Jump to content


Photo

Liteon 83850-v2 and Liteon 93450 DVD Key Can Now Be Dumped?


  • Please log in to reply
139 replies to this topic

#1 Xbox-Scene

Xbox-Scene

    Memba Numero Uno

  • Admin
  • 5,201 posts
  • Location:Yurop
  • Xbox Version:unk
  • 360 version:unknown

Posted 30 November 2009 - 05:51 AM

Liteon 83850-v2 and Liteon 93450 DVD Key Can Now Be Dumped?
Posted by XanTium | November 29 23:51 EST | News Category: Xbox360
 
From team-xecuter.com:


There have been several news reports on Xboxhacker.net of users having success in dumping the keys of the newest un-moddable Liteon DVD drives. The methods posted so far are not for the beginner so do so at your own risk. The method seem crude at the moment, no doubt some easier methods will surface shortly. Remember with that DVD key you can install any flash-able DVD drive to that once un-moddable Xbox 360. Good job to all involved !

-Lift pin 101 and 122 (The MT Chip)
-solder a cable to pin 100, pin 101 and one to 3,3V
-use a 2-way switch which either connects 101 to 3,3V or to 100
-put the switch into the position so that it connects 100 to 101
-power drive
-start Dosflash, it will recognise the SPI with Status x72
-if you read it out now, it will just give you a .bin full of FFFFFFFF, but thats OK, this is how we tricked the Flash Controller to think the SPI is empty
-put the switch in the other position (so that 101 is connected to 3,3V)
-now read the flash


News-Source: team-xecuter.com | xboxhacker.net






#2 Ree1981

Ree1981

    X-S Senior Member

  • Members
  • PipPip
  • 159 posts

Posted 30 November 2009 - 05:57 AM

Well I'm not doing that, ever. Sounds about as safe and reliable as removing a TSOP.

#3 iateshaggy

iateshaggy

    X-S Hacker

  • Members
  • PipPipPipPipPipPip
  • 2,514 posts
  • Xbox Version:v1.6
  • 360 version:v4.0 (jasper)

Posted 30 November 2009 - 05:57 AM

i'm so mad. i was told it would be after christmas before we would have a method.


nice work all involved.

#4 damonnomad

damonnomad

    X-S Member

  • Members
  • Pip
  • 78 posts
  • Xbox Version:v1.6
  • 360 version:v5.0 (360S - trinity)

Posted 30 November 2009 - 06:04 AM

This isn't to dump the key, but to dump the entire lite-on firmware.

The key is then derived from that of course.

It's likely a different (better?) method will be released soon.

#5 Asskick

Asskick

    X-S Enthusiast

  • Members
  • 4 posts

Posted 30 November 2009 - 06:04 AM



And now these method dump the whole firmware? Or just the keys? Would be nice to now have a way to revert back to stock fw.

Thanks for everyone involved on doing all these possible biggrin.gif



#6 Grim187

Grim187

    X-S Freak

  • Head Moderators
  • PipPipPipPipPip
  • 1,663 posts
  • Gender:Male
  • Location:Yakima, Washington, USA
  • Xbox Version:v1.0
  • 360 version:v4.0 (jasper)

Posted 30 November 2009 - 06:10 AM

QUOTE(Ree1981 @ Nov 29 2009, 08:57 PM) View Post

Well I'm not doing that, ever. Sounds about as safe and reliable as removing a TSOP.

which is %100 safe and easy...?


nice works, gonna go read up on it and try it later tonight, thanks!

#7 Rickets06

Rickets06

    X-S Senior Member

  • Members
  • PipPip
  • 170 posts
  • Xbox Version:v1.6
  • 360 version:v2 (zephyr)

Posted 30 November 2009 - 06:15 AM

Right on!

