#development

this is what happens during a kid’s first sex ed class

he just got out

true

when did openssh and gnupg switch from RSA 2048 to 3072 as default

RSA 4096 gang

we’ve all been there to be fair

been out for a few months but he’s still talking about it

oh yeah lol

true but letsencrypt

we used to have like

I do use ed25519 for SSH keys tho

a confidential question box

lol

and half the questions were just cock jokes

cock joke true

i still haven’t outgrown the smile when someone says dick or balls though

nice

probably won’t ever

yea i’m looking at mine rn

this is the correct answer

ok

no

this is even more cursed than react obfuscated classnames

does hikari even have objc class method name obfuscation?

it has more

hikari is trash anyways

it has obfuscate everything basically

lol it reminds me of ProGuarded Java decompilations

just make sure you have the latest versions anyway

latest version of what

hikari?

hi kari

yea

wait, idk if this has been talked about (it probably was)

Minecraft.func_1257815_a();

yeah i use a build from last january

old

if minecraft can be ported to ios with openjdk in theory can't ghidra as well?

ik

it has been

to some degree

ghidra should honestly be easier to port

muirey has a build on his github

it's just that less people care about it probably

using the decompiler from it

yeah

idk if he made it public tho

doesn't have the servers and stuff to connect to

yea he did

https://github.com/Muirey03/R2D2

works pretty well

nice my site doesn't work in IE except on Win10

I should redirect the remaining IE users to a rickroll

when the nsa backdoors ghidra so they can create a stockpile of exploits that people find

USAUSAUSAUSAUSAUSA

america moment

it’s open source tho

and you can audit it and compile yourself if you want

rolling eyes

true tho

[[ghirda]]

@restive ether, Couldn't find anything matching that search query!

sad

the joke isnt open source

ghidra for procursus

the joke is your mom

true...

wait

and how good she is

i wonder if anyone has hacked the nsa using nsa tools

[[r2ghirda]]

@restive ether, Couldn't find anything matching that search query!

ok

[[radare2]]

true

[[r2ghirda-dec]]

@restive ether, Couldn't find anything matching that search query!

n

https://github.com/ProcursusTeam/Procursus/blob/master/r2ghidra-dec.mk

true

https://parcility.co/package/r2ghidra-dec/procursus

true

lmao this bot is broke https://parcility.co/package/pacman/procursus

that’s the actual name

oh i see now

didnt see the .control file first

rust looks like a combination of every language i know lmao

lol

@tepid olive lol you made it hook springboard, I'll just change it to be a commandline thing so I can test without crashing stuff 😛

lmao yeah, sorry

i mean it hooks nsobject anyways

yeah true

yes wow you can make tweak without logos??

so cool

give him advanced

https://github.com/theos/theos/pull/570

the point is that it’s a bug where if you supply a selector that doesn’t exist and a NULL ptr for orig address; it crashes. the only way to demo this is to not use logos lmao

yes i was being smooth brain like normal

<— visual guide

yea

if that’s a backtrace then ye

no

d9c called whatever is on the left

Send me panic log

and that called fd0

I’ll handle the vulnerability

Or issue

is capt a h4xx0r now?

