When you upload new builds Kingroach how do we know they are the newest builds?

I haven't checked Xbins yet but the "other" links, are those new?

Nevermind! They show the date inside of Winrar of when they were packaged

Thanks again

cool, i'll do that... i'll post whatever happens.. thnxxx


update.... error 21 ... f*kkk !!!! hehehe

let me see what i can do

now this is my drive C


dirs

AUDIO
BIO
FONTS
MEDIA
SHADOWC
XBOXDASHDATA.185EAD00
XODASH

files

msxboxdas.xbe 1.87 mb
xbox book.xtf
xbox.xtf
xboxdas.xbe

........

i don't want to erase anything, i still have acces to my xbox.. (gonna backup all my gamesaves )... so what can i do to ... make it work... it says error 21.. i'm going to experiment installing again the softmod to see what happens...

well... i found a refresh C on the toolkit so... i selected it and made it work again...

i'm not going to mess around again w/the contents hehe...


latersss

cool,thank you

Ok...everything was done correctly this time and it is working great! However, I do have one more question. This might be something simple that I am overlooking. I cannot figure out how to add emulators under my applications menu. Also, what is the password for the "Format Menu"?

Thanks Again!

{= ticaal; see /E/dash/config.xml ... it's easily customized, such as to add emu paths (or change the password from being Xbox) =}


Thanks for fixing that (@Dec.15) kingroach; it can now be used by 2.1 users (and others) to install UDDAE:

http://forums.xbox-scene.com/index.php?act...dpost&p=3123957

I also added generic fonts and st.db at the end of kernel specific fonts menu..

Kingroach,


Thank you for your efforts.
I've replaced the Ndure v2.1 with the 3.0 Beta in the way like Ndure Protagonist described, and it works like a charm.

A question. I've searched this forum, googled, etc. but I can't seem to find the answer to a simple question:

What is UDDAE?

And my last question is this:

When you manually FTP all the files to the Xbox like in NP's short step-by-step guide, can you use all the functions of the Ndure Toolkit?

Thank you very much!


Regards,

Arjan

I beleive it was a spin-off of the Uber Double Dash EasterEgg Exploit.

Thank you, but do you also know what it does?

Kind regards,

Arjan

yes you can use all the features of Ndure toolset..

UDDAE ( uber double dash audio exploit) is a audio exploit (duh.. ).. what audio exploit does is to launch a public key ( -habibi) signed .xbe to boot from unmodded retail ms dash..

I was close.... lol

basically it's a EEE/double dash/audio hack combo

Snap, my Top Spin/NCAA 2005 mulitgame disk doesn't work.

The fonts.du problem is still there.

Is this problem fixed yet?

I first used Textbook's method to softmod my xbox, later I added a 200gb HD. Then used xboxHD to build the HD as orignal one (I can use it to boot MS dash). So I moded the 200gb HD again using Textbook's method. Then I wanted to update to Unleash using Ndure 2.1, but I found I can't write to C: while doing anything on other drives. Later I used xboxHD to "Build a new xbox HD from scrath", but I still couldn't copy any files into C:. So now I'm running Unleash with files on E:, I can't boot to MS dash. Any suggestions? Do I need to wipe fatx table before building a new HD? Btw, Ndure is great, much more function then Evox.

Tonight I have to build a 250GB in an xbox.
Can I just use Ndure .6? Or do I have to use Ndure .67?
And does XboxHDM support G-drives?

Or can I just use XboxHDM to prepare the disk with a really big F:-drive?

Thanks,

Arjan

06 will work fine on a 250 drive. xboxhdm can prepare the drive, and will format the F

xboxhdm does not format the G ever, unless you know your linux commands

so now you have ndure installed, you can boot to unleashx just cannt boot to MS dash right?..

Hi kingroach, now I can boot to MS from Eject button and access to my C: . But when I look network settings, it boots to ndure automatically. When I cold-boot to ndure, C: is empty if I use FTP browser and I can't write it. But if I launch ndure toolset, I can access my C: again like booting to MS dash. I have no idea about it.

you cannt go to xbox live network settings with Ndure.. Thats why its recommended to setup the network first and install ndure ( or any other exploit).. The empty C you C is shadowc.. its for to protect your actual C drive but when Ndure toolset boots, it disables shadowc..