Good job men. Cheers

#8 HipHopHead

HipHopHead

    X-S Member

  • Members
  • Pip
  • 142 posts
  • Location:MN
  • Xbox Version:unk
  • 360 version:v4.0 (jasper)

Posted 30 November 2009 - 06:19 AM

nice

#9 ccfman2004

ccfman2004

    X-S Genius

  • Members
  • PipPipPipPip
  • 873 posts
  • Location:New York, USA
  • Xbox Version:v1.2
  • 360 version:v5.0 (360S - trinity)

Posted 30 November 2009 - 06:21 AM

It would be nice to have a way to flash back to stock.

On the other site, you apparently can simply put the dump into the source of Jungle Flasher and get the key.

#10 alwaysonjohn

alwaysonjohn

    X-S X-perience

  • Members
  • PipPip
  • 392 posts
  • Location:Clarksville, TN
  • Xbox Version:none
  • 360 version:v5.0 (360S - trinity)

Posted 30 November 2009 - 06:22 AM

well you still need another drive till firmware gets released for this drive.
n/m folks on xboxhacker say that the 83850c firmware works.

Edited by alwaysonjohn, 30 November 2009 - 06:23 AM.


#11 Aldanga

Aldanga

    X-S Hacker

  • Head Moderators
  • PipPipPipPipPipPip
  • 2,722 posts
  • Gender:Male
  • Interests:Hardware,software,coding,algorithms, troubleshooting, tinkering with anything I can get my hands on.
  • Xbox Version:none
  • 360 version:v5.0 (360S - trinity)

Posted 30 November 2009 - 06:30 AM

Nice. Thanks to all involved and people willing to potentially botch their DVD-ROMs. The thread on XBH is a bit too technical for me, but I'm reading it all and picking up what I can. I love to be around when these kind of advancements are made.

I'm going to keep my eye on this. It's all quite exciting. biggrin.gif

#12 dharrison

dharrison

    X-S X-perience

  • Moderator
  • PipPip
  • 405 posts
  • Location:Canton, Ohio
  • Xbox Version:v1.1
  • 360 version:v2 (zephyr)

Posted 30 November 2009 - 06:36 AM

Nice work! Just wish that I had a new Lite-On drive to try this out on... So, if the method of reading the flash is the same for both drive revisions, what are the differences between decrypting the key from the 83850C V2 and the 93450C? Are we talking about a different algorithm or different key location?

Edit: Just trying to understand what pins 100 and 101 do, since I don't have a datasheet on the chip. I assume maybe one is a GND? I have to get a hold of one of these drives now.. It's killing me.

Edited by dharrison, 30 November 2009 - 06:44 AM.


#13 d4rk5ky

d4rk5ky

    X-S Enthusiast

  • Members
  • 18 posts

Posted 30 November 2009 - 06:43 AM

Nice work indeed!
Now we just need to wait for some kind of tool to simplify this more and we're all set smile.gif

#14 thugnasty101

thugnasty101

    X-S Enthusiast

  • Members
  • 25 posts

Posted 30 November 2009 - 06:44 AM

M$ bans where good. but now we got something even better.... laugh.gif

#15 Aldanga

Aldanga

    X-S Hacker

  • Head Moderators
  • PipPipPipPipPipPip
  • 2,722 posts
  • Gender:Male
  • Interests:Hardware,software,coding,algorithms, troubleshooting, tinkering with anything I can get my hands on.
  • Xbox Version:none
  • 360 version:v5.0 (360S - trinity)

Posted 30 November 2009 - 06:51 AM

QUOTE(dharrison @ Nov 29 2009, 11:36 PM) View Post

Nice work! Just wish that I had a new Lite-On drive to try this out on... So, if the method of reading the flash is the same for both drive revisions, what are the differences between decrypting the key from the 83850C V2 and the 93450C? Are we talking about a different algorithm or different key location?

Edit: Just trying to understand what pins 100 and 101 do, since I don't have a datasheet on the chip. I assume maybe one is a GND? I have to get a hold of one of these drives now.. It's killing me.

From what I've read the firmware isn't actually encrypted, so there's no decryption needed. You only need to find the location of the key.

100 is 1.8V, 101 is 3.3V and 102 is a GND according to fail's post in the thread on XBH.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users