m1 be like

True

No exploit cleanup moment

Just endless panic logs

nvm that’s just the order of what was called

we’re overthinking it

brain dying

assembly true

those are just return addresses

nah d9c did call fd0

well really it was d98

but true

yes technically

yalu143 is still running on my phone

and it didn't call fd0 it called the function that fd0 is in

@grave sparrow you’re mother

you're*

and fd0 is just where that function called some other function

being whatever function has 4e0

I think we're at the point of shep-splaining now

and yes

shepsplaining

branch does not push to the call stack

true

true

i just have to act like i still know what i’m talking about

we

gu

dont mind me

gotta maintain advanced somehow

yalu143 bro @primal perch

Help make it

And you’ll keep it

the base of the stack

top of the functions stack frame if you will

frame pointer kinda dumb i never use it

any stack variables in c really

I like overwriting return addresses

its so every value on the stack can have the same relative address

instead of a new relative address when sp changes

it’s more useful for debugging really

I need to get an iOS 10.2 device

a

I want to start practicing exploiting voucher related vulns

follow your dreams balls

Seems hard to get into but once you really get deep into it, it’s really easy

useful diagram just remove the r and it’s arm basically

Developer shep

true

But yeah I need to get an iOS 10.2 device

It seems like a really simple bug to exploit

yeah true sp

thanks shep

simple, don’t use unsafe rust /s

bro

chipid is number

that was the intended comical effect

see my code

@gaunt pewter https://github.com/Burrit0z/udid-calc/blob/master/main.m#L39

ah pointers

i’m cured

point deez nuts

this by far is the worst line in all of it since i was using objc++ compiler https://github.com/Burrit0z/udid-calc/blob/master/main.m#L56

(int)6=0;

rip formatting

nvm

mobile

*(int*)6=0;

true

is a language really thatgood if you can’t crash in 11 bytes

dlsym

when there’s no dlclose

🌑

NSNumber *

true

swift

pls help

where is the re meme

https://cdn.discordapp.com/attachments/451637392227565588/813921471348080701/Es8DO5KU0AI0BFb.png

Not really

buy okay

bruh moment

it would help if i knew more swift to begin with

BL              _$ss10SetAlgebraPsEyxqd__ncSTRd__7ElementQyd__ACRtzlufC ; SetAlgebra.init<A>(_:)``` WHAT TF NOOO NOT MATH

true

arm64 is more complicated

how use rust in arm64e tweak now

loaded into sb ofc

REing swift is easy

the rest idk Bc I haven’t checked

Yes its still binary... just like any other binary.

all i know is the code i have works on arm64 and arm64e

did i write nsstring for arm64?

lmao

you scared it

be more considerate next time

some tasks are easily frightened and panic often

i can’t be 100% sure but i think it had an error

I am pretty sure it felt sick

_ _

imagine decompilers

@tepid olive stfu that was stolen content

i already said that

#development message

copyrighted

sorry i had to dmca your message

@tepid olive lol your test helped me identify a completely unrelated bug in new unc0ver that pwn is fixing now.... now to try to duplicate your substitute issue haha

nice

glad to help

does this mean i get early access to unc0ver 14.3 for “testing purposes” /s

gotta love that fixed and stable uncover

surely pwn isn’t lying this time right

hello smart C developers

what does this mean

you are returning local pointer

okay fine...

you are returning pointer to stack variable that is soon going to go out of scope

so its returning the pointer and not the actual thing

oh

if you need to access a pointer outside of the function then you have to use malloc

or just return the value

bro

you’re dumb

learn c

thanks

or pass in a pointer to a buffer then fill that

true

generally you want the caller to control memory allocations

i shouldn't have said anything

instead of just returning a mallocd block and be done

lol

that’s how i like doing it anyway

thats the preferred c standard

but standards be damned

if i’m gonna return blocks of memory i like to pass a buffer and malloc in the function but that’s just how i do it

yeah thats the better way of doing it so the mallocs and frees are balanced

imo at least

it’s true

as in true

as in !false

alternatively make it static but that is use case dependent

and often times not what you want

or just don't use memory

true

i’m more of a

void *cock = NULL;
fill_cock(&cock); ``` kinda person

Thats the worst

But you tried so gj

@tepid olive it's crashing because your &orig is NULL

not because you hooked something that doesn't exist

I'll fix it anyway

yeah i’m aware, i don’t need to store orig in my case... if selector exists even passing NULL doesn’t crash

Ah the usual interface error between the monitor and the chair strikes again

true

that’s why newbies should probably stay away from the big guns and use something like rust

yeah but that wasn't what you said, would have made it easier to find it if you said that lol probably wouldn't even have needed to look at a crash

Had to keep you on your toes

https://tenor.com/view/troll-get-trolled-we-do-a-little-trolling-gif-20266975

sorry, i tried to make it clear by commenting the crash only happens when the selector doesn’t exist

