it’s verified by the bootrom, which is read only

you are forgeting one key detail: We are exploiting the bootrom for testing'

if you have a new bootrom exploit then you are sitting on something worth thousands of dollars

those are not common

right now we are testing with the current bootrom exploit aka the exploit palera1n as some of us have devices that are below a12

the current bootrom exploit cannot be exploited untethered

it is a tethered exploit

even if you bypass the signing checks with it, you cannot boot the os without a pc

did I not mention saying that shsh blobs are only requested during install

you are misunderstanding how the process works

the bootrom verifies the installed apticket every time the device turns on

then the device wont boot if I forgot to update simple as that

no?

why would that be the case

when you flash a firmware that blob is “converted” into an apticket, which is stitched into the firmware

BUT THEN AGAIN ITS NOT DONE AFTER THE FIRMWARE IS INSTALLED

wouldnt we able to grab the stiched apticket

palera1n support ios 16.7.10?

If the device is supported yes

exactly?

show an example

do you have a device that supports palera1n

like this exploit is only for specific devices which is not decided by version

like my device is a A10 device so its supported

iphone 8

thats a supported device no matter the version

my jailbreak doesn't work for some reason

do you have a password on

no

did you turn it off

password should not matter for iphone 8

it does

lol

16.7.10

apple pay

thats only for a11 devices

which is the iphone 8

its only for a11 devices like iphone x

and the 8

the iphone 8 and x both are a11

a8 I think

the iphone 6 is a8

I think you mean iphone se

the icon does not appear

the se1 is a9

one sec

did you remove a passcode

yes

did you reset the phone after

no

you'll have to reset if you want to jb

it's some stupid apple security thing

I dont think its required

if you try the jb won't appear

@frosty heath give me one min k

just dont do anything

lol

I want to make sure something

bros got an sep bypass for a11

nooooooooooooooooooooooo I think you are confusing it with the iphone se

bro

reset settings

https://support.apple.com/en-ca/111976

not work reset settings

did you do factory reset

very slow

activation

whyyyyyyyyyyyyyyyyyyyyyyyyyy

jailbreak

oh by the way while I was anylzing how ipados installation worked I noticed something I am sending the file now

tf do you know that the p1 team doesn't

i'd like to hear

cause I did not check wether the iphone 8 is actualy a11 or not

appledb.dev

not work

what doesn't work

WORK

it works?

yes

is it possible to restore a copy?

what a dumb discussion here

Solving if iPhone 8 and X are A11

idk

what

you can restore a backup without a password

since you said you removed it before you reset, if you backed up then you could restore that

yes

work

and then what

i have to ask, are you aware of how private key cryptography works?

that is the underlying concept behind firmware signing and installation and fundamentally you have to understand that to even consider exploiting the downgrade process

they dont understand anything

we’re all here to learn

Anybody have an A10x iPad Pro running iPadOS 17.x? I have a few questions.

what's your questions

Does the small swipe keyboard lag on this hardware on iPadOS 17? The swipe keyboard works great for me on iPadOS 14.3, but my iPad 9 on 17.0 has keyboard lag that it didn’t have on iPadOS 15.4. And I don’t know if the difference is the RAM, or the whole 17.0 being kinda shit. I’m considering getting a battery replacement unit for my 10.5 iPad Pro, and I expect it will come with 17.x

Also, is PaleRa1n pretty stable? How often do you have to reboot?

palera1n is stable

you can get very long uptime when not doing experiments

i'd say its more stable than even dopamine with physpuppet or other low success rate exploits

physpuppet has a high success rate

tbf most issues can be blamed on kfd as a base rather than the actual exploit themselves

(but also inherently, a checkm8-based jailbreak will be more stable than any semi-untether)

ok but its worse than landa

false

physpuppet as a bug is amazing (and also only 8 lines)

like it's basically a slightly worse sockpuppet (which was essentially the best vuln we've ever had)

a lot of it comes down to this

So I was banned in the palera1n server... idk why I can't think of anything I did, if some mod for Palera1n could tell me at least why I was banned, and if theirs a way/chance of me to apeal.. (DM me then ping me here pls)

I sent @shut stone a DM about it, but his about me says he doesn't read DMs requests and to ping him, I've been waiting for him to come online for like a week now bc I don't want to like disturb him if he's not on, but I think he's always invisible...

unbanned (you got banned for raid phrase)

oh lol, thanks!

are there any videos i cant watch to jailbreak with paler1n i have iphone x i have mac, every adapter i keep running into issues with this step (Run palera1n -l
Make sure your device is plugged in when entering this command
When ready, press Enter and follow the on screen instructions to enter DFU mode) no instruction pop up and instead a pop up tells me to restore and update my iphone, if anyone can help and guide me through there is bread in it for you lmk ty

bruh I anlysed the firmware install and the device only goes once in dfu mode

that doesnt change any part of what i said

still if the installation is not verified by apple after installation thats techincly why this exploit could work

