#development

lol

that bothers me so much

i just write nicely formatted code to start with

@half walrus oops https://github.com/DragonBuild/dragon/issues/49

I think that was something I said needs fixing a while back 😛

is that new

that sounds problematic yeah

new cause I stalk dragon issues

i write now format later

but I think that was always a thing

@gaunt mesa some bleach for your eyes

one eye is gone

I found a bug in the messages app, but I'm not quite sure if it could be used for anything

also idc if this is abuse of lambdas

it's so much cleaner than

when building on the default admin user on macOS, uid 501, that would make the files be owned by mobile, also uid 501

several nearly identical methods with the arguments changed

which is kiiiiiinda very dangerous

i need to properly learn python

yes u do

tried to stop this with theos by trying to enforce fakeroot first… then fakeroot kept breaking with macOS updates so I made dm.pl just set uid/gid 0 always

you could definitely simplify this even further

i'll add it to my list of shit to learn in 2021

comparatively everything related to ios packaging is incredibly dangerous and irresponsible

but i will fix this rn

@lime pivot dm

oh yeah everything is… horrible honestly

dpkg 1.19.0 has --root-owner-group as this user points out

is there a reason that wouldn't work (as theos doesn't use it, i'm assuming you're saying)

theos uses some pl file for debs right

if you think for more than a few seconds about how very popular packages (ab)use setuid(0)… uh yeah you can definitely come up with a few attack scenarios

my macos has Debian 'dpkg' package management program version 1.20.0 (darwin-amd64).

dm.pl

well

but if mojave or others ship with pre 1.19, i'm not using that

they don't ship with anything

@half walrus like, you can do

COLOR_FORMAT = "\033[{bold};{color}m{text}\033[m"
text = COLOR_FORMAT.format(bold=0, color=33, text="...")

mojave

So you guys know about about iOS code yeah?

no, sorry

no

ok, what i should be doing is using my own color echo module

Would there be anything you can achieve with a blank text being sent?

the origin of all of that code

(or COLOR_FORMAT = "\033[{bold};{fg_color};{bg_color}m{text}\033[m")

Here's a bug I found if you would like to recreate

hack the mainframe

On iOS 14 it won't send a message and the last sent message in the contact list will be blank

Step one: compose a new email
Step two: write message
Step three: cancel message and save as draft
Step four: open saved draft
Step five: select all text and copy
Step six: move to messages app
Step seven: paste copied text
Step eight: press send

that's probably some encoding thing lol

will get back to u all on that

this may be

many time

i know apple adds a random question mark to my discord messages

nvm its apparently completely lost

rip

tip

probably not a bad thing

was a waste of time

the only reason for dm.pl was 2 things

1. saurik was pretty hard on not supporting xz compression despite dpkg moving on to xz as default, and later on completely removing support for compressing to anything except gzip (just for compatibility) and xz, coolstar didn't care and now everyone is using xz so it prob doesn't matter any more
2. fakeroot being terrible, too many bugs so I couldn't make it a mandatory dependency, and the issue of way too many packages being released with dangerously insecure permissions

well

this specific set of code was ripped from dragon.c

jailbreaks in general aren't secure

which might help it make more sense

you can also reproduce this by pasting this character:

�

doesn't mean we shouldn't try tho

isn't that the same as before?

it's fun to drop that in group chats

watch people go wait I head my phone beep but there's no message???

this would have to be done on the jailbreak side tho

wdym

Wasn’t me but ill know for next time

then lets harass bingner or cs about it

idk what 'it' is but

at least one of them usually listens

jb rn has some massive security issues we can hopefully gradually work on

Well thanks for anyone that tried I'll look into it and see what it's doing

and inefficiencies in general

use colorama

does it ship with python stdlib

guys

ah nvm

did u know adam demasi cant receive payments at this time

if the answer is no then so is mine

it feels like a war of let's remain compatible to prior jailbreaks/iOS, vs, we really need to just ditch some of these bad ideas and stick with iOS defaults as much as possible

understandable

yaml is the only exception to that and i've actively been trying to get rid of it

this for DragonBuild?

python on ios doesn't ship with pip and its balls to set up

yeah

because financial shit is always deployed so spottily

and the whole goal of the thing is to work OTB with 0 setup

Apple Card is US only

Apple Pay Cash is US only

python -m ensurepip

goes brrr

doesn't work on ios

does for me

what bootstrap

it's not that good of a module

Theos does have a few Perl dependencies it bundles in because you would hate me even more if I forced you to use cpan 😂

i write for elu and use it myself

aw gawd

can anyobdy tells me what im doing wrong here? im trying to translate the swift version over to obj-c but it looks like its giving me the regular UIVisualEffectView class.. I am trying to achieve true blur-effect other than the crappy one

