The iPhone Wiki is no longer updated. Visit this article on The Apple Wiki for current information. |
Difference between revisions of "The iPhone Wiki talk:Community portal"
m (I always forget signing :D) |
(→Help? Please?) |
||
Line 30: | Line 30: | ||
:::::: I have not, I will try. I tried using ac1dsn0w's ramdisk, It just kept a spinner at the bottom of my iPod. --[[User:Dylan Laws|Dylan Laws]] 16:49, 28 January 2012 (MST) |
:::::: I have not, I will try. I tried using ac1dsn0w's ramdisk, It just kept a spinner at the bottom of my iPod. --[[User:Dylan Laws|Dylan Laws]] 16:49, 28 January 2012 (MST) |
||
To jailbreak it would be, DFU->PWNED iBSS&iBEC->Ramdisk->PWNED Kernel then bootx right? --[[User:Dylan Laws|Dylan Laws]] 19:41, 28 January 2012 (MST) |
To jailbreak it would be, DFU->PWNED iBSS&iBEC->Ramdisk->PWNED Kernel then bootx right? --[[User:Dylan Laws|Dylan Laws]] 19:41, 28 January 2012 (MST) |
||
− | ::::::: I am gonna help a bit: The ramdisk of redsn0w is made at runtime from a tar.gz-Archive, you can extract it from the MacOS folder of the Mac version of redsn0w, now about the boot: DFU -> Limera1n Exploit -> Pwned iBSS -> Pwned iBEC -> Ramdisk -> Pwned Kernelcache and at the end give the "bootx" Command. Also you can upload an AppleLogo you have to do this BEFORE Ramdisk, so after iBEC, upload the AppleLogo, "setpicture 0" (or was it "1" ??) "bgcolor |
+ | ::::::: I am gonna help a bit: The ramdisk of redsn0w is made at runtime from a tar.gz-Archive, you can extract it from the MacOS folder of the Mac version of redsn0w, now about the boot: DFU -> Limera1n Exploit -> Pwned iBSS -> Pwned iBEC -> Ramdisk -> Pwned Kernelcache and at the end give the "bootx" Command. Also you can upload an AppleLogo you have to do this BEFORE Ramdisk, so after iBEC, upload the AppleLogo, "setpicture 0" (or was it "1" ??) "bgcolor r g b" (bgcolor MUST be set for the Logo to show up!), but for debugging I prefer Verbose mode, you can do this by patching your iBEC, search in a Hexeditor for a bootarg always used (I think "md=rd0" is the one I am talking about) then patch out a part of the bootargs (e.g. the nand-reformat boot arg) and replace it with "-v" then your device will boot in Verbose mode, so you can see the system output. And a question Dylan, why do you want to create a Jailbreak? You see I am not writing one, but know everything you still need to learn. Maybe it would be better for you to search for vulnerabilities? I am not the best at exploiting, but there might be some overflow in the JavaScriptCore of WebKit, why don't you look at it? If that why I saw is really an overflow (I don't think it is, it was just some playing around) then it's like overflowing the JS Page (a 4k one I think) and then overwrite some other things. (But I don't really know, I was just playing around with JS) --[[User:Rud0lf77|rud0lf77]] 06:42, 29 January 2012 (MST) |
Revision as of 13:59, 29 January 2012
I would rather distinguish between wiki specific purposes and iphone specific purposes. The community section I would leave to the wiki and create a new section for the iPhone. It's also okay vice versa. But I would not mix it up. -caique2001-
i got you, currently it is mixed up tho. ~geohot
done
done.
geohot, i am not sure what he has in mind, but i just wanted to let you know my friend wEsTbAeR wanted to talk to you about something in #3GUnlock at irc.osx86.hu
redirect
Oh my god, you did it :-) -caique2001-
Suggestion on order
One suggestion that I have George is to come up with some kind of order to help people learn about how to hack the phone. For example, I know very little about how to hack the iphone. I really am interested in learning the techniques and processes on how to do it. Maybe come up with an outline of what you should learn in what order. You know what I am saying? By the way, great idea with this wiki --The preceding unsigned comment was added by Mike777 (talk) 03:55, 14 August 2008 (UTC). Please consult this page for more info on how to sign pages, and how to fix this.
integrating info from i0nic
Stefan Esser's slides from his blackhat presentation have been published. there's lots of info in them that ought to be integrated in this wiki, but i'm currently slammed getting ready for Burning Man. anybody have the cycles? https://media.blackhat.com/bh-us-11/Esser/BH_US_11_Esser_Exploiting_The_iOS_Kernel_Slides.pdf beej 11:13, 25 August 2011 (MDT)
Help? Please?
