Applications
FATXplorer is an Xbox storage device explorer. With it, it is possible to mount any type of Xbox storage natively in Windows through a file system driver. Also featured are formatting tools, recovery tools, and much more. In active development since 2009 and still selling copies worldwide.
Callback Technologies Case Study
DevTool
Once-private Xbox 360 development PC companion. Publicly released July 2015.
XePatch
An Xbox 360 patch viewer and editor.
Banjo-Kazooie Nuts and Bolts Mod Tool
The first free application I ever created and released publicly. It was an Xbox 360 save editor gamers could use to give their in-game character an edge.
Web
Grape Intentions
Currently handling day-to-day maintenance, development, security, and general operations for the Grape Intentions website and backend systems.
Finish Line Rowing Used Boat Marketplace
Used boat marketplace for Finish Line Rowing in the form of a WordPress plugin.
Security
Honda eCommerce Hack
Through a password reset exploit I gained entry into Honda's power equipment / marine / lawn & garden dealer eCommerce platform and managed to take over the entire platform and access all data.
News coverage:
Toyota C360 Hack
I broke into Toyota's C360 CRM, a web app used by Toyota to manage Mexican customers.
News coverage:
- Automotive News (Front page screenshot - March 8, 2023)
- Also featured in: Auto industry risks security breaches by underpaying white hat hackers
- Jalopnik
Toyota GSPIMS Hack
I hacked Toyota's Global Supplier Preparation Information Management System ("GSPIMS"), a web app used by Toyota employees and their suppliers to coordinate projects, parts, surveys, purchases, and other tasks related to the global Toyota supply chain. This is one of the most severe vulnerabilities I have ever found (so far!)
News coverage:
- Automotive News (Front page screenshot - February 8, 2023)
- Also featured in: Auto industry risks security breaches by underpaying white hat hackers
- Autoblog
- PortSwigger
- Bleeping Computer
Jacuzzi SmartTub Hack
Two vulnerable Jacuzzi SmartTub administration panels exposed worldwide customer data for multiple brands. The admin panels provided unprecedented control over the SmartTub network. Disclosure to Jacuzzi was difficult and mostly a one-way conversation.
Discussion links: X | Reddit (gadgets, netsec)
News coverage:
- New York Post
- Gizmodo (best headline award🏆)
- Motherboard - VICE
- TechCrunch (Front page screenshot - June 22, 2022)
- PortSwigger
Microsoft Xbox Game Developer Forums Exposure
In May 2015 Microsoft accidentally exposed several years worth of private Xbox game developer forum content. The incident was responsibly disclosed to Microsoft/Xbox and remedied 24 hours later.
Mercedes-Benz XENTRY TIPS Mobile User Impersonation
XENTRY TIPS is a database of topics that Mercedes-Benz maintains to help their dealers troubleshoot and fix issues with Mercedes-Benz vehicles. A mobile website built using Angular exists that allows dealer personnel easier access through their mobile devices. The content is locked behind a paid subscription linked to your account, but it was discovered that user impersonation was possible by modifying the user ID value that was sent via query param to their API. If you substituted your user ID with a user ID that had an active subscription (easy to find at the bottom of various TIPS documents posted on the NHTSA website), it was possible to access topics and other resources. The incident was responsibly disclosed to Mercedes-Benz and fixed a few weeks later.
MBUSA Dealer Help Center website data exfiltration
Downloading confidential information from Mercedes-Benz USA's Dealer Help Center website was possible due to missing authentication on downloads. The incident was responsibly disclosed to Mercedes-Benz and fixed after a lengthy back-and-forth.
Thank-you letter from Mercedes-Benz CISO, Michael Schrank
Cloudflare Access Bypass
It was possible to bypass Cloudflare Access authentication by appending a query parameter to protected URLs. Details were shared with a Cloudflare employee over email, and a Cloudflare t-shirt was awarded.
Reverse engineering and removing Pokémon GO's certificate pinning
An analysis of Pokémon GO on Android's certificate pinning, and removing it to allow HTTPS request inspection. Made the front page of Hacker News.
Hacks & Mods
Extra Large Xbox 360 Internal HDD Storage
Through one last comprehensive kernel patch and custom formatting tool, it is now possible to use up to 16 TB of space on an internal Xbox 360 HDD or SSD.
A technical deep-dive will be published in the future. Subscribe so you don't miss it!
Extra Large Xbox 360 USB Storage
Through another comprehensive kernel patch and custom formatting tool, it is now possible to use up to 16 TB of space on a single USB storage device connected to an Xbox 360. This project also improves the overall performance of the Xbox 360 USB driver.
A technical deep-dive will be published in the future. Subscribe so you don't miss it!
Large Xbox 360 USB Storage
Back when Microsoft added USB storage support to Xbox 360 consoles, it was only possible to use up to 32 GB of space. Through a comprehensive kernel patch and a custom formatting tool, the 32 GB limit was broken and extended to 2 TB.
A technical deep-dive will be published in the future. Subscribe so you don't miss it!
Floodout
Halo 2 mod for the Lockout map. The map has been "floodified" with grimy textures, modified weapons with new projectiles & effects, a retextured player biped, and scary ambient background sounds. Winner of a Halomods.com mod-of-the-month competition.🏆