[XBOXONE] Possible major exploit finally found
Page 1 of 1
JackQ
Non-expret in Derps lagunge



Posts: 14167
Location: Kibbutznik, Israel
PostPosted: Thu, 4th Feb 2016 09:57    Post subject: [XBOXONE] Possible major exploit finally found
Quote:
similar to the PS4 PSN Trick it appears an XBox One HDD method to run game backups is now possible using the leaked Durango grinhurtK (SDK) from scene release group H4LT.

Download: XboxOne_NOV_SDK.rar (473.9 MB)

To quote from XBoxOne.sk, roughly translated: "It was not that long and the Xbox One is already reportedly hacked.

It seems that a group of hackers / crackers, call it as you want, find a way to install games to the console without having to pay for the games. This whole report comes from India, where on one of the forums thread has appeared where the Xbox One for sale and pre-loaded games. The console can send them to or buy directly from them.

Initially, there were responses that it is a scam, but it did not take long, and some members of the Forum undertook to take that chance and then confirm that you really get your Xbox back with a 1TB HDD full games.

On the train, I found over 20 people who confirmed that it is not a scam and a photo as evidence, and it was a long-time visitors to the forum, some already registered in 2011 more than a thousand entries.

This report is not spread too far, but apparently everything is possible thanks to the SDK package, which published the team H4LT in December 2014.

For about 10 Euros you can have 30 full games, at least such is the price currently.

Very interesting what you say? It seems that while their trick secret and his 'hack' just a regional spread."

I don't follow the XBox scene at all, so if anyone knows more on this method or can confirm it feel free to comment below!



Read more at :
http://www.ps4news.com/console-news/xbox-one-hacked-via-hdd-trick-similar-to-ps4-with-durango-xdk-by-h4lt/#2vhWYbj2t4kx22Ff.99


"Fuck Denuvo"

Your personal opinions != the rest of the forum


Last edited by JackQ on Fri, 31st Mar 2017 17:45; edited 3 times in total
Back to top
Horrordee
Soderator



Posts: 8866
Location: England
PostPosted: Thu, 4th Feb 2016 10:09    Post subject:
Interesting. I wonder if anything more will come of it? Technically the same thing happened with PS4 in Brazil right? However nothing came of that as nothing was released.

Let's get Jack & Cyclone on the next plane to India so we can have a proper scene release of this "hack". Until then, it's kind of just noise?

 Spoiler:
 


Space for rent. Contact me for rates!
Back to top
Przepraszam
VIP Member



Posts: 14474
Location: Poland. New York.
PostPosted: Thu, 4th Feb 2016 11:42    Post subject:
Seems like bunch of bullshit to me without any proof...

btw, my uncle works at Nintendo and will fuck up your uncle.


Back to top
The_Leaf




Posts: 1542
Location: Italy
PostPosted: Thu, 4th Feb 2016 12:13    Post subject:
Very interesting, but these hacks are basically a "trick" to share games among consoles... interesting but not real "hacks" per se. You can't just put the games on yourself, you need someone with the original to dump it on your HDD. Very inconvenient.

As for me, I'll wait for proper unsigned code execution... that's what I call a real "hack".
Back to top
NFOAC




Posts: 6015
Location: India
PostPosted: Thu, 4th Feb 2016 15:18    Post subject:
We dont need cyclone and JackQ here

 Spoiler:
 
Back to top
cyclonefr




Posts: 7001

PostPosted: Thu, 4th Feb 2016 19:55    Post subject:
It's most likely real but who cares ?

That's not a hack.


Back to top
JackQ
Non-expret in Derps lagunge



Posts: 14167
Location: Kibbutznik, Israel
PostPosted: Fri, 31st Mar 2017 04:59    Post subject:
Quote:
Xbox One hack: Xbox One Exploit Proof of Concept released, based on Chakra exploit (unconfirmed)


Quote:
Developer unknownv2 has released a proof of concept exploit for the Xbox One. The exploit leverages a series of known vulnerabilities in the Microsoft Edge Browser (CVE-2016-7200 and CVE-2016-7241). We have not confirmed if this exploit works here at wololo.net (yup, I still don’t have an Xbox One…).

The Xbox One uses Microsoft’s Edge browser. Pretty much the same browser that you used once on Windows 10, to download google Chrome.

In November last year, several critical vulnerabilities were found in the Edge browser, and disclosed by Microsoft as they patched them. A proof of concept was released for these vulnerabilities by developer Brian Pak, demonstrating how to use them in an exploit. This is known as the Chakra exploit, and a good read on the topic can be found here.

