Coalfire-Research/iOS-11.1.2-15B202-Jailbreak

Stars
430
Rank 101,083 (Top 2 %)
Language
C
Created almost 7 years ago
Updated over 3 years ago

Coalfire-Research/iOS-11.1.2-15B202-Jailbreak

Coalfire-Research

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

iOS 11.1.2 (15B202) Jailbreak

iOS 11 Jailbreak

Target

This jailbreak is for iOS 11.1.2 (15B202). If you don't have this exact version it won't work for you

How to Install

Load and run the XCode project or sideload the IPA using Cydia Impactor. For more complete / visual instructions see the iOS_jailbreak_writeup.pdf "How to jailbreak your phone" section.

Note: It is recommended to sideload the app, and leave it running (code signing problems will arise if the app is closed). If you run the jailbreak from XCode, don't disconnect the cable, as it will also cause code signing problems. A fix for this is scheduled for .4.

Version 0.3c

Several stability bugs have been fixed, tfp0 is now inserted into hsp4 so any application running as root has kernel access. The live kernel introspection webserver has been moved out of the jailbreak and into a binary dropped on the system, and relies on hsp4 for kernel access.

More bug fixes and extra features are planned for 0.4, see the issues sections for more information or to report a bug.

Copyright

I could have copy-pasta'd MIT or BSD, but it boils down to this: credit the authors. This jailbreak is released as 100% open-source to help the security community. Feel free to take the code, use it how you wish, just keep in mind that if it's my code, attribute me BUT MORE IMPORTANTLY if I used someone else's code or ideas, make sure to credit them and respect their licenses (QiLin, especially). My goal is for this code to help the security community and vulnerability research in general, so don't use it commercially. Let information be free!

Red-Baron

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

npk

A mostly-serverless distributed hash cracking platform

java-deserialization-exploits

A collection of curated Java Deserialization Exploits

Slackor

A Golang implant that uses Slack as a command and control server

DeathMetal

Red team & penetration testing tools to exploit the capabilities of Intel AMT

sqlinator

Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS

Vampire

Vampire is an aggressor script which integrates with BloodHound to mark nodes as owned.

Doozer

Password cracking utility

ERC.Xdbg

An Xdbg Plugin of the ERC Library.

pymetasploit3

Python3 Metasploit automation library

HashBot

IRC bot for cracking hashes

Git-Scrapers

Collect OSINT from git repositories

autorelayx

Automatically perform advanced NTLM hash relay attacks

LambProxy

HTTP Proxy using Amazon Lambda for source IP cycling

IP-sampler

Ping sweep a list of subnets then save a random % sample of the hosts that are up

ERC.Net

A collection of tools for debugging Windows application crashes.

WinAPRS-Exploits

A collection of exploits, shellcode, and tools related to CVE-2022-24702

AnomalousCookie

Find anomalies using AnomalousCookie!

Nmap-Extensions

Extensions to Nmap written for the NSE

AppSec-2014-Presentation

Presentation for Application Hacking 101 at AppSec 2014

paas-cloud-goat

PaaS Cloud Goat is a simulated vulnerable Salesforce application providing hands-on experience with penetration testing of custom Salesforce applications.

cazt

Cloud AuthZ Trainer - A a simulator of cloud-provider responsible REST APIs. It includes a lab manual for getting hands-on practice with how to attack authorization vulnerabilities in a cloud API.

webvulns-db

Webvulns-db scripts

freezeout

Notes on acquiring a domain user list via kerberos