#futurerestore-help

Or is it already jb?

Hell no

I don’t know if it’ll be already jailbrokeb

When I go to 13

12

But probably not

Bro u gonna have to reboot like 20 times

I remember coolbooter used to do that for iOS 6 lol

Tethered everytime

What if I make it untethered

Using OTA

Then u don't have to maybe

Froggy said u still need the software

Is there a way

To

Check

If a blob

Is valid or can be used

Ask cryptic to look it over

Bros offline

Well get the blob first

We not even sure if we could even go to 14.3

I will

What could stop us

WAIT

Verify lol

What SEP would this have

Latest if I'm not mistaken

Or ios 12 sep

How would latest SEP

Even work

On iOS 12

Idk just try it

Almost down

If u don't get verify then ur good

done

Unzipping

If u could even do that

Isn’t that an instant “wouldn’t work at all”

Tether downgrade

And then ota

I’m going to downgrade to iOS 12

Tethered

Can you preserve sep?

When going up?

Prepare for restore!

Button

Is there

Ur 7 is so fked up

Why

Yes that’s 32

@low summit the display?

Bb is a big problem lol

Sep is compatible usually

But bb isn't

Like 13.7 lol

I’m gonna charge it to 70 first

Do it

It’s on 20 rn

Just charge it while restoring lol

Tf

Alright

I’ll do that

I hope ur 8 doesn't crack like that

I got the high end charger

Let’s do this

It’s 1/4 done

Now 3/4

Should be quick

It is

I’m hungry as fuck man

GG

Off topic but

Funniest video

I’ve watched this week

oh no

is that real lol

Yes

They played the kid lmfaoo

woww

Shits funny

ngl

I didn't laugh

Oh well

Rebuilding icon cache is taking some time

It’s been on that for 10 minutes

Is that normal @lilac wren

lol uicache be slow

probably not

I’ll just wait

Oh

What should I do then

This is a clean iPhone 7

I'd just wait tbh

No apps from the AppStore

I’ll have to go shower

I’ll come back and see

Just finished showering

@lilac wren right before I went to shower I think it said to reboot the device

It seems like it’s looping

bootlooping?

I tried to reboot it and

Every time

Yes

then try ramiel

it might have worked

I’m not clicking on anything btw

that's fine it might have just worked

tf is happening with ur phone lol

@zinc moon

tethered downgrade

divise?

yes

I’m back so

did ur phone die?

No lol

kinda looks like its dying lmao

or its going through a lot lol

@lilac wren the laptop rn is infront of my dad

rip

Divise told me to reboot

hm

ok you won't be able to boot without ramiel so

I tried to go inside apps

But

They’d crash

So I think divise did it it’s job

Correctly

yeah bc they probably don't exist

yes

tether reboot it

I’ll just wait till my dad goes to the kitchen

nice

lol

damn

@lilac wren does the device lose battery

yes

shit

i never knew adam and cam had the same birthday

put it in dfu

ok

I need to connect it

To a pc

To get into DFU

no

you just use the phone's buttons

lol

Oh fr

Lemme try

oh wait i see what you mean

yes it does need to be plugged into a computer, thought you meant you needed ramiel or checkra1n to do it

I’m just gonna put it on the charger

Can I put it into recovery

some apple community says you can do dfu while it's on the charger

try that

Wait

Fr

Lemme see

What stage u at

I do not think that dfu looks like this

that's recovery mode

Press and hold the sleep/wake and volume-down buttons at the same time.
Count 10 seconds.
Release the sleep/wake button, but keep holding the volume-down button.

That’s what I did

What if I use Rameil while it’s in recovery

no

Would it boot up

bootrom is dfu

Oh right checkra1n and ramiel don’t like recovery mode

do less than 10 seconds then

Ok

try 7 seconds

I’ll return it to the boot loop

if 7 seconds takes you to recovery as well, then just let go of power button as soon as the screen turns black

And rhe volume down button?

Keep holding

Doesn’t work

Can’t Ramiel use it

In the boot loop

I secretly took the laptop

@lilac wren

Let’s try this now

Lol ok

Same steps for dfu

It worked

Now what

What does it say on ramiel

Lemme download that

Ok

Did you jb?