Its just that there is no pe that uses this exploit

it is though

i said before, every single time you turn the device on it verifies the apticket installed on the system

but I have noticed that the apticket is first sent to the client and then to the deivce for some reason

though that descovery has been made and thats how tsssaver works

except that's not a downgrade exploit

we can't create our own blobs or apticket, we can only save for signed versions

except for the fact that the verification happens at the bootrom level which is exploitable for A11 devices and below

and if the apticket is stiched to the os woudnt it be valid still

yes, a tethered bootrom exploit

we already have ways to bypass the firmware signing check on certain checkm8 devices, but you need a pc to turn on the device

!t blobsfaq

but the bootrom exploit give you root access to the device right?

it lets you exploit the device on boot, but that doesn't mean the changes are persistent

DOESNT THE BOOTROM EXPLOIT GIVE ME ROOT ACCESS TO THE DEVICE

again the changes are not persistent

there's a whole chain of firmware checking that goes on when you turn the device on

with checkm8, yes you can modify some of these checks

but now the device knows that the chain has been modified and won't boot without being exploited

but since checkm8 needs a pc to exploit the device, your device is a brick until you plug it in to a pc

iOS Firmware + APTicket (blob) = iOS Signed Firmware (apple private key)

BootROM (containing apple public key) — VALIDATE —> iOS Signed iBoot (signed with private key pair) — VALIDATE —> iOS Signed Firmware (sig. priv key) + SSV — VALIDATE —> iOS Signed BB/SEP/Other firmwares (sig. priv key) — BOOT —> Sandboxing, userland, etc. —> Lock screen (iOS Firmware running) — VALIDATE APPS —> AMFI, amfid, other fun stuff —> Apps running!

but I am not planing on modifying the kernel cache SEP and baseband would it still boot like the downgrade checks only happen post installation so if I use the latest kernel cache SEP and baseband I should be fine

and I am only focused on trying to migergrate the downgrade checks that allow the os to downgrade.

all modifications are done post installation and are reverted pre installation

if you don't patch anything out the downgrade won't be possible

Bruh I AM PATCHING THE PE THAT DOES THE INSTALLATION

...which would make the whole thing tethered

again

you still go back to the fundamental issue that modifying anything in the boot process will require a pc to boot

I never said I am modifying the iboot or anything of the atual os.

I am only patching the pe that does the installation

what are you referrring to

preinstalled envioment

and how do you expect to do any sort of downgrade without touching iboot or dfu?

I am only touching dfu

when I said "I never said I am modifying the iboot or anything of the atual os." is dfu part of ios

no cause dfu does not load a os

it is used to flash an os

Do you think I dont know that

no

and dfu isnt part of a os

so I never said I wont be touching dfu

and the moment you try and touch dfu you change the boot process, making the boot tethered

um even a shsh downgrade requires a pc so I dont get your point

the difference is with an shsh downgrade you can boot without a pc

but when I am modifying the boot process I am using a custom pe not a mofied iboot which is installed

so start the downgrade so I still dont get your point

again im not sure what you mean by preinstalled environment because that's not really a term that exists in ios

I am talking ouside ios my guy

well you haven't really explained how this preinstalled environment works

well its job is to install ios via a script. once I have acces I might be able to share a dump of it with you

well the apple's version

so are you trying to downgrade with or without blobs

I am trying to modify the script to make it without blobs

what you're describing is tether downgrading and there are some tools to do it

but you should still keep working on it, it's a good learning experience

what i was planing on doing was try to do a downgrade via the bootrom exploit while not modifying the boot chain

what a great project, keep us updated once you develop a POC

tbh I need to modify the dump I have currently

best of luck

Hey if you’re willing to do it that’s awesome

Good luck

Any one have a tutorial fpr how to have a rooted jailbreak on iphone 7 running ios 15

check palera1x if you have windows installed

Is there any tutorial on how to use it? I have tried to use it but didn't really know how, I have dopamine installed atm

What I'm looking for is called Untethered Jailbreaks on wiki where I need to do the exploit only once
Untethered jailbreaks can be considered the holy grail of all jailbreaks. They only require the exploit to be ran once either via a website, an app or a computer.

parlera1n and palera1x are bootrom jailbreaks so they are tempoary

tbh its going to be best if you use parler1n/parler1x jaibreak cause I dont think that any newer jailbreaks would work on the device

