Author Topic: NandPro 3.0a JTAG starting checklist (All Windows)  (Read 36884 times)

Tutoromix

  • Moderator
  • Sr. Member
  • *****
  • Posts: 254
NandPro 3.0a JTAG starting checklist (All Windows)
« on: May 06, 2010, 01:16:16 PM »
Full GliGli's RGH tutorial - www.tiaowiki.com/w/TIAO_Xilinx_XC2C64A_CoolRunner-II_CPLD_Dev_Board_%28Reset_Glitch%29_Tutorial

...Program RGH via USB TUMPA tutorial - www.tiaowiki.com/w/How_to_program_Xilinx_CPLDs_using_TIAO_USB_Multi-Protocol_Adapter_%28TUMPA%29_on_Windows_or_Linux

...Program RGH via Parallel Universal JTAG tutorial - www.tiaowiki.com/w/Program_Xilinx_XC2C64A_Or_Similar_Xilinx_CPLD_Using_TIAO_Universal_JTAG_Cable or www.tiaowiki.com/forums/index.php/topic,4042.msg5190.html#msg5190

Tiros' SMC tutorial - Read Steps 1-9 (Skip Step 10 if you going to use JTAG Tool instead of NandPro)


Tools required:
1. RGH Hardware: Diygadget CoolRunner Reset Glitch v2
2. RGH USB port Programmer: www.diygadget.com/tiao-usb-multi-protocol-adapter-jtag-spi-i2c-serial.html
2. RGH Parallel port Programmer: www.diygadget.com/jtag-cables/universal-jtag-adapter-for-routers-modem-fta-and-more.html
3. JTAG Hardware: USB SPI JTAG kit bundle with Solderless NAND flasher
4. Reset Glitch Hack software: xc3sprog (USB RGH) or 360gcProg (Parallel RGH). NandPro requires www.libxenon.org/index.php?topic=155.msg1176#msg1176 first.
4. All-in-One SMC/RGH software: Nandpro 3.0a with JTAG Tool (J-Runner or 360 Hackbox Lite)
5. Other software: 360 Multi Builder or XNand Healer GUI or iHc NandTool
6. USB SPI NAND flasher driver from www.multiupload.com/16RXL0H82K (Recommended) or www.x360glitchip.com/media/x360_SpiFlasher_Pack.zip
7. Useful documentations/FAQ: www.x360glitchip.com/documentations | www.libxenon.org/index.php?topic=219.0


Download these files quickly before they disappear. NandPro was meant to be used with 32-bit Windows XP. However it can still work for 64-bit Windows XP and Windows Vista/7. This tutorial is for both the LPT and USB versions of Diygadget's/EasyMG's JTAG device. It is assumed that you are first starting to flash a "not-as-yet" hacked 360. Also make sure you have a Dashboard version of 2.0.7371.0 The SMC hack cannot work for dashboard versions above 7371 (exception goes to RGH) at all, regardless. Go to "My Xbox", "System Settings", "Console Settings" and choose "System Info". The dashboard should show something like "2.0.7371.0". New: Just use https://sites.google.com/site/jtaggable/downloads or www.rigid360.co.uk/Downloads.php to know if the SMC/RGH Exploit is possible on your current console - you will have to buy a refurbished/used Xbox 360 that is exploitable if not.

Get the new Microchip USB driver and program here! - www.tiaowiki.com/forums/index.php/topic,113.msg773.html/#msg773 Update: It seems the old one has the same CRC as the new one. You can still download from here - www.tiaowiki.com/download/file.php?id=29 Remember to also download PicFlash.hex - www.tiaowiki.com/download/file.php?id=28

Also, to find out what Xbox motherboard revision you have. Check out - www.360drives.com/formhelp#board or www.tiaowiki.com/w/How_to_JTAG_XBOX_360#How_do_I_know_my_XBOX_360_is_hackable.3F Our main goal in this entire tutorial is to read the NAND and write any one of the following images stated below. Make sure the 360 is plugged into the wall outlet/surge protector, but do not turn it on. Failure to do so will cause "Could not detect a flash controller". This tutorial assumes you have first started JTagging a "not-as-yet" hacked 360, simply because diodes/resistors aren't to be used before reading the nand, only after writing the nand/XeLL. This is especially true for USB-SPI devices. The SMC-JTAG part of the hack is when we can use diodes/resistors. After doing all this, the final step is writing to fB/XBR.

