Dr.Gonzo 396 Posted April 2, 2017 Tuxuser released a new version of his (PC) python based nand extractor. It scans the Filesystem header from your dumped Xbox One Nand Flash Image and extract the files on your PC. Following the release Log: Quote Xbox One NAND Filesystem tool Parses Xbox One Nanddumps for filesystem header and extracts the binary files. It's probably not very compatible and contains bugs for sure Enjoy! Requirements Python 3.* Xbox One eMMC NAND Dump Python libs: construct Usage nandone.py [-h] [--extract] filename Flags: -h Help --extract Extract found files Example: nandone.py --extract nanddump.bin Changelog v0.03 Major rewrite Scan for filesystem header at ?all? 3 offsets Extract files by name v0.02 ExtractSFBXdata: Extracting the bootblock @ addr 0x0 mmap: Fixing memory issues on 32bit systems by reading in chunks DumpSFBX: SFBX size is now read dynamically, not fixed anymore 'sfbxscan' is obsolete, that's done automatically now, if needed XVD header gets detected and printed in info output Filetype-magic is appended to extracted filenames Some cleanup Support for parsing and extracting SFBX entries Possibility to scan for SFBX block Additional error checking v0.01 Initial release Source: Github.com NANDOne-v003.zip 4 Quote Share this post Link to post Share on other sites
gavin_darkglider 1563 Posted April 3, 2017 This is exciting news for potential xbox one hacks. Quote Share this post Link to post Share on other sites
StaticPulse 264 Posted April 3, 2017 Very nice indeed! Quote Share this post Link to post Share on other sites
salah.rgh2 162 Posted April 3, 2017 great news Quote Share this post Link to post Share on other sites
gavin_darkglider 1563 Posted April 3, 2017 Now we just have to find a way to use the Edge Exploit to dump the encryption key for the nand, so the real fun can begin. 1 Quote Share this post Link to post Share on other sites
Dr.Gonzo 396 Posted April 4, 2017 Yeah,it is important to bear in mind that all Nand Files are encrypted. Probably we have some options. First we attack directly the Platform Security Processor (the PSP is inside the Xbox One CPU and monitored all encryption and decryption operations of the KeyVault and the PSP stored different Keys) to get important keys for decryption, or we can Hack the Host OS (if we can escape from VM), to get directly access to the PSP via Software like Xell. If we have the decryption Keys, we can decrypt all dumped Nand Files from each Xbox One and can do nasty things. 2 Quote Share this post Link to post Share on other sites
nik138 0 Posted June 17, 2021 I have a question i do APU swaps to fix xbox ones with dead apus do u need to dump the whole nand or only a part of it ? so that works on the new motherboard . Quote Share this post Link to post Share on other sites
Dr.Gonzo 396 Posted June 17, 2021 If the south bridge is not paired it should be possible. You need a complete raw dump of your nand. 1 Quote Share this post Link to post Share on other sites