The Fonts folder and its XTF's remain in place when fonts.du is created (and are still found by all XBE's that need them).

What exactly happens when that disc is coldbooted, with both the generic and the kernel specific font?

(The font can be toggled via the Ndure Toolset and makes a difference if xboxdash.xbe gets re-invoked, such as occurs after acknowledging a dashupdate.xbe failure message...)

I see, thanks a lot! But why the C: is empty when I coldboot to ndure and I can't copy files into it. The same thing happed after I softmoded the HD with xboxhdm (evox). I couldn't copy the ndure generated C: to xbox C:. My c: seems to be locked for writing.

Thats something weired.. when you see empty C ( means shadowc enabled).. go to unleashx format option and format "C' and then try writing files to shadowc again..

I tried to format the empty C, but I couldn't. Btw, the shadowc folder should be in C:, right? I also found I somehow didn't put the settings_adoc.xip file into "xboxdashdata.185ead00", that's why I can't see network settings i guess. I tried to just copy my backup settings_adoc.xip to C:, the copied file only shows 0kb.

I also tried to use xbrowser in xboxhdm to copy "settings_adoc.xip" to my xbox c, but not enough space on C (only 335mb), which is wired, since ndure files are about 497MB, how can I copy all the files into xbox C?

I have had this problem too, I think its a problem with xboxhdm. I was able to fix it by running ndure toolset to see the real C. Then I deleted all files on C and FTP'd ndure over. Then I was able to write to virtual C.
So start fresh over ftp.

I've already done that several times, but each time my xbox refused to boot. Thanks anyway.

K Im kinda worried so can someone tell me if my setup is Live ok?

I first created a folder(ndure), and copied my retail C drive into the folder like instructed.
Ran ndure 3.0 with the following options



After that I uploaded everything and took some caution with the 2 files that needed to uploaded individually.
Everything appears to run ok(unleashx) but shadowc was empty. Hmm so I thought I would test something before populating shadowc with a clean dash. So I tried to boot into retail mode(booted with eject) and to my surprise, I got the retail dash? How, isnt this called from shadowc which was currently empty. I hope it wasnt loading the dash with all the exploited files....Any who I will stay away from Xbox Live till I find out. I loaded up Unleashx and populated the shadowc with a clean retail dash. Is this all normal? Should I be worried?

no.. yourr setup is good.. shadowc runs in modded state but in real C:\ there is MS dash files, when you start with eject button, it runs in unmodded state and loads MS dash... and they run separate of any exploit so that you can connect to xbox live..

Then what is the purpose of shadowc if it is not being used? Im guessing somehow the exploting files are hidden when booted with eject trick? They are still present when hitting eject, correct? It seems if MS wanted they could scan C and find the exploited files.

I thought I was safe because it would be loading a completly clean retail dash from the virtual C-parition, but I guess this is not the case, sence the retail dash is still loading up with nothing on the shadowc...

Ahhh I guess there is some tecnical mumboo jumbo that I am sadly overlooking. Im sure it's been tested by many already safely(no bans) and im just getting worried for no reason.

virtual C was created when some DVD movie updated xbox and messed up peoples softmods and few multigame dvd's refused to boot.. That was before Ndure was discovered.. so now there is not any groundbraking use of shadowc.. now its used for filling up C drive ( so updates cannt occur) and save C drive incase anything happens.. anyway the modded files are still in C rdive so technically MS could scan the C drive but the dash itself doesnt use any modded files and no one was ever banned from XBL with softmods..

I uploaded a new build of Ndure installer 3.0.. Now xonlinedash.xbe chooser is intigrated into Nkpatcher.. normally it will boot xboxdash.. if booting of xonlinedash.xbe is needed for account management.. just put boot1.bin in xboxdashdata.185ead00 folder and nkpatcher will boot xonlinedash.xbe..

