Skip to content

v2.0.0

Latest

Choose a tag to compare

@github-actions github-actions released this 30 Jun 11:17

a4cd78b Fix build: remove IOConnectTrap (iOS SDK), fix entries cast, simplify strategy 8
0240605 Extend strategy 6 IOKit brute-force to 256 selectors
b8de3b5 Enhanced strategies 6-8: IOKit user client type brute-force (0-7), kernel TC scanning, SPTM-safe RemoteCall stub
8855298 Skip strategy 2 (AMFI enforcement flags) on iOS 17+ — kwrite to AMFI data section triggers SPTM panic
47f1b92 Fix sys_cache_control return type (int, not void) — was conflicting with system header pulled by IOKit/CommonCrypto
c5e00d1 Add Strategy 6: TXM bypass via extended AMFI IOKit brute-force (selectors 0-63, both StructMethod/CallMethod)
e2feaba Restore CoreTrust fix: skip amfid NOP on iOS 17+, fall through to MSM direct IOKit
9d8473f Add direct crash_write() in coretrust_bypass_all — bypasses pipe, writes from panicking thread
fac2db8 Save printf output to Documents/cyanide_crash.log for post-panic analysis
731cb60 Fix live log: use blocking read thread instead of dispatch_source
1bcd39a Add live in-app log view via stdout pipe capture
833bef4 Split runAllExploits into 3 separate buttons
33ed424 Fix build: const return type, explicit (bool) casts in verify block
0491bb9 Create test binary before kernel exploit for strategy verification
d3e7947 Revert constructor approach (caused kernel heap disruption during OOB exploit)
a299729 Pre-create test binaries at load time to avoid SPTM-triggering file I/O
f40c7af Fix SPTM panic from 16000+ single-byte write syscalls in test binary builders
fa79662 Replace kernel allproc walk with sysctl(KERN_PROC) in find_pid_by_name
f771bb2 Remove iOS 17+ skip guard from strategy 1 (amfid NOP)

Full Changelog: v1.3.8...v2.0.0