17.0 support for tweak injection is almost ready, only needs a userspace PAC bypass (easy) and the kernel exploit from google. when it releases it should immediately work
It’s kinda funny how iOS 17.0 has a CoreTrust exploit but still no way to get a binary signed with it on a device. Really shows how useful having installd’s checks is for device security
Fixing :
Step 1: Disable SIP and enable arm64e execution. Not explaining this, it's easy
Step 2: download this dylib and resign it with xattr -sc
Step 3: run the command within the ``` in terminal:
Hi! Please test these ElleKit 1.1 debs. They should fix AppSync, CarBridge and BioProtect issues, so pls try those for me. I hope these are finally stable enough for release.
rootful:
rootless:
ElleKit v0.5.2 is now out!
Changelog:
- fixes for exception handler stack overflows
- 16.4 support (palera1n)
- many miscellaneous bug fixes and optimizations
Get it on now!
Apparently if you install trollstore on 16.5 and delay ota to 17.0 trollstore will still work... although if you uninstall it on 17.0 you can't get it back until a new method is found
anyone have good deals for the cheapest A12+ device on 16.2-16.5.1? dm the links if you find any!! i need a good test device if i wanna do this project
ElleKit v0.6 and OldABI 0.3.1 are out!
Changelog:
- Fixes b.cond and cb(n)z rebinding
- Fixes Aemulo and EmojiPort*
- Bundle loading fixes for palera1n
- Inject OldABI in preference bundles
- And many more bug fixes and optimizations
Now available on
Also I won’t work on this seriously till Google publishes their 17.0 kernel exploit, but at least we know it’s possible. All versions supported by kfd will get a jailbreak soon anyway
I still think it’s silly to release it like this, the CoreTrust bypass should be automated adequately to support system wide injection in a stable manner, but I’ll make my own private thing anyway for my main device
There’s a new obscure panic with KFD that happens after a few days… is this PPL trying to clean up a leaked page entry? I’d check this out but PPL is closed source
Changes:
- Fixes AppSync Unified on Dopamine
- Fixes cbz rebinds
- Fixes objc_msgSend hooks
- Adds mobiletimerd to the palera1n filter
- Adds a new hook technique
- and more... I forgot over the 6 months I've been doing this
just to clarify, lots of people think this is an installation method for iOS 17 or a new exploit, it's not. this has been doable since the Fugu15 bug came out
Thanks a lot to those who helped, my weekend hours ran out and I have to study, but I’ll finish this next week hopefully 🤞 At least now I know what causes the issues
when rootless jailbreaks came out, nobody detected them. now they do. this is the same thing, eventually they will update their detections and the apps will break again
A bit of a change of pace... I'm releasing a calculus library that does symbolic differentiation, integration*, calculates limits and implements integral approximation with Taylor series
Released without license for now
@straight_tamago
@Little_34306
Could the version of the kfd exploit used in Misaka for 15.0-16.6.1 be open sourced? Would be a great contribution to the community.
Hi! Please test these ElleKit 1.1 debs. They should fix AppSync, CarBridge and BioProtect issues, so pls try those for me. I hope these are finally stable enough for release.
rootful:
rootless:
also about the arm64 jailbreak since I left that on a bad note - i was approaching it by rewriting everything myself including the handoff but other people just used tihmstar’s work and got it done faster, so i don’t have any reason to keep going ❤️