I'd bundle yaml if i knew how

pr*cursus

homecursus

don't use it and definitely not gonna write assuming the user has it

in the same sense i don't expect the user to have macports installed if they're on macos

wen 2.6 release?

however it has most definitely gotten significantly better, and Sam and cs have been good at not throwing in new security holes just cause it makes life slightly easier

someone needs to make a pytheos git though

👀

certain previous jailbreaks (I think even as recent as 11.3) would just give everyone the task_for_pid-allow entitlement 😬

which is cool as shit, then you can debug any process via Xcode

ideally you

I should make public a pair of repos

but also unbelievably disgusting in how "fuck security anyway lol" it is

i'd love to see the logos rewrite public as well

despite it being a non-functional WIP

i'd love to expand on the language server rn

10.3 jb just entirely killed all sandbox rules, which is dumb for security sure but also because it makes the jb so easy to detect

I just got stuck on figuring out a good way to do statement stacks

or like the guy open sourcing the dyld extractor despite it very much not being done

now i got/get to finish it :)

true, what is a cool module is rich

for terminal GUI shenanigans

I think it is on github somewhere?

o

not sure how recent

does theos have a version number

why am i not following uro

probably does and probably means just as much as dragons lol

I have one in pure C which I got stuck on (re)implementing lists for the 100th time and then started over with python and libclang bindings

true

task-for-pid_allow getting neutered on 11.x and 9.x jbs was such a godsend lol

so there's technically a logos.c and logos.py

oh I was meant to answer this, I don't think it existed yet when we switched to dm.pl. the primary reason for switching was dpkg suddenly updated and killed all compressor options except gzip/xz

is there a logos.js tho

2.5 atm

can you not just go to the pyyaml repo and copy their files?

refactored the entire project, i think almost 4 million changes if you count the sdks

TIL about that flag honestly

so i bumped from 1.1 to 1.2

lol

thank god they finally came up with a less dumb workaround than this wacky program that depends on code injection into arbitrary processes

theos has a website

tf

theos dot developer!

yeah i didn't put any thought into that

what license is it under

MIT

what if i make it nice

will it be accepted

i would submodule more shit if i didn't also have to worry about licenses

pro has a pyyaml package

id like to see elu get one

ok

does it

depends how nice we're talking

like a package that specifically installs pyyaml @surreal mountain?

yes

you can just take that deb

fuckin bless u @tepid olive

pretty spicy

pls do come up with something less "I came up with it in half an hour and it at least looks better than it probably is meant to" lmao

[[python3-yaml]]

there

pyyaml

[[dragon]]

lol 19 pages

💀

wtf

oh yeah i have a nice idea cuz im bored, ill show u and uro when i make some progress

if I had a nickel for every time I made a parser, I'd have 15 cents :/

we actually do want to make the homepage more suitable to also show other projects

ping @nimble parcel about what he proposed to me for it

@half walrus suggestion: build and put the deb on your repo

https://github.com/uroboro/mLexis for example

not in dragon deb itself

then depend on it

https://krit.me/Packages

.

so if a more updated version is on pro

they get the more updated version

i just bundled literally everything

i should

really really fix that

yes but

that package is so illegal

dude, watch out for the typos there

red squiggly lines mean typos

why dont you just

please fix

depend on each deb

so many DMCAs

and then put python3-yaml on your repo as well

so elu users also get it

@surreal mountain to avoid bootstrap related issues

how could that cause an issue?

i don't want my repo conflicting with others

procursus is pinned, no?

i dont want to have my package only work on certain bootstraps

oh dynamic linking i forgot about that

i thin

k

i want the user to click one button and get the tool and have it run

true

given

certain people would kill me if they knew how i accomplished getting that to work

lol

lol

need to swap it to procursus binaries

u dont know why its funny

here, I made it public, but I'm not gonna finish it
https://github.com/uroboro/logos.c

didn't break anyone in the communities' licenses on stuff in it

how far along is that

not much

https://github.com/64/cmake-raytracer

Why

because they can

yep!

because someone told them "you're an idiot if you try that" or "that's impossible"

origin of like 20% of my projects

lol

someone got arm64 .ipas to run in the simulator

nothing is impossible anymore

and then they monetized it too

I mean, y'all've probably already seen this
https://github.com/carlini/printf-tac-toe

Bruh

https://raw.githubusercontent.com/chilaxan/tictactoe.py/master/tictactoe.py

same thing in python

some people need their computer privileges revoked

I'm not sure if using lambdas is quite the same as macros

cock

yeah doesn't really look like the same thing now

how is this running scanf in printf

absolutely

this is abuse of something low-level lol

even in the unformatted file i have no idea what's going on

given, the macro names are, lacking

scanf is in arg macro

is there non-abuse code here?

honestly this is really cool though

be cooler if they wrote it without variables

but they just used char dat[18*2+2+500] = {1, 0, 10, 0, 10}; to make things needlessly confusing

// Okay so here's our array.
// dat[0] stores whether or not we should continue looping.
// dat[2] stores the current turn counter, decremented by one every turn.
// dat[4] gets filled by scanf() to be the user's entered integer.

