Search results

• Main Page
  * [[SHA-1 Image Segment Overflow]] (SHAtter) * [[usb_control_msg(0xA1, 1) Exploit]] (steaks4uce)
  10 KB (1,218 words) - 18:16, 24 January 2023
• Timeline
  ...[Release Candidate|RC]], tvOS 16.1 [[Release Candidate|RC]], and watchOS 9.1 [[Release Candidate|RC]] released. [[iPad Pro (12.9-inch) (6th generation)] * 12 October – watchOS 9.1 beta 5 released.
  86 KB (10,312 words) - 17:11, 20 October 2022
• DFU Mode
  # Do steps 1 and 2 from above.
  10 KB (1,674 words) - 16:14, 29 November 2022
• IBoot (Bootloader)
  ROM:5FF000F4 LDR R0, =(_ibootStart+1) starts the poweroff task (5FF00EF2) - calls (sub_5FF00FD0+1)
  123 KB (8,553 words) - 00:24, 13 November 2022
• Diags (iBoot command)
  ...ion check to make sure it is not being run on a RELEASE fused CHIPID. In 3.1+, this command was removed entirely, but is still present in DEVELOPMENT iB ...given to the 'diags' command, then it would jump to whatever address argv[1] specified, but not before disabling the GPIO devices. You can run unsigne
  2 KB (306 words) - 06:22, 11 February 2021
• Kernel
  ...imilar to Windows 32-bit model. On older iOS versions the separation was 3/1 (mapping the kernel at 0xC0000000), closer to the Linux model. ...rse_boot_argn (usually exported, _PE_parse_boot_argn 8027A8EC on the iOS 6.1.3 kernel, discovered by [[User:Haifisch|Haifisch]]). Finding references (us
  177 KB (18,986 words) - 05:15, 14 November 2022
• Durango 8J2 (iPad2,1)
  | Device = iPad2,1
  3 KB (520 words) - 19:30, 10 November 2019
• JasperVail 8C5091e (iPod3,1)
  | Device = iPod3,1
  4 KB (559 words) - 16:30, 10 November 2019
• JasperVail 8C5101c (iPod3,1)
  | Device = iPod3,1
  4 KB (540 words) - 16:30, 10 November 2019
• DurangoVail 8F5148b (iPod3,1)
  | Device = iPod3,1
  4 KB (547 words) - 16:30, 10 November 2019
• DurangoVail 8F5153d (iPod3,1)
  | Device = iPod3,1
  4 KB (548 words) - 16:30, 10 November 2019
• DurangoVail 8F5166b (iPod3,1)
  | Device = iPod3,1
  4 KB (534 words) - 16:30, 10 November 2019
• TellurideVail 9A5274d (iPod3,1)
  | Device = iPod3,1
  3 KB (533 words) - 16:30, 10 November 2019
• HoodooVail 9B5127c (iPod3,1)
  | Version = 5.1 beta 2 | Device = iPod3,1
  3 KB (523 words) - 16:30, 10 November 2019
• HoodooVail 9B5141a (iPod3,1)
  | Version = 5.1 beta 3 | Device = iPod3,1
  4 KB (563 words) - 16:30, 10 November 2019
• Sochi 11D257b (AppleTV2,1)
  | Version = 6.2 (7.1.2) | Device = AppleTV2,1
  2 KB (317 words) - 16:07, 10 November 2019
• Sochi 11D257a (AppleTV2,1)
  | Version = 6.1 (7.1.2) | Device = AppleTV2,1
  2 KB (322 words) - 16:07, 10 November 2019
• SUSochi 11D201b (AppleTV2,1)
  | Version = 6.1.1 (7.1.1) | Device = AppleTV2,1
  2 KB (313 words) - 16:07, 10 November 2019
• InnsbruckTaos 11B553 (AppleTV2,1)
  | Device = AppleTV2,1
  2 KB (330 words) - 16:07, 10 November 2019
• Innsbruck 11A469a (AppleTV2,1)
  | Version = 6.0 (7.0.1) | Device = AppleTV2,1
  2 KB (325 words) - 16:07, 10 November 2019
