Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

[KhaineGB]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

i mean only the phat ones and use the glitch hack only to get the cpu key, then remove the chip and go forward with the normal smc hack and a patched freeboot img

Except that chip you want to remove is what's allowing the box to run unsigned code in the first place.

The chip and glitch hack are one and the same. From what I understand (and I might be wrong on this), while you can use the RGH chip to get the CPU key and install Xell Reloaded, you can't then remove the chip, install JTAG wiring and have it boot up.

That's because your CB is patched so the current rebooters don't work and the console can't run unsigned code (talking about FAT's here, not Slim), hence why you have to leave the RGH chip in the machine.

I'm pretty sure if you remove that you'll either get christmas lights or E79.

 

[dedarus]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

so, when you erase the whole nand and overwrite it with the patched freeboot , its the same
when you update your jtag to a newer dash

 

[hellrok]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

thats one hell of a news !!!!

 

[Hello69]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

so, when you erase the whole nand and overwrite it with the patched freeboot , its the same
when you update your jtag to a newer dash

After read the pages and pages I had the same idea.

 

[spookyman166]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

After read the pages and pages I had the same idea.

No. The JTAG/SMC exploit is different. This is completely different. The chip must stay in. Unless you know how to unburn fuses

 

[prezakias]

i lost my xbox 360 lite on key!!!

hi can i do somethin now?can someone please help me im noob on this!!!please help me!!!:facepalm:

 

[BrokenRoses22]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

All were waiting for is the last tool and freeboot?

 

[KhaineGB]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

so, when you erase the whole nand and overwrite it with the patched freeboot , its the same
when you update your jtag to a newer dash

Except it's not because when you update your JTAG to a new dash, you're using a rebooter to keep the OLD dash (and thus not burn any eFuses) while installing the new kernel over the top to allow access to new games.

Again, I might be wrong on this, but that's how I understood it to work.

That's why you can't just drop a rebooter onto your NAND and throw in JTAG wiring. Your eFuses for the old dash are shot. That's why we are waiting on new, patched Dashboards that will support the RGH wiring (Since you have to leave that in and can't just swap it for JTAG wiring), and are compatiable with our burnt eFuse sets.

Personally I'm also waiting on a Falcon-compatiable setup since I've got an RROD-fixed one sitting here that I'm willing to use as a test machine.

 

[triquetrium]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

This exploit sounds great, never had a JTAGable console but the thought of this is taking me back to some very fond memories of running custom dashes on the original xbox. Just got my fingers crossed that some software is developed to allow this to be used for it's full potential.

Can't see xbmc making an appearance this time somehow, not since they've stopped developing it for the original xbox.

Dusted off my old soldering iron, ordered the requisite parts and am awaiting the release of the Cool-TX.

I love modding stuff! :biggrin:

 

[BrokenRoses22]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

Who doesn't?

 

[dogeatdog]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

Been trying to glitch my Slim here. Dump went fine, ecc generation as well, flashed it back so nand-wise it should all be peachy.

I have a CPLB breakout PCB (pics attached) which I programmed with the trinity.jed (v1.0) file. I think this is the latest version ? I used the programmer (Impact) which is included in LabTools 13.2, using the official Xilinx USB JTAG Programmer. Both programming as verifying went correctly.

I installed the board according to the diagrams, short and tidy wires and doublechecked the soldering.

When I turn on the xbox, I can hear it restart the fan as an indication of a new reset attempt. It does this every few seconds, which is normal I suppose, until it can glitch. But it's not glitching.. even after 5 minutes, still no joy.

Like I said, I am using the CPLD breakout PCB which is based on the C-MOD but with the added components (220pf..).

If anyone got an idea (other than to wait for the TX solution), I would like to hear it !

Pics :

 

[mgrover]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

its 25% success rate per try. so am guessing youll have to wait. leave it for a an hour to be 100% sure that it wont work

 

[triquetrium]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

Who doesn't?

Bill Gates?

 

[Grale]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

Been trying to glitch my Slim here. Dump went fine, ecc generation as well, flashed it back so nand-wise it should all be peachy.

