#futurerestore-help

if yes then reboot

then try again

okok

thank you, btw

I mean it

sorry for asking so many questions and being annoying

its not annoying, asking for help is good

^

new bb should work on old ios tho

!t asktoask

like back in older ios it works

never ask to ask

just ask lol

I guess yeah but I've had lots of negative experiences in here where people would cuss you out for not knowing things and asking so yeah, it's really refreshing to have people who wanna help and not ridicule you

i know lol hate that. be like i have a question

ok whats the question

ur not asking the right people then haha

and ppl saying taurine is better than u0

even tho no one cares

wasn't even asking specific people, they just were there and made fun of you while only half-answering or not answering at all XD

most people tend to think this is false

so thats probably why

right so I rebooted, did restore rootfs, it rebooted again

alright

you should be ready to futurerestore now

okay fingers crossed

best of luck

Update or restore?

update

Rootfs?

yes

Well it's 10 again in the UK LMAOOO

living in the uk, i can confirm this

I got the mismatch error again

Wrong nonce?

omg i told you lol

it does reset after a reboot

not you btw @wheat basalt

literally everyone else who tried telling me that it stays

if you turn off auto-boot.. it stays

i don’t think you’re gonna be able to use -u

make a backup

and use futurerestore without -u

Lol

Mad work

oh yeah I've got a backup

my point still stands, its not default

although nvram syncing might help it

so re-jailbreak, set nonce and then futurerestore without -u?

Nonce resets after reboot?

setting the nonce should disable auto-boot

yeah, and dont reboot after setting nonce

that's common practice

i think its enabled again when restoring rootfs @vivid nova

why would you restore root fs

just set the nonce, disable auto-reboot then reboot

to stop fr from messing up the snapshot

nah theres some jank shit going on with -u

while jailbroken

you don't need -u

backup, then restore from it

-u is lazier

true, but it does make it easier

Auto boot is that nvram arg to boot into recovery?

yes

then it doesn't clear the nonce

makes sense

okay.. so what is my best bet now

it's literally nvram auto-boot=false

jailbreak, set nonce, and use futurerestore without -u

after fr just restore from your backup

turn off auto-boot

it wont reboot

it should

next time it boots it’ll be in recovery

so it’s fine

Fr is so finicky

that doesnt clear the nonce

pretty sure fr will automatically do something to enable that too

yeah it does

looking at the logs

I assume you can't do this on the phone itself? Heard something about nvram is locked

checkra1n has it unlocked

as for u0, dunno?

chimera? nah

u0/taurine dont have it

How do you do it without jailbreak to make phone enter recovery

but it is possible to set auto boot from an ext. device

ext. device

upload ibec/ibss with irecovery, then set env

it can set auto boot

So the computer

yeah

How come computer can't set generator then

computer can

without jb

he means

depends on the state of the device

you can set gen without jb

I messed around with irecovery today and got into the shell or something but got stuck there lol, all commands just returned some weird string

how

At what stage

And with your own generator?

the same as setting nvram

ibec/ibss allows irecovery with nvram

just set gen there

ugh it won't rejailbreak ffs

That can't be true, otherwise we'd be FutureRestoreing from A12+ on latest?

prob could

kinda, need keys though

and that requires bootrom expl

lol so u cant after all

So to edit nvram, we need what keys

ibec and ibss can be uploaded via dfu can’t it?

you can set generator on checkm8 devices without a jailbreak

wait I'm an idiot lmao

ibec/ibss IV keys

restore rootfs gets rid of all tweaks

yes

brain fart

ohh so like when redsn0w got ibec to bootsrap ibss and execute something

redsn0w worked differently

I have a theme installed so whenever I do not see the theme my brain goes "not jailbroken"

it patched the ipsw

U just need sileo

it was patched out of signature checks

so then you could use it with itunes and redsn0w itself

without the checks

These keys are specific to each individual device?