I have tried to use them but didn't manage to make it work, if you know if there is a tutorial or a video on how to use them I would be thankful

did you install bindfs

thats a required step in getting the rooted jailbreak working

What is bindfs

me when apple discovers that I have found a way of bypassing apple's ios/ipados installation verification without the need of saving shsh blobs
https://tenor.com/view/ドロン-忍法-パッと消える-poof-disappear-gif-15682669

!t bindfs

!t bindfsfaq

!t help

!t blobsfaq

BindFS is a tool used in the context of jailbroken iOS devices. It allows you to create a bind mount, which is essentially a way to mirror a directory to another location. This can be useful for various purposes, such as redirecting file paths or managing file system permissions.

me when i have no proof of backing up my claim

that's like saying haha i got checkm8 to work on A13

I just havent gotten around to testing it

yeah so how about you test it first and then bloat about how you found a downgrade method

Wait is that possible??
How can you skip it?

But is there any tutorial on how to use the software I haven't understood how

it's not

its simple to use

help the dump I have gotten is encrypted

k

Can anyone help me with the making of a pe that will install ios without shsh blobs

I genuinely don’t think you understand what private cryptography is

The bootrom verifies apple’s private key with a burned in public key

You can’t just fabricate your own blobs

I AM NOT TRYING TO DO THAT

then figure it out

yourself

i love how you go around saying "I have a found a downgrade exploit" when in fact you found nothing so far and everything is speculation

Whitename behavior

🫃

wtf

piracy :/

how come you have ios 21.4

early tesetr

someone is trying to make a giant leap in downgrading iOS versions

One message removed from a suspended account.

no

im testing ios 22 right now on my iphone 18 pro max ultra

good luck

Hey, I have a question, I saw for a bunch of weeks that it’s possible to have palera1n like uncover so that you don’t need you’re pc to jb the phone. Is that true or some scam shit what I saw?🤔

scam

Oh… okay

Palera1n is based on an hardware exploit so it will be impossible with only software on your phone

How to jailbreak ipad 4 with windows laptop

Do you have any kind of laptop or pc?

I have windows laptop

Hp 15s ey 2000au

Oh mb misread it xD

You can use palen1x as a live boot to jailbreak

Can i install in windows

U will need to flash it to an usb stick and then live boot

There is no direct support for windows

Will palera1n work on ipad 4 with ios 10.3.4

I have tried ra1n usb that did not work on ios10.3 4

No that’s way to old

Use https://socket-jb.app/

Bro will it work windows

R u sure?

Like stated on the website u can sideload it with sideloadly

So yes it will work on windows

I will try and inform you

Thnx bro

is there palera1n for windows

instead of linux

Anyone know how to get clash of clans working?!?

Palen1x

@silent anchor

You get that? @silent anchor

yea

but i tried installing kali instead of that

tried many times

on other ssd

and like

user and pass

fails

while its correct

im doing the other method

is it possible on vm

?

no

don’t do that

kali is quite possibly the worst distro you can use to try and install palera1n

How does one know that -C even worked to remove a Created BindFS if re-doing -B says it already exists

Linux mint is fine

!t whyrootless

Hey @bold locust, have a look at this!

Rootful is dead on ios 15+

We don't provide support for it

why does the palera1n app not show

What device and iOS verison?

oh wait

ok I figured out it's just -f --force-revert that will remove the BindFS as well
didn't work anyways, but Rootless works fine

I am just not exactly sure what you are meant to do with it after

like u install it and when you reboot you just make it boot Rootless again, or what happens

Woot woot!!!! I did it!!!

I got clash of clans working!!!

Supershocked

Choicy?

!t palera1nupdate

@oak escarp @sturdy rampart I uninstalled the official App Store version and installed a official ipa that was patched to not crash jailbroken

Official іра

Not much you can do there

you kind of just have to factory reset your device

https://youtu.be/BCiuerVsJa4?si=_UtFJPa_Dei93DhS

!t palera1n

https://ios.cfw.guide/installing-palera1n/

Sadly you can't look up a jailbreak with GIR iirc

@sick compass I am sorry I didn't know

You're all good

Just trying to help around here :)

Reminds me of “fresh frozen” when talking about food instead lol

do /jailbreak

wait till you find out this simply using choicy would be enough!

when i reset everything will my iphone get locked again with the old icloud ? I only have a windows pc

we dont help with icloudbypassed devices

Is it possible that when I tried to jailbreak the iPhone 8 it could have bricked? My terminal (I use Linux) got lagged and it said that I was putting the device into restore mode and it got lagged and I couldn't do anything and I turned off the terminal and I haven't been able to exit restore mode for 2/3 days I don't know what to do through on Windows nothing I couldn't do anything, exit restore mode or flash the system, and iTunes doesn't even show the device... What to do?

