Jump to content


Photo

Liteon Update! Key Readable By Soldering Serial Port.


  • Please log in to reply
424 replies to this topic

#1 Havok

Havok

    X-S Messiah

  • Moderator
  • PipPipPipPipPipPipPip
  • 3,745 posts
  • Xbox Version:unk
  • 360 version:unknown

Posted 25 August 2008 - 01:11 AM

Good news. Geremia has released a tool that can read the firmware key from LiteOn drives.

This will allow you to grab the key and then insert it into another drive, giving Lite-On owners a way of hacking the system.

The Lite-On drive does NOT have a writable ROM therefore the drives themselves are not hackable.

Geremia's Lite-On drive toolkit is avalible in the usual places.
----------------------------------------------------------------------------------------
DVD key grabber for Benq and Lite-on
It receives DVDkey from drive serial port and save to file, you need a LVTTL-RS232 converter (max3232) between COM1 (embedded COM1 on motherboard, 0x3F8 IRQ4) and TX RX pins on drive power cable (for liteon the trace to powercable are cut, need a little soldering).
It also saves identify.bin and inquiry.bin, for the spoof lovers.

This "unlocks" also Benq to accept MTK vendor ATA cmds (dosflash etc...), not for liteon

You must power on PC without sata cable connected to drive.
You must poweron the drive with tray half opened and eject switch in open state.
You must power off an on again the drive each time you run the app.

For rs232 troubleshuting, consider that Liteon by default outputs an endless stream of 0x00 and 0x01 at 115200 8N1, you should see it with Realterm with display set to hex
As always, us at your own risk
Thanks and respect to Tiros, Schtrom, TMF, Redline99, c4eva
Geremia

P.S. If you have been follwing the Lite-On thread this was reported this morning but I believed it deserved its own post.

Edited by Havok, 25 August 2008 - 01:23 AM.


#2 tezza192

tezza192

    X-S Senior Member

  • Members
  • PipPip
  • 151 posts
  • Xbox Version:v1.6d
  • 360 version:v4.0 (jasper)

Posted 25 August 2008 - 01:15 AM

Before everyone starts whooping ove this please be aware you need to be reasnobly tech-savvy to do this. It involves cutting traces, soldering, and use of a specialised com port serial piece of equipment. Certainly not for the noobesque.

T

#3 Ranger72

Ranger72

    MOD GOD

  • Head Moderators
  • PipPipPipPipPipPipPipPipPipPipPip
  • 7,807 posts
  • Gender:Male
  • Location:Cumberland MD.
  • Xbox Version:v1.6
  • 360 version:v4.0 (jasper)

Posted 25 August 2008 - 01:23 AM

QUOTE(tezza192 @ Aug 25 2008, 01:51 AM) View Post

Before everyone starts whooping ove this please be aware you need to be reasnobly tech-savvy to do this. It involves cutting traces, soldering, and use of a specialised com port serial piece of equipment. Certainly not for the noobesque.

T


I already ordered the part and looking forward to working with these drives.

#4 ILikeMeat

ILikeMeat

    X-S Member

  • Members
  • Pip
  • 149 posts

Posted 25 August 2008 - 01:25 AM

QUOTE(tezza192 @ Aug 24 2008, 08:51 PM) View Post

Before everyone starts whooping ove this please be aware you need to be reasnobly tech-savvy to do this. It involves cutting traces, soldering, and use of a specialised com port serial piece of equipment. Certainly not for the noobesque.

T



Hmmm...no it doesn't.

IPB Image

#5 BoNg420

BoNg420

    X-S Messiah

  • Head Moderators
  • PipPipPipPipPipPipPip
  • 3,803 posts
  • Gender:Male
  • Location:USA
  • Xbox Version:none
  • 360 version:v5.0 (360S - trinity)

Posted 25 August 2008 - 01:44 AM

Great news, but what about the spoof string?

#6 Ranger72

Ranger72

    MOD GOD

  • Head Moderators
  • PipPipPipPipPipPipPipPipPipPipPip
  • 7,807 posts
  • Gender:Male
  • Location:Cumberland MD.
  • Xbox Version:v1.6
  • 360 version:v4.0 (jasper)

Posted 25 August 2008 - 02:11 AM

QUOTE(BoNg420 @ Aug 25 2008, 02:20 AM) View Post

Great news, but what about the spoof string?



I believe this gets the spoof data as well.

By the way anyone looking to buy the device needed for this can get one here.


Edited by Ranger72, 25 August 2008 - 02:13 AM.


#7 podger

podger

    X-S Freak

  • Members
  • PipPipPipPipPip
  • 1,406 posts
  • Location:Ireland
  • Xbox Version:v1.6
  • 360 version:v3.0 (falcon)

Posted 25 August 2008 - 02:23 AM

I have already done this and can confirm it works... I used my 79 I used to develop the 79Unlock...

You will have to spoof manually.. this is not for the noob again.. You will get E66 if you don't..

Each inquiry string is unique as it contains the drive serial number....

If you plan on spoofing a Hitachi, note.. FWTB won't recognise the drive for flashing once it's spoofed correctly....

Edited by podger, 25 August 2008 - 02:24 AM.


#8 Ranger72

Ranger72

    MOD GOD

  • Head Moderators
  • PipPipPipPipPipPipPipPipPipPipPip
  • 7,807 posts
  • Gender:Male
  • Location:Cumberland MD.
  • Xbox Version:v1.6
  • 360 version:v4.0 (jasper)

Posted 25 August 2008 - 02:33 AM

QUOTE(podger @ Aug 25 2008, 02:59 AM) View Post

I have already done this and can confirm it works... I used my 79 I used to develop the 79Unlock...

