Xbox Hack Update: New PoC Released!

I kept my Xbox the same as you said to in the last video.I cant wait, I still have the game script loaded an ready to go

sadeness

I have everything downloaded, offline, and picked up Vermintide 2 disc. Thanks for keeping us updated!

notafraidoftherobots

There is an android app called Bluetooth keyboard where you can just enter your text in a text box and it will write it for you like a rubber ducky

nickiminajwannabe

God forbid you want to use your hardware how you want to

qhilipgaming

I love how this all starts coming to light as soon as I sold my xbox 1s

_thePineapple_

Its kinda funny that by not playing/using my Series X I now have a hackable Series X

xXMasterJXx

please someone. discover the way to get gamescript app functionality. like uploading the app under different name and additional camouflage

mtxn

Unless you can download and play games like on the PS4, I'm not interested

yaredcastillo

There’s a way to change the text file into an executable. All we need to do is find an app that is able to run the scripted exe

DHKROSE

The day you said update I went and got all 3 of my new Xbox still in box and make sure they was all ready for this code when it drops ok be selling one of them

BJBRUNOHO

Thanks for the update! And also thanks to whoever found the copy/paste through Edge!!

RyanScarbrough

If you have game script, and ran the 1st code before applying the update, both scripts work on the latest OS 4909.

kikolb

please post a video letting us know when there is another way to install gamescript. i have the correct OS version and i turned my wifi off for now. hoping something comes up soon.

natehinxman

This exploit doesn't really make sense like has anyone else actually looked at it..
He claimed to get user land code execution in the form of a uwp app which basically means he managed to get his app published.. Then it proceeds to exploit a race condition in the kernel this would mean his userland app can create threads and write userland memory obviously which is useless at that point but then it exploits a race condition in the kernel by creating a separate thread that uses the same kernel function repeatedly until it wins the race and allows the kernel function to execute with the modified variable.. except this is Xbox one and it has a syscall handler so any modified variables won't work only acceptable ones so then your basically just calling a legal kernel function.. but the source code also maps a rop chain with kernel gadget addresses into memory.
Would love to see a presentation on how you managed to get kernel level code exec on an Xbox one with nothing but a toutoc race condition.
His first poc script mapped shellcode in userland which was obviously already possible.
But even then the kernel can't execute shellcode from a userland page in memory unless the toutoc condition uses a pointer variable in the vulnerable function (what are the chances) nothing has really been proven to be exploitable on Xbox one yet..

IcyModzv

You had your city in the amazon clip, I live pretty close. I thought I recognised the accent

mDubbz

i swear you said the exploit was for the Xbox one in the previous video. I didn't know it was the series x as well

hakz

What are the chances we actually get a gamescript alt or workaround? I was in the hospital when you posted and by the time I was out it's been pulled. I dint want to have to buy one 😢

andrewsimmons

Thanks for the videos MW, always detailed and good value. Isn't MS removing the licence for GS app if updating to latest FW?

danegon

Thank you for this tutorial, time and effort that you put into this subject

mihaimiu

For someone who uses dev mode to play emulated games, has an active Xbox game pass sub and only very rarely buys anything new, this is pretty worthless

alex.starostin