Simple enough

why not use variables for those then

i mean why write this in the first place sure but hmph

Because it’s easier to deref a single variable with a changing index than multiple variables

Isn’t it explained in the readme?

I thought I read that

Literally the first line of the readme (bar the title)

you know the rule

Why require that tho? Code golf probably

if they wanted people to read readme's they'd indicate it in the filename or something

i'm no longer allowed to complain about people not reading mine now rip

i've become my worst enemy

Haha

https://www.ioccc.org/

Welcome to the club

question then is where do i document my stuff

see also self-modifying code in the DOS/classic Mac OS days

cuz i get ppl aren't gonna read it, can't change humans

back when literally overwriting your own program in memory was the best compression/obfuscation

VAC-undetected cheats do this still

@rapid lion may know more

The file is literally called "readme" how hard can it be

Unless I'm missing a lot of the context

readme? you can’t tell me what to do

as that particular method of obfuscation entirely defeats VAC's one "attack"

and yet people don't read them

Fair

there's also this
https://github.com/mame/quine-relay

and i bitch about it but literally just did the same shit

"why was this written" first line of readme

oo i learned about quines the other day

I try to read readmes but some people are honestly bad at them

(one of those people is me)

its genuinely difficult to write a good readme

constantly changing mine

there’s also the people who write their entire documentation in the readme

because you have to make a lot of info very easy to digest

like pages and pages and pages

not all of us can afford websites lol

useful for cmd-f-ing blindly I guess

and gh wiki layout is shit

yeahhhhhh but you can literally just make more .md files

and link to them

could be worse

not really

I might actually move Theos wiki into the repo…

it's hard to process or find information on gh wikis

constantly having that issue with https://github.com/HikariObfuscator/Hikari/wiki

it’s dumb that the wiki is backed by a separate git repo, yet the only options are Let Everyone Edit (and don’t email me about it, like no seriously, it’s fine /s) and Only Let Me Edit (so now nobody knows how to propose changes)

and of all places for "hard to process or find information" to be an issue, code wikis has to be the worst

the halfway is for me to make a docs/ dir with the .md files, and have github actions sync that with the wiki git repo

ok that’s actually a good idea

fuck ur streamlined table of contents, we're gonna shove a massive, bigger, bolder, +4px font size larger, alphabetical list of pages in ur face

and then truncate it anyways

ugh my godddd

so dumbbbb

the wiki is like the only thing that hasn’t changed one bit since Microsoft took over

i need to stfu and write an extension to fix it

have a look at https://git.io/theoshelp

you can make custom sidebars

the downside is you can’t style them nicely to match the alphabetical sidebar, and it doesn’t hide the alphabetical sidebar only collapses it by default

to which this is still shoved in your face unfortunately

yeah

which, like

no way to search either

has absolutely not changed since like 2012

https://github.com/theos/theos/search?q=Installation&type=wikis i take that back

if you go to the main repo

search a term

then select "Wikis"

it was like what’s the easiest way to make these people shut up about the wiki feature being bad

why don’t we just make a special page filename that if exists, will display above the file list, and collapse the file list by default

easy done

yeah gh search is uh slightly unintuitive at first

you’d probably expect a search bar inside the tab not on the top nav bar

its almost unbeatable and yet still painful

i'm implementing what you wanted in the headers site via grep btw

oh I dunno, I did show you OpenGrok

heavily debating whether it's worth setting up a database for any of this

it requires the thing to know how to parse the symbols in all the languages you use obv, but it’s still extremely cool

this has been working incredibly well compared to a pure php implementation

there is also an official Google code search tool for AOSP now, but it only had the latest Android release IIRC, no indexes for old releases

currently the biggest overhead is highlight.js, but disabling that on pages w/o code fixes that

there was always a Chromium one

Mozilla has their codesearch too, just used it yesterday

ima throw this online now

Google used to have a thing called Code Search, which yeah, did what it sounds like, code search

people on hacker news still bring up how much they miss it whenever there’s a post about github

wish google would just sell me a tool to search my own site lol

given that's sorta their shit

they have one, it’s just, amazingly bad

yeah not that thing

something more integrated

it’s called ctrl + f

Google CSE (custom search engine)

it’s not like the “real” google at all

header website !uhh

speaking of

would you reccomend i steal your headers repo

that's smart!