• Castlerock 13C75 (iPhone4,1)
  | Device = iPhone4,1
  4 KB (567 words) - 19:07, 10 November 2019
• OkemoTaos 12B410 (iPhone4,1)
  | Version = 8.1 | Device = iPhone4,1
  4 KB (549 words) - 19:07, 10 November 2019
• SochiVail 11D5099e (iPhone5,1)
  | Version = 7.1 beta | Device = iPhone5,1
  4 KB (560 words) - 19:05, 10 November 2019
• Telluride 9A404 (iPhone4,1)
  | Version = 5.0.1 beta 2 | Device = iPhone4,1
  4 KB (571 words) - 19:07, 10 November 2019
• Durango 8K2 (iPad2,1)
  | Device = iPad2,1
  3 KB (520 words) - 19:30, 10 November 2019
• BrightonMaps 10B400 (iPod4,1)
  | Version = 6.1.5 | Device = iPod4,1
  4 KB (564 words) - 17:28, 10 November 2019
• Bootrom
  ...t of the serial number identifies the year of manufacture (9=2009, 0=2010, 1=2011, 2=2012), while the fourth and the fifth indicate the week. There is a * [[pwnage|Pwnage 1.0 (Ramdisk + AppleImage2NORAccess)]] up to Rev.2
  10 KB (1,261 words) - 00:50, 13 September 2022
• AES Keys
  ...ey (0x3E8 identifier). The values defined in the [[N90AP|iPhone 4 (iPhone3,1)]] 5.0 kernel are : ...[KBAG]]s are now used instead of the 0x837 key. Because iPhone OS versions 1.x were used only on the [[M68AP|iPhone]] and [[N45AP|iPod touch]] (both use
  4 KB (717 words) - 05:11, 28 November 2020
• NAND
  ...d. In the case of [[iOS]], the chips can range anywhere from 4 GiB to 1 TiB. ...om [[Mojave 8M89 (AppleTV2,1)|4.0]] (4.1) to [[Jasper 8C150 (AppleTV2,1)|4.1]] (4.2). Not all jailbreak payloads modify [[/private/etc/fstab]], some of
  4 KB (696 words) - 22:10, 18 December 2019
• Genoa 13G34 (iPhone6,1)
  | Device = iPhone6,1
  4 KB (622 words) - 13:12, 26 February 2020
• Telluride 9A404 (iPhone3,1)
  | Version = 5.0.1 beta 2 | Device = iPhone3,1
  4 KB (561 words) - 19:09, 10 November 2019
• Telluride 9A404 (iPad1,1)
  | Version = 5.0.1 beta 2 | Device = iPad1,1
  4 KB (554 words) - 19:13, 10 November 2019
• BrightonMaps 10B329 (iPhone2,1)
  | Version = 6.1.3 | Device = iPhone2,1
  4 KB (576 words) - 19:11, 10 November 2019
• Telluride 9A402 (iPad1,1)
  | Version = 5.0.1 beta | Device = iPad1,1
  4 KB (543 words) - 19:13, 10 November 2019
• Telluride 9A402 (iPhone3,1)
  | Version = 5.0.1 beta | Device = iPhone3,1
  4 KB (561 words) - 19:09, 10 November 2019
• Telluride 9A402 (iPod4,1)
  | Version = 5.0.1 beta | Device = iPod4,1
  4 KB (558 words) - 17:28, 10 November 2019
• Telluride 9A404 (iPod4,1)
  | Version = 5.0.1 beta 2 | Device = iPod4,1
  4 KB (554 words) - 17:28, 10 November 2019
• Talk:AES Keys
  ...oot won't reenable it. --[[User:Aker|Aker]] 21:56, 12 September 2014 (GMT+1) ...Pod touch is rebooted. -- [[User:Aker|Aker]] 08:54, 13 September 2014 (GMT+1)
  8 KB (1,417 words) - 15:15, 28 March 2017
• Activation
  [[Image:foto.jpg|thumb|right|iPhone with 1 signal bar and damaged [[hacktivation]] or it doesn't have an internet conn ...able to make calls and you have only 1 bar of reception. If you only have 1 bar and no carrier at the status bar, it isn't activated correctly.