this happened in the restore ramdisk?

iirc

or was that what was executed

it literally unzips the ipsw, decrypts ibec/ibss and ramdisk etc then re-zips it

i cant remember exactly

oh ye

Can they revive something like redsn0w for Checkm8?

ibss executed the ramdisk

not without a lot of work i assume

Redsn0w had some restore function

when ibss was sent, it allows any ramdisk to be used

Pretty easy to work

that then, was when the exploit took over

because the device wasnt verifying the signatures of the ibss

so it just was allowed to do its own thing

makes sense

but really something like that could def be possible for checkm8

we got the next error

back then itunes did a device compat check, signing check, then used ibss/ibec from the ipsw to restore

ibec

I feel like I'm collecting them like pokémon

unable to place device into recovery mode

We need Checkm8 redsn0w

run fr again

nowadays it goes through whitehouse security

from recovery mode

exit first?

no

from recovery mode

Is that how untethered jb's work? Basically replace iboot with our own to allow CFW?

ok

much more complex than that

Oh lol

either the llb is patched or the kernel is patched

cfw is not always used.. the last untether adds a daemon into the fs that launches on reboot

that then lunches jailbreakd

it patches the llb the firmware isnt checked at boot

Can exploits be combined with Checkm8 to make untether? @vivid nova

possibly, but the untether exploits are worth millions

So they all private?

indeed.

Fking pangu lmao

the kernel patch happens when the kernel tries to check the signature of the kernel itself, but the exploit is within that process so it can be manipulated and stopped

those are the interesting ones

not for selling.. but for further research

the llb would have more functionality

like custom bootlogo

but the kernel patch would work much better

Imagine they could get a bootrom untether exploit like for the 3g

now

!t ibec

the tutorial made it seem so easy lol

they do. greenposi0n

Limera1n or greenpois0n?

both

which?

cfw?

cfw is a good resource for jb

they work hand-in-hand with 3g/s

Limera1n was also tethered tho

as is checkm8

Wouldn't iboot "check" kernel though

sorry yeah

i meant that

iboot checks the kernel

So they can't make it untether for ever it's just a firmware by firmware basis

but that process is exploited

https://ios.cfw.guide/restoring-to-14-3

so iboot signature checks are useless

yep, cfw is a good resource

cfw was always soo sus

came with weird crap and ran the battery down

Lol for a sec I tho cfw was custom firmware

it is

lmao

ngl 5 years ago literally I thought "why don't people just replace the ios downloaded OTA to whatever jailbroken iOS they want"

So cfw are still a thing?

yes

Actually that was like 7 years ago

Is there still pwn dfu?

for the older devices

yes

I mean for checkm8 devices

especially with icloud bypassing people whom wish to get cellular on their forgotten password devices

yes

i know

it is

That's sus not gonna lie

SIM Activation and iCloud Activation are different

@vivid nova you mentioned IV keys, is that for aes encryption?

ICloud activation you can't use the phone at all, not just cellular

yes

Using Checkm8 for icloud is stealing od

icloud bypass disables cellular functionality afaik

Not if you own the phone

what in the world are you talking about...

If u own the phone go to Apple lol

when the device is locked, not bypassed

If you're not activated to iCloud you literally cannot use the phone

i think

Unless you use checkm8 to do hacky things

yes you can, there's DNS methods

...

looool

U just can't use apps without icloud

those jank things

ngl, not the best

but better than a flashlight

DNS methods to do what? Go to Google.com?

Dns bypass is sus lol

click on the i in the wifi network get access to the whole phone

Make it a little web browser?

$1000 is now a web browser

some next website which allows basic basic functionality

nah, they have setups for web browsing, youtube, utility apps, small stuff

Checkm8 can make use of sus things like bypass

You can't even call or take a picture...

Lol

ofc not

you can place an internet call

Dns is pretty cool for thiefs

Lol

Actually you might be able to take a pic if you need to "upload" on a website

if you've got google.. you've got functionality

you just need the hardware

If u got web browser u got functionality

that's google

Didn't they use to have games too?