It failed to download

A lot of stuff

Ipwndfu, img4tool, fugu

Lol bad wifi

Worked for me

You did drag into applications folder right

My wife is good

Wait a dev

Yes I did

It seems like it worked now nvm

Wow married young I see

wifi*

Whenever it downloads paramiko it becomes non responsive

Ok it works now

I’ll click boot device

Ok

Keeps failing

Try again

3 times it failed

Oh

Try like 5 more times though

Alright

Is this an m1 mac

No

I’ll re enter dfu

Ramiel will also not work on any pre-2012 macbooks/pros.

This Either?

It’s from 2017

Ok then you're good

Should I click dual dualbooted OS

Even tho it’s not a dualboot

No probably not

You should try skip ipsw verification maybe

Ok

Still

Failed

Hm

https://github.com/MatthewPierson/Ramiel/issues/19

Oh

I’ll keep trying

Yeah

Should I turn off

Skip IPSW

Verification

Yes I'd turn it off, also try to enable logs or debug or something to see where it goes wrong

Alright

Seems like I need to put it in pwned

@lilac wren

lol u need pwndfu too?

then put it into pwndfu

tried in terminal and ramiel

didnt work

Back

Um lemme see

Follow the setup prompts and allow Ramiel to download some tools
Connect a checkm8-compatible device in DFU mode
Have fun!

i did let it download

I think it'll pwndfu it for you

yea

thats whats not working

if i just get it in pwndfu dfu

itll work

no I think it does it for you

where are logs stored

mine worked by just clicking boot

it said "not in pwndfu, enter it now" and the button said "run checkm8" and it did it for me

now I'm in pwndfu

yes

and thats whats failing

ok so the exploit is just failing

try a different port / cable maybe if you have one?

I will

I’m gonna go eat now tho

ok

same shit

sigh

does checkra1n work on this device

tried it on terminal

normally yes

look at the pic

is this pyboot

no

ipwndfu

try pyboot if you want

downloaded pyboot

how do i use it

look under usage

ok

i need to cd first

lol

I GOT THE ERROR

lol same one?

access denied

send log

i tried to pwn using pyboot

run with sudo maybe lol

im back

sorry had to go eat

nice

nw

whats going on

hello

tether downgrade

with succession?

or divise

latter

divise

oh cool

why

get ota blobs

for 14.3

THE DEVICE HAS NO LANG ID

LETS GOO

I CAN FIX THIS

does that mean it worked

no

no

last time i had this

i simply rebooted

and voila

@lilac wren should i keep ios tools open

while i do this

what is ios tools

uhh

https://github.com/marijuanARM/ios-tools

why are you using that

if ur not futurerestoring

last time i used it

pwndfu

lemme try w/o it

yeah only for fr

you need that

the tethered downgrade needs pwndfu lol

yeah pwndfu not fr

right but not for going into pwndfu

im gonna try again

also

then whats he doing

whats the point of getting ota anyway

i thought pwndfu fr was still broken

hes trying to ota update to 14.3

well it'd still be cool to downgrade to 14.3

via tethered ios

It’s not an FR

lol

oh

It’s a tether downgrade

idk ota blobs might be useful later

well if you want ota you still have to pwn sep somehow

Also I ruined one of the laptops USB port

Nan

Man

Im scared

so it still wont let u

yeah

even if u have a lower ios

is sep not downgraded with divise

you cant even get blobs

no

then we did it for no reason lol

because it fails at preparing/ verifying

if it fails at verifying then your bcert is gonna be invalid

so blobs are useless

ok then can we just itunes flash an unsigned firmware + sep

and then go to 14.3

how would you itunes flash unsigned firmware...

how does divise do it

froggy the big brain

checkm8

divise is an on device app...

so what sep does tethered ios use

the one u already have?

