Team Cygnos integrates JTAG hack into Cygnos360 v2 Posted by XanTium | October 12 11:23 EST | News Category: Xbox360

We received this news from Team Cygnos: [QUOTE] The last couple of weeks have been very turbulent for all Xbox360 lovers. We have seen some very good developments towards homebrew and better linux. We had fought with delays caused by the manufacturing and sourcing process which we finally solved. Now, Cygnos360 V2 is on stock at several shops and on the way to others. Production is still slow but ramping up and we are shortening delivery times. We did however not spend the time waiting doing nothing. We have used the time to significantly improve the functionality and usability of Cygnos360 V2. * Most interesting new features are: -Integration of the JTAG hack into our firmware so that we can play the role of the microcontroller doing the JTAG inject. This is running and tested on xenon and falcon mainboards. The other versions will follow via software updates. No taking apart or re-wiring needed. (please note that we cannot (yet) read and program the 256 & 512 Mb jaspers, 16Mb Jaspers are fine) -The Cygnos360 V2 USB board now has a vertical USB connector. That way it is much easier and cleaner to install in your Xbox360. This is a photo of the production version of Cygnos360 V2 -We have added the possibility to communicate from "Xell" to Cygnos360 V2, for example to switch kernel via software command. (hotswap) -We have added the functionality to enable switching between kernels having different SMC versions. It is not necessary to unplug the console for kernel switching, which is the case on current homebrew nand switchers and XD card solutions. -We have added a back-channel to the Cygnos360 V2 that enables developers to talk back from applications running on the 360 to Cygnos. This way it is possible for example to send data from within the 360 to the PC via Cygnos360 V2. (e.g. temperatures, CPU/DVD key, or other nice stuff) * Firmware and Toolbox A flaw in our firmware has been fixed that caused the JTAG hack to work only once every power cycle. The JTAG hack has so far been tested on Xenon and Falcon. Opus is very likely to work as well. We appreciate, if anyone could test this on a Zephyr. Please report any errors! The new toolbox in conjunction with the firmware will display serial output from XeLL, Linux, etc. in the console window. Here is a screenshot of the new toolbox: Output coming from the Xbox 360 is colored yellow in order to distinguish it from toolbox messages (green). Since XeLL outputs the fuse settings via serial port, there's now a very convenient way to save these to a file. Download the new firmware and toolbox from here * XeLL Since our microcontroller cannot handle serial communication at 115200 baud, we had to make a minor modification to XeLL. The modification will set the baud rate register of the Xbox 360 to 38400 baud, 8 data bits, no parity and one stop bit. This implies that you have to build a custom JTAG hack image for Cygnos360 V2 with our modified XeLL. You can download the XeLL binaries and sources from here. * imgbuild The free60 imgbuild tool does by default not generate a full image as required by our toolbox. We therefore modified the build script accordingly. You can download the whole package from here. Building your own image under Windows requires the installation of a Python interpreter. The simplest way is to download and install the Cygwin base system along with the "python" and "python-crypto" packages from here[cygwin.com]. Our modified imgbuild tool does not require a full binutils/gcc toolchain to generate an image. We included a precompiled payload binary instead. The SMC config block is taken from a dump of your Xbox 360. A typical command to generate and image would look like this: python build.py dump.bin CBxxxx.bin CDxxxx.bin xboxupd.bin smc_hacked.bin xell-1f.bin CBxxxx.bin and CDxxxx.bin are console (Xenon, Zephyr, Falcon, Opus, Jasper) specific, as well as smc_hacked.bin. Please use the xell-1f.bin from our XeLL package. * Manual For all interested for more info, check out the installation manual it contains a lot of info: Happy Hacking! Team Cygnos [/QUOTE] Official Site: http://www.cygnos360.com Buy Cygnos v2: homebrewdev.com | divineo.com

Please correct me if im wrong but does this mean you could use this on any 360 ?

so this is basicaly a modchip like we know from the xbox1?

Not exactly; the Cygnos360 is more like giving you a 2nd NAND, as well as the ability to read/write your current nand. It's still using the same free60 hacks that are already available that people build their own lpt flasher for.

I believe with the Cygnos360 you won't need to add the 330 ohm resistors in order to run Xell, though (not like that's a biggie, tho).

installation manual says the 4 resistors are still required

I dont understand how i compile an hacked firmware
I have my dump of my Xenon as dump.bin
i have dowloaded the new toolbox and updated Cygnos360 v2 firmware to v1.01
installed cygwin
downloaded the cd-cb_package.tar.gz and extracted cd1921.bin and cb1921.bin
downloaded and extracted the binaries for cygnos and extracted xell-1f.bin
Where do i find / extract xboxupd.bin??

What else do i need ??
how do i use cygwin/python ??

Could someone write a tutorial for creating the image?
(im using windows Vista Ultimate 32Bit)

I feel I must be missing something...

If the recent update wipes the bootloader and this hack with it surely its only a matter of time before new games do the same and you cannot play them on your 2nd NAND?

Exactly ... use a second xbox 360 for homebrews
buy a banned one cheap

any 360 that is vulnerable to the jtag hack (aka systems without the august '09 dashboard update) should be possible with it in the future, but right now its only confirmed for xenon and falcon boards (although since the jtag hack was released for zephyr boards, i would imagine that this will support those soon.



essentially it could be in theory. it allows booting of homebrew, and there is already linux and emulators that work with it. its still in its infancy stages in terms of end user software support at the current time, but i can definitely see this getting big.