Like flappy bird

If you have a bricked phone you have functionality too

It's now a paperweight

Sell parts lol

yeah a brick which you can smack your neighbour with

Functionality

the only time i've ever seen a bricked phone was when someone erased the iboot partition

really trying to follow the IBEC tutorial but when it tells me to delete the iBoot driver again afterwards it says "can't init, no device found" and if I unplug and replug it gives me the IBEC error again

Can't you just DFU

nah

Nope partition gone

Why not

dfu uses iboot

Dfu is in read only bootrom right?

reinstall itunes

no

I uninstalled the one I had and installed the one in the tutorial, but I can reinstall

you can

DFU is part of the SecureROM which is burned into the hardware, so it cannot be removed.

It's in Bootrom

you can't DFU if iboot is gone

You can

This will wipe the iBoot Partition, along with the firmware. This is recoverable by restoring the device, as the device will be in DFU mode

where'd you read that from? wikipedia?

@zealous bridge I slowly understand the FUCK IBEC in your name

theiphonewiki

JTV for ungenius

which is reputable

true

/j

that is soo old

prolly for iphone 4 and lower

its part of the securerom still

Lol

bruh.. devices have changed

it's not all the same

hence why different jailbreaks

Talks about a7+

so it was updated

a7

is that important

a7+*

You think apple moved DFU to iboot lol

dont need to open itunes

just close it

It's probably still in bootrom

yeah I thought so

It is

but idk it won't find my device or it'll give me the IBEC error

start the steps again

here's how it works.. iboot uses recover mode

if no iboot, no recovery

DFU.. uses recovery mode

but dfu

???

no

lol

yes

when you dfu.. what does the screen say?

it goes black

then...? connect to itunes

it’s a failsafe in iboot

not burned into anything

bruh

you lose iboot you lose recovery

Ur dumb

*you're

Dfu and recovery are two separate things

i know that

🙄

you don't know the process of restore

LOL

guess where I got this from

Apple.com

https://support.apple.com/guide/security/boot-process-for-ios-and-ipados-devices-secb3000f149/web

DFU uses recovery

checkm8

see

if bootrom cant load llb

^

which is 1. iboot

then it loads dfu

think about it.. you can't load the software directly into bootrom without something to process it

just admit defeat lol

stop

JTV for ungenius, sign here

guys need to go back to school

lmaoooo

lol

🧂

Lmho skipped out on iOS bootchain class

i mean

JTV is an apple tv expert

not really an ios/iphone expert

@green onyx you do realize they're the same process right

should really recognise that before he tries to give us advice then

Jtv trying to prove himself stand his ground lol

Poor jtv

mhm, true

First iRestore got ripped off now this

when trying to do step 9 it can't find my device and when I plug in again the iboot driver is installed again

tthis

wait

isnt JTV the only apple tv tweak dev out there?

wow.. throwing sand. I see

froggy and tanbeer is probably sorry

JTV, come back

Lol let's go back to being compassionate, JTV just learned something new today that's all

true

Jtv is pretty smart lol

Why he dip LMAOOO

Bc he got proven wrong

i wasnt the one who called him dumb tho

Lol

Lol

guys

settle down

JTV is probably sad rn, just stop

:x

You did not make anything better by saying that

best way to make someone cry is to make them believe they are crying

fax or no

Lol the psychologist

hm true

lol

teacher taught me that

bruh

just went to drink water and swallowed a bunch of foam

how does that hapen

Bubbles are yummy

So dfu fixes iboot?

What was the conclusion

not fixes iboot

dfu can exist without iboot

thats the conclusion

DFU is in bootrom, wiping iboot makes no difference

What Tb said ^

or what froggy said ^

So does it fix the loop tho

loop?