it requires checkm8 idk what to tell you

you cant do it on non checkm8 devices

yeah bc you can't boot it

so u need pwndfu

aka checkm8

^

yeah but divise isn't in pwndfu when it flashes the firmware

u need smth like pyboot or ramiel to boot it

fugu permission denied

ok

bruh whys ur 7 always have errors doing anything

yeah but you still need to patch iboot while booting

so my question remains, let me rephrase, can we dfu flash an unsigned firmware + sep

tethered i think so

flash meaning untethered? no

tethered yes

but only the software

ok what tool

no sep

and thats what im doing

sep is probably signature patched

so iboot doesnt check it

so how can we flash iOS 10 and it works if SEP isn't downgraded

if u have no sep then u cant ota update

fugu permission denied what the fuck

divise has its limits lol

sep has to be compat

with latest

oh

oh for real

just like fr

no wonder

yeah lol

@zinc moon what version did you restore to

how else would it work

he cant load 12

i put 12.0

and isnt divise a dual booter?

both

@zinc moon please use 14.2 lol

ah

i used tether downgrade instead

why u using 12

yeah try 14.2

dfu restore

if i can even boot the phone

lemme restore it

can u make a tethered ios ur only os?

yes

that's what he did

oh wtf

and if it doesnt work

the phone bootloops

of course he cant boot then

sep not compatible

https://tenor.com/view/wow-oh-oh-snap-shocked-amazed-gif-5534481

yeah sep panic loops

im gonna restore it back

is there no tools with checkm8 that can downgrade sep?

shits slow im gonna use ipsw.me instead

2 min download lol

no, checkm8 isnt a sep exploit

so u need a sep exploit to mess with sep

it’s possible to downgrade sep with blackbird but you need to use an exploit with it

when im in my room it becomes

2mb/s

is blackbird public

isnt it in checkra1n?

it’s in pongoOS afaik

but only A10 exploit

how did checkra1n fix sep for a10 on 14?

pongoOS is open source

sep exploit

the vuln is

exploit is in pongo for a10

then why cant it be used

wtf

is that not useable for downgrading sep?

idk its very advanced since you have to make your own exploit

unless you can somehow boot pongo

this is actually interesting stuff lol

and no ones motivated enough to do that

@low summit fr

if they get paid then they would be more motivated

https://github.com/checkra1n/pongoOS

but they dont lol

yo??

Blobs have nothing to do with sep correct?

could i set a custom bl

It's just matter of can you ota to 14.3

which i cant

no matter how hard

i try

The day u succeed is the day 14.4 jb comes out

@zealous bridge tanbeer

is there a single instanc

other than bricking

me still waiting for pwndfu fix

where itunes restore

cant work

the difference is I literally have valid 14.3 OTA blobs

for fr?

no

it's just broken

yes

DFU will always be available

Even with ota blobs it's still broken

@celest basalt pwndfu or FDR?

It's sad

then why does bricking stop this

Fdr

pwndfu restores are just broken in general

it enters pwndfu but FDR SEP panic with any pwned restore

Fdr is worst than ibec

because the device can’t boot DFU

even with 14.4.2 restore blobs

due to whatever reasons

and you cant fix that?

So it's not fdr problem it's just pwndfu broken

no

Cryptic said supposedly it's just some irecovery issue idk

finder is ass

are you in dfu

yes

Why they removed iTunes on mac

becuase there was no need for simplicity

Apple mad stupid

ok so ig its not hard

So is there an a11 sep exploit

?

gonna use the other usb port

Not an exploit

Be great if we could use sep again on a11 Checkra1n

its working

i had to use the other usb port

lol

WAIT

since the issue was the loose usb

did you try that for Ravioli too though

ramiel

what if i trend rameil

tried

too late lol

its restoring

well

@zealous bridge is there a way to recovery bricked iphones

DFU

Ravioli

@lilac wren but i thought

dfu doesnt work

why wouldn't it work

the whole point of bricked means its not fixable

on bricked iphones

if its bricked it wont boot DFU

if it's bricked ask the apple store to fix the hardware

But thats very hard to do

what can brick a phone then

slamming it on the ground

or putting it in an oven

@lilac wren if its bricked its prob bc of something jailbroken

no

then it's not bricked

DFU

literally nothing will brick your iphone

software side

so its software

hardware

but how can hardware

restrict

dfu

if the hardware is broken

the phone wont work

lol

is dfu both hardware and software relient

dfu is in the soc so it’s hardware reliant

so it doesnt change over ios versions?