// When selector is NULL and pointer to place orig is NULL, substitute 2.0.8 crashes

yeah I probably didn't read that as closely as I should have

like... at all

so who is the idiot here

I was just going off what we talked about here haha

I don't parse comments lmao

they're commented out!

burritoz, bingner, ghost or shlorp

e> all of the above

true

yeah no problem, dw about it

@tepid olive strange that would be a new thing tho

pretty sure that bug always existed

lmao

n: your lither

maybe you really just gotta check those pointers

all i know is on substrate it wasn’t causing a crash

yeah it wouldn't on substrate

but yeah thank you

np

we do a little trolling

sileo on arch linux

nvidia drivers on linux

you are a brave one

@tepid olive if I send you a new build can you validate it? I mean I duplicated and I know it fixes it but still lol

yeah sure

i’ll be able to test in an hour or so

eh I'm sure it fixed it

and it's safe, I'll just push it out

alr

p sure it’s very simple and shouldn’t cause any issues so yeah

sounds like one would just move a line under an if

inb4 breaks everything

nah

https://github.com/sbingner/substitute/commit/ca526505b54f948182e6d21248b7f78ad39cc161

if you can find a way for that to break anything let me know 😛

yes very big breakage. will bootloop the user

/s

true

like veza

true

lol

True

strcpy

strncpy

amogus meal

yes

that will be 6.76$

ok

https://tenor.com/view/wachimingo-gif-19259498

Temmy irl ^

@temmy

strdup(strdup())

memory leaked

oops

@lime pivot right?

that was me 3 years ago too

I checked git blame because I wanted it to not have been me

cuz I know better

hey at the end of the day its still partially user error

hah I know the feel

so you can just blame the user

not really, allowing NULL as orig was always the spec

got to a point at work where most bugs I was fixing in old code started becoming mostly git blamed to me

and in general, settign a pointer passed from a user needs to be testede

yeah that's what happens when you're the only one doing all the work tho 😛

question, is there a way to get an NSInputStream from an http GET response

I’m guessing not

maybe with CFNetwork, but that’s all deprecated stuff and doesn’t support http/2

ah, thanks

I probably needed to refactor anyway

my current code base is spaghetti

you just need more sauce then

true

if you've already made spaghetti, no point wasting it.

might as well eat

if one more person on the flutter discord tells me that it's impossible to build for iOS on non-macos i am going to murder the ceo of javascript

i could go for some

big brain

sassed the first guy who said it

next reply 4 hours later was another person saying the same thing

wasn't the question i asked

praying someone decides to argue about it bc that's the exact response i've gotten for the past 3 months asking the same simple question

what if ur like @grave sparrow

he claims to be a perfectionist

but then went in to release typecentury :fr

@half walrus link to that discord so I can go say that there?

not sure who the ceo of javascript is but I'm pretty sure I'm ok with him getting murdered

but seriously you can link them to the tweet from longhorn or qwerty iirc saying that we compile all of checkra1n on linux

i wont fight back thats for sure

wait seriously?

even the mac app?

Yes

All of it

Pongo too

i would fight back to the death

unfortunately he died in 2011

what is dghost looked like this in real life

bruh stolen emote are u serious

we cannot send the leaked photos

ghost

u should license ur emotes obviously

then u will become le rich

true then the ghost dev of the ghost emotes can take 50%

wtf

but its canadian law so who cares

LOL

@lapis vessel hi, I finally got time to look into that CVE you found on 14.1. I reverse engineered it and found the exact vulnerable function in the kernel and played around with ool messages to get a hang of it. I’m just having trouble getting the IOService using IOServiceGetMatchingService(kIOMasterPortDefault, IOServiceMatching(“AppleAstrisGpioProbe”)). Apparently the service isn’t available on iOS? I had asked Siguza and that’s what he said

char* test() {
    io_service_t service = 0;
    printf("Starting");
    service = IOServiceGetMatchingService(kIOMasterPortDefault, IOServiceMatching("AppleAstrisGpioProbe"));
    
    if (service) {
        printf("Opened service");
    } else {
        return "Failed to open service";
    }
    return "got AppleAstrisGpioProbe";
}

The code snippet^

I’m on a 14.1 iPhone X if it matters. Is it vulnerable on macos only?