huh, thats why i left out a search bar on my own header service lmao. people can ctrl + f to find shit quick

one i have rn uses whatever dump tool isn't RuntimeBrowser

does it have a 'jump to class' tho

the 13.5 is runtime browser dumped and reliable afaik, 12.4 not so much

gotcha

the revamp does yes

one of my favorite features of firefox is that you can just start typing anywhere and it’ll initiate a find in page

can also just tap / as I learned the other day

i wrote some (bad?) logic that lets mine work based on class name without needing specific framework

which allowed some really cool stuff combined with highlight.js

however can I recommend something slightly overkill but definitely worth the trouble

for rendering code, use monaco-editor

I’m leaving it out though because I see no point in it

the editor component from vscode

while researching you have multiple tabs open anyway + a multitude of headers

then you get free regex search, case sensitive, etc etc

bookmarking rn then

and syntax highlighting

if i can use that on a site

for header search hell yeah you totally want to

because highlight.js highlights ok but it doesn't give me anything parsable

this is what i can do now

just use pygments lul

even has a logos lexer

anything UIKit in the header browser you can click

and view the header for

and anything SB

also supports protocol headers

we gotta teach you about document.querySelectorAll() 😛

protocols are a bitch when dumped

know of, i stick to basic syntax

you would be able to use one of the Logos.tmLanguage people have made with monaco in fact

• speed

yeah, fair

oo

feel like a class based search is going to be faster than css rule based search

gm

then again i think the editor would be useless for me or at least my case, headers are prerendered and just served as static files

querySelector is fast anyway, I mean you probably don’t need to care unless you plan for this to run on an iPhone 3G

but using css rules can be nice esp. since i wrote nothing but reddit css and java for a couple years

and if u ever wanna learn css very, intimately

write a reddit theme

ah the good ole days where you’d scroll slightly too fast and just get met with CHECKERBOARD while it caught up with you

the only way you can get custom html elements is abusing the sidebar and convoluted css rules

you have to use custom spritesheets

for monstercat we even had to build a program to generate them

https://old.reddit.com/r/windows98 says hi

need to finish this rewrite lol

Reddit and CSS is such a fun thing

https://old.reddit.com/r/WholesomeFFG/

^ i wrote that

i think i win

compared to the r/w98 sub

old reddit looks bad because it would break all the countless super custom css edits subs have made

given it's hideous but

while new reddit has had CSS “coming soon!” for the past 5 years

and is janky and unusable and I still can’t imagine humans actually use the new reddit

god

why

if you spend 5 minutes setting it up it's usable

which

anything where you can say "if you spend 5 minutes setting it up it's usable" is poorly designed

like vim

new.reddit is vim

probably better but fuck that

like, if I’m logged out (which seems to happen more often lately idk why) it goes into fuck you mode where you see like 1.5 comments before it has a “load more” button (which actually is instant so it’s not loading anything, just toggling a css class)

lol

then you only see like 3 comments into a thread before you have to keep clicking “see more comments” to read the whole thing

like twitter

which'd be way less annoying if

yknow, clicking a twitter link and having it open in a non-twitter app didn't mean i was logged out

yeah but I mean at least Twitter has an excuse because it’s a flat conversation view and tweets take up a lot of scrolling space

reddit posts are just a tiny header and footer, no profile pic and shit

nsexcept actually made a tweak bounty for fixing cookies in in-app webviews

should look at whoever fulfilled it

hah I did want to make a tweak for that

cookie thing is dumb

given how i handled H+ drm

not super trusting of that though

making the web on iOS hard to use and showing confusing “Settings wants to log in using google.com” prompts my mum gets confused by but hey at least we solved like 3 companies using it to steal your Safari cookies!

which is why i really wish we could be more clear to users just how much you're trusting tweak devs

it’s like when Twitter was caught tracking the apps you have installed, querying thousands of URL schemes in the background, and now you need to declare each url scheme you want to open, and can only query up to 20 or some shit

incidentally, I think that also means the classic Cephei twitter cell code has been broken for some time, hasn’t been opening 3rd party twitter clients because it gets blocked from querying them

the new code “works” in that it only tries to open the official app via universal link, falling back to safari vc

which actually is probably a bad idea cause then you have to log into this dumbass web view with the separate cookies

this is how i did native asynchronous payment success reporting

i should open source my DRM

lollll oh dear

as a lesson in "what is the bare fuckin minimum effort someone can put into drm to make it work"

you know you can register a custom url scheme right 😂

NSURLProtocol

bare fuckin minimum effort

i should be clear

lmao I mean I can feel that vibe

@synthesize on 2021???