The brick I mean

Jtv said it bricked

ngl, just stop the convo

You can really only brick through hardware

wiping iboot technically doesnt brick

its probably better that way

since it can be restored

So u can restore via dfu

no-one’s trash talking anymkre

Then the guy got fked lol

correct

welp I can't get past the IBEC error

lol

thats an L

different computer

use linux

Ibec fk that

or os

now you understand mine and folkys names

^

true

i cant get past this error

Lol

LOL

which

screenshot

device apnonce

not enough info

set your generator

screenshot

Where was the simple fix u told me @zealous bridge

apnonce is probably mismatch

but ye

!t fwjson

for?

was it that?

Ibec

oh

!t ibec

device apnonce does not match apt

tahts the error

uh lemme get it for you

im on a12 14.4

youre not getting past that error

^

need jailbreak to fr

u need to jb to set generator

fuck

Lol u can't even set

my generator is valid

Do you even have blobs?

yes

https://www.google.co.uk/amp/s/amp.reddit.com/r/jailbreak/comments/aqbey5/tip_fix_errors_8_and_10_while_using_futurerestore/

i have 14.3 blobd

But u can't set lol

signed blobs

so?

So u can't fr

u cant set generator = u cant use ur blobs

fuuuuuuuuuuck

my generator is working

but u cant set it

it worked on first try

but then i pressed cancel

@low summit https://www.reddit.com/r/jailbreak/comments/aqbey5/tip_fix_errors_8_and_10_while_using_futurerestore/

also checkra1n stuck on booting

jk

Lmaooo

Checkra1n on a12

if that was true

eta wen portless iphone lol

^

this

What's iBEC? Included in the iPSW firmware or is it something on the phone? iPhoneWiki not too helpful

its iboot

but for restores

its small enough so that it can fit on an ipsw

Big L when u try to fr with a12

what about if i modify 14.4.2

semi untether exists

stop trying

^

pwnage again

I mean on 14.4 lmao

we need another pwnage

Oops

So it's on the IPSW, if you wipe iBoot on the phone then DFU restore will still send iBEC right?

Then u don't even need to fr

Because jb available

yes

can i use dfu to use futurerestore

I can try on laptop but if it doesn't work there what then

iboot is a .im4p file do not quote me on that

No

U can't do it lol

why cant i use dfu for futurerestore

it should be in /Firmware or /Firmware/all_flash

because

iboot is a .im4p file

• Tanbeer 2021

Lol u serious?

custom apticket

Idk if it's true lol

probably not

my apticket is valid

tbh

and my generator also valid

ok? but apple doesnt know that

Can't set generator without a jb that's the end of that

no its not

its 0x111 and that shit

no it’s not

its a random value

because you havent set it

well here's my generator

0x3bee341e92f420cf

did you get that from your blob?

yes

well thats not your generator

and from ios recovery

Thats not your generator

Your generator is a random 16 digit hex value

Which you don’t know because apple randomizes it every reboot

futurerestore worked on first try but then i pressed cancel

well then loss

it knew the generator was valid

ok then

what do you want me to do

tell off futurerestore?

Bad boy FutureRestore

Or girl

We can ask tihmstar

FutureRestoria

I love Cryptic

Imagine ur value is randomly the same as the blob?

froggy was theorizing about bruteforcing the apnonce a while ago, i’d imagine the changes are about the same

1 in 16^16

1 in 18446744073709551616

Brute forcing meaning reboot till it matches?

setting generator until it matches

Have fun with that lmao

so like from 0x000000000001

0x00000000000002

like that

If u could make a program that does that then it's rad

thats only if the generator is unknown in the blob

Lol

it would take several billion lifetimes

probably more than the life expectancy of the earth

Fk that lol. Finding a bootrom exploit is probably easier

it is

https://www.reddit.com/r/jailbreak/comments/m3744k/comment/gqnt33p

I want that proc software to be fixed

you roasted me in that thread

Wait how

Oh I remember

😭

Lol jokingly :')

lol

didnt see that

pog

I don't wanna jinx it but I think I fixed it

yay

how?

