A work-in-progress iOS 10.3.x jailbreak for 64-bit iDevices (A7 - A9) made from off the shelf parts and shared research. Long live jailbreaking!
iPhone 5S, 6, 6+, 6S, 6S+, SE
iPad Air, Air 2, 5G (2017), Pro 1G 9.7", Pro 1G 12.9", Mini 2, Mini 3, Mini 4
what doesn't work yet?
There are a few things not working that are related to a kernel patching issue:
- Touch ID not working in containerized Apps
- Preferences behaving badly in containerized Apps
- Failure to launch an App via Xcode
what does work?
- if the Cydia icon is hidden you can fix it by adding a new key
SBShowNonDefaultAppsand binary value
- A temporary workaround for TouchID is to turn it off before jailbreaking and then turn it back on afterward
a note about dropbear
I decided to make installing an SSH server optional for safety reasons, so g0blin RC2 automatically uninstalls dropbear when it runs. Post-RC2 builds no longer do that.
I recommend installing OpenSSH instead. The port will be
22 by default. It can be changed in
- v0rtex kernel exploit by Siguza, vuln by Ian Beer, POC by windknown
- kpp bypass, sandbox, codesigning from yalu102 by Luca Todesco
- additional sandbox work from h3lix by tihmstar
- patchfinder from extra_recipe by Xerub
- additional patchfinder work from async_wake_fun by ninjaprawn
- Cydia by Jay Freeman (saurik)
Siguza, Ian Beer, windknown, Luca Todesco, xerub, tihmstar, saurik, uroboro, cheesecakeufo, arx8x, psycho tea, cryptic; Tyler, the Creator, randomblackdude; Mom.
I am extremely grateful for everyone whose open-source/public contributions to iOS research and developement made this software possible :)