Looking for some JTAG Guidance / HELP

[WNYConsoles]

Hello all, I am not really the type to post on forums asking for help much but I have to admit I am a bit confused on what to do next and I hope someone here can give me some step-by-step guidance so I can get this working.

REF: XBOX Zephyr HDMI with 4558


Here is what I have done so far...

1. Soldered LPT wires and read CB. Confirmed it was exploitable and proceeded to JTAG permanent wire config. After watching a video however I realized that the NANDX is "LOL" "HOURS" faster then LPT on a old PC so I ordered one.

2. Followed this tutorial - http://www.instructables.com/id/How...acting-the-keyvault-injecting-and-flashing-XB

I also checked a few other popular tutorials however the three were about the same with difference being AUD port and a alternate DFB1 port.

3. Flashed with the following commands....

nandpro nand.bin: -r16 kv.bin 1 1
nandpro nand.bin: -r16 config.bin 3de 2
nandpro xbr.bin: -w16 kv.bin 1 1
nandpro xbr.bin: -w16 config.bin 3de 2
nandpro lpt: -w16 xbr.bin

4. After flashing I am able to get into Xell however I don't know what to do after this, I also don't want to use XBR as I am told FreeBoot is much better. There are so many tutorials and I have been reading dozens of tutorials for the last three days and I am just over whealmed and not sure what to do next. I know I need to get Easy FreeBoot going with JTAG Tool however all my attempts have failed and results in E78 error.

I am able to flash back to original dump and restore the nand.

What I would like is if someone could guide me with a step-by-step process with what files I need, where to get the files (I have yet to been able to connect to XBINS), and what commands to run.

I would greatly appreciate any and all help and should anyone been interested in helping me via Messenger or other method I have no problem with compensation, just send me a PM.

 

[bearkilla]

did you use your original nand dump when generating a freeboot image in jtag tool?

 

[WNYConsoles]

did you use your original nand dump when generating a freeboot image in jtag tool?

As of right now I have not used JTAG Tool, I just flashed with the XBR and the commands posted above from the tutorial. I did make a JTAG Tool bin and flashed it but got a E78, which makes sense because I was flashing FreeBoot over XBR. As I said, I just need some direction and what files/commands to use

Going to attempt a JTAG Tool setup now as I have just finished re-flashing to default.

 

[bearkilla]

i'm confused, first you say you have never used jtag tool then you say you have made a jtag tool bin?

 

[WNYConsoles]

i'm confused, first you say you have never used jtag tool then you say you have made a jtag tool bin?

Sorry, let me clarify. I have not used JTAG Tool on a fresh stock dump, I did however use JTAG Tool and flashed over the XBR files/commands posted above which caused the E78. I am now attempting the JTAG Tool bin onto a fresh default flash.


What I would like to do is...

1. Install Xell and FreeBoot
2. Install Updated Dash 12625 or 12611 (Zypher)

I can install XeX-Menu/FSD as I have done that previously.

 

[frazzeld]

use jtag tool to create freeboot 12625 & write.
come back when you booted the console...

 

[WNYConsoles]

use jtag tool to create freeboot 12625 & write.
come back when you booted the console...

Just to confirm....

1. JTAG Tool 3.00 > LPT > Zypher
2. Read Nand
3. Write Xell
4. Enter CPU Key
5. Create FB or Write .Bin?

 

[rdubbs007]

Create FB and then write it (make sure JTAG wires are installed).

 

[frazzeld]

Just to confirm....

1. JTAG Tool 3.00 > LPT > Zypher
2. Read Nand
3. Write Xell
4. Enter CPU Key
5. Create FB or Write .Bin?

I thought you had already read your nand and installed xell
Open Jtag Tool v3
Select:Zypher
Compare nand dumps

Select:Zypher
Browse to your nand
Enter your CPU
Then options:
Choose your SMC
Drive installed YES/NO
Choose 12625
Choose xellous
Create Freeboot
Save Freeboot
write Freeboot

 

[WNYConsoles]

THANK YOU! I am going to try this soon, however LPT is slow so it will be a few hours, cant wait for that NANDX.

Anyway, do I need to be worried about the R6T3 resistor?

 

[rdubbs007]

Just bridge the points on the bottom of the board and you wont have to worry.

 

[frazzeld]

After you got her running "bridge the two points"

http://team-xecuter.com/forums/showthread.php?t=62331

 

[WNYConsoles]

So bridge after or before 12625?

 

[frazzeld]

I've always done it after

 

[rdubbs007]

It makes no difference

 

[keil423]

Always worry about the R6T3 resistor. Once your done with your freeboot and you have it updated to the 12625 then protect you efuses. I dont remove the resistor I just bridged the two points on the mobo to protect.

Do you plan on useing a kinect on your system? If so once you get your 12625 freeboot installed and working you will need to download the 12625 update and apply it. You can download this in Jtag tool put it on the root of a thumbdrive (flashdrive) and install it from there.
If you dont plan on hooking up a kinect then dont worry about it and protect your efuses

 

[WNYConsoles]

WOW! Thanks for the support guys!

Don't plan on using Kinect but I may consider the update anyway, but one thing at a time.

Just to confirm, the command for flashing the JTAG Tool bin would be....

nandpro file_name.bin: -w16 1 1

or would it be -W16 ??

 

[frazzeld]

Select LPT in Jtag tool then write

 

[rdubbs007]

Yes. Use JTAG tool to write it, not nandpro in command prompt. The GUI makes it completely easy.

 

[WNYConsoles]

Yes. Use JTAG tool to write it, not nandpro in command prompt. The GUI makes it completely easy.

Yeah, that big "Write" button makes sense now, DOH!

Thanks for the help, will post back here when I have some results.