still hahahaha ow it makes me cry

the paypal integration itself was extremely secure

i made sure of that

I’m actually surprised PayPal still lets you host checkout in a web view

everything on my end that i can justifiably make poop was poop

Google banned web views for OAuth ages ago as well as a bunch of others

well they dont

it was hosted "on my website"

(which used the web view)

Cydia Store login was broken for weeks because you’d just get an error on tapping the Google login button

lucky saurik thought ahead and added target=“_open” to open safari

(oh, lol, I just got an ad in japanese (instead of the usual en/es/fr) on youtube)

man i'd love to throw this on gh but i don't want to get crucified because people see it and accuse me of being careless with genuinely sensitive data

eh

if you’re just using eg the paypal API as intended then it’s fine

it’s just a security measure for people who want to steal your login

this... could've been better

at least it used SSL

?

please log in with your google account in my web view! trust me, it’s fine!!

I’m not gonna use it to drain your bank account via google play

yeah the, stuff i could've done with my drm implementation had i been malicous

oh there’s sooooo much bad shit any of us could do at any moment

the host starts with secure. so it's safe

i was looking into hacks to make things work and, hm

python3-yaml

it’s a miracle it’s so rare anything bad actually does happen

lol uh

secure.kritanta.me

good old times

may or may not have exactly guessed why i named it that

"oh, my udid is getting sent to secure.krit.me?"

worst I can think of is Unflod stealing Apple ID creds when it sends the API request to auth you for an App Store download

"must be secure!"

lol

and it was fwiw

I’d hope so

that was the most painfully locked down server i've ever built, solely because it stored udids

have http://insecure.kritanta.me redirect to it

http://secure. is definitely something I’ve seen before

disabled ssh from public ips

could only get in from another machine on my network

my network at digitalocean*

I hate that it’s even something someone built and signed off on, it’s not like a subdomain registers itself

which all have password auth disabled

i could've stored them better ig

but now the only reason I can offer past customers the ios 14 version is bc i have plaintext udids

thing is, why store udids?

hash them like passwords

(guess who's not giving me customer emails :))

i should've

but since i didn't, a few thousand people are gonna hate me a bit less

shouldn’t need to though?

oh wait you're right

i could still hash yeah

yeah if you have the hashing algorithm and salt (if any) you can just have the license check verify the hash

like you only need to test the current device’s hashed udid against your db when you’re in a request where you have the unhashed data anyway

(lol)

we're discussing hashing a hash

saves processing power

non argument against hashing

Hash the hash with som big salt

SHA512 takes nearly no processing power

yeah I mean I was always hashing udids because I just really don’t want to be pwned and have all tweak DRM in the community be totally screwed

you don't even need 512

extremely simple hash will do

Less about need and more about why not

well yeah

but nobody is brute forcing a hashed udid

coming from someone who had a 2 week long project dedicated to udid-related brute forcing

wouldnt that literally be like cracking a 40 character long password

yes

20

20?

ur making me question now

i just googled and it says its 40

¯_(ツ)_/¯

NSString *udid = [NSString stringWithFormat:
@"%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x",
result[0], result[1], result[2], result[3], result[4],
result[5], result[6], result[7],
result[8], result[9], result[10], result[11], result[12],
result[13], result[14], result[15],
result[16], result[17], result[18], result[19]

20

:fruhh:

20 255 bit values

so uh

I’d say udids are easier to crack now than before though, with the new style that’s just chipmodel-ecid zero padded out

wish they used that on watches

you have a fixed amount of possibilities for the first few characters, and zero padding means most of them will have plenty of zeros after the dash

given thats why we were trying to brute force ecid in the first place

TSS backup sites could easily hoard ECID + device models for later bruteforcing repos with

of course Chariz will just auto ban you when it figures out what’s up but still

much easier if you understand ecid's pool too

I 100% don’t expect Packix to have any protection

it's not rng

it’s not?

well I guess nobody really looked into it except you

not fully

i wasn't the first actually

all they know is idk sometimes it’s long sometimes it’s short so it must be a truly random number

like so many things i've gotten into, siguza seems to have all my ideas long before i do lol

i'm just idiotic enough to follow through on some of them

what kind of SoC do they even have on those, is it equivalent to A11 and older where they had old style ECIDs?

is there a new style of ecid

and yes

no I meant UDID

i can't speak for post A11 watches

don't have one

lol, who wrote a wikipedia page that basically just verbatim copied the iPhone Wiki page https://en.m.wikipedia.org/wiki/UDID