The images that you can flash to your 360 after 1. Reading and backing up your NAND->2. Writing the XeLL image are either freeBoot / XBReboot / XeLLous. With any XeLL, you can run homebrew games on 360, SMC/Reset Glitch Hack, run unsigned code, emulators, modify dashboard, backup CPU key, and run Linux. With XBR, you can do the same with XeLL, but with more features. With freeBoot, you can host modded lobbies similarly to XBR but with more stability. Download NandPro for Xell/XBReboot. For Xell/freeBoot, you can download JTAG Tool. If you choose to use NandPro, then always grab the latest versions of these images directly from Xbins or elsewhere to avoid having to buy another nand called Cygnos 360 v2. XeLL is required to be written to your nand first, so that you can test your SMC-JTAG connections or get your CPU key. And for these hacked images to even boot and function, you have to do another step. It's called 3. Soldering the SMC-Jtag connections

The same order like above: 1. Backup your original nand -> 2. Writing your Nand to Xell -> 3. Using diodes for the SMC-Jtag hack -> 4. Writing to fB/XBR


Instructions:
1. Extract NandPro program files (download both) - www.xbins.org/index.php?action=search&searchtxt=NandPro+v3.0a | http://dwl.xbox-scene.com/xbox360pc/nandtools/NandProGui_v0.1.zip

2. Copy all the contents from Nandpro30a.rar and put them into the NandProGui_v0.1.zip BIN folder/directory. Replace them if asked.

3. Download this www.multiupload.com/16RXL0H82K

4. Copy all the contents of that zipped driver and put them into NandProGui's BIN folder/directory again. Delete the old custom.inf file (only delete this 1 file). You should have nandPro_xflasher.inf instead. In your BIN folder should be now 22 files in total. (2pdf/2cat/2exe/2sys/3dll/1inf/2txt/1hex/1jpg/2jed/1ucf/1vhd/2xsvf)

5. Launch port95nt.exe If you can't get it to work under 64-bit Windows 7/Vista, do this - www.free60.org/NandPro

6. After installation is completed, restart. This is not really a necessary driver to install since it is for LPT only. This driver also prevents error messages from popping up in NandPro. Plus, now that we got all the necessary files sitting in our NandPro BIN folder, as well as the DLPortIO.dll (DriverLinxPortIO) file - NandPro should be stable without any bugs. Remember to launch NandPro from the BIN folder, don't use the GUI executable.

The NandPro 3.0a software/driver part is now completed! If you have an LPT JTag, please continue here. Steps 7-10 is for USB-SPI only.


7. USB-SPI users, follow the Tiaowiki tutorial starting from here - www.tiaowiki.com/w/How_to_JTAG_XBOX_360_Using_TIAO_USB_SPI_Interface#Prepare_TIAO_360_USB_SPI_Interface It will ask you to install the Microchip USB driver, and flash the PicFlash.hex using the Microchip program. Included with Nandpro 3.0a is an ArmV3.hex file. You might want to try that instead of the old PicFlash.hex if it is compatible with your USB Nandflasher.

8. Later on during the Tiaowiki tutorial, instead of pointing to the NandPro20d directory as stated, point it to our own NandProGui's BIN directory. This is the ONLY change you need to make in that tutorial. Memory Access should now be installed in Device Manager under "LibUSB-Win32 Devices".

9. Once you reach www.tiaowiki.com/w/How_to_JTAG_XBOX_360_Using_TIAO_USB_SPI_Interface#Prepare_XBOX_360_for_Flashing - do www.tiaowiki.com/w/How_to_JTAG_XBOX_360#Preparation AND then do www.tiaowiki.com/w/How_to_JTAG_XBOX_360#Solder_the_JTAG_Wires OR www.tiaowiki.com/w/XBOX_360_JTAG_SPI_NAND_Flasher_Solderless_Addon_Tutorial Now finally, do www.tiaowiki.com/w/How_to_JTAG_XBOX_360_Using_TIAO_USB_SPI_Interface#Connect_the_USB_SPI_Interface_to_XBOX_360 Remember CHECK your connections both on your Xbox 360 and on the USB SPI board.