What’s the current best tool to downgrade to older versions tethered for checkm8 devices?

!t reboot

Hey @cursive quail, have a look at this!

Is there a jailbreak for iOS 18 /ipad 8th generation

no

https://gist.github.com/LukeZGD/9d781f1b03a69fa46869384a9407a41a

can iphone xs max or iphone 13 pro max downgrade to IOS 16?

no

ok

I have a question. I keep getting this error performing usb device reset device disconnect detection might not work until a manual cable replug. How do I fix this? I tried replugging the cable back into the usb port but it still gives me that error.

I have choicy what are your settings at? I’d rather use the App Store than wait for the patched ipas every update

@oak escarp

you completely toggle off tweak injection

I tried Choicy, Shadow and one more I think but I forgot which one not at the same time but I still get the clash crash of being jailbroken

Does anyone know?

What device and version?

Ipad 6th gen 17.7. I have an AMD cpu on my main setup so I am unable to use this setup for the process. My Poweredge r720 has an intel CPU so I am trying to use that atm. I am using an ubuntu VM in proxmox for the jailbreak process.

Does it let you jailbreak the device at all? If yes, try unplugging and replugging the device when it says Checkmate!

No, it won't let me. It has this error.

I tried replugging the cable back in and it still gives that error no matter what.

I believe the error is the VM

Your VM software doesn't support USB Passthrough

See if you can run a live linux boot from a USB or run it directly on proxmox

On proxmox I setup the Linux VM so that it can recognize the USB port but oh well. I will try on my EndeavourOS boot. Give me a moment to see if it works.

This is what I get on EndeavourOS. I have an AMD CPU so I figured that was the reason.

Yeah that error is due to AMD

Thats what I figured cause I saw it mentioned on the site saying AMD CPUs have issues. Something related to USB controllers iirc.

Is there any other way I could potentially do this jailbreak without having to get a computer that has an intel cpu? I am not able to go out a get a laptop at this moment.

You could keep trying on AMD it just has a very low success rate

Or boot palen1x from the intel cpu computer on proxmox

palen1x is meant for windows but in this situation it would still work, its just linux but only lets you run palera1n

https://ios.cfw.guide/using-palen1x

Ok, Thank you for helping. I will keep trying and let you know if I run into anymore issues.

No problem

I forgot to ask. On the EndeavourOS I am running where it says Setup Packet was not accepted in the image above that I posted. Do I just let that keep on going until it is successful?

I am a bit new to this. So I apologuise for the many questions.

Not sure since I don't own any computers with an AMD cpu

Probably just let it keep going

All good

Ok will do. Thanks!

I wonder if iOS 15.8.3 on a A10 did something

or if versions of palra1n past 1.0.7 changed something regarding BindFS

Technically it should work but something doesn't. I kinda do wanna use -L to log what -B did, but at the same time idk.
Rootless however works fine.

Jailbreak ios 16.7.4 iphone 8 give me

How to get Xr features and dynamic island on iOS 16.7.10 iPhone 8 with no pc

!t guide

Hey @indigo drum, have a look at this!

Send me link

@indigo drum

omg same ios version!!!!

ye it did

if u are on something line less than A11 and iOS 15 you need to use the iso version 1.1.5 or less

before 2.0

I tried for a few hours and had no success. I am going to hold off on doing this any further until I get an intel computer. Thank you very much for helping me earlier.

No problem!

https://tenor.com/view/muslim-knight-rider-ninja-gif-12758551

Thats just rude

Should I do rootful or rootless on a iphone x on latest ios?

!t whyrootless

Hey @uncut nymph, have a look at this!

thanks ❤️

Which Linux distro will work 100%? Ubuntu gives <Error>: Timed out waiting for download mode (error code: -status_exploit_timeout_error)

https://ios.cfw.guide/installing-palera1n/

palen1x

Ubuntu usually doesn't work/isn't recommended iirc

!t palen1x

hey all, i need some help with palerara1n- i installed it on iOS 16.7.4 on an iphone 8. it install fine but i keep finding that it will occasionally go into safe mode- i uninstalled and reinstalled the plugin i thought it was but it wasn't it. Also, whenever rebooting and re-jailbreak it remains in safe mode. What can i do to escape, this time it seems as if i'm stuck there.

what i have installed: snowboard, trollstore helper/trollstore/trollstore lite, floatingdock XVI, filza, and the other necessary ones that come pre installed with palerara1n

is ios 17.6 on an ipad7 supported ?

yup

perfect, ty

why both trollstore and trollstore lite?

