QUOTE(zerosignal0 @ Dec 7 2005, 02:48 PM)
Just to mention as well I have been doing port scans and have come up with some funny ports too... like 21, you know I had to laugh to myself getting this one (for those who dont know port 21 is FTP) I knew right off the bat there wasnt a ftp server running but being as thats how all us modders get back and forth in our xbox 1... but anyways I also got the port 110 mailserver port open and thought to myself hmmm... you know maybe it is the live thing and noticed it was already mentioned earlier but then it really did occur to me.... Just my own opinion but I think its going to take the modchip guys a long time to get around all this hardware security so the only way were gonna get into this thing is via network and for the most obvious reasons MS SUCKS AT NETWORK SECURITY! Lets face it even if they do hide these services on different ports thats going to be a hell of alot easier to exploit than hardware so whats next? We need to really focus on probing these ports for as much info as we can and really try to take the path of exploiting with MCE exploits. That makes the most sense to me... I know someone else had already mentioned that earlier but I am going to attempt the next couple of days to buffer overflow this thing... If I can do it the only thing Ill need help with is working on a file to upload to create a true FTP server. Now heres one other question for ya.. If someone is able to overflow and start a ftp server... what port? If this machine is almost randomly snagging ports than how do you even know if you reach that point what port to connect with?
Sorry for the long post Im just dumping my brain out to see if someone might take this somewhere.
wouldnt it be funny if the 360 Os is a linux based
correct me if i am wrong
exploiting the MCE on the network, isnt the media extender only a streaming vidoe, pictures, etc... not for executable info, even on a core level... using this as an exploit doesnt seam feasable as the internal os has security in place not alowing it to run executable code, maybe somehow attacking the image viewer app and passing it a fake .jpg which contains the code for an exploit it seams this is an open door for MS wants you to attack...
sorry flame blast me do as you will im probaabily just wasting your time