10. Now that Memory Access has been installed in Device Manager, you can now launch NandPro 3.0a without issues to read the NAND. You can use the colorful-looking NandProGUI exe icon if you want, but it is recommended to launch NandPro from the BIN folder. The Windows GUI version simply points to the BIN folder and executes a list of commands that you inputted for the NandPro DOS version. The PDF tutorial uses the DOS version so use that. The command for USB to read the NAND is nandpro usb: -r16 savenandas.bin and to write the XeLL is nandpro usb: -w16 downloadfromxbins.bin (depending on your Xbox revision, download the tutorial below for more details). Make sure you place your images into the BIN folder. I guess to make things easier, use the GUI version.  :)

PDF Tutorial for the above XBReboot JTAG steps using NandPro - www.tiaowiki.com/download/file.php?id=27 Read only from Page 7 (Reading out the NAND) to Page 13 (Flashing the XeLL-Image). All Diygadget JTag devices that you buy have done the USB-SPI/LPT Programmer switching diode steps already. Make sure to set Adobe Reader to display "one page at a time" using the icons at the top, so as to make reading easier.

PDF Tutorial for installing freeBoot using JTAG Tool (if you skipped Step 10) - http://forums.xbox-scene.com/index.php?s=&showtopic=712871&view=findpost&p=4685910 or www.tech-modz.net/showthread.php?t=850

PDF Tutorial for the new Reset Glitch Hack - Fat|Slim or here


NOTE: If you are going to use JTAG Tool instead of NandPro for jtagging, then most of these downloads below will be useless (none or only a few are needed for the Reset Glitch Hack). Be sure to first follow Steps 1-9 to make the necessary Xbox 360 soldering/solderless connections, and then install the required USB-SPI drivers (Memory Access/PicFlash.hex) before launching JTAG Tool. You may still need to download the latest Xell/Freeboot images from Xbins if the JTAG Tool nand software utility doesn't include them...

Important downloads: More tools available here or here or here or here or here
IMAGES: XeLL - /XBOX 360/development/free60/images/ (Download Xbins, wait 10secs, and grab the correct XeLL image).
IMAGES: freeBoot & XBReboot - /XBOX 360/development/ (Download Xbins, wait 10secs, and grab the correct fB or XBR image).
Auto Xbins - www.team-xecuter.com/downloads
Microchip USB package - www.tiaowiki.com/download/file.php?id=29
PicFlash.hex - www.tiaowiki.com/download/file.php?id=28
JTAG Tool - www.tech-modz.net/JtagTool/JtagToolSetup.exe | www.tech-modz.net/showthread.php?t=331 | www.team-xecuter.com/forums/showthread.php?t=54178 (An alternative to NandPro if you only want to write freeBoot to your NAND and host modded lobbies. Instructions are here)
XNand Healer GUI - www.rigid360.co.uk/Downloads.php (Compare Nand dumps, remap bad blocks, uncripple Hard Drive)
FreeStyleDash (FSD) - www.teamfsd.com/forums/viewtopic.php?f=2&t=768
DashLaunch & FTPDLL Plugin - See links in "here".
FSD 2.2 Installer - www.teamfsd.com/forums/viewtopic.php?f=2&t=810 (Install both FSD/Dashlaunch easily)
FindSecData v0.62 - www.sendspace.com/file/te3wmq (Used along with XNand Healer GUI)
Redline99's Bad Block Mover - www.megaupload.com/?d=VWHFRL21 | www.xbox-scene.com/xbox1data/sep/EkVAAyppVutMPFJYPr.php (Remap bad blocks from your Nand dump, and make them error-free in Infectus Nand Checker, etc. Be sure that you dumped a few times already.)
Flash360 - /XBOX360/dashboards/Flash360 - Update XBR or freeBoot via USB while in dashboard.
NAND Flasher 360 - Better than Flash360 (Download available on Xbins)
NandPro 3.0a new version (CLI) - www.libxenon.org/index.php?topic=210.0
NandPro 2.0e old version (CLI) - www.sendspace.com/file/950usp | www.mediafire.com/?cjjjrnhmzwc
NandPro (GUI) - www.xbox-scene.com/xbox1data/sep/EkyAkAlplpFcMeujHV.php
Infectus NAND Checker - www.megaupload.com/?d=NMYF6P26
360 Flash Dump Tool - www.xbox-scene.com/xbox360-tools/360FlashDumpTool.php (To dump your Nand flash and check for an exploitable CB/CD/CE)
Degraded v1.1b - www.2shared.com/file/9374140/6008ec2e/Degraded_v11b.html (CB/CD/CE info. Might not work for different Nand sizes, so use 360FDT)
CD Info - www.hb-released.com/download/xbox360/Xenonhack/CD%20Info.rar (Use 360FDT instead) New link: www.megaupload.com/?d=ZT2U2EAA
MD5 Comparison Tool (any hex editor/CRC checksum hash checker can do this too) - www.rapidshare.com/files/340047921/NandCompare-v1.4.rar


