modchips

  8. Legal Issues • Illegal • Modified Microsoft BIOS’s • Binaries (built with illegal copies of XDK) • Emulators • Media Players • Homemade games • Legal • Microsoft-free BIOS’s • Cromwell Linux • XDK-free Binaries • Gentoox Linux

  9. Xbox Software Hacks • Game save overflows • Permanent overflows http://www.xbox-linux.org/docs/007analysis.html

  10. Xbox Links / References http://www.xbox-scene.com http://www.xbox-linux.org/ http://www.xboxhacker.net http://www.modchipman.com Hacking the Xbox: an introduction to reverse engineering Andrew “bunnie” Huang No Starch Press, Inc. San Francisco 2003

More Related