no

dfu doesnt

dfu is in hardware

it can change over iphones then?

yes

yeah

becuase i dont think the dfu of an iphone 3gs is the same as an 11

which is why A12+ can't use checkm8

more details?

but i hate dfu on a11 and above

its so annoying

checkm8 uses dfu to run the exploit

dfu didnt change tho, the bootrom did

ah

dfu never changes

just the bootrom

and pongoos

couldnt do anything

abt it

god loves ,e

Checkm8 is an exploit for the bootrom, and the way to have access to "talking" to the bootrom is in DFU mode. Otherwise it just follows the boot chain
Bootrom is the root of the iPhone's boot chain so it has to be static. If you could write to the bootrom then people could easily exploit it or make it super hard to restore devices

i KNOW this sounds stupid but

does that mean

i can have

a custom boot logo

no

depends

i know the 3g bootrom lets u have custom boot logo

i meant on the 7

cause

thats an option

on ramiel

I think there are a couple different boot logos

prob just on the tethered os lol

but iBoot is where they are right?

if so, then I think the answer is yes

phone just booted

but only when booting from pwn'd dfu

yeah ig but i think only when you boot with ramiel

i miss custom bootlogos

who remembers greenpois0n custom logo

if i ever get to have a bootlogo

it will be a pic

of ass cheeks

u miss the old days

i do

where a jb comes with a custom logo

wait

can the untethered pangus

have a custom logo

i think theres a tweak

that allowed logos

on 9?

like 4.2.1 and above

because greenpois0n 4.2.1 had a custom logo

and u could change it with a tweak

i just downloaded divise

ill tether downgrade

for ios 14.2

or should i put it

on 14.3

@zealous bridge

idk what works

do whatever you want

put it on 14.2 so you can ota to 14.3 maybe

14.2 then ota

lol

lol yh with what pwned sep

prob gets verify error

you can't

but u could still try

but that was the reason he wanted to try this

otherwise just dfu to 14.4.2 lol

why do u even want 14.3 ota blobs lol they dont even work rn

becuase cryptic is fixing them

he said fixing fdr lol

not pwndfu

ok

or is he doing both

@shy magnet Happy birthday!

thank

nice blue name

happy bday

on checkm8 compat devices

its same scenario with 5s and 10.3.3 ota blobs

sileo tells me /library/dpkg

is read only

how

yeah they're supposed to work for checkm8 devices but pwndfu restores are broken in FR currently

no they work fine

literally pwndfu downgraded my ipod to 11.3.1 the other day

any restore from pwndfu causes an FDR SEP panic for me after it enters restore mode

its prob some issue with 13.x or 14.x

even 14.4.2->14.4.2 with restore blobs fails

non-pwned restores work fine

@shy magnet in case this says anything https://cdn.discordapp.com/attachments/728061044098072596/831549093901238343/panic-full-2021-04-13-171612.000.ips

panic(cpu 0 caller 0xfffffff02178d434): SEP Panic: :skg \/skgs: 0x000171d1 0x00016a60 0x00016a44 0x00012018 0x00011d3c 0x0001351c 0x0000c038 0x0001615c [hnhth]

oh also happy birthday

thank

going back to 11.3.1 what happens to sep?

@lilac wren seems like divisé is stuck on finding ipsw

ok

should i download the ipsw

manually

if divisé lets you do it

then sure

i think its put in the succession file

nvm theres no succession file

ios 14 versions dont work w divise

@lilac wren can i go to 13.7

i guess

does the bb have to be compatible

only sep i believe

I assume no

ull just have no cellular

can the bb panic

no idea

@zealous bridge tanbeer

https://www.theiphonewiki.com/wiki/Seputil

is there any use for this

i am aware of what this is

yes bricking your device

wdym??

communicating with it can disable dfu?

its something we use to communicate with sep

and if i do one oopise?