Not to be confused with IMEI
I mean I guess

but checkm8 watches have the exact same format as checkm8 phones

thanks apple for changing identifiers at a very convenient time

wonder if there's anything related to the format change and the bugfix

yeah there are still heaps and heaps of pre-A12 in my db

but also plenty of A12/A13

guess which retard did all of them in the old style

i did not anticipate needing to move to not handling my own payments

chariz welcomes you when you’re ready 😛

and as such didn't write the logic to use new format where appropriate

yeah Odyssey for watchOS never happened so

so is there any way you can have chariz hit my own server to check activation status

not like I have an Apple Watch in the first place

I go by emailing out token links rather than by udid anyway

forgot to tell you earlier than now but

https://docs.chariz.com/chariz-pay/transfers/

oh poop

.

you didn’t get your paypal export?

nope

aw fuck

i can generate them and see they've been created, cant click, and i dont get the email

hah ok that’ll be a fun one to work with but it’s doable

so

1 sec

hop on my server and please dont hurt me

@lime pivot no point in validating that when the pool of people who're going to try and bypass that on my server is very small

and said people will just see this in a disassembler and defeat it there first without needing to fuck with my server

could do but it makes me a tad bit uneasy lmao

yeah i wouldn't do that for chariz

trying to think of how to handle that

man I look at my error logs and there’s still people finding their email for purchase transfers we did from 2017

they 404 now because moved to Packix and all that

(if you send HomePlus.dylib b'0905' the tweak activates itself)

it took them several weeks to crack this tweak

not that any of those tweaks would even work on iOS 13 or 14 I bet, it’s been that long

:/

i'd write good drm but the cracking scene is dead

hah

why try

is there any tweak that never got cracked?

yes

anything by spark

iirc

now again

the cracking scene is dead

I think it’s more that nobody even started working on cracking your tweak for a few weeks, rather than that cracking is hard

lol that too

why cracking scene is dead?

every single tweak is cracked

bc tweaks have shit drm

all of them?

a majority yeah

so how does spark does that?

bc spark is incredibly smart and incredibly good at writing complex code, and he's been doing it for quite a while

i meant his method

OSExperience was never cracked

many weren't

he did accidentally open source his DRM when he open sourced the tweak, which was hilarious

has harbor ever been cracked

swick walked me through how his drm works

I shouldn't say hilarious, it was amusing but a shame for him

unless that was the plan all along

lol

Piracy

we're discussing drm

you said the bad word!!!!!

10/10 filter bypass

please sop

sigh

loss

why warn

cmon

im discussing ways to protect tweaks

cant talk about drm in tweak dev channel

ffs

im not supporting any tool or cracking whatsoever

its just amazes me now that i know how this tool work

can't protect against it if you aren't allowed to say what 'it' is lol

@half walrus you ever got the chance to look on how it works?

ah

that was instinctual

will fix

I amusingly broke the "it" tweak by complete accident and I think it was only recently fixed

-down

I see you are a person of culture

pronouncing Cydia the way grate god saurik pronounces it

i saw that once legit client downloads the package it gets uploaded to his server and then every other client just uses the tool to donwload it from there automatically

how does he

sid-ee-ah

yeah sorry I didn't see it was development chat

not siddy-ah like everyone does

I'll lift your warns

that's how i do

slim

wonder where i picked that up

wait what's the difference

thats ok @gentle crescent @rotund oracle

thanks

like you're saying city in a cool way and then adding ah on the end

like two syllables instead of 3?

yeah

both of those have 3 syllables

is it ok to publish cdown website will all the debs?

refer to terrible talkboard episode recorded from my shitty macbook mic lmao

no

it has above 300gb of tweaks

ok i will not

don't paste that here

k

which, if u can get a tweak for free using said tool

that's not even cracking

that's just downloading

but your honour I didn't crack the movie I just downloaded it

@half walrus cant dm you

same thing that annoys me about the app that extracts ipas from memory

now u can

that labels itself as a cracking tool

there's tons of those

one breaks and never gets fixed, a new one pops up

i use the one all the pirates use

because dragon decrypt is broken

haven't needed it for ages but yes probably the same

I find it amusing Flex effectively has a crack tool built in and everyone just, pretends it doesn't exist

flex or flEx

weird flex but ok

one of them needs to rebrand i stg

the build your own return false one

like i'm sorry coates, i know u were first, but its probably one of the more annoying things here

made worse by the fact someone added this functionality to Flipboard explorer :)

hah too bad considering The Other Flex started outside of our community

hahahah

• flex.ipa hopefully gets a rebrand and redesign

given supercharge is poised to entirely replace it at this point

it was useful as a header browser for a bit but now supercharge does that better

speaking of

runtimebrowser is broken on my phone on iOS 14

wen eta supercharge

aw really

cant open the headers to view them

so not a bad bug, probably just a uikit one

I would rewrite that whole app if I had time

it's so slapped together and not changed since like iOS 4

if you rewrite it, just use my website

i was thinking about this yesterday

RuntimeBrowser 2.0 but it's actually just a web view to krit's website

.

