Halo 3 Retail Game Research

[kornman00]

Army, Tanasoo

Why don't you guys just null out the part that reads the hash in the xex?

Making my shotgun shoot beam projectiles and making the world gravity half that of earth tickled my fancy. Too bad(?) my camcorder can't pick up the output from my TV, could have tickled your fancy as well. Oh well, time to get rid of those *** kill volumes.

quote = hint mb?

Was a hint, but I didn't null out the parts that read the hashes\signatures

[xzodia]

so the hash is in the xex..which means someone could write an app to test ever possible hashkey in the xex to find it?

[kornman00]

There are multiple cock-blocks. One is SHA1, then there is a RSA signature. Have fun with that last one ;p

[Juniorman030790]

Ok, so I gave up on being 1337 like some of you guys a loong time ago but I was just wondering if, anytime in the future, will any of you 1337 guys like anthony or korn be working on fixing the whole system link issue so that us loser guys who admire your work can play on kai or xbc? I understand your stance against cheating on live. I was just mainly curious if you guys are or will be working on a method to prevent cheating on Live but still allow mods on system link over Kai or Xbc

[Tural]

Right now the information is likely being withheld because we don't know the extent of the banhammer. The resigning information and whatnot will be released at some point, and some jackass will try to use it to cheat, but if we know those people will get lolb&, it's more likely that said information will be readily available here. Even without tunneled system link, the information would be useful for local/LAN games. We can't prevent cheating, especially in a scenario like this, where the information is needed for all games (Local, etc) (Whereas with Halo 2 and such, it could be used on the hard drive, and wouldn't work on Live), we have to let Bungie deal with the people who misuse what is presented.

[latinomodder]

I would ban one of my xboxs to test the banhammer if thats whats needed to get this released, then I offer my service....

[Tanasoo]

I agree with Tural, and that is exactly why everyone here should be focusing on finding the model and bitmap raws for the time being *bricked*

[-DeToX-]

Speaking of raw...

Prey and I believe we found raw. Raw, Meta and Reflexives are all grouped together in pools in the virt segment. We basically know how to find internal raw, but external we are still looking into.

We also think you translate pointers with the map magic, seeing as all this crap is in 'pools' now.

Further research is being done.

[fritz_da_monkey]

Any chance we will be seeing an updated app with internal raw extraction sometime soon?

[-DeToX-]

Any chance we will be seeing an updated app with internal raw extraction sometime soon?

Probably. And external too.

[fritz_da_monkey]

Nice! I'll have to start getting excited about it right away.

[Tanasoo]

Any chance we will be seeing an updated app with internal raw extraction sometime soon?

Probably. And external too.

[M]

ey ... old
How you have done this.
I thought one can do the Maps still nich resignen.
I estimate is gefaket ^^
Crass work, vllt. nochn Vid with it whole Reliably for the Yanks looks

I think he's asking for a vid for absolute proof.. but we already know you can only have 2 elephants on Sandtrap, and korns spawned 6-8, so..

As for you not sharing your info.. V_V. Back to work then I guess...

xD

First, I thought the "Mod" were just Low Gravity (settings ???) but this Shotgun Projectile...
This AR Projectile Swap is amazing...
Good Work.

[KMXsK8eO]

Well, I assure you it won't be done on live lol. Pretty simple to identify that it won't. And I'm sure everyone here is glad that it won't :]. Anyways I'm always here if you guys need someone to test, i have 4 xbox's and i don't care to get banned. And i can get try to dump the cpu key, even though it looks like you guys already modded it :].

[Tural]

Complete misinterpretation of my comments.
We will ban anyone who mods on Live from this site, even if they are purposefully testing the banhammer. Never, did I ever, anywhere, at any time, state that we would support purposeful banning to see what the banhammer does. No.

[KMXsK8eO]

I like how you think Tural

[kibito87]

I like how you think Tural

Even though, he was intentionally saying what he stated because of yours and latino's posts... He was saying halomods does NOT want you to test the extent of the banhammer by getting your xbox purposefully banned.

[shade45]

Kornman I'm gonna take some wild guesses about how you found the resigning info(nothing technical).

First off I don't think you actually edited the .xex because even with the latest
kk exploit and the rebooter that was recently released you need to have a older kernal to run any unsigned code(may be wrong).

Second if one of the hashes is RSA that means there is a key sum where to be found. probably found it in the xex, and to do that you need to use the XEX1 and XEX2 keys to decrypt it before you can even start to explore it.

Am I right so far?

Anyways nice job figuring it out. Hopefully the rest of us will be able to use it soon

[kornman00]

I'll just take the short answer and say

[latinomodder]

Kornman I'm gonna take some wild guesses about how you found the resigning info(nothing technical).

First off I don't think you actually edited the .xex because even with the latest
kk exploit and the rebooter that was recently released you need to have a older kernal to run any unsigned code(may be wrong).

Second if one of the hashes is RSA that means there is a key sum where to be found. probably found it in the xex, and to do that you need to use the XEX1 and XEX2 keys to decrypt it before you can even start to explore it.

Am I right so far?

Anyways nice job figuring it out. Hopefully the rest of us will be able to use it soon

I have to say no..... The kk exploit still cant run unsigned xex's, the only person who has done research on this arzenami which I think hasn't gotten the robooter to run another kernel...
I pretty sure what he did was decompile the xex and find the keys