#development

(Not as fire as zefram)

Go build a clone of it in zefram

Can zefram even make apps idk

which private entitlement specifically, btw?

ah oke

cool cool

Yeah

Persona-mgmt

xpc services

Can’t remember rn

I happen to have zero clue but I know keybagd uses them in Sonoma

Tl;dr, useless on prior versions

why wount this work i copy pasted basically form a tutorial?

#import <UIKit/UIGestureRecognizerSubclass.h>

@interface SBRootFolderController : UIViewController 
@end

%hook SBRootFolderController
- (void)didMoveToWindow{
    %orig;
    
    UIView *bluerectangle = [[UIView alloc] initWithFrame:CGRectMake(20,20,200,200)];
    [bluerectangle setBackgroundColor:[UIColor blueColor]];
    [self.view addSubview:bluerectangle];
}
    
%end```

probly 5year old videos

where do i see logs?

does the device need to be conected to the mac?

ssh?

just use idevicesyslog on mac

fuck console.app

shitware

i dont have mac thats the thing

i use a VM

as long as usb pass through works

well no USB pasthru

else just read logs on your host OS

no prob

yes

can someone make a proper crashlogger for rootless pretty please

it doesnt appear

Just use idevicesyslog on your main os

windows suport?

or could i jus use Chinese spyware?

i alr have it so

ok il get idevicesyslog

?

show the full thing

nvm sys log is going

but like theres alot

like to much

hod do i like chnage that?

idevicesyslog.exe -m "filter-text-here"

(where filter-text-here is inside your NSLog text)

rich coming from you

@hasty ruin

@primal perch

gm

gm

gn

tro

How do I begin making tweaks?

So I can become a

check the latest pin

thank you

@vivid dew happy birthday big man

@vivid dew happy birthday big man

@vivid dew happy birthday big man

my code ...

#import "MedaiRemote.h"

@interface SBHomeScreenViewController : UIViewController
@end
@interface blueFrame : UIView
@end

%hook SBHomeScreenViewController

- (void)viewDidLoad {
    %orig;
   
 
    // Create a blue frame view
    UIView *blueFrame = [[UIView alloc] init];    
    blueFrame.frame = CGRectMake(0,0,200,200);
    blueFrame.backgroundColor = [UIColor blueColor];

    // Add the blue frame view as a subview
    [self.view addSubview:blueFrame];
    
    // Create gesture recognizers
    UITapGestureRecognizer *singleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleSingleTap:)];
    singleTapRecognizer.numberOfTapsRequired = 1;

    UITapGestureRecognizer *doubleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleDoubleTap:)];
    doubleTapRecognizer.numberOfTapsRequired = 2;

    UITapGestureRecognizer *tripleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleTripleTap:)];
    tripleTapRecognizer.numberOfTapsRequired = 3;
    
    [singleTapRecognizer requireGestureRecognizerToFail:doubleTapRecognizer];
    [doubleTapRecognizer requireGestureRecognizerToFail:tripleTapRecognizer];
    
    // Add gesture recognizers to your frame
    [self.blueFrame addGestureRecognizer:singleTapRecognizer];
    [self.blueFrame addGestureRecognizer:doubleTapRecognizer];
    [self.blueFrame addGestureRecognizer:tripleTapRecognizer];
}

- (void)handleSingleTap:(UITapGestureRecognizer *)recognizer {
MRMediaRemoteSendCommand(kMRTogglePlayPause, nil);
}
     
- (void)handleDoubleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRNextTrack, nil);
}

- (void)handleTripleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRPreviousTrack, nil);
}


%end```

the error

    [self.blueFrame addGestureRecognizer:singleTapRecognizer];
          ^
Tweak.x:37:11: error: property 'blueFrame' not found on object of type 'SBHomeScreenViewController *'
    [self.blueFrame addGestureRecognizer:doubleTapRecognizer];
          ^
Tweak.x:38:11: error: property 'blueFrame' not found on object of type 'SBHomeScreenViewController *'
    [self.blueFrame addGestureRecognizer:tripleTapRecognizer];
          ^
3 errors generated.```
how do i like tell the things that the blue frame exsist? do i need to make another %hook thing and hook blurFrame?

please just learn objc first before doing tweaks

oh ok

the fix would probably be this

chat gpt got me

#import <UIKit/UIKit.h>
#import "MedaiRemote.h"

@interface SBHomeScreenViewController : UIViewController
@end

%hook SBHomeScreenViewController

- (void)viewDidLoad {
    %orig;
   
 
    // Create a blue frame view
    UIView *blueFrame = [[UIView alloc] init];    
    blueFrame.frame = CGRectMake(0,0,200,200);
    blueFrame.backgroundColor = [UIColor blueColor];

    // Add the blue frame view as a subview
    [self.view addSubview:blueFrame];
    
    // Create gesture recognizers
    UITapGestureRecognizer *singleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleSingleTap:)];
    singleTapRecognizer.numberOfTapsRequired = 1;

    UITapGestureRecognizer *doubleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleDoubleTap:)];
    doubleTapRecognizer.numberOfTapsRequired = 2;

    UITapGestureRecognizer *tripleTapRecognizer = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleTripleTap:)];
    tripleTapRecognizer.numberOfTapsRequired = 3;
    
    [singleTapRecognizer requireGestureRecognizerToFail:doubleTapRecognizer];
    [doubleTapRecognizer requireGestureRecognizerToFail:tripleTapRecognizer];
    
    // Add gesture recognizers to your frame
    [blueFrame addGestureRecognizer:singleTapRecognizer];
    [blueFrame addGestureRecognizer:doubleTapRecognizer];
    [blueFrame addGestureRecognizer:tripleTapRecognizer];
}

%new
- (void)handleSingleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRTogglePlayPause, nil);
}
    
%new 
- (void)handleDoubleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRNextTrack, nil);
}

%new
- (void)handleTripleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRPreviousTrack, nil);
}


%end```

nvm it dont

oh

LEARN THE LANGUAGE 😭

i thoguht abotu that

but like where thats up to date and isnt like a nunch of mumbo jumbo i wount ever use

"up to date" means nothing in terms of Objective-C

objective-c was effectively last updated in 2006

well thoes videos examples dont work on IOS 15 ig

no I mean making apps and whatnot, not tweaks

but there is a difference?

yes

apps - you use stuff that Apple allows you to use (e.g. public frameworks [you could also use the private ones but yk]) and you dont have to worry about other tweaks interfering with your code causing conflicts

Wheres the learning objective c in 24 days article at

@acoustic imp look up learning objective c in 24 days

Cuz ur code hate to break the news makes no sense

Why can’t I flex my UIView/frame ?