meaning the tutorial steps are wrong, at least in my case

We're all learning, at least you learned (ahem jay cough tea ahem vee)

keep the phone plugged in when you reinstall iTunes

ok i didnt make it that obvious

lol

and instead of making a universal serial bus DEVICE it will put it under universal serial bus CONTROLLERS

and then you try fr

should be both

does it only say usb devices?

correct way is to remove usb controllers and devices

where does it say only devices

I removed everything

but instead of unplugging, installing iTunes, plugging it back in

I left it plugged in

Help I use a USB keyboard and mouse and accidentally deleted its drivers, now I can't use my computer

and then it would put "apple mobile device USB driver" under controllers, instead of those three drivers under devices

Keyboard not found!
Press F2 to reboot.

/s lol

I noticed that in a video this guy had the driver in controllers, not devices, and I remembered having seen it there as well without the other three, so I repeated the steps until it looked the same

might be a fix for those who have this issue, idk

well judging by the amount of times !t ibec has been used it’s probably just you lol, however i’m glad that you managed to figure it out

Will keep your points in mind

credits to the Turkish guy whose video I just watched lol

although I think he also did it a bit differently

maybe I was just lucky

well I ain't saying no to a little bit of luck

true

Hey logs haven't frozen and it's been 36 hours I think

Don't wanna jinx it

Microsoft get their game together orrr?

omg it worked

No me I wasn't closing all connections so memory leak

@lilac wren i don’t get this part, why does the bootrom have to be recovered? whats wrong with it?

congrats!

ohh

thank you, and thank you to everyone who helped

I think it means the code in the bootrom is waiting to recover the device

idk if it'll help someone else but basically I did everything until 4, I skipped 5 meaning I left my phone connected, installed iTunes, and instead of showing up under devices the driver would show up as "Apple Mobile Device USB Driver" under controllers, and then I just hit start FutureRestore

@low summit this is why baseband is so hard, it has it’s own processor

idk if that can be manipulated via a bootrom exploit

but damn that shit is tight

shit grammar then

it sounds like the boot rom code is the one being recovered

lol

Lol it's read-only so

exactly

how would i get a valid blob

i want to upgrade from ios 13.5 jailbreak to ios 14.3 (and keep my jailbreak)

You cant anymore

.......................................

why not?

im on a jailbroken state help

😭

why can i just update

pain

You can only get blobs when that version is signed

fuck apple

and 14.3 is no longer signed

when the 😭 emojis come out

PAIN

pain

I LEGIT HATE 13.5

I JUST WANNA UPGRADEE

😭

Upgrade then

i cant.

i dont want to loose my jailbreak

its useful

Then don't upgrade

no.

i refuse

there has to be a way

😠

(but the s is silent)

There is a way actually

oh?

You have to develop your own bootrom exploit

oh that sounds so easy

brb

let me do it

And then you can tether *downgrade

Awesome have fun

thanks :D

why didnt anyone thin kof this before

🙄

so easy

ugh

glhf moment

k in all seriousness is there not a bootrom exploit for downgrading....

What device are you

ipad pro 2018

What generation / chipset

Oh I think that's A12

So no baseband exploit is gonna fix fr?

A12Z

does the z mean i cant downgrade.

