How the Original Xbox Security was Defeated | MVG

*We'd certainly like to have you remove that if you could...*

"Ran out of time" -- We aren't afraid of 20min videos!

Is it worth mentioning that Microsoft tried to hide the fact that the game ports were electrically USB, they just changed the shape? That was something that annoyed me on the original design, thankfully they included standard USB ports on the 360!

The original XBOX UI is still beautiful to look at. Has that Matrix, late 90s, early 2000s look, but doesn't look cheesy, just looks futuristic. While you really can't have a modern UI this simple, I do wish we had the option of different looks that aren't just cheaply made amateur nonsense. Give the XBOX4 a modern UI built on this original look with all the animations, etc, and they'll sell an extra 10million units.

To be fair Microsoft representatives did eventually compliment the efforts of the modding community.

*Corrections and notes:*
- 5:18 The sniff was done between MCPX and NV2A (target being the CPU further down) [correct in voice-over, but broken visualization].
- 5:59 bunnies method wasn't too relevant itself; just that the MCPX dumps allowed for analysis and finding various exploits in the early boot process. This allowed circumventing checks of the flash ROM validity by exploiting MCPX bugs. It was almost entirely irrelevant to the kernel patching itself (it just made the installation of patched kernels easily possible).
- 5:59 What did allow for easier kernel patching was Microsofts internal struggle with its employees, who kept leaking code and internal details.
- 7:33 The expensive part is not a motherboard redesign (MS kept redesigning it anyway). The expensive part would probably be a change of the intel CPU design, which would significantly raise costs. The MCPX/MCPD on the other hand was developed specifically for Xbox and nForce motherboards and was cheaper to fabricate with the built-in ROM from the start.
- 8:10 The MCPX 1.1 basically moves code from the MCPX into the flash (FBL) and verifies it using TEA; I believe the FBL still uses RC4.
- 8:10 TEA itself is not insecure, however, the way MS used it was known to be insecure.
- 8:10 There were other known exploits in the MCPX 1.1 (inherited from MCPX 1.0; such as visor and mist, mentioned in the outro); and A20 was also already possible with MCPX 1.0 (as a software-only solution instead of bunnies attack).
- 8:34 The 1.6 Xcyclops (chip with Xbox Logo to the left) contains the ROM and SMC; Xcalibur (chip with Xbox Logo to the right) is only a video encoder. At least this is currently believed to be the case.
- 9:05 There *was* security for savegames, but savegame encryption keys were dumped from the kernel, so another machine could modify savegames. Without the MCPX dumps (and kernel dumps), this might have taken a bit longer.
I also believe the bunnie-phone-call was about the still-encrypted flash contents, hence: *ROM image* (which also contains the plaintext copyright message, shown on his website).
There was a back-and-forth with MS about his actual MCPX research being published, so it would be weird for MS to give him a call afterwards (as the legal situation was settled; quote: "I got a grudging thumbs up, so to speak, from Microsoft on my Xbox reverse engineering work").
*All to the best of my knowledge, for updated information, check **xboxdevwiki.net/*
- JayFoxRox

Hmm, yes interesting. I know some of these words.

When it comes to these extremely detailed videos about how security was defeated in the gaming world, I wouldnt mind if these videos were an hour long to be honest.
They are very detailed, extremely accurate, and you sure did all of the research anyone could possibly do on the subject. That shows true passion for what you do, and you do a great service for the community. Thank you.

This Xbox on the video is absolutely *gorgeous*

Forgot reason 4, to play games from other regions on region locked hardware. That's why I got work-arounds for my Gamecube, and my PS2.

Imagine someone watching this on their OG Xbox through Linux

A great video! You've managed to capture the history nicely there! I have a lot of fond memories of the old XBOX =D

Being that I have always enjoyed embedded electronics and hardware hacking (and plan on double majoring in CS and EE), I enjoyed this video covering security flaws in consumer electronics. Please make more of these!!!

(In bill lumberg voice) I'm gonna have to go ahead and ask you to remove that. Mmm kay!

Looking forward to the 360 video. Thanks

Dat voicemail... first time I hear that, it is gold! I find it really fascinating to learn how exactly security got breached on all the different consoles, wether via hardware or software or a mix of the two. That was told in great detail yet succint and moving at a fast pace, and with your usual flair. Very well done, MVG! that was one really enjoyable vid yet again!

7:41 haha “Xbox 2”. Like they thought that Microsoft knows how to count

This guy really deserves millions of views for the amount of work he goes through for each video.

Thank you so much for this video! I love seeing this kind of content on the game systems from my childhood, especially now that many of the original sources on forums and the like are long since gone. Thanks again and looking forward to more!

I love these kinds of channels. Super cool things I never knew about and done in a very good format with a great host. I could watch these all day.

9:21 I remember seeing an old photo circulated around, where one of the save files had a Debian logo on it, so that could be one of the hacked save files.