🤷‍♂️

uninstall trollstore lite

Hi, dose iPhone 12 iOS 18.1 supported? What to do after installing Altstore? Im no pro at this things 🤦‍♀️

iPhone 12 isnt supported so no

Can we jailbreak iOS 17.3.1 iPhone 15 max pro

no

You think they going to have one ☝️

sometime prob

but not anytime soon

Isn’t there one for iOS 17 tho

the only thing is the iPad OS 17 and 18 with an jailbreak

for iPhone no

only Trollstore + Bootstrap on 17.0

I got a iPad

which one?

I need to see atm im on vacation I think it’s

if its any of these, u can jailbreak it

iPad Pro

there are multiple pros xD

Need to see when I get back in a week lol 😂

alr

Isn’t there something like sandbox iOS ipa

Like an emulator

to emulate iOS?

Yea

I don’t think so but if they do be nice to run a jailbreak for an app and then transfer data

well u could kinda use corellium and even jailbreak every version I think but aint cheap

so prob not worth it for a normal usecase

else you would have https://github.com/devos50/qemu-ios but thats also not really useful for anything newer

and still very much in testing last time i checked at least

u could get a free trial tough for like 60 min or so if u can convince them that u need it

How much

Dam why so much

because its meant for profesional security researchers

and i can imagine, building a fully functional iOS VM for all fairly recent devices on all versions isnt that easy

True

but like i said, if u only need it once for a short time u could get a free trial

Isn’t this for iPod tho

yeah thats why i said its not really useful

just pretty much the 2 systems able to emulate ios in any way that i know

i used it when i did not have iphone (now i have a jailbroken iphone)

Same I have other iPhone on iOS 14 just sucks cause some them app need to be on iOS 17 I used to know how to bypass but I guess not

they mixed up the free trial options(before you just had to click free trial and type your info)

bruh why tf did they do that

ah yes corelium solo a classic

Dam lol 😂 isn’t there a way to spoof app for higher firmware and if this isn’t channel what channel can I ask

oh yeah, they accepted mine tough couple months ago with this current one

i wanna jail break my iphone 8 with ios 15 on it whats the best route?

i want it for pokemon go

oops wrong channel

no you're in a pretty good channel for that

it doesn't really matter

i'd suggest dopamine for that device

its gonna run pretty poorly

but yeah use dopamine

Does palera1n support iOS 16.7.10 (20H350)?

Depends what iPhone

iPhone X

Yes

16.7.10 is EoL only so yes

!t nosep but keep this in mind

Thought so

Would it mess with my cellular data ?

No

But keep this in mind ^

Passcode is the 6 digits correct?

What do you mean

You will lose the ability to do passcode, faceid, and apple pay

Is that it or are there more things not written?

No thats it, nothing else is lost.

You can get the passcode back use FakePass

Perfect

[[FAkePass]]

Do you know how long it would take to install?

I just found about it 1 hour ago and it seems like the only option that’s good

Depends, windows, mac or linux

Windows

note that since you’re on 16, you’ll need to erase all content and settings if you’ve ever set a passcode

https://ios.cfw.guide/using-palen1x/

Maybe 10-25 minutes

Before or after jail break?

Do you guys also help with installing tweaks?

Yes

before and moving forward

I can’t just turn it off rn?

you have to erase if you ever set a passcode to use palera1n

thank you Apple SEP mitigations

What would you say is better #palera1n #dopamine for ipa singing

If you’re on 16.7.10 you can’t use Dopamine

and no you can’t downgrade

(that being said… Sideloadly would likely be fine if that’s your goal)

Would that be permanent ipa signing or temporary?

@solemn verge do you know of a YouTube video on how to install it?

Which one would I install

the one with 64

!t yt

Hey @runic bay, have a look at this!

that's crazy that !t yt is in his name 😭

@silent anchor ^

😭

read the top of the screenshot brother

wtf

permanent as long as you are jailbroken

What about for this one which ones do I download?

buddy

what is your operating system do you know that?

Bruh I realized as soon as I sent the picture

My fault is that all I download from this website or more?

!t tsjb

Hey @runic bay, have a look at this!

Is there a way to bypass the jb detection from supercell games? Specifically clash royale

disable tweak injection with choicy

thanks

ive disabled tweak injection for the app but it still dosnt work. is there any other settings that i have to enable for it to work?

do you have

filza installed

through jailbreak

yup

uninstall it

Hi! I have a question, why does my vnodebypass is failed? I installed dopamine thru trollstore and my jailbreak is Palera1n+rootles iPhone 7 v15.8.3?

how long did you wait on the screen

It instantly changed back to "enable" button

oh my bad, here is what's happening when I click "enable" button

Guys i need jailbreak ios 17.3.1

there is

ios is not ipados

my bad

I thought we are in palera1n so he means iPadOS

why exactly does palera1n say

It has to do with timing issues with AMD CPU’s iirc

don't newer Intel though have a defect though?