Don’t mind the apps *

check SBBacklightController

you are flexing it

see the purple outline

Yea but I can’t open it and like change stuff like w other stuff

sure you can

you just need to navigate the flex menu

?then what look for blueFrame

its not there

look for uiview

ah

got it

with a purple or whatever color its outlined in dot next to it

your variable name will not show within flex

only the class of the view

if you want to rename it, create a subclass

rename what shows in flex

why are you deleting everything

why is there an apple event at 1am

good question

because only americans exist

cuz earth’s round 🥴

So true

go ahead

tell us the racist comment

@radiant idol

#import "MediaRemote.h"

@interface SBHomeScreenViewController : UIViewController

@end


%hook SBHomeScreenViewController

- (void)viewDidLoad {
    %orig;
   
 
    // Create a blue frame view
    UIView *blueFrame = [[UIView alloc] init];    
    blueFrame.frame = CGRectMake(0,0,200,200);
    blueFrame.backgroundColor = [UIColor blueColor];

    // Add the blue frame view a s a subview
    [self.view addSubview:blueFrame];


    UITapGestureRecognizer *singleTap = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleSingleTap)];
singleTap.numberOfTapsRequired = 1; 
[blueFrame addGestureRecognizer:singleTap];

UITapGestureRecognizer *doubleTap = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleDoubleTap)];
doubleTap.numberOfTapsRequired = 2; 
[blueFrame addGestureRecognizer:doubleTap];

UITapGestureRecognizer *trippleTap = [[UITapGestureRecognizer alloc] initWithTarget:self action:@selector(handleTripleTap)];
doubleTap.numberOfTapsRequired = 3; 
[blueFrame addGestureRecognizer:doubleTap];

[singleTap requireGestureRecognizerToFail:doubleTap];
[doubleTap requireGestureRecognizerToFail:trippleTap];

}

- (void)handleSingleTap:(UITapGestureRecognizer *)recognizer {
   
        MRMediaRemoteSendCommand(kMRTogglePlayPause, nil);
    
}
     
- (void)handleDoubleTap:(UITapGestureRecognizer *)recognizer {
            MRMediaRemoteSendCommand(kMRNextTrack, nil);
}

- (void)handleTripleTap:(UITapGestureRecognizer *)recognizer {

        MRMediaRemoteSendCommand(kMRTogglePlayPause, nil);
}


%end```

why is it throughin me into safemdoe when ever i do one of the gesutures

wait

ik

whats the import for the gestures thing

no

oh

you need %new before methods that you add yourself

so like

i need to define them beofee the hook

nvm

%hook Something

// This method was there originally, you are just overriding it
- (void)method1 {
    // ...
}

// This method is new, you are adding onto the existing class with this method
%new 
- (void)method2 {
    // ..
}

%end

wait so only for the seconda one?

or like this?

read the comments smh

yea so this

but it doesnt work

i think i need to import the gestures thing

they're in uikit smh

oh

and you need to add %new to EVERY method you add that was not there originally...

ah ok

so id be like this?

yes

when i make do it and install it it goes straight into safemode

but i can repsring thne its fine but then if i try a gesture it safemoded

well you kinda have to provide a crashlog

k leme get both

how do u read them?

send it and I'll try and explain

k

if only we had cr4shed

true

im so glad my tweaks support ios 14

so i can get useful logs

🙏

what was cr4shed like?

like no IOS mubo jumbo?

idk

or it would like make sense of it ?

Here others

it actually helped out a ton

why cant it be made for rootless?

is it "closed source"

like dev left?

the main issue is libmryipc iirc

its open source

just no one has completely remade it

Lightmann made some progress on it though

yea flow needs that and flow is fricked on rootless

the main issue is libnotifications, which has not been updated to rootless

so this part of the crashlog shows the stack trace

is that really the main issue?

yes

it's open source anyway

tf

lemme find the forks

what if we just

disable notifications

https://github.com/Muirey03/MRYIPC/pull/24 & https://github.com/Muirey03/Cr4shed/pull/81

change your things like @selector(handleDoubleTap) to @selector(handleDoubleTap:) @acoustic imp

your methods take an argument

but your selector left that out

oh

so if i jus deleted it from the methods it would be fine or...?

yeah because youre not using the argument

OMG it works

ez

well

single tap

and tripple no double tho

wth its like the two end gestures work

like if i disbale tripple double works

I was thinking the other day about how hard it owuld be to read crash reports and parse them

I'm assuming its probably doing more than that

but it might be enough to get the culprit

@grave sparrow for the thing I’m trying to do. Could I just make a “invisible” UIView and give it the single, double, trippple guesture recognizerr then when ever you click the volup&voldown together it “simulates” a tap/click on the UIView?

Or could I somehow use these/this

what da hell are you trying to do

Single, double, trilpple taps of both volume up/down at same time -> pause, next track, privuos track .

hook the action method for those buttons and use MediaRemote for controlling the media

Well i don’t want to use these buttons. I want to make a new/different gestures thing for clicking both volume buttons at same time

Like VolPaue tweak by icraze

how can I fix this?

set LC_RPATH?

how can I do it

install readline

already installed

did you build this yourself

hit em with the brew link force

yes

built from source

no wonder

check the install name of your readline dylib

oh it works now

but I have to install libplist from homebrew

cant use built from source one

if you build from source and use rpath for the install name, then you have to pass rpath to all your built downstream stuff

hmm

ill just install one from homebrew

is there a way i can see like the other/rest of the code here?

or whats in the/a .m file

you would have to reverse engineer the binary

The headers are only accesible because they need to be used in other code

Maybe if you crash your program in the double click handler, the stack trace could have something useful for you

then explain how it works

in great detail

guys stop using swift and switch to r, im sure it fits you

Just write raw assembly

is there a way to hook how calls are made in whatsapp

how do i find what is responsible for this in the app

ive been trying to make the whatsapp call button use the normal phone call function instead of whatsapp calls

im curious as to why

because i have like 1000 minutes

Is a m1 MacBook Pro good enough for developing jailbreak tweaks?

yes

m1 air is fine

Really?

yes

I thought it would be a little for developing stuff now

Especially since it’s 3 years old

hm

gm

gm

Do you think I could use an intel mac instead of apple silicon

hi oomfie

hi oomfie

yes

Okay

@grave sparrow Monterey supremacy

airpods dont try to automatically connect

get a discord notification and Sonoma STEALS my airpods off my phone like

mf

just like your mother

once again get her off my dick bro

so REAL

i would feel bad for his dad if she didnt

sad news for him is I am not his father

Yo guys, little help. There’s any way to bypass this? Mod some plist file from the app maybe? I’ve change Iohone date to yesterday and the app opens again. I’ve realize if I mod some file with the date limit to update it could work.