Hope you do one on the Saturn, the story behind how it was done and just how long it took always fascinated me

Can I just say MVG, thank you for your videos. I love that you make content on these older system that I have or can get easily cheap! Keep up the awesome work man :)

Nice video as always. I always like to take a look at the architectures of old systems as a means to learn things about how we ended up, where we are right now, but I don't have the Time to research myself, so I very much appreciate Videos like these. Nicely researched, comprehensive but still to the point.

i love videos that discuss the exploits and explains them on a technical level keep up the good work!

Nothing is better than a new MVG video with a cup of coffee in the morning.

Damn! Just found this channel. I love the in-depth technical analysis / explanations. I want MORE!
Great work!

Your channel is fantastic, man. You always make the information very palatable for everyone and I always look forward to your videos.

How glad I am that they messed up the security :) The OG XBox is one of the best go-to machines for emulation, it's great!

This isn't the story of topic I'd usually be fascinated by, but this video was fantastically made and drew me right in. Thank you for the really interesting and well made content.

sick as hell video man. well done editing and amazing coverage along all branches of this story. BTW excellent shirt

So glad you mentioned Andrew's work on this.
I vividly recall reading that blog about how he went about tapping into the bus, soldering his own custom PCB to the tiny traces. Fantastic work.
(I think this was around 2004?)
That did lead to people finding the other embarrassing security flaws, too. I still have a copy of 007: Agent Under Fire - the ONLY original Xbox disk I own. lol
I mainly used my Xbox for watching movies via XBMC, and a modded Xbox RGB SCART cable, so I could run Component to a projector.
Good times, and all thanks to the modders, hardware hackers, and coders. ;)

Playing backups si so handy. Just dug out my old xbox and it's easy to just play games from hard drive. No need to have the discs moved out of storage. Easier to enjoy old systems

You are a very good teacher. Thanks for all your contributions you’ve made in your lifetime. You are a genius and a humble man at that.

Great video, brings back some good memories for me. I bought my first Xbox after following the progress of the exploits. Softmodded it on day one and not long after I was getting a second unit and mod chips. My main use of the machine was for Xbox Media Center which was revolutionary HTPC software at the time, and getting our gimped PAL units to output HD resolutions via component :)

Just found this channel a couple days ago. Awesome content and please continue with such high quality content!

I loved that they called the bloke who uploaded the rom file and ask nicely if they could remove the exploit lmao. Should've given him a job imo

There's an insane book called by Bunnei about this. I was able to snag a limited edition first run and it explains everything very well. It's called hacking the Xbox.

I appreciate this type of content, these videos are always so interesting and educational, please keep em up! Great job on this one.

This is awesome how in-detail and the depth you go into the console. If you could do like a comparison to modern day consoles, like the Switch, or Xbox One or PS4, and how their security is now, that would be sick!

I didnt realize you do your own music. That´s awesome!

You know when the thumbnail says "Mistakes Were Made" you're in for a great video.

As always, really interesting. It is so exiting to know, that I used your software back in the day on my v1.1. It is also hilarious to see how the Aladdin modchip looks when properly soldered in. I remember doing this with my father with solid copper wires, a non regulatable soldering iron an not understanding the manual as to how to solder the chip directly on to the pins. It looks terribly slaughtered in there, with the chip hanging loose, but works until this day.

I would love to see videos like this for all the major console and handheld releases. This was really great to watch.

this channel is one of the only reasons I'm excited for Mondays.

I'm pretty sure your intro music plays when people are traveling to heaven. That's how good your TH-cam channel is haha

I am a newcomer to your channel. I discovered your video series via browsing and found your subject matter to be very interesting and informative. I have subscribed, and I look forward to more content from you in the future.

What a great video it brings back the memories I was part of team xtender the journey started with me getting hold of a developer box great times we showcased the chip at the Barras market in Glasgow and the bowlers market in Manchester the same day.

Fascinating! What a great video! :) Thanks MVG!

I really like your channel and the information about hardware, little bit of history about Xbox, Modding and Softmod.
Still love these Xbox Classic machines, awesome seeing the 3 crystal versions at the back of your video.

I love that video m8! I just missed the hdd key and swapping method, etc. Love your work man, i love your channel! Hi and much thanks from Spain!

I really love your videos, is a good insight in a scene that usually few people are part of it. thanks

"We'd certainly like to have you remove that if you could." If he could hahaha Aw shucks I'd like to but I just can't!

More please. Love these videos. Very interesting.

Your videos are ALWAYS a delight! Hugh thanks for the time n effort you put into these!

Really detailed man, i though i knew something. gees newer knew how more complicated it really is. Thanks

Monday mornings at work go something like this: drop things off at my desk, make a coffee, close the office door and watch MVG. E-mails and other nonsense can wait.

Now that i know this version of the xbox exists. I need one

I appreciate the level of complexity in your videos. I'd love to see anything more about the saturn, dreamcast and ps1.