Ok you have to develop the bootrom exploit because the known ones are for A11 and below

among other things

spain

Name it frogm8 after me ok? Bye have fun

but the s is silent

OK

no idea

Frogm8

Fire exploit

antonm8

lmao what-

this bot is tripping 💀

what did you send

i didnt send anything

wth

lol

my tutorial url

When you go ballet dancing, u wear a twotoo

tutorial?

twotwo

Oh it thinks it's the pirate app

i refuse to call that shit an app

it’s a scam

thats what it is

it used to be an enterprise app now it's a webclip I think bc apple revoked everything

doesnt deserve to be called an app

how do you develop my name into a cool name for an exploit

Beerm8

wait

beer8

like

does taurine work on 13.5?

berate

👀

lol

😏

lol

Beerm8 sounds super British

odyssey does

ah

Odyssey lol

perfect

thank you

true

Cheersm8

LOL

nah not trippin

what'd i say?

at 11:16?

ngl, ur name reminds me of ian beer

lol

lol great guy

enabled a lot of jailbreaks for us

Tanbeer wen explot

p.s. i am ian beer maybe

Impersonation wow, reported

tanbeer bootrom exploit

tanra1n

lol

tanr8

or tanb8

ew bait

?

oh

folkl8

Lol

come early next time

how do i dfu on 14.5

what device

xr

Connect the device to a computer using a USB cable.
Quick-press the Volume Up button
Quick-press the Volume Down button
Hold down the Side button until the screen goes black, then hold down both the Side button and Volume Down button.
After 5 seconds, release the Side button while continuing to hold down the Volume Down button.
If the Apple logo appears, the Side button was held down for too long.

Why dfu for futurerestore

dont think its for fr

@zealous bridge updating to taurine 1.0.2?

100%

rn actually

Nice

Imagine somehow 14.4 is supported by taurine

Randomly

Use my shortcut it took me 40 min to make 😶

https://www.icloud.com/shortcuts/06a3abaef64c43fca1d1c903bc56ffba

damn that was a long boot

what does it do?

ah

taurine downloader

https://showcuts.app/share/view/06a3abaef64c43fca1d1c903bc56ffba

ngl seems very complicated, probably bc of the random text

Yeah I generated that with another shortcut lol, it's just the menu

Ngl but cs jb success rates are so trash

Odyssey takes forever to rejb

odyssey on ios 12.4?

what

also

why arent u using circuta

on odyssey

No 13.6

On my xs

Tf is circuta?

The name of the exploit

its the name of the 11.0-14.3 exploit

Oh yea I wonder lmao

Idk because I used the first one already

Can you even switch?

Anyone have a new 12 Pro and downgraded at all? I heard about the taurine jb and wanted to try it out but the phone came with 14.4.2.

you can’t

am I dumb, why can't I save blobs for XR but I can for XS max

?

whats wrong

this ^ idk why

ph

oh

it works for iphone 11,6 but not 11,8

ipsw.me is fucking around

is it really :/

darn

so i can't use tsschecker until ipsw me fixes lol

is that wrong

different ipsw names

tsschecker -B N841AP --buildid 18D70 -e [ECID HERE] -g 0x1111111111111111 --apnonce 62CEB6DE875024475274F101C8A4BFBEB6C04ED2950362254EA417F7C79D3761 -s -u

this is my command, should I include 12,1's board config or something then

use -l instead of —buildid

thats l for lima

latest ios version(s)

ok ill try

same error

also tried without -u

specify device identifier instead of boardconfig

even without -s

also tried that

./tsschecker -d iPhone11,8 -l -e [ECID] -g 0x1111111111111111 --apnonce 62CEB6DE875024475274F101C8A4BFBEB6C04ED2950362254EA417F7C79D3761

same error

is there an option for manual buildmanifest

?

11,6 works lol

yes

there was ikrc

ye download the ipsw and extract the BuildManifest

do I have to download the entire 14.4.2 ipsw...

then manually speciy

Lol

...