3dappversionspoofer

don't use whatsapp

ez

dont use whatsapp

🔥

hello people. I am having an issue with the IOKit. When I do IOServiceOpen on certain services, it returns error 0xe00002c7. How are these services to be interacted with?

do you have entitlements to access it via the plist

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

release zefram then you get speaking rights back

true

/mute member: 883412614699446283 duration: -1 reason: shut up capt

no its icraze's

no, which entitlements do i need

i dont remember

ask capt

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://cdn.discordapp.com/attachments/1169461256386785290/1169463619407319120/caption.gif?ex=65557ede&is=654309de&hm=70fc909b4eb02daedf21b5864761e7e6eb3a7ee18f7fd18ad6dd2de5f5dacfcc&

/mute member: 434097922762735618 duration: -1 reason: shut up capt

/mute member: 434097922762735618 duration: -1 reason: shut up capt

/mute member: 434097922762735618 duration: -1 reason: shut up capt

/mute member: 434097922762735618 duration: -1 reason: shut up capt

true

AppleARMNORFlashDevice

wtf

@torn oriole he's suppressing

censoring

https://tenor.com/view/1984-gif-19260546

@grave sparrow

ban him!!!!

literally one result on google

and thats for an ipod touch 2g.

oh and i just found the header

hopefully that'll help?

who knew reading syscfg would be this difficult

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://cdn.discordapp.com/attachments/1013496098347819091/1169461199872729108/caption.gif?ex=65557c9d&is=6543079d&hm=84fac9fa4e55aff46565d4280b3424415848a1970161ea8021d615300c83320a&

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

https://media.discordapp.net/attachments/1013496098347819091/1169461199872729108/caption.gif

#development became shitposting

true

“became”

even more*

buddy was not here during the 2021 days..\

2020/2021 .............

i was sort of

then i left

not real enough.

https://cdn.discordapp.com/emojis/1085060228241969192.webp?size=48&name=sadge&quality=lossless

https://cdn.discordapp.com/attachments/1052374999148793946/1169660494764855326/attachment.gif?ex=65563639&is=6543c139&hm=997f74e24a5d669812435fc4f5bb83a692f98b356f2ab55f396093fa88791d0f&

Sent in DMs earlier

ok who is good with tailwind here

i cannot figure out why this page got horizontal scrolling, instead of just having everything at an eye glance

Not me

but probably something is too wide

i may have figured it out omg

it may have been the browser just acting funny...

time to open the dev console

https://cdn.discordapp.com/attachments/688124600269144162/1169667346898632734/caption.gif?ex=65563c9a&is=6543c79a&hm=1d2829f4787689d823b81f793b752ad49404796a64e18c0818e4290c21d35081&

https://cdn.discordapp.com/attachments/688124600269144162/1169667346898632734/caption.gif?ex=65563c9a&is=6543c79a&hm=1d2829f4787689d823b81f793b752ad49404796a64e18c0818e4290c21d35081&

https://cdn.discordapp.com/attachments/688124600269144162/1169667346898632734/caption.gif?ex=65563c9a&is=6543c79a&hm=1d2829f4787689d823b81f793b752ad49404796a64e18c0818e4290c21d35081&

https://cdn.discordapp.com/attachments/688124600269144162/1169705028236365824/caption.gif?ex=65565fb2&is=6543eab2&hm=e22552f12f323e11f10b4b5c13475ec842347affced1bce7b74f1fc094fb9c6b&

https://media.discordapp.net/attachments/688124600269144162/1169651886123646986/caption.gif?ex=65562e34&is=6543b934&hm=341bcc06de8e6374eda8e37ce14f04f66d3da18fa7043595edf061199ad2427e&

https://tenor.com/view/go-to-sleep-spanking-tom-and-jerry-gif-14477118

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

@hasty ruin @grave sparrow

True

imagine not using monterey

fr

i present to you

also based

ventura is where my hate goes though ios 17 has been much better and sonoma seems mostly ok now too

Not good enough

Must be PERFECT like Monterey

This gives me the idea for another gif

had a funny iOS 17 bug yesterday

an app icon just got stuck on the screen

i feel like i’ve seen that once

when i did some weird swipe combo

very quickly

I just went into jiggle mode

And it fucked up

lol

except Mojave

I guess the “M” OS names are just better

catalina was good

fr

we need macos mammoth next year badly

macOS Morn

fire

macOS miscarriage goes hard

True

macOS Mavericks went crazy too

M macOS names are just built different

https://cdn.discordapp.com/attachments/1052374999148793946/1169722899351994429/attachment.gif?ex=65567057&is=6543fb57&hm=849abf1eda093da952d306437508e2df019649c9f3952936d352fad7b9ddd1ea&

real

do it jiggle?

Only on Fridays

oh

😭

Sonoma so good

slow-noma*

Not slow for me

Betas weren't great

is release faster?

Yeah

Make sure to clean install

ah

oke

i think everyone who develops for ios should be permanently banned from here

is tweak development for ios?

cause it doesn't really work on stock iOS?