Hacker unknownv2 has built his Xbox One exploit on top of Brian Pak’s proof of concept. In the developer’s words:

The POC itself was mostly complete, but the first bug (CVE-2016-7200) it used was patched on the console. I used Json.Parse bug (CVE-2016-7241) to leak addresses instead and after a bit of tweaking with the values, I was able to get the correct address for the chakra.dll. From there, I modified the POC by changing the code addresses for the gadgets and the VirtualProtect function call to make the shellcode executable.


This is a userland exploit, similar to webkit exploits that many of us are familiar with. From unknownv2:

Currently the Xbox One has a sandboxed AppContainer protection just like Windows 10. Therefore, the Edge app and its code has restricted access to the file’s resources and further work is needed to escalate the process’s privileges. This could be in the form of a kernel exploit.

The sandbox is similar to the PS4 in the sense that it is limited in what you can do, but its the same thing as getting RCE on Edge on Windows 10 essentially.

Unknownv2’s exploit works on XBox One’s firmware 10.0.14393.2152 (released in December last year), according to the developer. Note that a new firmware update for Xbox One was released earlier this week, it is not clear of that firmware patches the vulnerabilities involved here.

I do not have an xbox one and cannot verify that the exploit indeed works. With that being said, there’s enough hints pointing to this being real so if you have an XBox running on the affected firmware, feel free to give it a try and comment.


http://wololo.net/2017/03/31/xbox-one-hack-xbox-one-exploit-proof-concept-released-based-chakra-exploit-unconfirmed/


"Fuck Denuvo"

Your personal opinions != the rest of the forum
Back to top
Horrordee
Soderator



Posts: 8866
Location: England
PostPosted: Fri, 31st Mar 2017 11:30    Post subject:
Until I can download and play a bunch of games, it's not hacked ENOUGH!


Space for rent. Contact me for rates!
Back to top
harry_theone




Posts: 11179
Location: The Land of Thread Reports
PostPosted: Fri, 31st Mar 2017 11:37    Post subject:
Horrordee wrote:
Until I can download and play a bunch of games, it's not hacked ENOUGH!
Back to top
Mister_s




Posts: 19863

PostPosted: Fri, 31st Mar 2017 15:45    Post subject:
Keep us updated hourly! Thanks.
Back to top
cyclonefr




Posts: 7001

PostPosted: Fri, 31st Mar 2017 16:28    Post subject:
Laughing

Yeah and I read on some other topic in the PC section that the Switch is soon to be hacked too. Really nice progress.

Thanks Jack for keeping us posted, can't wait !

Oh wait, how soon is soon ? Question Should I stop buying games on the Switch and XBONE you think ?
Back to top
OrignalSpaceJockey




Posts: 2377
Location: Sweden
PostPosted: Fri, 31st Mar 2017 17:06    Post subject:
Do you have Zelda on the switch?
Back to top
cyclonefr




Posts: 7001

PostPosted: Fri, 31st Mar 2017 17:20    Post subject:
Yep. I guess I can stop buying games then Laughing


Back to top
NFOAC




Posts: 6015
Location: India
PostPosted: Fri, 31st Mar 2017 17:31    Post subject:
These threads should be renamed to Rumors thread
Back to top
cyclonefr




Posts: 7001

PostPosted: Fri, 31st Mar 2017 17:34    Post subject:
Nah it should be renamed to the Denuvo thread Laughing


Back to top
JackQ
Non-expret in Derps lagunge



Posts: 14167
Location: Kibbutznik, Israel
PostPosted: Fri, 31st Mar 2017 17:38    Post subject:
cyclonefr wrote:
Nah it should be renamed to the Denuvo thread Laughing


Nope, Because it has nothing to do with Denuvo Embarassed

P.S: You are not funny.

Horrordee wrote:
Until I can download and play a bunch of games, it's not hacked ENOUGH!

That's actually a good point

However I am going to post about console hacking even if an exploit not leading directly for that.. just some hombrew for the mean time.. cuz its still related to hacking Embarassed


EDIT: I decided it's better for a Thread renamed to be more clear for now.


"Fuck Denuvo"

Your personal opinions != the rest of the forum
Back to top
Page 1 of 1 All times are GMT + 1 Hour
NFOHump.com Forum Index - Console Arena
Signature/Avatar nuking: none (can be changed in your profile)  


Display posts from previous:   

Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB 2.0.8 © 2001, 2002 phpBB Group