NAND File System: Difference between revisions
Jump to navigation
Jump to search
imported>Stoker25 m (moved Flash Filesystem to NAND File System) |
imported>Tuxuser No edit summary |
||
| Line 1: | Line 1: | ||
{{Cleanup}} | {{Cleanup}} | ||
== General == | |||
The Xbox360 has stored all "System Software" on the NAND Flash like Kernel, Hypervisor, Bootloaders and Dashboard Files. | |||
== XeLL Image Layout == | |||
The whole XeLL Image is pretty small with 1,3 MB compared to an original Xbox360 NAND-Image which is normally 16 MB or 64 MB. | |||
0x00000000..0x000001ff (0x00000200 bytes) Header | |||
0x00000200..0x000003ff (0x00000200 bytes) Exploit | |||
0x00000400..0x00000fff (0x00000c00 bytes) Padding | |||
0x00001000..0x00003fff (0x00003000 bytes) SMC | |||
0x00004000..0x00007fff (0x00004000 bytes) Keyvault | |||
0x00008000..0x000117ff (0x00009800 bytes) CB 1921 | |||
0x00011800..0x00016ebf (0x000056c0 bytes) CD 1921 | |||
0x00016ec0..0x0006cf2f (0x00056070 bytes) CE 1888 | |||
0x0006cf30..0x0006ffff (0x000030d0 bytes) Padding | |||
0x00070000..0x000744bf (0x000044c0 bytes) CF 4532 | |||
0x000744c0..0x000a33ff (0x0002ef40 bytes) CG 4532 | |||
0x000a3400..0x000bffff (0x0001cc00 bytes) Padding | |||
0x000c0000..0x000fffff (0x00040000 bytes) Xell (backup) | |||
0x00100000..0x0013ffff (0x00040000 bytes) Xell (main) | |||
*The (hacked) SMC Code is usually seen as Header + Exploit + Padding + the actual SMC, so 0x0000 - 0x3FFF. | |||
*The Keyvault is the unique "System Information" which holds stuff like DVDKey, Console Region, Console Serial and other things. Whole keyvault is crypted with CPUKey. | |||
*After that exploitable CB (2BL) and CD (4BL), matching the console revision, follows. | |||
*After padding CB/CD theres CE (Base-Kernel 1888) followed by exploitable Patchslots CF/CG (4532 or 4548) and again some padding. | |||
*At the end of the Image theres a Backup-XeLL, which gets executed if the original XeLL fails (Bad Update maybe) followed by the original XeLL. | |||
[[Category:Software]] | [[Category:Software]] | ||
Revision as of 10:43, 12 August 2010
 |
This page needs to be cleaned up, because its either hard to read or contains very little information. You can help Free60 by editing this page and cleaning it up. |
General
The Xbox360 has stored all "System Software" on the NAND Flash like Kernel, Hypervisor, Bootloaders and Dashboard Files.
XeLL Image Layout
The whole XeLL Image is pretty small with 1,3 MB compared to an original Xbox360 NAND-Image which is normally 16 MB or 64 MB.
0x00000000..0x000001ff (0x00000200 bytes) Header 0x00000200..0x000003ff (0x00000200 bytes) Exploit 0x00000400..0x00000fff (0x00000c00 bytes) Padding 0x00001000..0x00003fff (0x00003000 bytes) SMC 0x00004000..0x00007fff (0x00004000 bytes) Keyvault 0x00008000..0x000117ff (0x00009800 bytes) CB 1921 0x00011800..0x00016ebf (0x000056c0 bytes) CD 1921 0x00016ec0..0x0006cf2f (0x00056070 bytes) CE 1888 0x0006cf30..0x0006ffff (0x000030d0 bytes) Padding 0x00070000..0x000744bf (0x000044c0 bytes) CF 4532 0x000744c0..0x000a33ff (0x0002ef40 bytes) CG 4532 0x000a3400..0x000bffff (0x0001cc00 bytes) Padding 0x000c0000..0x000fffff (0x00040000 bytes) Xell (backup) 0x00100000..0x0013ffff (0x00040000 bytes) Xell (main)
- The (hacked) SMC Code is usually seen as Header + Exploit + Padding + the actual SMC, so 0x0000 - 0x3FFF.
- The Keyvault is the unique "System Information" which holds stuff like DVDKey, Console Region, Console Serial and other things. Whole keyvault is crypted with CPUKey.
- After that exploitable CB (2BL) and CD (4BL), matching the console revision, follows.
- After padding CB/CD theres CE (Base-Kernel 1888) followed by exploitable Patchslots CF/CG (4532 or 4548) and again some padding.
- At the end of the Image theres a Backup-XeLL, which gets executed if the original XeLL fails (Bad Update maybe) followed by the original XeLL.