.

have normal UI but pop a webview every time you open a header

when you click a link in a header, use the hack i used in my DRM to hijack the link

- (void)webView:(WKWebView *)webView runJavaScriptAlertPanelWithMessage:(NSString *)message initiatedByFrame:(WKFrameInfo *)frame completionHandler:(void (^)())completionHandler when a website in an alertview calls alert() in the JS, this code triggers

oh nononononononon

lol

keep that thing away from me

😰

have a better way to transfer data from js to objc?

NSURLProtocol

and there's a JS message events API something something don't remember exactly

for two-way message passing

ykw fair

hahah I can respect the hack works though

pretty sure that hack is a krit original, i'm proud of it

that's insane and amazing at the same time

let me see what message was

TXID

alert("if you see this what the fuck are you doing")

this is where i didn't validate it

so i sent the TXID via alert()

to the tweak, who then messaged my activation server (not on the same machine as the one hosting the paypal view just for minimal security purposes)

fun part is

I mean that separation is slightly more effort than I put in

secure.krit.me doesn't validate the transaction ID :)

I'm not confident it's actually worth the trouble

you could've sent it literally anything in the payment field and it'd accept it

especially when PayPal is the one doing all the sensitive stuff and I don't need to be compliant with payment industry regulations in an 800 page pdf

i wasn't wondering "if" it'd get cracked, far more interested in which route they'd go

in retrospect the tweak cracking itself to activate kind of sealed that deal

I think that kinda does hurt the DRM scheme

so the fact it took several weeks to end up on a piracy repo is

like, if you can just grab the dylib, you just package that up on your pirate repo, right

sigh

yep

but yes, agreed, sigh

running redeb after you pay is all you need to do

removed all of the activation checks once i realized that

'cept for the visual one

wish it were possible to ship a paid tweak without any drm, but then how do you make it paid

repo is your DRM

we've come full circle

well… that's not exactly great

just needs one person to buy it for it to be "cracked" aka silently uploaded by the "it" tweak

funny how i hate drm given how much drm shit i've written

i do want to use some of my new stuff when h+ is on chariz

@gaunt mesa has seen a small piece of it

unshimmable udid code

why use redeb anymore we have dpkg-repack now

i was wrong, luca's libsandwich cant bypass my code

lol I didn't know parcility has dra1n integration

you'd need tfp1 to bypass it

well, you'd just want kernel r/w

yeah im sure just about everything in that database is wrong

yeah I mean it seems kinda obvious that a visualiser tweak will be rendering graphics and rendering graphics consumes energy and energy consumes battery

doing it through dyld would make you repeatedly cry

if you even could

i should take it further and remote the IOKit.framework dependency lol

make it literally require kernel r/w to bypass

unless, @ muirey, I'm assuming IOKit talks to the kernel using mach ports(???), would there be a way to intercept that and change data now

nvm billy's youtube video walks you through writing a fuzzer that does that

someone sent me a tweak piracy site and this is the first thing i see

cc @peak quartz

the Yes button is broken

click on the folder on the side

you have to click no

and then it lets you in

also good

polish website

yep

178gb of tweaks

none of mine

no way

see this is why people add pirate repos though

everything is in one spot

also we’re working on exempting most / maybe all piracy words from development, will probably finish tomorrow

pirate repos are just Netflix for jailbreak

thank you so much for this

tryin not to get pixelomered

well...he was just stupid

so am i

i tried vouching for his unban then he makes me look fucking stupid by doing the same shit

what was the story?

im not updated

he bypassed the filter

not to say something bad just to do it

@tepid olive, Couldn't find anything matching that search query!

he exploited tf outta the bot, got banned for it, unbanned again under the condition he doesn’t do that then did basically the same thing again

did he opened a CVE?

which is in character for anything jailbreak dev

i wouldn't expect anything less

is he banned rn?

yeah

thought he was bakc

ah lol

that's dumb

let him break it

its what we do here

he got banned for fucking with paracility

i agree

because it’s not our bot so he could fuck with it anywhere else

still dumb

its free QA

Aarons not hosting a bug bounty mate

lol

isn’t our bot to even make a bug bounty off

not paid

but not banned lol

Damn I should be paid for telling Slim his filter was broken

it would’ve been fine if the exploitation wasn’t so spammy tbh

no problem i think

and for fucking with a bot that isn't even ur guys'?