The LAST thing to do after reading the Nand and flashing the XeLL image is to www.tiaowiki.com/w/How_to_JTAG_XBOX_360#Soldering_the_SMC-JTAG_connection

Xenon SMC-JTAG soldering - www.imgur.com/Fdjmi.png | www.tiaowiki.com/w/How_to_JTAG_XBOX_360#Soldering_the_SMC-JTAG_connection
Falcon/Jasper/Opus/Zephyr SMC-JTAG soldering - http://pictures.xbox-scene.com/xbox360/free60/diagram.jpg
Reset Glitch - www.diygadget.com/xilinx-xc2c64a-coolrunner-ii-cpld-dev-board-reset-glitch.html
(From www.free60.org/SMC_Hack | www.free60.org/Reset_Glitch_Hack)

After doing this, you can now flash to freeBoot, XBReboot, or XeLLous!

Once you are through - www.tiaowiki.com/w/How_to_JTAG_XBOX_360#Reassemble_XBOX_360_Case
« Last Edit: November 13, 2012, 10:26:47 PM by Tutoromix »

Will

  • Global Moderator
  • Newbie
  • *****
  • Posts: 43
Re: NandPro 2.0e JTAG starting checklist (All Windows)
« Reply #1 on: May 10, 2010, 06:40:04 AM »
Other things to check:

1: Do you see the jumper on the board?  when you install the windows deiver, do you have the jumper in the correct location?  after you installed it, did you remove the jumper or moved it down?

2: Do you see Memory Access in your device manager?

3: when you plug the nand flasher, do you hear any sound coming from your PC meaning the USB is detected and no errors?

4: As for the wires, if you solder the wires directly to the board, check if you have short cuts (as the pads are so close to each other).

5: did you plug the power brick to you xbox 360 but didn't not turn on the xbox 360?  you need to plug the power brick but keep the xbox 360 stay in off.

6: do you have diodes soldered?  if you do, remove these diodes, they need to be installed AFTER you have flashed your nand. 

Also check this video tutorial:

http://www.youtube.com/watch?v=4Zq91aW8MYM&feature=related

Thanks

ImRickJamesBitch

  • Newbie
  • *
  • Posts: 17
Re: NandPro 2.0e JTAG starting checklist (All Windows)
« Reply #2 on: July 07, 2010, 02:25:46 PM »
Thanks this helps alot :)
« Last Edit: July 07, 2010, 02:32:27 PM by ImRickJamesBitch »

effbee

  • Newbie
  • *
  • Posts: 1
Re: NandPro 3.0a JTAG starting checklist (All Windows)
« Reply #3 on: October 24, 2011, 04:33:10 PM »
Can the Xbox 360 USB SPI JTAG be used to flash a Reset Glitch chip? Or does the TIAO CoolRunner II have a built in USB port?

Mike

  • Administrator
  • Sr. Member
  • *****
  • Posts: 287
Re: NandPro 3.0a JTAG starting checklist (All Windows)
« Reply #4 on: November 01, 2011, 08:05:34 AM »
Can the Xbox 360 USB SPI JTAG be used to flash a Reset Glitch chip? Or does the TIAO CoolRunner II have a built in USB port?

No.  You have to use a xilinx compatible programmer, such as:

http://www.tiaowiki.com/w/Program_Xilinx_XC2C64A_Or_Similar_Xilinx_CPLD_Using_TIAO_Universal_JTAG_Cable

thanks

UgoCat

  • Newbie
  • *
  • Posts: 2
Re: NandPro 3.0a JTAG starting checklist (All Windows)
« Reply #5 on: December 23, 2011, 02:18:56 PM »
Is it possible to read/write X360 NAND using TUMPA?
Thanks!