it won't brick it lol

disabling dfu

idk theres some thing with --art ctrslftest that bricks it according to theiphonewiki

that sounds like a good idea

how do u disable dfu

it won't brick

might aswell delete var

var is better than disabling dfu

if you think about it deleting var is safer

looks very cool

iphone wiki thinks brick is bootloop lol

at least var u could restore

true

disable dfu ur fked

its safe to delete if you have a pc

https://www.theiphonewiki.com/wiki/Brick they have a whole article on bricking @lilac wren

the iphone wiki is a work of art

god put it for us

safe to delete if u backed it up lol

none of it actually bricks you except the hardware ones

aka tang

true

u know what can brick

putting ipad baseband on new baseband chip 3gs

"hard to fix" you can fix shit in the first place?

nah baseband can actually brick

apart from that and hardware nothing much can

might aswell climb mount everest

if u put an incompatible bb on another baseband chip u could brick

ok well if you have an iPhone 2 don't mess around with baseband

Early unlock solutions could result in unusable (but recoverable) phones after installing an iOS update if you didn't take special steps. For people who used redsn0w to install the iPad baseband (06.15.00) on a compatible iPhone 3G or iPhone 3GS so that they could use ultrasn0w to carrier unlock it,

@low summit LOL

yes the ipad baseband lol

that was compatible with ultrasnow

Types of bricking that may be hard to fix
Changing MAC address to invalid address
If you change your device's MAC address to something invalid (for example if you're attempting to change your UDID), your internet won't work again until you fix the MAC address (using MobileTerminal or similar). This persists even if you restore -- so you can make this really really hard to fix if you restore and there's no jailbreak available, if the available jailbreaks don't include afc2 and other workarounds aren't working, etc. Here's a JailbreakQA thread about this and another one.

not just iP2 if you flash the wrong one of these its irreversably bricked https://www.theiphonewiki.com/wiki/Baseband_Bootloader

whyd you even do this

but apple said fk u and put a new baseband chip on the 3gs

@zealous bridge does the bb have to be compat w divisé

probably

and if it isnt

will i brick this

no

divise doesnt flash the bb

ok lets gooo

@zealous bridge what part of the ios system

checks with the apple servers

to make sure an ota

is valid

https://www.theiphonewiki.com/wiki/HoodooYabuli_9B3176n

if you read the wiki page you'll see it's for the 3GS and 4 too

so if you download this

you could brick your device

if u could somehow flash a ipad bb on iphone thats how u brick

easy

can we download internal software

for the right devices

and ios

if we had the ipsw

wym

check the link i posted

also this

it has a bootloader

all of them do

https://support.apple.com/en-gb/guide/security/secb3000f149/web

this is april 2021

https://www.theiphonewiki.com/wiki/BasebandStressTests

they have a lot of internal bb apps

https://opensource.apple.com/release/ios-1351.html

apple has a open source

website

no way

lol no joke

mfw its just webkit

https://opensource.apple.com/

-_-

lol u wish apple would just upload bb

that make it easy

its just "wtf" and "webkit"

and js core

is altstore down again?

anyone confirm

imagine using altstore

what else

could you use

xcode

i want altdaemon tho

i want autosign lol

@zealous bridge technically ios isnt one OS right

bc there are other OSes for other stuff used in ios

use reprovision

i like the widgets but ur correct repro is better

ios is an os yes

lol a 4 app wide widget for 1 app

but it relies on some other things too

right but not just one

like webkit

o

js

they arent os'es tho

so theyre like dependencies?

lol u laughing at me?

you cant call ios self-sufficient but you can as an os

yes

@lilac wren look at what charles has allowed me to do

@zealous bridge and those dependencies are why flashing a cfw

normally doesnt work

no

wdym no

lol is that like MathXL

what else does the os/servers check for

sep and bb

and other fws

its the platform they give hw on lmfao

lets say i have everything on my ipsw

except safari

now does the server check

and say

none of those bb are signed anymore

"uhh, there aint no safari, shall we not boot"?

it checks the signatures of the ipsw

all bbs have bootloaders

3gs bb u could just flash

when you boot up the phone?

yes and when you do a restore

it does it that fast when you boot up the phone like a restart?

yes

and if it finds the signature aint correct?

tanbeer u know how to help with bootloop restore?