You will have to spoof manually.. this is not for the noob again.. You will get E66 if you don't..

Each inquiry string is unique as it contains the drive serial number....

If you plan on spoofing a Hitachi, note.. FWTB won't recognise the drive for flashing once it's spoofed correctly....


Can you confirm that the tool I bought HERE will do what is needed?


And I guess that means going back to the old hex editor days until an updated Toolbox comes out.

At least it is a start. Thanks to you with your 79 unlock and now this the scene is looking up again.

#9 podger

podger

    X-S Freak

  • Members
  • PipPipPipPipPip
  • 1,406 posts
  • Location:Ireland
  • Xbox Version:v1.6
  • 360 version:v3.0 (falcon)

Posted 25 August 2008 - 03:25 AM

Ranger, yes that should do the trick... only need the first 4 pins.... 5 and 6 are not necessary... I'd connect it to 3.3v also... part is rate 3.0 -> 5.5

Can't see a new toolbox anytime soon...... Also, spoof string is unique... fwtb just looks up a list

Firmtools might be a better way.... Hopefully Caster420 is working on it now..... maybe use the inquiry.bin that Geremia gives us... that would certainly simplify things...

I made my on cable as I have the parts from a Dell Axim to Garmin I made a few years ago..... Threw one together for OggyUk also..






#10 Ranger72

Ranger72

    MOD GOD

  • Head Moderators
  • PipPipPipPipPipPipPipPipPipPipPip
  • 7,807 posts
  • Gender:Male
  • Location:Cumberland MD.
  • Xbox Version:v1.6
  • 360 version:v4.0 (jasper)

Posted 25 August 2008 - 03:53 AM

Thanks for that info podger.


#11 acoustic992

acoustic992

    X-S Enthusiast

  • Members
  • 17 posts

Posted 25 August 2008 - 04:04 AM

so you have to switch the lite-on with another drive to work?

#12 syntaxerror329

syntaxerror329

    X-S Hacker

  • Members
  • PipPipPipPipPipPip
  • 2,330 posts
  • Location:Niagara Falls
  • Interests:Mountain Biking, Downhill Skiing, Xbox Mod Chips, Xbox Repair, Wiikey, ARGON, D2pro, XBOX360,
  • Xbox Version:v1.6
  • 360 version:v3.1 (opus)

Posted 25 August 2008 - 04:22 AM

QUOTE(acoustic992 @ Aug 24 2008, 11:40 PM) View Post

so you have to switch the lite-on with another drive to work?


As of right now yes. Further it has been said the lite-on is not writeable so if thats true the value of old x360 drives just went way up. I am glad i have a few here now!

I just ordered my adapter thing. Hope i got the correct one. The guy has a few more if any one else wants to order one. Check it out here > EBAY ITEM -MAX3232 - RS232 to TTL module / converter AVR PIC ARM


#13 ProphetOfPain

ProphetOfPain

    X-S X-perience

  • Members
  • PipPip
  • 313 posts
  • Xbox Version:v1.6
  • 360 version:v1 (xenon)

Posted 25 August 2008 - 04:27 AM

QUOTE(syntaxerror329 @ Aug 25 2008, 04:58 AM) View Post

As of right now yes. Further it has been said the lite-on is not writeable so if thats true the value of old x360 drives just went way up. I am glad i have a few here now!

I just ordered my adapter thing. Hope i got the correct one. The guy has a few more if any one else wants to order one. Check it out here > EBAY ITEM -MAX3232 - RS232 to TTL module / converter AVR PIC ARM


I wonder what will happen to all the removed lite-on drives? Wouldnt be worth much since it could only be paired with "your" motherboard. Does anyone know if the lasers in the lite-on are the same as benq or can be used with hitachi or samsung?

I ordered my adapter before they go up in price like the dang drives. smile.gif

#14 darkshadow2k8

darkshadow2k8

    X-S Senior Member

  • Members
  • PipPip
  • 297 posts
  • Location:philadelphia pa, USA
  • Xbox Version:none
  • 360 version:v2 (zephyr)

Posted 25 August 2008 - 06:47 AM

as said earlier u need to have a fair good knowledge on how to soldier and looks like u also need a steady hand way i see it is since its new this is just a start so wait it out till a more easy way happens unless u plan to spoof because u cannot wait but this looks like a easy brick to the system imo

#15 ProphetOfPain

ProphetOfPain

    X-S X-perience

  • Members
  • PipPip
  • 313 posts
  • Xbox Version:v1.6
  • 360 version:v1 (xenon)

Posted 25 August 2008 - 07:11 AM

QUOTE(darkshadow2k8 @ Aug 25 2008, 07:23 AM) View Post

as said earlier u need to have a fair good knowledge on how to soldier and looks like u also need a steady hand way i see it is since its new this is just a start so wait it out till a more easy way happens unless u plan to spoof because u cannot wait but this looks like a easy brick to the system imo


What your saying is understandable, however, I don't think this will end up being a software flash/dump similiar to what happened with the Hitachi 79. My reason to believe it will always need to be soldered is because that interface is neccessary to give it the pinouts it needs (rx, tx) and that I dont see ever changing (ie. dumping straight through the sata port without any kind of soldering)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users