https://www.theiphonewiki.com/w/api.php?action=feedcontributions&user=Toomuchjames&feedformat=atomThe iPhone Wiki - User contributions [en]2024-03-29T07:45:44ZUser contributionsMediaWiki 1.31.14https://www.theiphonewiki.com/w/index.php?title=Talk:IDA_Pro_Setup&diff=8289Talk:IDA Pro Setup2010-08-13T14:22:26Z<p>Toomuchjames: /* help */</p>
<hr />
<div>==update please== <br />
==More instructions==<br />
It could be great if someone writes more instructions for the other basebands and models.. I tried with the instruction for 3G baseband in 3gs 5.12.01 baseband and I got an error in IDA Pro...<br />
--[[User:L0g0|L0g0]] 15:18, 7 August 2010 (UTC)<br />
<br />
Thank you all for contributing. -caique2001-<br />
<br />
<br />
----<br />
==More instructions==<br />
It could be great if someone writes more instructions for the other basebands and models.. I tried with the instruction for 3G baseband in 3gs 5.12.01 baseband and I got an error in IDA Pro...<br />
--[[User:L0g0|L0g0]] 18:54, 29 July 2010 (UTC)<br />
---<br />
<br />
Hi! I'm a n00b trying to learn a way to discover vulnerabilities in baseband 05.12.01 ... but this article needs an update... please, someone update it , also it could help me to help you xD<br />
Also, there is no tutorial on how to find a way to jailbreak, and there arent well documented all the actually available jailbreaks...<br />
<br />
--[[User:L0g0|L0g0]] 06:21, 28 June 2010 (UTC)<br />
<br />
http://www.theiphonewiki.com/wiki/index.php?title=Greenpois0n<br />
<br />
use the greenpois0n utilities. [[User:Leobruh|Leobruh]] 07:34, 28 June 2010 (UTC)!<br />
<br />
This page is correct and doesnt need an update. You need to read up on exploits if you want to make jailbreaks. Lately buffer based overflows have been used the most. Google it, Wikipedia it and understand what exploits are. Use IDA next. As for a tutorial, let me write one for you: 1. Find a function which can be exploited to run usercode, 2. Insert code to edit/overwrite fstab to<br />
mount (all) disks as read/write, instead of read-only. Optional 3. Transfer cydia.app. Done.<br />
<br />
- toomuchjames<br />
<br />
Hi, could anyone explain, how to dump the bootrom (iPod Touch 2G MC). Thank you<br />
<br />
== help ==<br />
<br />
where do I get the baseband fls file???<br />
<br />
Decrypt the root filesystem dmg, and look in /usr/local/standalone/firmware or similar. ~toomuchjames<br />
<br />
== update please ==<br />
==More instructions==<br />
It could be great if someone writes more instructions for the other basebands and models.. I tried with the instruction for 3G baseband in 3gs 5.12.01 baseband and I got an error in IDA Pro...<br />
--[[User:L0g0|L0g0]] 15:18, 7 August 2010 (UTC)</div>Toomuchjameshttps://www.theiphonewiki.com/w/index.php?title=Talk:AT%2BXAPP_Vulnerability&diff=8288Talk:AT+XAPP Vulnerability2010-08-13T14:18:10Z<p>Toomuchjames: </p>
<hr />
<div>I try to find the xapp command in the disassembly. Is it right that it is in the stack.fls file? I cant find a "xapp" string ... Can someone help me? ~chrisude<br />
<br />
In a more general sense I'd like to know the same. As to not being able to find the xapp string, which baseband are you looking at? I can verify that the 05.11.07 baseband does have xapp (at offset 62F5AF, 63B217, 37E4D5 (and xapp_get at 513D18, cmd_xapp.app at 632619). Which you're suppose to look at exactly I'd like to know also.<br />
So if someone could please give a small intro as to how to find the AT+ commands (main) routine, please fill out. Thanks in advance! ~toomuchjames<br />
<br />
Anyone?</div>Toomuchjameshttps://www.theiphonewiki.com/w/index.php?title=Talk:AT%2BXAPP_Vulnerability&diff=7940Talk:AT+XAPP Vulnerability2010-08-06T13:14:23Z<p>Toomuchjames: </p>
<hr />
<div>I try to find the xapp command in the disassembly. Is it right that it is in the stack.fls file? I cant find a "xapp" string ... Can someone help me? ~chrisude<br />
<br />
In a more general sense I'd like to know the same. As to not being able to find the xapp string, which baseband are you looking at? I can verify that the 05.11.07 baseband does have xapp (at offset 62F5AF, 63B217, 37E4D5 (and xapp_get at 513D18, cmd_xapp.app at 632619). Which you're suppose to look at exactly I'd like to know also.<br />
So if someone could please give a small intro as to how to find the AT+ commands (main) routine, please fill out. Thanks in advance! ~toomuchjames</div>Toomuchjameshttps://www.theiphonewiki.com/w/index.php?title=User_talk:Toomuchjames&diff=6778User talk:Toomuchjames2010-06-28T20:46:55Z<p>Toomuchjames: </p>
<hr />
<div>u got an email or facebook to contact faster?<br />
[[User:Leobruh|Leobruh]] 20:18, 28 June 2010 (UTC)!<br />
<br />
<br />
I'm on twitter, and osx86 irc "_james".</div>Toomuchjameshttps://www.theiphonewiki.com/w/index.php?title=User_talk:Geohot&diff=6763User talk:Geohot2010-06-28T08:08:22Z<p>Toomuchjames: </p>
<hr />
<div>hey geohot i wanna start hacking i have basic skills. im interested in baseband buffer overflows to unlock via the ultrasn0w payload. can u help me get started? [[User:Leobruh|Leobruh]]! {{unsigned|Leobruh|04:19, June 28, 2010 UTC}}<br />
<br />
<br />
Please reformulate your question. What is it you wish to do with ultrasn0ws payload? Did you mean you want to find a function which is vulnerable to buffer based exploits? Then see usertalk for IDA Pro setup.<br />
- toomuchjames</div>Toomuchjameshttps://www.theiphonewiki.com/w/index.php?title=Talk:IDA_Pro_Setup&diff=6762Talk:IDA Pro Setup2010-06-28T08:02:39Z<p>Toomuchjames: </p>
<hr />
<div>Thank you all for contributing. -caique2001-<br />
<br />
<br />
----<br />
<br />
Hi! I'm a n00b trying to learn a way to discover vulnerabilities in baseband 05.12.01 ... but this article needs an update... please, someone update it , also it could help me to help you xD<br />
Also, there is no tutorial on how to find a way to jailbreak, and there arent well documented all the actually available jailbreaks...<br />
<br />
--[[User:L0g0|L0g0]] 06:21, 28 June 2010 (UTC)<br />
<br />
http://www.theiphonewiki.com/wiki/index.php?title=Greenpois0n<br />
<br />
use the greenpois0n utilities. [[User:Leobruh|Leobruh]] 07:34, 28 June 2010 (UTC)!<br />
<br />
This page is correct and doesnt need an update. You need to read up on exploits if you want to make jailbreaks. Lately buffer based overflows have been used the most. Google it, Wikipedia it and understand what exploits are. Use IDA next. As for a tutorial, let me write one for you: 1. Find a function which can be exploited to run usercode, 2. Insert code to edit/overwrite fstab to<br />
mount (all) disks as read/write, instead of read-only. Optional 3. Transfer cydia.app. Done.<br />
<br />
- toomuchjames</div>Toomuchjames