SSH ramdisk maker & loader, version 06-12-2013 git rev-04b-A
Made possible thanks to Camilo Rodrigues (@Allpluscomputer)
Including xpwn source code by the Dev Team and planetbeing
Including syringe source code by Chronic-Dev and posixninja
syringe exploits by pod2g, geohot & posixninja
Special thanks to iH8sn0w
device-infos source: iphone-dataprotection
Report bugs to msft.guy<
[email protected]> (@msft_guy)
Edited by deVbug (@devbug0) to support iPhone3,2
iOS 7 patches from opensn0w by winocm (@winocm)
Extracted resource to C:\Temp\ssh_rd\native\jsyringeapi.dll
Extracted resource to C:\Temp\ssh_rd\native\mux_redux.dll
Connect a device in DFU mode
MobileDevice event: DfuConnect, 2b91227, 4008930
DFU device 'iPhone 4 (GSM) Rev A' connected
Building ramdisk for device 'iPhone 4 (GSM) Rev A'
Extracted resource to C:\Temp\ssh_rd\all_keys.plist
Working dir set to C:\Temp\ssh_rd
IPSW at
http://appldnld.apple.com/iOS7/031-1...a_Restore.ipsw
Downloading Restore.plist
Local file C:\Temp\ssh_rd\iPhone3,2_7.0.4_11B554a_Restore.ipsw not found; downloading from
http://appldnld.apple.com/iOS7/031-1...a_Restore.ipsw
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Restore.plist
Restore.plist downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Restore.plist
Parsing Restore.plist..
Kernel file: kernelcache.release.n90b
Restore ramdisk file: 058-1056-002.dmg
Downloading Firmware/dfu/iBSS.n90bap.RELEASE.dfu
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBSS.n90bap.RELEASE.dfu.orig
Decrypted to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBSS.n90bap.RELEASE.dfu.dec
Extracted resource to C:\Temp\ssh_rd\nor7.ibss.patch.json
Patched to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBSS.n90bap.RELEASE.dfu.dec.p
iBSS prepared at C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBSS.n90bap.RELEASE.dfu
Downloading Firmware/dfu/iBEC.n90bap.RELEASE.dfu
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBEC.n90bap.RELEASE.dfu.orig
Decrypted to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBEC.n90bap.RELEASE.dfu.dec
Extracted resource to C:\Temp\ssh_rd\nor7.ibec.patch.json
Patched to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBEC.n90bap.RELEASE.dfu.dec.p
iBEC prepared at C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\dfu\iBEC.n90bap.RELEASE.dfu
Downloading Firmware/all_flash/all_flash.n90bap.production/DeviceTree.n90bap.img3
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\all_flash\all_flash.n90bap.production\DeviceTree.n90bap.img3
Device tree prepared at C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\all_flash\all_flash.n90bap.production\DeviceTree.n90bap.img3
Downloading Firmware/all_flash/all_flash.n90bap.production/manifest
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\Firmware\all_flash\all_flash.n90bap.production\manifest
Downloading kernelcache.release.n90b
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\kernelcache.release.n90b.orig
Decrypted to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\kernelcache.release.n90b.dec
Extracted resource to C:\Temp\ssh_rd\kernel7.patch.json
Patched to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\kernelcache.release.n90b.dec.p
Kernel prepared at C:\Temp\ssh_rd\ipsw_iphone32_11B554a\kernelcache.release.n90b
Downloading 058-1056-002.dmg
Downloaded to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\058-1056-002.dmg.orig
Decrypted to C:\Temp\ssh_rd\ipsw_iphone32_11B554a\058-1056-002.dmg.dec
Extracted resource to C:\Temp\ssh_rd\ssh.tar
Added ssh.tar to the ramdisk
Ramdisk prepared at C:\Temp\ssh_rd\ipsw_iphone32_11B554a\058-1056-002.dmg
Using syringe to exploit the bootrom..
Exploit sent!
Preparing to load the ramdisk..
MobileDevice event: DfuDisconnect, 2b91227, 4008930
Ramdisk load started!
MobileDevice event: DfuConnect, 3151227, 4008930
DFU device 'iPhone 4 (GSM) Rev A' connected
Ignoring same device iPhone 4 (GSM) Rev A
MobileDevice event: RecoveryConnect, 3131281, 4008930
MobileDevice event: DfuDisconnect, 3151227, 4008930
MobileDevice event: RecoveryDisconnect, 3131281, 4008930
Almost there..
MobileDevice event: MuxConnect, 0, 0
Success!
Connect to localhost on port 2022 with your favorite SSH client!
login: root
password: alpine
[свернуть]
Последние файлы