@tepid olive

nfr

idk, reinstall, try respringing

it means it can't access the widget bundle at the path it's trying to

I tried respring

I just updated to the new version that was out

reinstall

crops out the actually important part of the log

nfr

true tho

apt-get

apt master race

Honestly yes

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍ ‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍ ‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

‍

really

stfu

‍

no

‍

‍

‍

<@&355174844205367317>

‍

‍

‍

‍

‍

i dont care

please ban this idiot

🙄

who pinged

i can never be silenced

bruh

‍

‍

‍

yeah thanks

np

Bro

Emma

‘

Never lets me have my fun

sure you cant

too bad

u snooze

u lose

gotta go fast

how about we ban u instead

please

do it you bitch

make me admin instead

Gm

cock

ban

fix dicksplay port

ok

you

@restive ether no you’re the display port cable

you’re the retarted one

Yeah

yeah

@half walrus idk why I decided to randomly check your spotify status when I usually never do

And the one time I do

Gangnam Style

Banger tho

The service was available on iOS 13.3 which is where I discovered the vulnerability. It may have been removed in iOS 14 I haven't actually checked

hi developers why does cmd not work

it just loops this when i use os.system("SHUTDOWN -r -t 00")

am i doing something wrong

i might be tempted to just kill csrss

thanks!

@worn flame why not shutdown -n

i think thats the flag

for now

gm aspen

how are you

prob

fun

how do u programatically construct a PSStaticTextCell

It should be somewhere on dev wiki

That’s all I remember

yeah seems like it is

i didn't realize it had the programmatic versions too

i can't get my swift prefs working

byt thanks

yeah

i just don't know the cell enum

is it just PSCellTypeStaticTextCell?

oh nvm i found the header

yep

ok one more thing, is there a way to get the UISwtich in a PSSwitchCell

@property UIControl *control

good morning developers

good morning

develpers

D3v3lp3r5

good morning

what the fuck is the format specifier for char *const *

@surreal mountain are you serious? if so, please take a moment to think of what char * const * actually means. Then you’ll be able to figure out the answer

So explain, what does it mean?

man is playing osu

2.5

holy shit he has no life

oh shit i can’t say slurs here

@surreal mountain ping me when you’re back

gm

i was half joking when i said that btw

@tepid olive

so you know how to do it?

how to use it in a formatted string?

@surreal mountain

if so, go ahead, let’s see

hold on i deleted it

oh i just ended up changing the func signature

or whatever its called

input

thing

It’s %s, *ptr iirc

yeah i think you're right

doesn't matter tho i was doing what i want wrong to begin with

it should just be char * not char * const *

so i changed it

¯_(ツ)_/¯

yeah, char* const* is basically just a char** that’s constant

yep

lol

but then i could just %s, arg

what

is that

theme

raw text

there is no theme

tbf i prob shouldn't be talking

you probably use like the greenish blue theme whatever they call it

OOOH

LORD

Vs cowd

looks better with code in it

ROOTIFY.C LMAOOO

true

rootify.c

Vulnerabilities waiting

false

rootify.c is abandoned

/opt/pro/

ugh thats some control flow alright

ok

why do i feel like that’s a 1000 line method

79 actually

gnu make moment

ok

Thats a theos moment

Not a gnu make moment

day 3 of writing a decompiler: fuck

true

yo @gaunt mesa wanna /duel i'm bored

@half walrus he's doing something rn

smh my head my head

learned how to pvp last week

lol i suck at pvp

uh

my friend pete is on if u wanna run trios with him?

guys im cumming

turkish man code

damn unc0ver dropped already?

yea

sadly

yes

seems like a toss up if it’ll like your device or not

nfr

worst jb ive used by far, took 6 times to jailbreak and have had multiple reboots out of no where.

worse than i could have imagined, i thought it would be usable atleast.