e.g. let's say one seeks a new build type thing

That’s different

You can still use palera1n on AMD you’ll just have a lot of issues

like issues as in errors?

on a Reddit post someone said that it worked for them using a different USB Port

seen that newer models support something called "USB 4.0" 🤔

AMD isn't great when it comes to explain features, probably in BIOS one can find a bunch of settings for USB maybe, not sure

this sort of issues are present on the AMD GPU. CS:GO Steam Forums would go wild on issues. Being forced to change the settings, isn't something common that a user should be forced to do

Oh yeah, it was their USB controllers that have weird issues

https://www.youtube.com/watch?v=ET4PFZ9rqlc what a strange thing

because like I think CPUs themselves work the same

Got my info here

Sorry for the ping reply

it’s a latency issue with AMD

AMD desktop CPUs have some USB controller thing that results in the exploit being really inconsistent

doesn't occur on AMD laptops

do they let one disable it?

disabling the usb controller means no usb

so is the usb controller just screwed

it's not screwed just buggy with this

is it all of the amd cpus?

I don't think so

are newer ones affected

but I haven't seen someone try this on like AMD FX

anything ryzen based is certainly affected

does that mean AMD are bad CPUs? or what would that mean

doesn't mean they're bad it just means it doesn't work with this

the cpus are fine, we're a very fringe use case that amd just doesn't account for

like the latency increase is in literal ms but that's enough to make checkm8 not work

i don't think a cpu should cause issues 🤔 🤷
no clue how the exploit works in detail though

also what USB Latency, like in-general or is it related to the exploit?

still didint work :/

I can use it in iPad Pro M4 ? am new here

no, ipad 7th gen and older only

Ok , thanks

intel and amd have different code for their usb stacks

amd just has slightly higher latency in theirs which makes checkm8 not work right

did amd not reduce the latency in newer CPU models?

again like i said before this is not an issue in any other application

this issue only crops up when you're running an exploit that needs very low latency

you would never have an issue with amd's usb stack in any other use case

so this latency thing doesn't equal to data is sent less faster through USB on AMD than on Intel?

it is a difference of less than a second

you would not even notice it was there

nvm

Hello

I’m new at jailbreaks

Please is it good and will my phone not get spoiled. Pls someone should put me on

what iphone & ios

and chances are ur phone won't get "spoiled"

just make a backup first

iPhone 14 Pro Max and my current iOS is 18

yeah unfortunately you can't jailbreak

if you want a jailbreak in the future, don't update your phone

Oh okay

you can have a look at the /canijailbreak

command

I added you please accept

why

So I can dm you and so that you can put me on very well please.

there's nothing else to say

Ohk.

you can't jailbreak

simple as that

can a iphone X be upgraded to the newest version or is it apple update locked?

there's a good reason why the latest ios version isnt compatible with iphone X

chances are if u did somehow magically successfully manage to be able to do it

you'll only be met with a bootloop

phone starts up
crashes
repeat

so whats the earliest ver it can be put on too

im trying to jb a iphone x i got

u seem like yk what ur doing so i got a question. if i downgrade my phone to 16.5 RC and jailbreak it, will i be able to customize it to make it look like a newer version cus i really do not like the ios 16 like look

thank god 100% avalible 🙏

unfortunately you can't downgrade from iOS 16 because of the Cryptex(an iphone security feature that prevents downgrading, EVEN IF you save blobs)

yeah its impossible to downgrade

so once ur in iphone 16, there's no going back for now

damn i thought i could. so i have to wait for a jailbreak for ios18? (i got a 12 btw)

yeah it might take awhile though

apple bought all of the jailbreak developers lol

it will take a long while

there hasnt even been one for 17.6

yea thats why i wanted to downgrade it. i used mistakaX to get the dynamic island but because of how the 12 is it gets cut off so i wanted to downgrade to jailbreak the phone and fix all of that

for A12+ processors it's iOS 16.6 max i think

unless there is another way of fixing that but i dont believe there is

unfortunate, but u can always still jailbreak ur phone and customise it

wait maybe 1-2 years and that will change

yea ima be waiting a couple years for a jailbreak lol

by then ima have a new phone

but wait

u have an iphone 12

with ios 16

no 18

ohh

it came with 17 and i didnt know so i kept updating

yeah then i guess u gotta wait

iphone X is only 167 dollars rn

thats good but still not worth it i rather just pray to god some goated jailbreak developer drops a jb for 17.6.1

what if i download a IPSW of ios 16.5.1 or whatever it is an then flash it to my phone or will that not work

nop

https://x.com/opa334dev i guess keep an eye out

basically how do i explain it

when u want to install an update

it communicates with apple's servers

and if apple allows for the iOS version to be installed

they will send a key

which lets u install it

but yk how in #announcements it says

ios version is no longer signed

that means apple has stopped giving out keys for that specific ios version

and the keys are tied to your iPhone hardware information so they can't be shared

and apple has stopped giving out keys for ios 16 altogether so u cant downgrade

u can see here https://ipsw.me/product/iPhone

ipsw are the iOS files

i guess the good news for u is

yea i saw on that site actually i could still download 16 so i thought maybe it would work

u can downgrade to ios 17.7

i can but by the time 17 gets a jailbreak i might be better off forgetting about it and update my phone. or deal with dynamic island being cut off halfway