well

that's their concern then

1. he could’ve added it anywhere and it’s what aaron said to do

2. he broke their backend doing it

still their concern tho

and it would’ve been fine but people kept spamming it and making it worse

contact them if pixel wont if it's such a concern

how tf would spolier break the backend

we didn’t know what he was doing

ppl write shit code

#general message @tepid olive where’s my bug bounty

unsurprising

blame renai

probably didn't wrap main inside a while True: try except

I'm gonna make my depiction '); DROP table packages; --

actually idk who wrote the backend could’ve been sonic, shuga or renai

lmao

or $(rm -rf /)

pro tip for 100% uptime on any server you wrote

just removed two pages worth of redundancy from the filter

true

bonus points if you have it email you when it crashes and you get your inbox destroyed

True!

speaking of input sanitization, when I released an update for my Icon Themer shortcut that generates profiles on my server rather than locally - which allows me to sign the profiles and collect anonymous usage stats - it seems like somehow it was not downscaling the icons properly

lol

since it is very popular, it generated about 30000 .mobileconfig profiles daily (I have a cronjob auto-delete anything older than 24h)

and they took up like 50 GB

L

mm image scaling in objc

apple must love that

I added in an imagemagick resize in the server code, now 30000 profiles only take up 1 GB

steal H+ code for it

i suffered so others can live

I mean it was on my server, but they don't exactly love people abusing webclips for theming

I read a long paper about doing this in Swift

they fucked with it so much in 14.3 that they introduced a bug that can bootloop devices by just installing a webclip

still waiting for Apple Product Security to reply to my email

what is your pfp

Senua from Hellblade

always wondered

Haha

how 2 blur + darken an image

Hellblade is one of my favourite games to exist, and my pfp is from the trailer for Hellblade 2

only on stock apps

true

h+ looked so fucking awful before this code

imagine a black bg there

imagine if the piracy/scam sites figured out how to make a bootloop profile

slide to jailbreak bootloop

lol

i mean not much different from how it is already

the stuff they did to velox to crack it

holy shit

proof

i bet it nukes your battery to accomplish the job

like honestly thank god h+ cracked itself

so they couldn't fuck it up like they did with velox

i’m pretty sure they only cracked velox out of spite

90% of our crash reports were pirates

so it’s just bad

They should of just rewrote the tweak then

Ezpz

i missed this but that's what i heard

was daniel taunting them

no

i think tr1 was lol

I thought it was burrit0z

it was one of them

might’ve been both

iirc both

because they sent death threats to him when it was cracked

not their fault though

well

it was their fault but who fucking cares

i think burritoz was making fun of how bad their multipla crack was

daniel got pissy

like do you not get how it'll end up helping sales in the end

I still don’t get why pirate repos mirror free tweaks on default repos, other than to inject malware

i didn't have h+ numbers to show him at that point but /shrug

that’s the whole point

one sec

i refuse to believe they mirror shit for fun

.

i’ve never compared the files though

They admitted to modifying the system

i like how they try to block competing piracy repos

Yeah that’s one thing they do

they mirror shit because it makes them incredibly convenient for users

Mr Landres modified the host file to block other pirate repos

my repo list is saved in my icloud backups or honest to god i'd probably use one

Which is just funny imo

it doesn’t even work

because it's so much easier to go to one repo and get everything you need

have to add two github.io repos to install Flexall

i think it’s funny because they mirror but a lot of tweaks these days check if the ID was changed

@twilit jungle pls fix

bless nep

who's the reason for that

The fix is to use FLEXing

Pirate repos don’t even have my 2 free tweaks

should be standard practice just to troll them

urs is the only one that uses libflex

just be 2 molecules nicer if i didn't have to add that guy's repo

not his biggest fan anyways

FLEXing doesn't use libFLEX?

Kinda sad how I’ve been working on an nfc tweak for ages, and my main phone doesn’t even have working nfc

i wrote without a jailbreak for a while there

when 13 dropped iirc

You can always install the 0.0.11 version (its an old version of FLEX but doesn't have the dependency).

pre-checkm8

My whole motivation was putting my school card in wallet, now I’d have to carry a 2nd phone for that

so when i updated i kissed jb goodbye for a few months

I just want the flex of using the Apple Pay interface to beep into school

the idea would be to mirror libflex on your repo

or even just bundle and provides: it

shit that reminds me

@half walrus do you have any way to blur the background in general and not an image?

that one weird dude is maintaining mitsuha now

need to update statusviz

UIEffectView iirc

for the 3 weeks it has an active maintainer

i have code somewhere let me look

I’ve done it a million times before but I’ve forgotten the exact way lol

I’m getting the ugly above blur and I want the bottom one

how did you get the bottom screenshot

Instalauncher2

https://github.com/CharlieWhile13/Shade-App/blob/master/Shade/Shade/Views/ Light Control Popover/LightControlPopover.swift this is how I do it, there’s a massive enum of types of blur