LMAO

L

!t unc0vermoment

@icy tundra

ye?

this doesnt appear to work in u0 6.0

Disable auto updates is enabled by default and yes there is an option if you look closely

yes ik that

Lmao

It works on 6.0

yeah works here

rip @lethal kayak

and other geniuses

F

@tepid olive

what

FYI I added a popup when you enable restore rootfs now

oh nice

tbh im not complaining either way, i kept ota off when restoring root fs on 13.5, which allowed me to not accidentally upgrade from 14.3

should probably get around to futurerestoring to iOS 14.3 on my ipad sooner or later

I probably should have saved blobs for my phones in the first place

F

14.3 on my ipad was only time i ever have

i had to wait like 9 months for it to be jailbreakable

bc 13.5.1

not doing that again

Patiently waiting for a13 support for future restore

Man

Im so pissed

wtf my ida just updated to version 69 and got a new icon

https://cdn.discordapp.com/attachments/748927139927031910/815304958437490738/802200768933265439.png

the only device I could jb was my iPad, because I literally haven't used it since updating to iOS 14.0 GM

lmao

it means I'm testing the oldest version in the support range which is kind of a good thing kinda not I guess

develment

something something coral yum

@undone nest tell me that was a joke

it was

I wouldn't put it past people to do that with an icon lol

https://github.com/KritantaDev/HomePlusPro

tfw source code releases before the actual tweak

does it not have a hgsp4 patch?

I see

in that case, the API is probably not public

if you want to try using it privately for research on your own device, I would try reversing libunrestrict

they really went super far to hide stuff wow

@tepid olive on Odyssey? Just use hsp4

Maybe on A11 and lower. hsp4 is dead on A12 14+ though

I won’t go too much into detail though as Odyssey14 is pre-release software

libhooker uses it

it won't be

it's a shame they went down that route, libunrestrict used to be open source, even after unc0ver went closed source

I knew they closed-sourced it, but didn't know it had now been obfuscated as well

The one detriment to it is that it reinstalls itself every reboot

There’s never the opportunity for device freedom

@half walrus https://github.com/KritantaDev/HomePlusPro/blob/31a4bbfb39f8fb784209c0b7cb26d3ea1045c87d/HomePlusEditor/EditorView/HPControllerView.m#L311 wouldn’t it better to use the UIFeedbackGenerator or that other one

I remember someone saying once that you shouldn't do that in tweaks

the public feedback generators don't actually have an equivalent of that specific one IIRC

1519 = the old "peek" vibration

:peek:

damn

https://github.com/KritantaDev/HomePlusPro/search?p=1&q=TODO

I love this

atomic memory operations in a shellnut

shell nut

:who

stfu go drink alcohol

that's u

not me dumbass

no that's literally u

meth man

u smoked meth out of lightbulbs bro

bro

stop talking about urself

Gm sexy orange names.
To the purple names, morning i guess...

hayden

where the white names at

you and me are the only sexy orange names

remember

Ok

Scoob

Have u seen emo hayden

emo hayden no

Oh shit

Here we go

wtf

wtf

Lmfao

you’re gay

Burrito

Have u turned 10 yet

What about us sexy coral names

Those r fine

gm hottie

https://twitter.com/emiyl0/status/1365933021631774723?s=21

true

i want to bonk people who say this about things that just release on the head

ok

cydia

beacon of speed

and stability

@heavy kernel u gonna take that bonk or fight back

i made a reply

@half walrus i do agree with u to an extent but it's like

i think there should be a big warning somewhere around here

saying it'll be unstable

before everyone goes and bootloops

arm64e users in shambles

the website itself advertises the tool as stable

which is just simply factually incorrect and misleading

"Unc0ver has been extensively tested to ensure it's a seamless experience on all devices."

i don't think it's really been that seamless in my opinion

oh i didn't click on the link just read the embed lol

lol

fight fight fight

who would win if you two scrapped

i ain't interested in fighting that's just my opinion

this shoulda kept in beta for a bit longer imo

i think krit is great so no fights

all my apps are crashing on the new unc0ver!!!

how fix???