what does it show

bootloop ig

genius bar lol

@low summit lol

I don't think you can brick baseband on any modern phone lol

u0 bootloop

iboot will just not verify it

cant even dfu restore

lmfaooo

itunes gives error

mans done for

whats the error

hes fked at this point

prob not tbh, but i was just showing the ways you couldve bricked

4013

@lilac wren

i tried with 13.7

and?

i got the same issue

ooh

did you change ports

pwn dfu?

the issue is with divisé

yes

ok well try a compatible sep maybe

the sep is compatible

oh

w 13.7

try 14.2 then bc bb?

its an issue with divisé

and i know the fix

ok

ios 14 doesnt work for it

use succession

downgrade

lol

how

ughhh froggy

ill happily do so

but how

tanbeer knows

@zealous bridge big man

how do i downgrade using succession

try just getting succession

and then choose 13.7

https://samgisaninja.github.io/test/

@zinc moon

you need the experimental though

o

the phone is restoring

ok

You can do that?!?

@celest basalt hey you're missing out

What

yea a tether downgrade

Although divise seems much better

eh

its not working

Ok so i can go to 14.3 yes?

for whatever reason

Succession looks like a hacky way to do divise

@celest basalt lol yes but no blobs 4u

Sure but you need a computer every time to boot up your device if you do it

You need blobs?

No blobs

Well shit

you dont however

That doesn’t seem very handy

you wont need

All though

wont get*

onboards

Could i go to 14.3

Yes you can tether 14.3

Nvm then

tethered yes

Well that seems like a fair tradeoff to me

But

Will taurine work

yes

Yes probably? But since you're booting tethered just use checkra1n

Aight sign me up

No reason to use taurine

I’ll go to ios 13 actually is that possible

no

Then i can have sep with checkra1n

Hm

Yeah, and when you're in an emergency and your phone kernel panics, you won't be able to turn it on since you won't have a computer. You won't be able to make a call, search the web, etc

If you have checkra1n just do 14.4.2

I wont have sep

That’s the issue

You won't have sep on tethered 14.3 either

Ya but taurine

come on man

how would taurine work

It still has to boot from pwndfu?

anyway

you’ll need to use checkra1n to boot anyways

Oh

just use odysseyra1n

Well shit

since when it reboots its gonna need pwndfu to reboot

@celest basalt you need a mac

and it'll mess it up prob

Well shit x2

you literally cannot do this

boot w/o applying any kernel patches via pongo

Don't do it

Interesting discovery none the less

?

Tethered downgrade on their main is idiotic

oh

yeah

when sanji come in lol

it’s stupid

Uh what

u trying to tether downgrade?

Not anymore

@lilac wren i downloaded succession from the repo

now how do i choose

Can you choose the version or no

no

Because if you can't then you'll just have to swap it manually inside /private/var/MobileSoftwareUpdate/mnt1 I think

ok

Which is why I think divise is better

with a dmg i think

Also I think you have to rename the root snapshot too?

Let me see

no just the dmg lmao

oh

You can select an ipsw it seems? 3rd tweet

ill retry with divisé

Lmho

Do 14.2

you cant

yes do it

it gets stuck

with

on finding ipsw

oh

L

L

what if i dualboot

Can you also select ipsw with divise

Yeah you could try dualboot, not sure if ota will work there though

maybe???

but i need to find out

where the ipsws for it

are stored

ota should work

is there a way for me to find that

@low summit you sure?

i wont be able to jb the dualbooted os

You can download 13.7 if that worked with divise but don't install? Is that a thing

Then find it in filza

i tried to

Are you sure there's no select ipsw button or anything

i found the /applications/divise

nothing

just icons and the storyboard

nope

If it's downloaded check /private/var/MobileSoftwareUpdate/mnt1

lemme see

someone said they ota with dualboot

from 14.2 to 14.3

ill download 13.7

but they had 14.3 sep

and check if its there

Ok

@lilac wren unzipping

<@&430363671722590209>who is this

Oh you don't want it to though lol

it gave me the location

whos flex?

Nice

its in successions file lmfaoo

and i cant find it there

?

Where did you look

in the file it gave me which is

/var/mobile/media/succession/rfs.dmg

Oh

and i cant find rfs.dmg