  3 KB (465 words) - 00:49, 16 October 2017
• DonnerTideUpdate 12H876 (AppleTV3,1)
  | Device = AppleTV3,1
  2 KB (336 words) - 17:23, 1 February 2021
• DonnerTideUpdate 12H885 (AppleTV3,1)
  | Device = AppleTV3,1
  2 KB (308 words) - 17:28, 1 February 2021
• DonnerTideUpdate 12H903 (AppleTV3,1)
  | Device = AppleTV3,1
  1 KB (140 words) - 17:36, 1 February 2021
• DonnerTideUpdate 12H911 (AppleTV3,1)
  | Version = 7.6.1 (8.4.4) | Device = AppleTV3,1
  1 KB (145 words) - 17:39, 1 February 2021
• DonnerTideUpdate 12H914 (AppleTV3,1)
  | Device = AppleTV3,1
  1 KB (141 words) - 17:48, 1 February 2021
• Durango 8H7 (iPad2,1)
  | Device = iPad2,1
  3 KB (530 words) - 19:30, 10 November 2019
• KirkVail 7A238j (iPod2,1)
  | Device = iPod2,1 | RootFS = 018-4799-1
  2 KB (164 words) - 16:30, 10 November 2019
• The iPhone Wiki:Community portal
  ...rately]. --[[User:Dialexio|Dialexio]] ([[User talk:Dialexio|talk]]) 04:48, 1 June 2019 (UTC) ...[[User talk:Spydar007|<span style="color:gray;">(Talk)</span>]]''' 07:23, 1 June 2019 (UTC)
  26 KB (4,298 words) - 11:11, 14 September 2022
• BrightonVail 10B5126b (iPad2,1)
  | Version = 6.1 beta 4 | Device = iPad2,1
  4 KB (561 words) - 19:30, 10 November 2019
• BrightonMaps 10B311 (iPad2,1)
  | Version = 6.1.1 beta | Device = iPad2,1
  4 KB (552 words) - 19:30, 10 November 2019
• Sundance 10A523 (iPod4,1)
  | Version = 6.0.1 | Device = iPod4,1
  4 KB (570 words) - 17:28, 10 November 2019
• HoodooVail 9B5127c (iPhone4,1)
  | Version = 5.1 beta 2 | Device = iPhone4,1
  3 KB (508 words) - 19:07, 10 November 2019
• Talk:Firmware Keys
  ...here is a sudden jump in the number of keys for the iPod touch 3G on 4.0-4.1? ! [[N90AP|iPhone3,1]]
  5 KB (806 words) - 16:13, 13 March 2021
• InnsbruckVailPrime 11A4449d (iPhone3,1)
  | Device = iPhone3,1
  4 KB (559 words) - 19:09, 10 November 2019
• Sugar Bowl 5F90 (iPod1,1)
  | Version = 2.1 beta | Device = iPod1,1
  2 KB (176 words) - 16:27, 10 November 2019
• Obtaining IMG3 Keys
  = Method 1 = * Pwned [[M68AP|iPhone]] on [[iOS]] 1.1.4
  7 KB (1,062 words) - 10:01, 12 October 2015
• Talk:Obtaining IMG3 Keys
  = Method 1 Discussion = ...in a hex editor or modifying crypto binary? --[[User:James|James]] 06:34, 1 September 2008 (UTC)
  4 KB (767 words) - 23:36, 19 August 2014
• N72AP
  The name used in firmware is iPod2,1.
  816 bytes (116 words) - 21:10, 21 March 2017
• Jasper 8C148 (iPad1,1)
  | Version = 4.2.1 [[Golden Master|GM]] and 4.2.1 | Device = iPad1,1
  4 KB (553 words) - 19:14, 10 November 2019
• Talk:N72AP
  You have a decrypted copy of iBSS in \iPod2,1_2.1.1_5F138_Restore\Firmware\dfu\iBSS.n72ap.RELEASE.dfu 1. Do the old iBSSes and iBECs run(with exploit)? If so, you are done, just u
  3 KB (489 words) - 21:07, 6 October 2015
• History: Decrypt 1.1.1 (Talk Page)
  ...e the signature of the 8900 files? Would it be possible to replace it on a 1.0.2 fw, and then sign our own modified iBEC to dump the decrypted kernelcac I found this interesting site: [1] (scroll to bottom for iPhone). It seems the iPhone uses a proprietary Sams
  37 KB (6,324 words) - 21:12, 20 March 2015
• IBoot Flags
  '''bit 1''': No ...; if 'option' is not set to 0, then set mimimum address to -1 and maximum address to 0. then return. wtf?