¯_(ツ)_/¯

or just not use it, i thought there was a way to downgrade so i figured id ask

you can technically downgrade to 17.6 by downloading the 17.6 beta (still signed) and then using delay ota to update to 17.6 stable

How to jailbreak one plus 8t 💀

get outtt

Lmfaooaoaoao

Is there a jailbreak for 17.3.1?

Hi I’m new at this so how can I unlock phones from carrier

call the carrier

no other option

Are you on an iPad 6, 7, Pro 1, or Pro 2?

pro 1 only went up to ios 16

I was too lazy to search it up

with the new troll store version will this make a new jailbreak come then

I’m on 17.1.1

I agree … I’ve been waiting along time waiting for iOS 17 to work

no

No

you can still jailbreak if you had altstore

TrollStore isn’t a requirement for jailbreaking

sideloadly > altstore

no

16.5.1 and A15/16 and M2 is max 16.5

trollstore>>

yea ofc but thats only if u have the exploit available

unlock bootloader then install magisk

or ksu if that's even compatible with the 8t

Ik I was joking

I don't need to jailbreak this

can you jailbreak on iPhone 13 Pro Max cuz ngl this iPhone 7pro be getting hot

no

palera1n doesnt work on the 13 pro max

what ios version is it on

shoot I’d have to check fam

Damn got lab rn

Hello, I have ipad air 4th gen OS 17.5.1. Do i need a computer to jailbreak Palera1n?

u cant jailbreak

at all

Ohh

Like ever? Or in future i can?

no

never ever

not going to happen

stay on 17.5.1 for 2 more years and maybe u'll have a jb

iPad getting access to iOS 18 while iPhones don’t get 16.7 even 💔 insane ngl

Can u jail break a iPhone xr?

not with palera1n, with dopamine up to iOS 16.5.1

yo how does one jailbreak with iPhone 7plus

What ios

15.8.3

https://ios.cfw.guide/installing-dopamine/

follow this

bet ty

16.6.1? a13

!t semijailbreak

Hey @silent anchor, have a look at this!

follow this

https://ios.cfw.guide/installing-nathanlr/

Do u can remove it after u set it up

Yeah it removes itself after every reboot

But if you fully wanna uninstall it then make sure to remove the tweaks first just to be safe

Ok

What does restring do

And if my phone will 0% then it will remove

?

Respring?

Yeah

Yes

Ok

Tbh idk

But

Its reloads springboard?

For example if you install a tweak most of the time you’ll need to respring your phone for the tweak to work

Yeah I think so

Oh

Yeah its just restart spring board

Ye

Ty

Np

Does it will do on ip11 16.6.1

Nathanlr

Yeah

Ok

Can u tell in details how to unjailbreak phone

palera1n?

Nathanlr

isnt it in the guide?

because idk

Idk

Is palera1n removable without losing data?

!t rootfs

Hey @silent anchor, have a look at this!

cool thanks

does palera1n work on ipad 10 ios 18

no

you cant downgrade either

to a jailbreakable version at least

what ios can you jb sith palera1n

A11 and below devices

so like

ph Lr

oh alr*

…

You just remove the tweaks and then you should be able to safely uninstall the jailbreak there should be a guide somewhere

Оk

i use to have palera1n on my jailbroken phone but i lost my usd how do i start over again , i have a new usb just need to know the steps

Palen1x

does the secure rom dump work for iphone 5

where’s the guide to that

Sad that the last iphone that is supported with palera1n no longer has support for the latest version of ios 18

it doesn't even have ios 17

Hey guys, has anyone had any luck with jailbreak detection bypass on the Wizz Air app? I have blobs for iOS 15.8.3 and iOS 14.2

It seems to be quite strict with jailbreak detection and just crashes on launch if the device is jailbroken (though it launches if palera1n is installed but not in the jailbroken state)

What type of jailbreak does palerain have

semi thetrered

did u try disabling tweak injection with choicy? if the app is apperantly not checking any files because it works in non jailbroken state i would assume its checking tweak injection