no they aactually are

lmao i cant rejb

F

it may be pretty bad

this seems like one of those that’s not exactly acceptable no matter what kind of release it is

honestly i would be fine if it had a big read warning saying stuff was gonna be unstable

but the website goes out and says stability is "guaranteed"

bro its just rebooting me LMAOO

jail​break stability is guaranteed direct quote from the website

i had this issue with checkra1n too

Unc0ver has been extensively tested to ensure it's a seamless experience on all devices.

like ???

checkra1n randomly started crashing everything

even spotlight wouldnt launch

having the same issue on unc0ver now

there's not even a mention of the possibility of it being unstable

yeah there we go, it rebooted me again

that's why i'm annoyed lol

so it’s substitute issue then

no

i was using substrate

on c1

loss

just hates you bro

also wtf does the load tweaks option off still load tweaks or something?

what does the crash log say for the apps

there is none

i heard the tweaks off switch doesn’t work

lol

ayyyy lets go im in safemode

woo

oh did i kernel panic

yes

in safe mode

L

yes

lol

OMG AGAIN

ITS ACTUALLY SO BAD

LOL

ok now we are good

for 5 mins

welll all aps are crashing again

10/10

bruv

Yes jailbreak stability

Nothing about app stability

Or springboard stability

It literally fuck my springboard

Blame Apple

Not the jb

😤

this is by far the best response

no

It literally fuck my springboard

where's unc0ver

that had to be jay

god thats so funny

i tried to change the shell for newterm and i got stuck in a safe mode loop

bash moment

Yes obfuscation offers the best stability

Not...

Security: the best feature is the closed source, so hackers cant maliciously change the code through the hacking forum of github (/s just to be sure)

epic

bro all my apps are crashing again

niceee

it’s to stop apple

To stop bazad

Just a trillion dollar company with better knowledge of their OS then the people who are jailbreaking it.

They don't even need to have knowledge of their OS, they can literally instrument or profile the source.

hence why it makes 0 sense to obfuscate jailbreak source code. Since it is probably a tiny pebble in their path

Honestly I am more surprised Apple doesn’t do harder implementation of things. Since they can and it wouldn’t break them a sweat

Only reason I think they let it go by is cause there are a lot of ideas. That they get from this scene.

I mean its like a really small group compared to their entire userbase.

That is true, but a lot of implementation of tweak have been ported to iOS in one way or another

Doubt the business side of people give enough fks about where designers get their ideas from.

Lol jailbreaking is not to be taken seriously on that level

I’m agreeing with you bitch

panic again

k3rn31p4n1c

true

unc0ver your device’s potential

true tho

maybe you should unc0ver some hoes

unc0ver the stability of this jb

shlorp 💎🤲Today at 2:15 PM
maybe you should unc0ver some hoes

Can someone tell me why theos is shitting itself every time I try to compile my tweak

It seems like that it’s not finding the header for uikit

do you have sdks

Theos is feeling sick today, you'll have to try tommorow

true

@tepid olive ok i don't know how did you do that, but 2.1.0 is the shittest version in the world

LMFAO

2.1.0

tell me thats not the latest multipla?

it is

did you

crack it

ofc

LMFAO

ok

@tepid olive do you know wh shad0wdev is

yes

i just added #import <UIKit/UIkit.h> and it worked

@vale gust how did the new drm hold

😐

sspd13 still broke as hell tho

about 2-5 mins

lmao

LMFAO

it actually isn't new just hidden differently

true true

idc, not like a drm matters at this point LMAO

ok

true

DRM boring

i gotta think of a solution

the tweak has been out for a year

sspd13 closing still broke

something is not deinitializing

Starts distributing to piracy repos

true

give me multipla

so i can create an opinion piece on it on the mattstar45 blog

aneurysm true

true

ok so what other identifier is there apart from self

nvm

i have another

https://twitter.com/pwn20wnd/status/1111652013488537600?s=21
pwn moment

idea

so true

based pwn?????

bruh that was last 2 years ago

lol ik

literally everyone used to say that word

yea now you get cancelled

ik

i still say

it

imagine caring about that word

its not like a lot of us care

sounds pretty r worded

poggers