I have a CPLB breakout PCB (pics attached) which I programmed with the trinity.jed (v1.0) file. I think this is the latest version ? I used the programmer (Impact) which is included in LabTools 13.2, using the official Xilinx USB JTAG Programmer. Both programming as verifying went correctly.

I installed the board according to the diagrams, short and tidy wires and doublechecked the soldering.

When I turn on the xbox, I can hear it restart the fan as an indication of a new reset attempt. It does this every few seconds, which is normal I suppose, until it can glitch. But it's not glitching.. even after 5 minutes, still no joy.

Like I said, I am using the CPLD breakout PCB which is based on the C-MOD but with the added components (220pf..).

If anyone got an idea (other than to wait for the TX solution), I would like to hear it !

Pics :

What mobo revision do you have? do we even have a way of knowing yet. just remember reading some boards weren't working.

here's my details from the nand, but unfortunately i am awaiting the coolrunner to go with my nand-x so i can't help sorry.

 

[dogeatdog]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

What mobo revision do you have? do we even have a way of knowing yet. just remember reading some boards weren't working.

here's my details from the nand, but unfortunately i am awaiting the coolrunner to go with my nand-x so i can't help sorry.

Here's mine :

 

[josh1095]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

off topic, a NAND is a "not-and gate". when people say "flash the nand" im assuming they mean some type of eeprom which happens to use a nand somewhere in it?? in the ps3 scene they talk of the "nand" and "nor" models. to my knowledge its impossible to have a "256mb NAND". its simply a solid state logic device. im pullin memory of my EE degree 11 yrs ago tho lol, i will take the correction if im wrong.

 

[-_K_-M_-D_-]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

off topic, a NAND is a "not-and gate". when people say "flash the nand" im assuming they mean some type of eeprom which happens to use a nand somewhere in it?? in the ps3 scene they talk of the "nand" and "nor" models. to my knowledge its impossible to have a "256mb NAND". its simply a solid state logic device. im pullin memory of my EE degree 11 yrs ago tho lol, i will take the correction if im wrong.

Correct sir.

Reference:

http://en.wikipedia.org/wiki/NAND_logic

 

[MightyModz]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

Been trying to glitch my Slim here. Dump went fine, ecc generation as well, flashed it back so nand-wise it should all be peachy.

I have a CPLB breakout PCB (pics attached) which I programmed with the trinity.jed (v1.0) file. I think this is the latest version ? I used the programmer (Impact) which is included in LabTools 13.2, using the official Xilinx USB JTAG Programmer. Both programming as verifying went correctly.

I installed the board according to the diagrams, short and tidy wires and doublechecked the soldering.

When I turn on the xbox, I can hear it restart the fan as an indication of a new reset attempt. It does this every few seconds, which is normal I suppose, until it can glitch. But it's not glitching.. even after 5 minutes, still no joy.

Like I said, I am using the CPLD breakout PCB which is based on the C-MOD but with the added components (220pf..).

If anyone got an idea (other than to wait for the TX solution), I would like to hear it !

Pics :

Link To Image
Link To Image
Link To Image
Link To Image

You have to create a jumper, i think this is correct for your board but im not 100%

 

[dogeatdog]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

No joy, but thanks for the suggestion !

---------- Post added at 07:46 ---------- Previous post was at 07:43 ----------

Great, another - no you can't edit your own post - topic And they wonder why it's 84 pages long... Anyway, there was already a connection from said pin to the lower leg of the component you drew the red line to. I made the bridge to the upper leg and the 360 is still doing the same reset. Will let it run for another 15 mins now..

 

[dogeatdog]

Re: Reset Glitch Hack - "JTAG" Type Exploit Zephyr/Jasper/Trinity(Slims) !!!

You have to create a jumper, i think this is correct for your board but im not 100%

Link To Image

I see what you were trying to say there, but the bridge from R2 upper side to R1 lower pad is already achieved. In the CPLD design R2 was left out completely and you can see the pads on the R1 location. The left pad there is already connected to the pin you were refering to. .