I like your work, and i've noticed lots of knowledge comming from you.

1st question.......... your boot1.bin is nothing but a dummy file, what or how did you get the info so you have this in this specific directory to be at to avoid the freeze???

Also, is the xonlinedash.xbe from the 5960 dash, and doesn't the Xbox.xtf in xodash interfier, since all xonlinedash.xbe that's i've hex-studied loads Xbox.xtf from xodash, and fonts folder.

I'm clueless in how you get this to work.

Once again, I downloaded Ndure 3.0 *haven't tested*, and i'm looking at so much improvent over the 2.1 version, and I'm a enthusiast and I like to learn as much as I can.

Thx.

1. There is no freeze.. Its all in Nkpatcher.. I modified Nkpatcher with soe codes from xman495.. When tray boot is enabled, Nkpatcher does some checks. At this stage, Nkpatcher will look for a specific file "boot1.bin" in xboxdashdata.185ead00 folder.. The path is hard coded into nkpatcher ( you can hex edit and change the path).. the check goes like this:

if C:\xboxdashdata.185ead00\boot1.bin file is present then boot x2onlinedash.xbe with -habibi key
else, boot C:\xodash.xbe with ms key patch back.

however this wasnt my initial plan.. if you looked at some previous test build.. the check was done in a seperate .xbe but intigrating that check code in nkpatcher is much simple and easier to use.

2. xonlinedash.xbe is from 5960 dash.. nomally xodash font check goes like this:

C:\xodash\
C:\fonts
C:\

I just changed the first font check value from C:\xodash\ to C:\fonts\ ( check the Fuckms thread for more info).. also xonlinedash.xbe checks for retail dash in C:\xboxdash.xbe , I changed the value to C:\xb0xdash\.. All of these can be done with hex editing..Then I useed FuckMS patch so that it would boot from -habibi key.. This modified xonlinedash.xbe is renmed as x2onlinedash.xbe and xonlinedash.xbe in C:\xodash\ folder is replaced with 5960 xboxdash.xbe . This way when you are in retail dash, if you try to go to xbox live menu , xbox wont hang ( Because real xonlinedash.xbe checks for 5960 dash in C:\xboxdash.xbe while xboxdash.xbe doesnt so it would just relaunch the MS dash.


hope this answers your question.. or feel free to ask more and give some suggestion after checking it out..

kingroach, I was preparing and testing a follow-on post, explaining how non-3.0 Ndure users can also use its UDDAE files to launch the online dash/console from the open tray (retail) state.

However, I noticed you've changed the flr.rar to be fludd.rar (@Dec.29) and it doesn't contain 9.25 MB again! It's contents are less now and consequently leave too much free space in C (re. the linked post's usage) ... have you changed it to be like that for a different purpose?


{? Re. boot1.bin ... maybe a more meaningfully named file in E would be better (like nkp11 uses for switching off the virtual C and EEPROM) so it can be toggled without needing to access the real C ?}

sorry for late reply.. if you do the UDDAE installation with "ndts" th eresult is 496 MB C.. but over Ndure 2.1 installation, the UDDAE will result in 491MB.. But if I use 9.6MB filler then Ndure 3.0 installation becomes too large.. its some uneasy dilemma..

Thx alot kingroach, I kinda did think about fixing the xonlindash.xbe to try to change the name of \xodash\Xbox.xtf to something else mb, but never really tried. Well here's some stuff i've been thinkin about but they might not work at all.

* means some possibilities but failed.

*1.- try to exploit the files inside \media\ folder used by the ndure boot, i actually got it to error 21, that kinda tells me it could be possible in a certain way, and that way we don't depend on fonts, but rather other files that loads into the dash.

*2.- fuckMS msdash.xbe when booting retail, but i can't load xonlinedash.xbe retail nor patched.