  16 KB (2,016 words) - 08:46, 14 March 2017
• S5L8720
  * [[usb_control_msg(0xA1, 1) Exploit]]
  1 KB (167 words) - 12:33, 23 March 2017
• Jailbreak (S5L8720x)
  ...support for 8900 files any longer. So you cannot just cheat by sending a 1.1.4 iBoot and then using the diags exploit to strap a patched one ;-) In the 1.1.x days, we can all agree that Apple probably did not expect people to be pu
  14 KB (2,533 words) - 18:42, 28 May 2017
• Talk:Jailbreak (S5L8720x)
  ...ly other firmwares too, with the extension ".s5l8920x". This implies that (1) Apple is making yet ANOTHER revision, for some reason, and (2) this is pur ...are the key, and we know it is encrypted with the gid key because of the "1" identifier (at least on the first KBAG), but I am just throwing it out the
  4 KB (636 words) - 01:48, 25 January 2013
• Redsn0w Lite
  ...sn0w-lite") for the [[N72AP|iPod touch (2nd generation)]] on iPhone OS 2.1.1. It is their payload for the [[ARM7 Go]] backdoor. It's analagous to how [[ ROM:00000008 ; went OK, versus -1, saying there was an error
  3 KB (385 words) - 04:31, 17 March 2018
• Northstar 7D11 (iPod2,1)
  | Version = 3.1.2 | Device = iPod2,1
  3 KB (453 words) - 16:30, 10 November 2019
• 0x24000 Segment Overflow
  ...the [[IMG3 File Format|IMG3]] DER so that the second invocation of the SHA-1 hardware was not performed without affecting the first, allowing better con The final SHA-1 register address was chosen so that the first dword of the DATA tag of the
  11 KB (1,918 words) - 17:13, 22 October 2021
• KirkVail 7A312g (iPod1,1)
  | Device = iPod1,1
  3 KB (396 words) - 16:27, 10 November 2019
• Redsn0w
  ...9b3 was released for Windows and Mac OS X, and it allows iOS 3.0 through 3.1.2 to be jailbroken. It includes support for all devices except the [[N18AP| ...ows jailbreaking of early [[N72AP|iPod touch (2nd generation)]] with iOS 3.1.3.
  23 KB (3,037 words) - 10:20, 15 May 2021
• Decrypting Firmwares
  === 1.0.x === ...hex editor, or open up a console and run <code>dd(1)</code>^{[{{man|dd|1}}]}:
  8 KB (1,342 words) - 08:42, 7 February 2022
• N88AP
  ...U, increased RAM, Nike+ support, etc. The name used in firmware is iPhone2,1. ...exploit that allows executing unsigned code over USB; fixed in iPhone OS 3.1 beta 3.
  3 KB (423 words) - 15:08, 2 March 2022
• Kirkwood 7A341 (iPhone2,1)
  | Device = iPhone2,1
  4 KB (618 words) - 19:11, 10 November 2019
• JasperVail 8C5115c (iPod2,1)
  | Device = iPod2,1
  3 KB (419 words) - 16:30, 10 November 2019
• JasperVail 8C5101c (iPod2,1)
  | Device = iPod2,1
  3 KB (436 words) - 16:30, 10 November 2019
• Greenpois0n (jailbreak)
  ...{{date|2011|02|03}}, which performs an [[untethered jailbreak]] on iOS 4.2.1 for most devices that support it. Instead of using the [[Packet Filter Kern * Supports more iDevices than [[SHA-1 Image Segment Overflow|SHAtter]]
  4 KB (585 words) - 23:37, 16 September 2021
• S5L8920 (Hardware)
  * '''Bit 1 (1bit)''': Chip Firmware
  970 bytes (116 words) - 16:03, 19 September 2016
• Talk:Kirkwood 7A341 (iPhone2,1)
  ...he IOKit.framework as this seems to have changed with 3.0.1. Is this a 3.0.1 issue or have I missed something? --[[User:CleanAir|CleanAir]] 09:49, 2 Aug ...ne_3G)]] for iPhone 2G, 3G, and iPod touches, or [[Kirkwood 7A341 (iPhone2,1)|Kirkwood_7A341_(iPhone_3GS)]] for iPhone 3GS. Chronic has provided kernel