Good point, I'll try it, but would it be possible then to still use Frida to analyse the app?

i dont know exactly how frida works but i would assume it will have to inject something into the app if thats the case prob no

You could try A-Bypass too but that wont be as powerful as choicy so it might get detected

Ok so then there aren't any tweaks that properly hide injection entirely? I guess apps can do random stuff to see if there are tweaks

Also rootless jb would be easier to hide than rootful right? I am at 15.8.3 but can downgrade to 14.2 and use KernBypass

i dont think that will do a big difference tbh as the app wouldnt have the priviliges so check that if rootful anyway

there are couple ones that work with most general apps like A-Bypass or Choicy but more advanced ones mostly have specific ones

sadly ur app prob isnt big enough to be in GIRs list

Alright then I'll just play around with A-Bypass and Choicy and see if I can come up with a way to run Frida and bypass detection

But probably it's not going to work

Thanks for the help

i mean if u are good enough in reverse engineering, you could just try frida without choicy and then find out what the app is checking

Honestly it's not something I want to invest a massive amount of time in (it's a small favor for someone else) so I was just checking for a general solution

alr then just try choicy or A-Bypass

“work” in what way

Hello all
I recently installed palera1n on my iPad. Installed Filza with zebra 1.1.36. I can transfer files to my MacBook using chrome with filza but unable to transfer files to my iPad. Please help.

can i jailbreak my iphone 7 with ios 15.8.3?

yes

jailbreak using Dopamine

https://ios.cfw.guide/installing-dopamine

Ios 16.7.10

Please

are u on linux/mac or windows

@vital apex

#palera1n message

answer the question

please

Windows

!t palen1x

Hey @old geyser, have a look at this!

click on palen1x tutorial

Okey

Tnx

You can transfer files through your iCloud if your devices are synced and connected with your Apple id. From your Mac book put them on iCloud - and open the files app that’s preloaded on your iPad and click iCloud Drive and your files should be there.

Is there an option in Palera1n to disable tweak injection without the phone being jailbroken? My SpringBoard is stuck in a respring loop because of a tweak

palera1n -S i think

for safemode

A friends off mine askes if you can jailbreak iPhone XS max with ios 17.6.1. I thought it wasn't. Thanks in advance

you cant

Thanks, that was what I thought

Thanks. Is there a way to fix this? Filza on my iPhone works fine.

I’m not sure im understanding what your trying to or want filza to work together with. What are you asking if there a way to fix what?
You said you can transfer files to mb using chrome with filza.
You should have to use chrome at all to transfer files between your devices.
You can just ari drop the files back and froth between all of them. Let me know what you’re trying to achieve.

Hi sorry for being not clearer before. I am trying to move files from my PC to ipad using chrome - filza web address but it doesnt work. However moving files from ipad to PC seem to be working.

A15 ios 16.6.1 possible?

https://ios.cfw.guide/installing-nathanlr

not a full jailbreak but it's a semi-jailbreak

is it possible to get parler1an on my phone using a pavilion g7 ?

Any computer made in the last 20 years will work https://ios.cfw.guide/installing-palera1n/

As long as it has an Intel CPU you should be fine

Also what ios verison and device do you have?

What am I doing wrong? Sileo won’t let me install choicy

iOS 16.7.7

press the reload icon

over and over

and it will work eventually

Hello
Can someone please help?
Filza installed thru tigisoftware repo on palera1n - zebra - iOS 17.3.1 iPad 7 rootless. Unable to transfer files from pc to iPad via Chrome. Files don't show up after I upload them.

Didn’t work, erased all content and settings, re jailbroke and now choicy isn’t showing up.

[[choicy]]

get it from this repo

🥲

Wow ok i deleted the other repos and readded opa334 and it worked

Thanks tho

Hi I am on linux ubuntu, have an iphone 8 running iOS 16.7.10 and I tried palera1n and it gets to``` - [10/07/24 04:31:24] <Verbose>: == checkm8 trigger stage ==

• [10/07/24 04:31:25] <Info>: Checkmate!
• [10/07/24 04:31:25] <Verbose>: Device should now reconnect in download mode
• [10/07/24 04:31:25] <Verbose>: DFU mode device disconnected
• [10/07/24 04:31:45] <Error>: Timed out waiting for download mode (error code: -status_exploit_timeout_error)

Unplug it then plug it again when you see “Checkmate!”

                                                                                    Failed to start notification connection. There was an error connecting to the device.

put an * instead of my name its not normaly like that fyi

@silent anchor(sry for the @ have to go soon so just checking) soo have any idea?

im a bit busy

ill try figuring it out later

thanks

Can I downgrade
On iPhone 8

16.7 to 16.6.