What?

sonoma operates fine for me

sonoma rc1 master race

Bro I don't know if I have display issues or if macOS is just stupid 😢

skill issue

void *mymalloc(int sz) {
return malloc(sz);
}

not even a sz != 0 check

woe

🤓

nvm it's not undefined it's implementation defined

bad code

not size_t

name one case where anyone would need more than 2 gb

mfw OSSafeRelease releases the object but doesn’t null

When loading 3 gb

photoshop

fr

doesn’t matter bad code anyway

every electron app probably

What did you use lmao

https://cdn.discordapp.com/attachments/1169461256386785290/1169825253707501588/caption.gif?ex=6556cfaa&is=65445aaa&hm=7c036ece7781ef6b0fa05c1359adf260336c12f216895bfd17992afa8601e29a&

@primal perch

@import hell

https://cdn.discordapp.com/attachments/1169461256386785290/1169831797866123385/caption.gif?ex=6556d5c3&is=654460c3&hm=22123e5914ac0d3c4e5c456b1aeaadd21409c6af6a900a21cdf554bb395276e6&

@grave sparrow look a GIF of you irl

no he only uses C

🤝

No I meant the lonely part

oh true 👍

TRue

memory mapping a large file

that’s not allocating it all though

still putting it in virtual address space and therefore consuming addresses

https://media.discordapp.net/attachments/688121419980341282/1139608104447791256/capt.gif

GIR

help me again

I have openssl3 installed

how do you not know

...

ok fixed

i'm not like the other girls

https://tenor.com/view/coding-hello-world-c-programming-programming-gif-21075258

me

So true

me using copilot

copilot my beloved

https://cdn.discordapp.com/attachments/688124600269144162/1170184270120235058/caption.gif?ex=65581e06&is=6545a906&hm=194ea1ec084c99437cfd2055b3e03542f8fc9359d499b3ba7be6f5321030e0cd&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

this is a fake error

it would not know how much you would alolocate

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

@grave sparrow

Is a 256gb M2 MacBook Pro has enough space for tweak development?

Or should I go with more storage space

yeah

Okay

Should I just go with a M1 MBP then?

The M1 will be goated for a while so you might as well

okay

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

i regret buying 256gb space only

I mean it could

more ram is more important

can someone test opa334’s kfd on iPadAir2 15.3.1? It never worked for me

worked on 15.7.1 but never on 15.3.1

okay. i decided i’m gonna spend a bit more and buy a M1 pro

hi so i have an issue with this little hook thingie i wrote

basically discord provides a native module to do some file operations on the native side, such as reading and writing, but not deleting

so i wrote this hook that adds a third type to the writeFile function to provide a bridge to delete a file from the js side because creating a new custom native module without having access to the source code of the discord app is too complicated ```objc
/**

• Adds a way to delete a file at a specific path on the JS side.

• ---

• This acts as a 3rd "type" to pass into the original writeFile from the JS side
• So, instead of calling with "documents" or "cache" and passing a partial path,
• You would call with "delete" and must pass the full path of the dirent to delete
• You can either delete a file or dir, just pass the appropriate path (hence "dirent")
  */
  %hook DCDFileManager

  • (void) writeFile:(NSString*)type path:(NSString*)path data:(NSData*)data encoding:(NSString*)encoding resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject {
    if ([type isEqualToString:@"delete"]) {
    NSLog("Attempting to delete dirent at path %@...", path);

      @try {
          id result = [FileSystem delete:path];
    
          if (![result isKindOfClass:[NSError class]]) {
              NSLog("Successfully deleted dirent at path %@.", path);
              resolve(path);
          } else {
              NSLog("Failed to delete dirent at path %@: %@", path, [result localizedDescription]);
              reject(@"err", [NSString stringWithFormat:@"Failed to delete dirent at path %@.", path], result);
          }
      } @catch (NSException *e) {
          NSLog(@"Failed to call promise methods: %@", e);
      }
    

    } else {
    %orig(type, path, data, encoding, resolve, reject);
    }
    }
    %end

IDEALLY calling resolve and reject should just work, however it crashes the app as soon as theyre called

i did my research and the above is indeed how resolve and reject should be called for native modules

i even used the exact typedef for the blocks from RN in RCTBridgeModule.h

im kind of stuck now because no matter how i call resolve, it crashes the app

discord themselves call the resolve block with the path as an NSString*

and they call reject with err, some error description, and i dont remember if they pass an NSError or if they just use nil

i could just not settle the promise and simply NSLog on the native side if the operation was successful, but now the app will crash again if i call writeFile afterwards with the correct type (documents or cache) which DOES settle, because the first promise from calling writeFile with delete was never settled and it just causes more issues

i also tried passing in a special resolve block to see what their resolve is being called with, and i was indeed correct

void (^specialResolve)(id) = ^(id result) {
   NSLog("Called resolve on writeFile with %@", result);
   resolve(result); // just the path that the file was written to
};

%orig(type, path, data, encoding, specialResolve, reject);
``` it just resolves with the path which the file was written to

an NSString*

which i tried to resolve with

that makes the app crash when i do it

im really confused

(ive been messing with this for the past few days and i feel like ive tried everything idk what to do anymore)

their official native modules look like this

@implementation RCTClipboard

RCT_EXPORT_MODULE()

- (dispatch_queue_t)methodQueue
{
  return dispatch_get_main_queue();
}

RCT_EXPORT_METHOD(setString : (NSString *)content)
{
  UIPasteboard *clipboard = [UIPasteboard generalPasteboard];
  clipboard.string = (content ?: @"");
}

RCT_EXPORT_METHOD(getString : (RCTPromiseResolveBlock)resolve reject : (__unused RCTPromiseRejectBlock)reject)
{
  UIPasteboard *clipboard = [UIPasteboard generalPasteboard];
  resolve((clipboard.string ?: @""));
}

- (std::shared_ptr<TurboModule>)getTurboModule:(const ObjCTurboModule::InitParams &)params
{
  return std::make_shared<NativeClipboardSpecJSI>(params);
}

@end
``` so yeah literally just resolve block being called with a string

example of reject

RCT_EXPORT_METHOD(readAsDataURL
                  : (NSDictionary<NSString *, id> *)blob resolve
                  : (RCTPromiseResolveBlock)resolve reject
                  : (RCTPromiseRejectBlock)reject)
{
  RCTBlobManager *blobManager = [_moduleRegistry moduleForName:"BlobModule"];
  dispatch_async([blobManager executionQueue], ^{
    NSData *data = [blobManager resolve:blob];

    if (data == nil) {
      reject(
          RCTErrorUnspecified,
          [NSString stringWithFormat:@"Unable to resolve data for blob: %@", [RCTConvert NSString:blob[@"blobId"]]],
          nil);
    } else {
      NSString *type = [RCTConvert NSString:blob[@"type"]];
      NSString *text = [NSString stringWithFormat:@"data:%@;base64,%@",
                                                  type != nil && [type length] > 0 ? type : @"application/octet-stream",
                                                  [data base64EncodedStringWithOptions:0]];

      resolve(text);
    }
  });
}

Hey

I’m trying to create a tweak and when I use ‘make do’ in THEOS (I’m using dopamine) and it’s prompt me to enter root password it’s always says the password is wrong

Can’t I use make do with dopamine?