  3 KB (440 words) - 16:16, 28 March 2017
• Baker 8B117 (iPod3,1)
  | Version = 4.1 [[Golden Master|GM]] and 4.1 | Device = iPod3,1
  4 KB (548 words) - 16:30, 10 November 2019
• JasperVail 8C5115c (iPod3,1)
  | Device = iPod3,1
  4 KB (561 words) - 16:30, 10 November 2019
• JasperVail 8C5091e (iPad1,1)
  | Device = iPad1,1
  4 KB (544 words) - 19:13, 10 November 2019
• Kirkwood 7A341 (iPhone1,1)
  | Device = iPhone1,1
  3 KB (424 words) - 18:40, 10 November 2019
• NorthVail 7C97d (iPhone1,1)
  | Version = 3.1 beta | Device = iPhone1,1
  3 KB (423 words) - 18:40, 10 November 2019
• NorthVail 7C106c (iPhone1,1)
  | Version = 3.1 beta 2 | Device = iPhone1,1
  3 KB (405 words) - 18:40, 10 November 2019
• IPSW File Format
  '''IPSW''' ('''iP'''od^{[[#Notes|[1]<nowiki/>]]} '''S'''oft'''w'''are) files have the Magic Number 504B030 Here are the contents of the [[Kirkwood 7A341 (iPhone2,1)|iPhone 3GS 3.0 (7A341)]] firmware IPSW:
  5 KB (677 words) - 00:44, 21 March 2022
• IPhone Hacking Presentation - History 1.0-1.1.4
  {{DISPLAYTITLE:iPhone Hacking Presentation - History 1.0-1.1.4}} 1. Erase baseband firmware
  6 KB (948 words) - 13:38, 17 September 2021
• Genoa 13G36 (iPad3,1)
  | Device = iPad3,1
  4 KB (580 words) - 19:22, 10 November 2019
• Genoa 13G36 (iPhone5,1)
  | Device = iPhone5,1
  4 KB (549 words) - 19:05, 10 November 2019
• Talk:Alpine 1A420
  ...SkankPhone and AppleInternal stuff ;) --[[User:Haifisch|Haifisch]] 22:04, 1 March 2012 (MST) :::Restore a 1.x Firmware and then copy over the root filesystem... --[[User:Rud0lf77|rud0
  5 KB (759 words) - 23:10, 23 November 2014
• BrightonMaps 10B311 (iPhone4,1)
  | Version = 6.1.1 beta | Device = iPhone4,1
  4 KB (559 words) - 19:07, 10 November 2019
• BrightonMaps 10B318 (iPhone4,1)
  | Version = 6.1.3 beta 2 | Device = iPhone4,1
  4 KB (588 words) - 19:07, 10 November 2019
• CERT
  4:d=1 hl=4 l= 931 cons: SEQUENCE 10:d=3 hl=2 l= 1 prim: INTEGER :02
  14 KB (1,526 words) - 13:47, 17 August 2016
• Northstar 7C145 (iPod1,1)
  | Version = 3.1.1 | Device = iPod1,1
  3 KB (418 words) - 16:27, 10 November 2019
• Northstar 7C144 (iPhone2,1)
  | Version = 3.1 | Device = iPhone2,1
  4 KB (602 words) - 19:11, 10 November 2019
• IBoot (Enums)
  FFFFFFFF DFU_STATE_WAITING_FOR_RESET EQU 1 FFFFFFFF GID EQU 1
  1 KB (193 words) - 09:22, 29 August 2013
• Jasper 8C134 (iPod3,1)
  | Device = iPod3,1
  4 KB (582 words) - 16:30, 10 November 2019
• Northstar 7C145 (iPod3,1)
  | Version = 3.1.1 | Device = iPod3,1
  4 KB (591 words) - 16:30, 10 November 2019
• Usb control msg(0x21, 2) Exploit
  ...rom]]) owners could have used it for a [[tethered jailbreak]] on 4.0 and 4.1, until [[Limera1n]] was released. All you need to do is send the following (assuming you're using libusb 0.1.x)...
  5 KB (677 words) - 16:17, 22 May 2022
• Talk:IBoot (Bootloader)
  ...if there only exists one bootloader. But isn't the [[Bootrom]] the "Stage 1 Bootloader"? In that case I wouldn't leave it away. --[[User:Http|http]] 22 ::::The stage 1 bootloader is actually [[LLB]]. However, I still don't believe that the "St
  6 KB (957 words) - 20:54, 24 August 2015
• IBoot IRQs
  IRQ 1: 22001EE1 5 0 IRQ 7: 220033D5 1 0
  4 KB (417 words) - 09:54, 26 March 2017
• Northstar 7D11 (iPhone1,1)
  | Version = 3.1.2 | Device = iPhone1,1
  3 KB (428 words) - 18:40, 10 November 2019

View (previous 100 | next 100) (20 | 50 | 100 | 250 | 500)