synackuk

Here's n1ghtshade 1.0 Fixes all the known bugs as far as I'm aware. Note you MUST restore again if you wish to update to this version. Have fun, and let me know of any bugs. github.com/synackuk/n1ght…

Still searching for my next project!! Really struggling to even land any interviews

@p0sixninja @ShadowLee19 Are the slides or similar from that training available anywhere? I thought I remembered seeing it years ago, but I can't find it now...

@ShadowLee19 seek out the irecovery logs from my training ;)

which one? ;P

SundanceInH2A (rev2) brings ability to create bundles with jailbreak applied Please note that it needs a different kernelcache - more info in README github.com/NyanSatan/Sund…

@nyan_satan Ah after finishing the article I can see you're way ahead of me :) I remember @p0sixninja saying that in the talk where he demoed the iBoot exploit you're using here he actually leaked multiple iBoot bugs. I wonder if any of them were left unpatched

@nyan_satan Hmm.. I bet that iOS 6 on the iPad 1st gen would be plausible with a similar method

Here is my little article with technical details behind the iOS 6 on iPod touch 3 bring-up nyansatan.github.io/run-unsupporte…

Just released my little tool that generates iOS 6 restore bundle for iPod touch 3! USE THIS STRICTLY ON YOUR OWN RISK github.com/NyanSatan/Sund…

It's been a long time since I published a write-up, so... Here's my little article about log strings obfuscation in modern iBoot and 2 methods I found to (partially) deobfuscate them Read on your own risk! nyansatan.github.io/iboot-log-deob…

@eepyeri @snwy_me 32 bit tools are available 😉

@snwy_me checkm8 itself does, checkrain is only for 64bit

i need some help I've recently got this iphone 5c (fmi on), managed to get to the home screen but because it's not activated i can't sideload anything. is there any possible way to jailbreak the thing without sideloading any apps?

@nyan_satan @AppleN1nja If you don't know the algorithm how could you reverse it ?

@AppleN1nja Nope, the new algorithm is unknown to me

FYI this is not just HMAC => filename map generated from the old iOS 9 iBoot source code leak, but also 500+ mappings I managed to recover from newer versions in various ways So it is gonna be somewhat useful even on newest firmware/hardware

@khanhduytran0 @riscv64 Just looked at your GitHub. Very cool

@synackuk @riscv64 Native

One last screenshot of macOS on iPhone before I’m going back to messing with tvOS a bit Sadly Xcode refused to open any file for some reason 😭

@khanhduytran0 @riscv64 Even jail broken how does that make sense ? Some sort of boot chain bug? I assume Apple won’t sign the macOS base system for an iPad

@khanhduytran0 @riscv64 VM?

Also a couple of days ago, @riscv64 booted macOS BaseSystem on a M2 iPad, using XPC Metal for now due to native GPU driver issues we have yet to figure out. There is also IOHID plugins incompatibility where pressing a key via a connected physical keyboard crashes WindowServer.

@nyan_satan iOS 6.. all downhill from there

The legend say iPod touch 3 was meant to run iOS 6, but Apple marketing said no Screw Apple marketing, I replied youtu.be/VTbShvf97kI

@y0ush4 @mikefedex890 (Yeah dw I knew he was scamming lol)

@synackuk @mikefedex890 He blocked me as well Please don’t fall for it

Thanks to @y0ush4

For anyone who has a Macbook with an XDR display who wants to access its full range of brightness, I've built a script called XDR Enabler. It works the same way as lunar and better display, but it's free. github.com/synackuk/XDR-E…

can’t believe how clear the aurora is, here’s a pic from my phone

@P5_2005 Thank you.

@synackuk i heard gaster(from eclipsa dev) is more reliable and first try even on m1

Has anyone managed to get an M1 Mac to work with fugu to put an iPhone 7 into pwned DFU?