XbFlash 1.1 030917

XbFlash 1.1 030917

>> oz_paulb mailed us a new version of XbFlash(info), will be useful for developers working on a new bios for xbox v1.4/v1.5

Here's the latest version of my 'xbflash' utility. It now supports unpacking/packing of 5101 bios's (other 1.1-1.5 bios's should also work).

Note that xbflash has never supported 'multi' bios's, so you'll need to know the RC4 key in order to use this (I do NOT provide RC4 keys - I assume if you're hacking bios's, you know how to get your own).

It's already been proven that both the 'visor' and TEA hacks work on the 1.4/1.5 Xbox. It should be possible to 'unpack' a standard 5101 bios, apply x-code changes for either visor or TEA (and, if TEA, change the jmp instruction at the start of the FBL region by flipping 2 bits (see xboxhacker.net forum on breaking the 1.1 Xbox for details).

You should then be able to make whatever changes you want to your xboxkrnl.img and/or 2bl.img, then 're-pack' the BIOS into a usable binary.

See 'xbflash_1.1.ini' for info on the various ways of specifying RC4 keys (you can specify an original MCPX 1.0 16-byte RC4 key, an MCPX 1.1 16-byte internal RC4 key, or an MCPX 1.1 20-byte 'mcpx toolkit generated' RC4 key).

** A nice new feature: I've added support for Franz/hamtitampti's "RSA TEA hack", where it's possible to 're-sign' the FBL area (special thanks to Franz for this - even though it took some reverse-engineering to figure it out). This means that you don’t need to mess with any x-codes (visor/TEA hacks) in order to build a modified bios. Just unpack, make your xboxkrnl/2bl changes, then re-pack. You will need the 'internal' 16-byte MCPX 1.1 RC4 key in order to use this feature (Note: this is different from the 20-byte RC4 key that Franz's "mcpx 1.1 toolkit" displays).