the root password is disabled by default

you can enabling by running sudo passwd as the mobile user

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

Guys how do I put up a tweak bounty

https://reddit.com/r/tweakbounty

Ty

LMAO

fair enough

what even is the bounty

uh

Fixing edited images being sent as adjustments.plist on discord 175+

if its a vcam tweak i swear

oh

what

on iOS 13 if you send an edited image on discord it sends as adjustments.plist

Here I'll show you

ok

See

was the image a png or what

oh no it's a screenshot but discord sends the adjustments file instead of the edited image

Brb

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

is this an iOS 13 issue only or what

Yep

Discord malware

It's not lol

@manic willow any news ?

post crash

thats the most confusing thing, i get no real stack trace / crash log

the most i get is No error handler for XPC error: <private>

other than that there are no faults or errors filtering by the Discord process

you said it crashes

there should be a log in analytics

oh that one

sure

Yes

it doesnt seem to generate crash logs there when i crash it like this

yeah there are no recent incident reports here

im looking in the right place right?

Analytics data

yes

i know

the most recent ips is from august of this year lmao

Is it possible to get the value of an ivar from a pure Swift class that is a subclass of _TtCs12_SwiftObject (Swift._SwiftObject)? The type of it is a Swift String, I just need to get its value in Objective-C, if that is at all possible

@grave sparrow Feel like you'd know best, thanks in advance :) ^

Right, but am I able to then get the value of a Swift String and put it into an NSString somehow?

Or is that just impossible from Objective-C

uh oh

uh oh

ok I see lol

curse you apple for making this so difficult

so obj in this case is the ivar? or is it the swift str

thats what im confused on

ohhh I see

so all the ivar goofiness would be done in Swift then, not objc

I get it

@indigo peak youve messed with discord on the native side for a little while, do you have any idea about this? :c

uh

ok yeah that is weird

For reference, this is what I need to get the value of: https://github.com/Sileo/Sileo/blob/18e0ac2c90e8658ed9b787dca25a4c7c34edf93a/Sileo/Backend/Objects/Package.swift#L20

(if that helps)

rip

woeisfade

guess ima find some other way to do this

this way would've been so convenient though, had there been @objc

(last bullet point is put in question)

ok well thanks, appreciate the help

I'll just find a better way

yeah that would probably be cleaner

real

Any news?

yes

your mother is with child

and it's @primal perch 's

impossible

Any one knows what can be the cause of a tweak that work on 15.1 iPhone 13 but not on 15.4.1 iPhone 13 pro max?

I’m trying to update cozybadges to support dopamine but for some reason it’s working on my 13 15.1 but it’s not working on my 13 pro max 15.4.1, both latest dopamine

ios code changes

Well it’s weird because the same code did worked, it’s not working since I tried to fix the settings save functionality

I have the tweak in my GitHub but the save functionality is broken, I’m trying right now to fix it - and it’s working on my 13 15.1 but not the 15.4.1

does the settings plist already exist on just one of the devices?

Right now yes, in both devices

very weird

But even if I start over and delete everything related, it’s still working on 15.1 and not 15.4.1

Any news?

why do you guys keep asking any news 😭

any news of what

sorry i havent been here for a month or two

https://cdn.discordapp.com/emojis/1019732813941067908.webp?size=48&name=skulley&quality=lossless

any news on JB scene

oh

it's a meme now bc of this one kid who kept spamming it in this channel

any news?

@ NYT any news?

@manic willow any news on yogurtJB?

Soon when I get the Rx 580 from @minor cargo

ANY NEWS?

ANY NEWS?

whats yogurt JB

my birthday tomorrow

ship on monday

ill sell you my entire PC for 500$

its liquid cooled or whatever

capt came out as having below average iq

https://cdn.discordapp.com/attachments/710659805710254141/1169714148075110421/caption.gif?ex=65566831&is=6543f331&hm=27515155eca816cbd21afb04249565ad02f01a81072d5ac34e5df0952cfe82c4&

https://cdn.discordapp.com/attachments/1169461256386785290/1169831797866123385/caption.gif?ex=6556d5c3&is=654460c3&hm=22123e5914ac0d3c4e5c456b1aeaadd21409c6af6a900a21cdf554bb395276e6&

@primal perch @zenith hatch

@turbid fjord

Add "I use swift" to this gif as well.

https://cdn.discordapp.com/attachments/1169461256386785290/1170536530327130122/caption.gif?ex=65596618&is=6546f118&hm=b8ca0cf8fd303b6316d29b85970726a4fb315a7f7911bd587dea55b9072e54bd&

https://cdn.discordapp.com/attachments/1169461256386785290/1170536682278359150/caption.gif?ex=6559663c&is=6546f13c&hm=2bdf6a2b9e84cb970c3bca0705cea6b9d6079b48207f9bcd8fa0c2bb76d0d336&

does it get worse if i update or something

my 13.1 install seems to work as it should

i dont see any major downsides from monterey

all i know is that i dont want sonoma because it breaks sideloading stuffs iirc

rosie hiii

hiiii

im here because im stuck on this :3

i have no idea how to help

:C

it’s definitely better on 13.6

most of my complaints were fixed 13.5+

maybe 13.4

before that it was just stuttery draggin windows and buggy settings

but settings still kind of buggy

12.7.1

@native orbit

omg

coverflow

no way is that coverflow

does it have the cool animation when you click one?

hopefully i can get it fully working and put it in ipod

not yet

ok fair

idk if i wanna copy the anim 1 to 1

might do something thats a little faster

somethin like the album flies off screen whilst its tracks fly in

theres the iPod one too

I think its faster

but might not work well on a phone screen

it like flips and the albums are on the back, iirc

or is the iPhone one

I don't remeber at this point

the other one is it moves to the side and the albums fade in

https://cdn.discordapp.com/attachments/1169461256386785290/1170572842790834247/caption.gif?ex=655987e9&is=654712e9&hm=65015a3409009ea00bbd1d9eaf414c58f63a841c6c938465d4ad847a80a91f4f&

he finally went upstairs 🙏

https://cdn.discordapp.com/attachments/966830763968430180/1170572565958381689/caption.gif?ex=655987a7&is=654712a7&hm=85f5e9bebfd9c716e15ac4f1f95c15c4d93055c5df3239dbe96ef22acb109a60&

Ong

ill try taking a look at this in the morning, im fucking hammered rn

Mojave

Mojave was only good because of 32bit

in what case would i need a symbol from another process or the kernel

or a file

Hey

In rootless plist files stored here /private/preboot/653FC16D8C4A9E1091202655C20C8D4A9858A47B6A2734688144CDF136D2126E2C1C688809609628395F0277066C2B56/jb-uoCyBT/procursus/var/mobile/Library/Preferences

I’m not sure how I should create the plist file thru my tweak in here. What is the path I should use?