I have to say, I really enjoy your videos detailing the cracking history and anti-piracy methods companies have used. Keep up the good work.

LOL I love how sony just released Linux, "here you go, that will save you/buy us time"

Thank you MVG, very cool!

Great video! Your explanations are always so detailed and yet easy to understand. Thanks!

A superb video.
Such an amazing amount of detailed research, it's exquisite.

Please do how the original Wii was hacked

Another top informative vid!
BTW, I always thought it was pronounced RetroArk (short for "Retro Archive"), not RetroArch.

Looking forward to the next one! I never owned a console in my life but this was fascinating to listen to, please would you kindly record MOAR?

I knew most of this but, it's been years... Thanks for the refresher... I remember when I did mine, I went with a mod chip and dropped a 200gb drive into my Xbox... Plenty of space. I popped it out about a month ago and must of been playing games for like 12 hours... oh the fun I had with this system when it came out...

Is it weird that I used to get scared by turning on my Xbox. I would either think that it would break, or the intro video would give me nightmares.

Not a PIII, it's a Celeron variant (from SSpec).
Disk wasn't a "swap" thing, it was password locked.
The trick was: you turn on the XBox (with XBox HDD powered by a PC), wait for XBox to "unlock" your hard disk, "unplug" the IDE disk and plug it on a PC (keeping it powered for the whole time).

Really fun video! A little of the jargon at 8:30 lost me (about the removal of the LPC header and Flash memory chip), but not for very long. I'm looking forward to the 360 video! :)

This channel has the best content, and it's the icing on the cake that this man designed the emulator I used for my first SM64 120 stars(Surreal 64) It was a really great idea to combine the three best emulators into one program, as there were many situations where if Pj64 couldn't run something, 1964 could or vice-versa. I never got much use out of UltraHLE or whatever the third one was.

I'm a simple man, I see MVG upload, insta like.

No wonder the Xbox 360 was harder to mod.

MVG another great video, thanks so much for the massive amount of info.

I remember doing a hard mod of my OG Xbox where I soldered wires to different points on the motherboard. I upgraded the hard drive and borrowed every game I could find from friends and saved them to the larger hard drive. Then put the Xbox in the senior lounge at my high school so we could all play whatever games we wanted to during study hall and lunch, without having to worry about the other people scratching discs.

I still remember soft modding my xbox crystal with the “mech assault” exploit . 😅

It would be interesting to talk about how they now have the “real unhackable console” aka Xbox One.

very informative. you do some great vids explaining the ins and out of these exploits.

I *love* coming back and binge watching this series. The OG Xbox was my first time hacking a console, and o-boy was it an adventure.

Can you see yourself covering homebrew and installation on the 3DS? I'd love to see it.

that background music you use. where do you get it? it's amazing! wanna listen to it all day.

I read bunnies book "Hacking the xbox" back in the day. It was quite enjoyable. Modded a bunch of the original xboxes with different types of modchips, first a bunch or wires, and then pogo pins, and finally the softmod. Still have the copy of splinter cell and the accompanying memory card with the save game exploit lying around somewhere.

This is great! I'm assuming my email 5 days ago was just coincidence ;) but I'm really glad to see see videos about these kinds of exploits and looking forward to more.

The PSVITA is now FULLY exploited with a firmware downgrader now. You should do a video about that

To some Linux meens freedom...
For me Linux means frustration!

Follow up “part 2” for the other methods?
Looking forward to the 360 video!
Keep it up love the channel

Thanks for doing these videos. They're really interesting to hear about even in restrospect.

Why is your Xbox lookin' like a Limited Edition.

Og Xbox has the best lineup of games!

Never heard of your Channel bro, I stumbled across this video and boy am I glad!

Remembering the old school days while reading xbox-scene website everyday waiting for news, always wondered who was Lantus, now seeing you explaining details about it, must say thank you for all the hard work done in the hacking scene, making an entertaining time of our lives. P.S. In 2023 I still have my treasure with XDSL working just like then.

So, as far as I can tell...
Literally any console maker: _removes or doesn't allow Linux_
Linux community: *"I didn't want war, but I didn't start it."*

where can we find the infamous voicemail recording at?

Any story about the blue case? Would love to see that video! Cheers, and thanks for all your great videos!

Great video. Great content. Even the name of your channel is incredibly accurate and to the point.

9.01, Green xbox has a moth moving around in it

No mention of the IDE Hotswap method? I am kind of disappointed :D

This was an awesome blast from the past. The og xbox was the first system I ever modded. I didn't have an Action Reply, so I cut the end off an xbox controller and a USB multitap and spliced those together to load the game save. Good times

This kind of videos are the reason why I subscribe to your channel because you know what you are taking about and you provide us details that we really appreciate. I'm waiting and hope you can make a video about how they defeat the PS3 security and how COBRA ODE works.