This is awesome. I had my friend's system all wired up and ready to dump/flash the NAND, but my parallel adapter refuses to work. This eliminates the needed PC hardware (which most do not have), as it's old and (mostly) obsolete.

Get the update from here http://www.360mods.net/index.php?name=Downloads&get=76

Then use wxPirs to extract xboxupd.bin from 4532-Update (http://www.free60.org/SMC_Hack)

As for this?, no thanks, they cant make it 100% compatible with version from src (via git from free60 respository?) better hope they support this forever, um i'll think i'll stick with 100% supported solution

I think i'll give this a miss...




Why not use USB based solution like LPC2148 olimex or if you want to make something yourself http://www.xboxhacker.net/index.php?topic=12306.0

that still doesn't help xboxes get the cpukey with the summer 09 update right since xell doesnt boot at all?

damn, all i wanna do is change this pos' region

is this works on newest dash?
if so, this is great

No it doesn't. This is why everyone was told not to update if they want a chance for homebrew.

well they spoke a little too late.


They should of went and got the Beta from Major Nelson and alert people early

Divineo product description. Note the downgrading time: 1h15m. I'm wondering what takes so long.

I didn't ever see that USB solution, I like that a lot. The only downside - no dual NAND. Thanks for that link. I knew USB to parallel adapters were out of the question (at least from the admittedly small amount of reading I've done), but that looks pretty easy.

38400 baud
= 288.00 KB/min
= 4.80 KB/s
= 38.40 Kbps
= 4.69 KiB/s
= 17.28 MB/h

NAND sizes are about i dont know... 21- 25 MB

If you ever had to copy your own dreamcast games during the early stages youd know all about baud. (Or if you had a slow modem wit AOL)

Well, you could have always worked out how to hack it yourself

Seriously, let's not get into that again, anyone who downloads the latest updates in the first week isn't really a 'hacker', and if you really are one, then buy a 2nd hand 360, they are cheap and you need a second one anyway if you want to continue using live, new games etc. etc.

/facepalm...nice try trying to correlate those two.

1- The 38400baud is for comm over the JTAG/serial interface NOT for writing the flash, so the speed difference isn't really noticeable unless you're using XeLL to dump LARGE amount of data over the JTAG port.
2- 360 NAND size is 16MB (unless you've got a fancy new Jasper with 256 or 512MB, but Cygnos doesn't work with those yet)
3- The 1h15m on a good PC is just the time it takes for the PC + 360 to work together to go bit by bit down the key exploiting a timing issue with the memcmp function to essentially intelligently guess the CPU key.

Downgrading is obsolete, they dont even have it in the manual anymore.

all you need to do is build the right image for your mainboard type (xenon, falcon...) flash it onto the NAND (less than a minute) and then you can start your console using the hack.

downgrading was a method that was used to guess a hash in order to patch an image that would boot 1888 wich you then could upgrade to 4532. this is not used anymore & not necessary anymore. divineo needs to update the product description.

all you need now is install this chip, get/ build the image, flash it and there you go.

the speed they are referring to is the serial output you can see on the screenshot. they can show the messages xell puts out (e.g. the fuses) in their "toolbox" software which is much better than writing the fuses off the screen or something.

if you boot a live distro on the xbox, you can ssh in and cut and paste they keys using your terminal, see this example

Of course you can, but you must admit this not only makes it easier, but allows a very interesting feature that future homebrew could implement. I did alot of the early testing on the falcon and helped work out a few of these bugs, and not only do I highly recommend the product, but the team behind it is extremely dedicated to making a quality product with quality support.

Damn i really didn't think of that, were do i go about buying one of these banned boxes, do i look in the BST forum?

EDIT: i just looked on ebay and couldn't find anything

Do you need to build the parallel connector with the resistors to flash the right image onto the NAND? And to take that further, wouldnt i still need to pull some info from my NAND (cpukey/etc) to populate any NAND or image i'd download from the net? And for that, is the only way using JTAG?

I'm trying to decide if i should buy this now or wait for another month or two to see if something better comes along. My problem is that i do not have any old computers or laptops that support SPP parallel ports, so building the JTAG stuff is not much of an option for me unless i want to buy/build an old machine.

Thanks

hey nomorgow,

no parallel port for cygnos360 V2. it has a USB port! cant get much easier than that!

i wanna get one of these for my second xell 360, are there any uk sites selling it
thanks

the uk cant sell mod chips its illegal

lol funny, i live in the country and i never knew that

will the links 2 provided in this topic send to the uk? anyone know

Woohoo!

I placed my order for the cygnos360 v2 through divineo on Monday, so just need to wait now.

I also ordered all of the resistors and diodes necessary to do the JTAG hack without the chip, just in case.

Thanks for the info, guys. I'm excited to dump and fork my NAND so i can get back on live and co-op some of the new games with my friends.

I thought Banned 360s have the jtag disabled due to the banning?

no? I jtgged mine just fine.

a ban 360 from 2008 hasn't a problem but a ban 360 from this 2009 ban won't work....but you can read the nand to uncorrupted the file in the nand to make the hard drive workable in the ban console