What the path should be?

Was Mojave the first one to finally introduce dark mode as well?

Correct

So another reason why Mojave was goated cause dark mode is the best.

ROOT_PATH_NS(@"/var/mobile/Library/Preferences/<whatever>.plist")

Thanks!

nevermind dont worry i ended up hooking DCDPhotosManager.deletePhotos which resolves and rejects promises perfectly

%hook DCDPhotosManager
    - (void) deletePhotos:(NSArray*)uris resolve:(RCTPromiseResolveBlock)resolve reject:(RCTPromiseRejectBlock)reject {
        if ([uris[0] isEqualToString:@"enmity"]) {
            NSString* path = uris[1];
            NSLog("Attempting to delete dirent at path %@...", path);

            @try {
                id result = [FileSystem delete:path];
                NSString* message = nil;

                if (![result isKindOfClass:[NSError class]]) {
                    message = [NSString stringWithFormat:@"Successfully deleted dirent at path %@", path];

                    NSLog("%@", message);
                    resolve(message);
                } else {
                    message = [NSString stringWithFormat:@"Failed to delete dirent at path %@: %@", path, [result localizedDescription]];

                    NSLog("%@", message);
                    reject(@"err", message, nil);
                }
            } @catch (NSException *e) {
                NSLog(@"Failed to call promise methods: %@", e);
            }
        } else {
            %orig(uris, resolve, reject);
        }
    }
%end

and this time the promise actually settles

https://cdn.discordapp.com/emojis/1007946425725886464.webp?size=48&name=SilvPray&quality=lossless

roisecord

ya

So even if TrollStore cert basically emulates Apple Root CA platform certificate triggering CoreTrust bug, the error known as (service cannot be started, it's not an platform binary) requires the binary with that cert to be somehow added into dynamic trustcache to be accepted as an platform binary and enable tweak injection ability?

Well, where is exactly dynamic trustcache located in iOS system

And where is static trustcache located in iOS system

yes

PPL protected memory

KTRR protected memory

(although static might be in PPL now in 16+ too due to cryptex, not sure, doesn't matter anyways)

So.... those memories are not anywhere in the system nor readed from iOS rootfs? - it's just that system binaries while booting are loaded into RAM as platform binaries?

dynamic trustcaches can be loaded by Xcode over USB but require to be signed by apple and the verification of that happens in a PPL routine

static trustcaches are compiled into the kernel

So, basically even if we can rw in iOS 14 / dir, somewhere in rootfs the file name was trustcaches im4p format so if that gets somehow decrypted, modified and again encrypted, the system will not apply changes from that file because it's using kernel to read trustcaches instead of an file inside iOS system?

So device could actually instead of booting to just bootloop?

no, the TrustCache simply is not on the rootFS to begin with

it's part of the kernel and the kernel gets verified by iBoot

well... in that case what is purpose of that trustcache im4p file... what it contains? Is that just auto generated by kernel every time device reboots?

what trustcache im4p file?

on iOS 16 again it might be that things have changed due to cryptex

Yeah - I found that file somewhere in rootfs of iOS 14.x and iOS 15.x too

if that exists it's either not used or signed by apple

Well im4p files are usually encrypted with Apple signature (private key)

But if someone have it, they can basically decrypt it, modify it and with the same key to encrypt it

if someone had that private key they could literally sign whatever firmware they wanted

that's not an attack surface

So... private keys stored in such secret im4p files that provides list of platform binaries, their location, hashes and certificates is actually the keys used to sign ipsw images?

👀

And also, do you know what methods hackers usually using to maybe even on an illegal secret way to access to those type of secrets like private keys to decrypt and encrypt (sign) firmwares (im4p and etc...)

Because Apple works differently than any other type of OS

Even Android devices (their manufactures) gets somehow easier to steal and crack the platform key for root purposes than iOS most secured and closed-source too

In that way, Android devices can avoid unlocking bootloaders and just flash system updates with patched+signed bootloaders that is giving root access to an target android device

Is there something similar (an ability) for iOS/iPadOS devices too even if it's closed-source and most secured OS in the world because of Apple limits and constantly patching vulns

a private key is not stored anywhere, the file is signed with it

no one does that

I mean... instead of stored actually encrypted (signed)

Well someone anyway needs to begin to revive jailbreak community

But risks are very high

If Apple finds out

this won't happen bro

if you don't plan to physically break into apple HQ and commit like a gazillion crimes, your chances of retrieving this key are 0%

thats why he said the risks are high

Not yet for sure - but it might happen - we just need an bilionaire who will rather pay as much is required to powerful hackers to do that type of research and stealing for jailbreak purposes 😅

😭

But anyway it's risky to the fact that consequences are for an serious lifetime jail

Because that can hurt all Apple devices so basically, the whole company that builds that software is vulnerable so they need to revoke their platform certificate and change it and make new phones with an new private keys and platform certificates while leaving all other Apple devices vulnerable without any patching anymore - just moving their users to new devices (hardware) with completely resigned iOS with an different key

check /usr/standalone/firmware/FUD

I don't think it's compiled into the Kernel?