Hi guys, As you may know I'm trying my best to make a jailbreak called "silversn0w." I don't have a Mac currently to compile the launchd for the ramdisk. So, I was wondering if anyone has a ramdisk that installs Cydia? It would be much appreciated if you could help me! If not then please don't discouraging me, I have enough problems. --Dylan Laws 19:33, 27 January 2012 (MST)
- I think it would be possible to run a virtualized OSX via VMWare (or the like), which would be legal if you buy the installation media from Apple (the OSX Lion install USB Stick) or a used Snow Leopard Disc from ebay. This could give you the tools to compile under OSX. --M2m 19:41, 27 January 2012 (MST)
- I've tried to built it but still have no luck. :/ --Dylan Laws 22:52, 27 January 2012 (MST)
- May you please stop asking for help for your Jailbreak?! Do it yourself, dude! And what is your problem with building the ramdisk on Linux?! Just edit the Makefile and get the headers you need! --rud0lf77 11:30, 28 January 2012 (MST)
- Fine but answer this, where would Redsn0w store its made ramdisk? --Dylan Laws 16:16, 28 January 2012 (MST)
- redsn0w's ramdisks are stored in the executable i believe. have you tried a resource extractor? --5urd 16:47, 28 January 2012 (MST)
- I have not, I will try. I tried using ac1dsn0w's ramdisk, It just kept a spinner at the bottom of my iPod. --Dylan Laws 16:49, 28 January 2012 (MST)
- redsn0w's ramdisks are stored in the executable i believe. have you tried a resource extractor? --5urd 16:47, 28 January 2012 (MST)
- Fine but answer this, where would Redsn0w store its made ramdisk? --Dylan Laws 16:16, 28 January 2012 (MST)
- May you please stop asking for help for your Jailbreak?! Do it yourself, dude! And what is your problem with building the ramdisk on Linux?! Just edit the Makefile and get the headers you need! --rud0lf77 11:30, 28 January 2012 (MST)
- I've tried to built it but still have no luck. :/ --Dylan Laws 22:52, 27 January 2012 (MST)
To jailbreak it would be, DFU->PWNED iBSS&iBEC->Ramdisk->PWNED Kernel then bootx right? --Dylan Laws 19:41, 28 January 2012 (MST)
- I am gonna help a bit: The ramdisk of redsn0w is made at runtime from a tar.gz-Archive, you can extract it from the MacOS folder of the Mac version of redsn0w, now about the boot: DFU -> Limera1n Exploit -> Pwned iBSS -> Pwned iBEC -> Ramdisk -> Pwned Kernelcache and at the end give the "bootx" Command. Also you can upload an AppleLogo you have to do this BEFORE Ramdisk, so after iBEC, upload the AppleLogo, "setpicture 0" (or was it "1" ??) "bgcolor r g b" (bgcolor MUST be set for the Logo to show up!), but for debugging I prefer Verbose mode, you can do this by patching your iBEC, search in a Hexeditor for a bootarg always used (I think "md=rd0" is the one I am talking about) then patch out a part of the bootargs (e.g. the nand-reformat boot arg) and replace it with "-v" then your device will boot in Verbose mode, so you can see the system output. And a question Dylan, why do you want to create a Jailbreak? You see I am not writing one, but know everything you still need to learn. Maybe it would be better for you to search for vulnerabilities? I am not the best at exploiting, but there might be some overflow in the JavaScriptCore of WebKit, why don't you look at it? If that why I saw is really an overflow (I don't think it is, it was just some playing around) then it's like overflowing the JS Page (a 4k one I think) and then overwrite some other things. (But I don't really know, I was just playing around with JS) --rud0lf77 06:42, 29 January 2012 (MST)