Ye

if only libfragmentzip had a cli

wasn't there an API to just get BuildManifest, maybe I can do that?

oh wait you know C right

let's say I do

it wasnt an api

it was code to get specific files from a remote zip archive

oh

you can make your own program

but no cli interface so noobs like me cant use it

https://github.com/tihmstar/libfragmentzip

that's mean

ok I'll try lol

C IDE is Xcode?

oh that's obj c

its actually a dependencie for futurerestore

ye

CLion downloading now

u have clion?

doesnt that cost $$$

idk my school gives it to me

bruh

all jetbrains

Lol

ur school rich

also if you figure out a noob way to do it could you teach me @lilac wren

lol also the azure $100 credit

i kinda need it too lmao

sure maybe I'll make a CLI for you

cba to download entire ipsws

need what?

wow thanks

cli of lfzp

ah

lol

tihmstarrrr

lol

literally just need an option for url and what file

just realized froggy is almost lvl 30, hes lvl 26 lol

hopefully thats not too hard

yeah lol

what lvl u on

me?

ye

uh hol up

39

oh

when is mem edition?

damn i thought u were right behind me

50

ah

what lvl r u?

47

or i should be

oh damn

i was like 100 xp away

ur 46

600 xp left

lol

oh

1 zero away

close enough

how do I use this lol

wait use what?

look at fr source code

lfzip?

fr source code only mentions it in dependencies it seems lol

nah i saw it somewhere else as well in vsc

hold up

oh im stupid

not fr

tsschecker

oh

ok

sorry

nw nw

ye found it

does that make any sense to you?

I literally have never written a line of C code yet so we'll see lol

idk even know the basics

what file is this? i dont see it

tsschecker.c

oh

https://github.com/DanTheMann15/tsschecker/blob/master/tsschecker/tsschecker.c

use this fork

its updated

ty

oh if you werent using this fork before then try save blobs with it

maybe it’ll fix ur error

oh yeah

sure

ok gave up on libfragmentzip will try developing my own way of extracting remote zip

Progress update I might be able to do something but it's not looking too easy at all

@lilac wren Its easier than you think

u should try it

you are doing stuff wrong

Make my own or use libfragmentzip

no

make sure you have pkg config

and purge out out libgeneral

Ty, I'll have to continue tomorrow bc I'm heading to bed

Do I need to stay jailbroken in order to update with futurerestore? I used Restore RootFS from unc0ver

you need to set generator

Yeah I did with unc0ver I think

Do I need to do anything more than type it into unc0ver?

follow this https://ios.cfw.guide/restoring-to-14-3

Thanks but that doesn’t work for me

do you have valid blobs?

I keep getting an error saying “Unable to run FutureRestore. Ensure you selected the correct FutureRestore executable.”

https://github.com/marijuanARM/futurerestore/releases

use this

I do. The furthest I got was with iRestore but got that annoying IBEC error

did you try to uninstall apple recovery driver from device manager?

Yep. Now in the middle of reinstalling iTunes

@sage briar Tried it again, same issue. 😡

did you uninstall Apple Recovery (iBoot) USB Driver?

yes. when I keep it plugged in then try again it doesn't detect the iPhone, when i plug it out an in again the driver reinstalls

do you run futurerestore again after uninstalling it?

and also you must tick that option while uninstalling it

dont know what is there exactly stated but you must tick it

I'm doing all of that, it's not fixing it

Just dual or live boot ubuntu and FutureRestore there if you cant fix ibec

That way you can also use http://frgui.cf

Future Restore GUI doesn’t work for me

then try cli

You might not be selecting the right file, also if you do ubuntu it probably will work bc there's no iBEC error

I think I got it working now, it was timing. I had to uninstall the driver, quickly plug out, plug in, and press restore straight away Windows had time to fully reinstall the iBoot driver.

super weird

An ok

well

it's been stuck halfway for a minute now

Is there anyway to set a nonce while in DFU?

Maybe? I think nvram can be changed in recovery, dfu, and normal mode

But there's no tools to do it in DFU I think if that's what you mean

well it's too late I got stuck in a dfu loop and need my phone for work so had to restore it to the latest iOS

nope

u didn't have to

dfu is black screen'

so you can't tell if its looping

naah it wouldn't let me exit

ffs

gonna be along bloody wait until the next jailbreak

well you wouldn't have restored