But iBoot could and probably is actually checking it's hashes and certs every single boot

So modifying there without their private key (basically platform certificate) can actually force device to an bootloop state

No one yet tested it but probably if the location /usr/standalone/firmware/FUD are protected by iBoot checking their hashes and signatures, it can lead to an endless bootloop

If it's not protected (lucky for all of us by Apple), we can actually modify it 👍

Even on iOS 15 because there is an location where /usr/standalone/firmware is mounted there as RO but it's actually RW in /private/preboot if that gets remounted by root access temporary

So in iOS 15 there is an bug by Apple that is not mentioned that location /usr/standalone/firmware is actually auto-mounted by system from an RW location if that RW location gets remounted as RW

what are you going on about

About system location /usr/standalone/firmware on both iOS 14.x and 15.x - and of course every directory and files there too

The source directory of that directory is mounted by system in another partition that can be mounted as RW /private/preboot/

So if there is static trustcache physically located and not protected by iBoot verification, it could basically be rewritten with an modified version of the same file to bypass code signatures

And enable jailbreak binaries and libraries to be accepted by system as platform binaries

• CoreTrust bug it could basically lead to an untethered full jailbreak, not an semi-jailbreak like FRM

But, only if Apple made there an mistake about for example forgetting to add those files and dirs from that location to an iBoot for checking it's hashes and signatures

Let's talk about reality and not all these theoreticals smh

Well someone needs to test it if you want to be reality

Not just waiting and letting theories stay theories

There is no success without making mistakes and one of theories to be approved and working after making mistakes and finally figure out

https://tenor.com/view/dancing-elvis-presley-austin-butler-elvis-grooving-gif-26399604

you do it then

most of what you're saying doesn't make sense

Just test and see, don't judge without testing it

And yeah, I don't have an writting/speaking skills in another languages that are not my native language so I'm not sure that people understand actually what I want to say

But I will test it anyway as soon I go home and take my iPhone

I'm not even home so there is no iPhone with me - currently I'm unable to experiment with those theories

what are you even going to test

I will test is there any iBoot vulnerability to /usr/standalone/firmware/ files and directories there - will iBoot checking signatures and hashes of that dir every boot or not

On both iOS 14 and 15

If iBoot doesn't checking it even after modifications that I'm going to made there and successfully boot into iOS, I will have a chance for an permanent codesigning bypass so that all jailbreak apps and binaries can be executed as platform binaries

(Only if I got enough luck with all of this that in that directory there is an critical file im4p that contains static trustcaches that gets loaded every boot)

If the test is successful with enough luck, we can freely say that we find out a way for an untethered jailbreak on all iOS 14 and iOS 15 vulnerable versions

you do know 15 has SSV right

Yes of course

But do you know that /usr/standalone/firmware is just auto-mounted by system from /private/preboot partition (volume) every boot as RO

So if you modify firmware dir (content there) that you can find in /private/preboot/ partition (volume), those modifications are automatically applied to /usr/standalone/firmware dir

Basically, bypassing SSV in that way

Because it's not SSV protected there

But if you try directly to modify or remount /usr/standalone/firmware, you will not be able to do it - Apple protected it in that way but the source is actually from another partition (volume) that is completely SSV-free (without SSV protection)

• So as soon I go home, I will begin with tests and if my tests are successful, I will let you all know that if you want

what are you going to modify tho

static trustcaches of course - if I modify static trustcaches and the im4p file that contains those caches are not checked by iBoot, the modification can be successful

So we can basically inject into static trustcache file required binaries and libraries to run jailbreak services and exploit as an platform binary with highest privileges, no entitlements limits and allow it to inject things into other processes too (tweak injection 👍)

If there is no trustcaches file even if it's not im4p but another type of file, there should be at least kernelcaches

In kernelcaches if gets decrypted successfully (if it's not encrypted because I'm not sure that I can find a key for kernelcaches), there should be static trustcaches added

This depends on iBoot not verifying the trustcache im4p which it does

At least from my understanding it does

You'd need some way to bypass that check

Guys

Is there any news whatsoever on the new ct bug

kernelcaches used to be encrypted but aren't any more

only iBoot stages and sepfw are now

shut the fuck UP

i don't know the lore on the regulars I see

from: 468172257378828292 news

give it a look

oh

any news??

:/

any news??????????

any news??????????

Fuck you guys

you wanna do WHAT

You heard me

oh

ANY NEWS?

any nudes

how do you get started jail breaking? let's say i have good understanding of programming and C++ but not so much memory management

like what's the best way to start/learn the basics before u start exploring?

#development message

Doing a lot of meth

@viscid cradle

#development message

💪

we dont want another tihmstar

There already is another tihmstar their name is just @grave sparrow

tihmstar has actually written a jailbreak

yeah in objc++

fr

one made a jb, one made malware

one made a jb, one got forkbombed by icraze

Technically 2? h3lix and doubleH3lix?

more than that

https://cdn.discordapp.com/attachments/710659805710254141/1169714148075110421/caption.gif?ex=65566831&is=6543f331&hm=27515155eca816cbd21afb04249565ad02f01a81072d5ac34e5df0952cfe82c4&

Better than swift

fr

fr

didnt he contribute to fugu15 rootful

@exotic spire stole your video

lmao

@hasty ruin

@grave sparrow

Needs a recovery screen at the end

Go ahead

Make it happen

Here's the raw gif

I don’t think I’ve used launchpad more than once

Where vid

mf really just autocorrected vid to gif

thanks Tim

bruh lmao

https://cdn.discordapp.com/attachments/688121419980341282/1170929462859268096/macOS_Sonoma_bugs.mov?ex=655ad40a&is=65485f0a&hm=3f2d08533022bd266a37851bc7d62a3246f5d1e81e48721975df3291ec5cacf6&

Finally the ability to add folders to folders

someone give me a recovery screen I'll add it to the end

Well it should but if the tests shows that they forgot to protect it with iBoot verification checks (file hashes, certificate and etc...), Apple basically created an big security hole for those iOS versions but good for jailbreak community

In that case after I verify this case, I suggest that no one will expose how this works and etc... online just to avoid Apple to patch it. Better Apple to think that we don't know about that so that Apple will not take an action soon to that than to take an action based on the fact that we discovered one more mistake by Apple like this.

Just saying, just in case to keep good things to last much longer than usual 👍👌

News are: There are still no PoC yet so no critical progress yet but that doesn't mean that Opa334 will not make an progress in the future if an PoC gets created and exposed online - let's wait longer for the first PoC to get released and after that we can hope for an visible public progress to happen soon 👍

But they didn't.

Did you test it already to be sure?

Yes lmao

You think no one would have noticed if Apple wasn't verifying a core part of their chain of trust?

yeah because it seems to me that all jailbreak developers just gave up in searching for untethered abilities in newer iOS versions - they mostly stays with finding other types of vulns to make an other types of jailbreaks instead of an untethered

So, why would anyone test the core part of an iOS for an vulns after so many years and without Apple telling them that there is a vuln available there like that

because finding said exploit would make you a bunch of money... so why wouldn't you check it?

