苹果端的越狱到frida hook

苹果端的越狱到frida hook

Brathon
  2023-04-23 16:28:06 2023-04-23 16:28 创建   2023-09-23 02:56:17 2023-09-23 02:56 更新  407 字  2 分钟  

What are the different types?

  • Fully Untethered
  • Semi-Untethered
  • Semi-Tethered
  • Tethered

Untethered Jailbreaks

Untethered jailbreaks can be considered the holy grail of all jailbreaks. They only require the exploit to be ran once either via a website, an app or a computer.

A screenshot of the p0sixspwn jailbreak
A screenshot of the p0sixspwn jailbreak

After that, your device is fully jailbroken and won’t require any further action. The exploit will stay on a device even after you reboot it.

Unfortunately, there hasn’t been a new untethered jailbreak in a very long time, and it’s likely we won’t see one for even longer.

The only downside to an untethered jailbreak is that if something goes wrong, it could very well result in a bootloop requiring you to restore your device via iTunes or Finder (macOS Catalina or newer). The likelihood of this happening is low, but is indeed possible.

A few examples of untethered jailbreaks are p0sixspwn  and Pangu9.

# Semi-Untethered Jailbreaks

Semi-untethered jailbreaks have been the most popular type of jailbreak in recent years. This type of jailbreak requires an exploit to be executed every time you reboot or turn off your device.

A screenshot of the Odyssey jailbreak
A screenshot of the Odyssey jailbreak

This jailbreak works by running the exploit through an app on the device itself. The app, however, must be resigned every 7 days if sideloaded with a standard Apple ID. Utilities like AltStore, ReProvision Reborn, and AltDaemon make this process far easier.

Due to the nature of how the exploit is applied, these jailbreaks are easily removable through their respective app.

A few examples of semi-untethered jailbreaks include Taurine unc0ver , and Odyssey .

# Semi-Tethered Jailbreaks

Semi-tethered jailbreaks are very similar to semi-untethered jailbreaks, however the exploit must be ran using a computer rather than using a sideloaded app.

A screenshot of the checkra1n jailbreak
A screenshot of the checkra1n jailbreak

Due to requiring a computer to rejailbreak after every reboot, most choose to use a semi-untethered jailbreak instead.

An example of a semi-tethered jailbreak is Odysseyra1n .

# Tethered Jailbreaks

Tethered jailbreaks are not meant to be used by the general public. These exploits modify the device in a way that it requires a PC to even boot at all, even without a jailbreak.

Because of this, these tend to only be used by jailbreak developers getting ready for a newer version of iOS.

越狱工具-》适用于不同版本手机和ios版本

  • 标题: 苹果端的越狱到frida hook
  • 作者: Brathon
  • 创建于: 2023-04-23 16:28:06
  • 更新于: 2023-09-23 02:56:17
  • 链接: https://fiddling.blog/2023/04/23/苹果端的越狱到frida-hook/
  • 版权声明: 本文章采用 CC BY-NC-SA 4.0 进行许可。
推荐阅读
BadUSB制作过程-基于Digispark BadUSB制作过程-基于Digispark 简单记录pixel 3XL刷KaliNetHunter的过程 简单记录pixel 3XL刷KaliNetHunter的过程 ipa从获取到砸壳 ipa从获取到砸壳
 评论
此页目录
苹果端的越狱到frida hook
  1. What are the different types?
    1. Untethered Jailbreaks
    2. Semi-Untethered Jailbreaks
    3. Semi-Tethered Jailbreaks
    4. Tethered Jailbreaks