3.- my last attemp i'm gonna go try.

use update.xbe from UXE to load fonts bert-something.xtf and ernie.xtf to load the softmod, while keeping the other msdash.xbe and xonlinedash.xbe retail and unmodded, and this could be a possible way to load the fonts correctly and have full use of the ms dashboard.

xboxdash.xbe (update from nfl)>fonts\ernie.xtf/bert-kernel or ge.xtf>dual boot etc.

if open tray>msdash.xbe (retail xboxdash.xbe 5960)>fonts\Xbox.xtf/Xbox Book.xtf=fully retail and compatible with the hash checks on the xonlinedash.xbe and vice versa.

*crosses fingers*

1: very unlikely. it's still a font exploit. other files have been checked..

2: yes that's true

3: when keeping hacked fonts in C:\fonts how do you wanna load msdash? also xonlinedash.xbe needs a retail 5960 C:\xboxdash.xbe (checksum)

xboxdash.xbe checksum, is that in the loaded memory or the file it self.

Oh, and i think i might of found something that might come in handy to someone that can make a valid expoit.

using Ndure's xboxdash.xbe and media folder, i noticed that if you mess with the file called \media\content\japanesse\ximejpm.dic the xbox will either freeze, or try to load something.

I've tried 2 ways so far, renaming erinie.xtf to this file and replacing, booted to error 21, but it might be that somebody more skilled can find a way to exploit the file ximejpm.dic, i also tried xbox.xtf named to this file, and leads to just a freeze.

Migh be valuable info, who knows???

the file itself. that's why you have to edit the xboxdash.xbe path in xonlinedash.xbe (and the fonts path) in order to launch it.
And it would be nice if we found another exploit. you can look at what files are called by an xbe using an app called apilogger made by pedrospad. I wouldn't set my hopes on it though. you can probablt crash the xbox in many ways but only few are vulnerable.

If I remember correctly, you can also load certain named .xmv files with ndure ( xonlinedash.xbe).. The info is somewhere in main ndure thread..

3. you can never launch xonlinedash.xbe with any combination.. other than hash xonlinedash.xbe also checks the signature version of C:\xboxdash.xbe and both UXE and Ndure exploit has signature version 17cdc100 while xonlinedash.xbe (5960) has signature version 185ead00.. now you could possibly insert XONLINE library from ndure.xbe to xonlinedash.xbe (5960) but I havnt been able to do so.. and I dont knwo any tool that can extract/insert library into an .xbe.. I think you can do it with hexedit ( I have seen someone did in developer forum).. still I dont know how much you can gain from it..

This is what I mean about this file, cause it seems to do something with the kernel.



I'm not much of a hacker, but I"m sure you can do something.

Like I said, mb it's the way we have to set the file, not as a font, cause I got it to error 21, that means it at least tried to find the .xbe in it's target, mb new signature is needed I don't know.

Hopes this comes to good use.

The two files seems to be japanese character support for xbox.. The two files are XIME file after some research it seems to be xbxo version of Pocket IME ( Input method editor).. from MSDN:



this three links might be helpful:

http://msdn.MS.com/library/default...._Pocket_IME.asp

http://msdn.MS.com/library/default...._windows_ce.asp

replace MS with MS..

http://msdn.MS.com/library/default...._code_files.asp


apparantly the source code for pocket ime comes with windows CE.. now I dont have any special expertise on windows ce ( other than few failed attempt to make a customize windows ce for my computer )..


so if pocket ime have any flaw in it, which it should considering its a MS product you could certainly exploit these two files..

wow, just as I expected, now i really hope someone with more hacking skills can give this a look at.

Hey Kingroach, I just used your installer for the first time and it works great. I usually use Krayzies. When my setup is complete there is still 161MB free in the c: drive. Do I need to create more filler files to prevent any dash updates?

if you did a basic install then its not necessery but with retail install filles C is required.. but ndure installer should create full C if you used on a virgin C drive..


---

I uploaded a new build of Ndure 3.0.. minor changes in Ndure toolset:

* upgrade from Ndure 2.1 to Ndure 3.0
* UDDAE fills Ndure 2.1 Created C drive..

if i already have a softmodded xbox modded using uxe for xbhdm can i still install ndure via ftp?

yes..