Homebrew-Connection.org

Please login or register.

Login with username, password and session length
Advanced search  

News:

Author Topic: The Reset Glitch Hack tutorial for Corona  (Read 4167 times)

Razkar

  • *
  • Karma: 14
  • Offline Offline
  • Posts: 166
    • View Profile
The Reset Glitch Hack tutorial for Corona
« on: 24 September 2012 à 00:49:13 »

Here is a complete tutorial to install RGH on the corona motherboard

I : Preamble

 A: Compatible Corona

- Your Corona motherboard can't have the mmc phison chip linked to the nand check this picutre for more information

- The Kernel of your mother must be 14719 or lower (it means CB < 13181 and dashboard must be 2.0.14719.0 or lower)

 B: Needed materials

You will need :
- Squirt 1.2 or any other coolrunner/glitch chip with oscillator
- A CPLD programmer : nand-x, squirt programmer, LPT cable...
- A NAND programmer: nand-x, squirt programmer, LPT cable...
- Soldering materials

II : Programming the CPLD (chip)

A : Squirt

You will need the 360 squirt programmer and urJTAG application. Place the files you want to flash your cpld with next to the executable.

Squirt team recommand to use rgh_corona_minusone_nr(suggested).svf , but if you don't have good result with it, you can try another one.

Then use the following commands in urJTAG:
Code: [Select]
cable ft2232
Code: [Select]
detect
Code: [Select]
svf yourfile.svf

B : Coolrunner

Use your nand-x and nandpro 3.0, place the xsvf file you want to flash next to nandpro 3.0 and use the following command :
Code: [Select]
nandpro xsvf: yourfile.xsvf


II : Making the hacked image

-Use this diagram to solder your NAND programmer



- Dump your console's nand twice using Jrunner or nandpro 2.X

For nandpro:
Code: [Select]
nandpro usb: r16: nand1.bin
Code: [Select]
nandpro usb: r16: nand2.bin and make sure they match
Code: [Select]
fc /b nand1.bin nand2.bin



- Use Xebuild Gui 2.083 to make the ECC image.





- now flash the ecc image with nandpro and the +w16 command (nandpro usb: +w16 image.ecc)
(i used squirter program, but Jrunner or nandpro 2.X is fine too)



III : Soldering the hardware

RGH corona Diagram
(open in new window)




IV : let's start glitching

A : Make the console boot

Connect your 360 to your TV, plug the power supply and the network cable, turn it on.



 XeLL doesn't boot with any video



So once you see the debug led stop blinking, it most likely means the console have finished booting
If you don't have boot at all, check your soldering, play with the CPU_RST length or you can try other svf/xsvf files.

B : Grab the key

Once the console has booted, go back on your computer and launch Xebuild GUI 2.083.
In Tools, use the scan for XeLL feature



in scan range put the iprange your console is most likely within (check router settings for more information) if you don't know select "0-255" (this will scan full network) and press Start scanning for Xell



After a few, you should see this =)



Now you can build your Freeboot image, be sure to select RGH 2.0



- Flash it with your favorite software with the -w16 command





Full credit goes to
- Tiros &amp; GliGli for their original RGH work
- cOz for his universal SMC patcher
- Squirt360 Team
- Xecuter Team
- Nice69 for the onboard Oscillator founding
« Last Edit: 24 September 2012 à 12:17:00 by Swizzy »
Logged
Pages: [1]   Go to Top