You can go ahead and try but you aren't finding anything

Well in that case maybe it's already found by someone (maybe an another vuln that is powerful enough to bypass those iBoot verification checks for some critical security files in system) and already sold it in secret for so much money rather than solding to someone to make untethered jailbreak

As I said, not everything will Apple provide in public to say "Hey, we have an serious dangerous private vuln in iOS x.x.x version (not for public because of the security reasons) that will make probably also other ios versions vulnerable and make users to be in a very high security risks"

CVEs

Yeah, CVEs

I'm talking about that

Some CVEs was never mentioned in public for extra security reasons

But as much as they are dangerous they can also provide serious exploit for an untethered jailbreak to be made

You have fun with that

lol

• We will probably see another untethered jailbreak for newer iOS devices if some hacker who values jailbreaking more than money actually begins to do complete reverse engineering of iOS (basically stealing their source code for many newer iOS versions) and starts deep research for any vulns to make from most vulns an powerful untethered jailbreak for community instead of private solding to someone to patch those vulns for money

Ok

Source?

He’s a schizo don’t bother

• We will probably see another untethered jailbreak for newer iOS devices if some hacker who values jailbreaking more than money actually begins to do complete reverse engineering of iOS (basically stealing their source code for many newer iOS versions) and starts deep research for any vulns to make from most vulns an powerful untethered jailbreak for community instead of private solding to someone to patch those vulns for money

• We will probably see another untethered jailbreak for newer iOS devices if some hacker who values jailbreaking more than money actually begins to do complete reverse engineering of iOS (basically stealing their source code for many newer iOS versions) and starts deep research for any vulns to make from most vulns an powerful untethered jailbreak for community instead of private solding to someone to patch those vulns for money

I saw the news that Linus Henze was hired by Apple, and I'm not all that unhappy with any of it except for the part that says:
Linus was also responsible for finding a new PPL bypass that could have led to the creation of an A12+ jailbreak for iOS 16.6.1 but due to their new employment, we will likely not see a PoC (proof of concept) for it.
I'm personally pissed off by this. I wonder, how many of you would like to ask Linus to release a CVE-2023-41981 PoC? React with if you would.

Imagine if Apple starts training their own AI vulnerability reporter model, iOS will be exploit-free and it’ll just be impossible.

Well if Apple just become so sick of people who even after all begins to release untethered jailbreaks for newer ios versions in public, they would probably implement an AI that will stop not only untethered jailbreaks but also every type of jailbreaking

And in that way, jailbreak is completely died forever

💀

you're actually 💔

yes I am since people begin here to spam one of my messages...

no sane person gon give up money for some jailbreak to get approval from some kids

I'm not an child, I'm an adult but probably with mental illness since how people reacts on my responses no matter about quality of my writting skills (language knowledge)

i was talking in general, not towards you specifically.

But I'm not sure that schizo is the right mental issue I actually have... I forgot what I actually have since my last visit to psychiatrist but I'm sure that schizo person mostly kill themselfs so I'm sure that this is not my issue actually.

Well, I'm not supprised if you towards those messages to me specifically since this is not my first time when people reacts like this to my messages

Some because of my language knowledge, some because of my questions that is too much for community to handle... but the end is always the same

But most of them just perm ban me so.... should I be worried that I will be perm banned here too just like others did when I try to talk freely like this?

Or I can just move on and stop with this topic

if you hear voices in your head, or any of these:

Only 3-4 of those but nothing more

But one of them is because of my polio anyway So I should say at least 3

i think you should move on, not many of devs are interested in creating jailbreaks when the community are pieces of shit. We might see one if a vuln gets exploited and published, but besides that don't get your hopes up.

it doesn't beg the question buddy, for that you'd need to be one of the best devs

for credits so u can be hired by other companies

is there a way to make macos ida 7.0 fully dark theme

you could probably write a tweak for it

Theres a 7.7 ida pro windows crack thats portable so it works via wine on macos/linux

do you know what performance is like with it?

i guess for analysing i could do it on a windows pc then send the i64 to mac

No idea probably the same since its just running under wine.

i'll try it out, thanks

amazing until you use it on m1

m1 has 16k page size and x86 has always been 4k hence why wine struggles to keep up

Can i have multiple sexCodes at once?

Different versions

Yes you can have multiple xcodes

are you special

maybe when you release a product they can put your name to

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

you need a release of zefram

fr

it’s the dudes life work yet nobody sees it but him

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

At this point is a lower ranked dev than tihmstar

https://media.discordapp.net/attachments/688124600269144162/1169651886123646986/caption.gif?ex=65562e34&is=6543b934&hm=341bcc06de8e6374eda8e37ce14f04f66d3da18fa7043595edf061199ad2427e&

running it on m1 rn through crossover, it's runs better than i expected, havent analysed a file from scratch but its faster at generating psuedocode for example

the ui feels a bit sluggish but that's ok

zefROM: checkm8-based jb bootloop tool

https://media.discordapp.net/attachments/688124600269144162/1170954116848169081/caption.gif?ex=655aeb00&is=65487600&hm=ab05f444d65c8e730301932be353d62a52f564c34ef64d43c56dd0fc58102290&

theyre becoming old gnome

they also used to have funky shit like that

we don’t tbh

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

shut down capt
gif of squidward vaporizing patrick star

polio???

Unironically this wouldn’t be the worst idea but whatever

you should be able to add folders to folders even though its lowkey kinda shitty

you with your 5 thousand porn folders

he just has one folder with 5 thousand porns

need a forcing 1000 swiftui users to use uikit

@minor cargo

hi

@minor cargo

@minor cargo

@minor cargo

I can share it in this channel for all of r/jb

What?

i think he means

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

thats why we stick with

https://media.discordapp.net/attachments/688124600269144162/1169708354273296424/caption.gif?ex=655662cb&is=6543edcb&hm=e28afc8f6575027decf6ff93755af47d1ff2dec061fead69630c4cc6aef78003&

I mean what's worse, this is the zefram demo one?

do it

@shut stag Can I post the ida pro crack in here pweas? For the researchers.

aaron

Today at 01:24

yes

better than the recovery screen you see 5 seconds after launching zefram

Need a new response.

https://media.discordapp.net/attachments/688122301975363591/1084316846863421520/zeframdemo.gif

that's from june

Can somebody yell at aaron to respond newly pweas?

Aaron please respond newly

Aaron please respond newly

hows this?

https://cdn.discordapp.com/attachments/688124600269144162/1171260266097422346/image.png?ex=655c0820&is=65499320&hm=f4a4e58bb0f981ba8da69342f4eaf67bfa5acabc4e4f523b25f0c5f00829d740&

real

easiest press ever

left