How to sign/install (sideload) iPA (iPhone App) files in the easiest way possible without any expiry period for free?
Relax, this is a tutorial and if you’re a seasoned torrentor than this should be fairly quick to learn even without the explanation but for anybody else this should be the simplest tutorial for you regardless as everything has been compressed here itself rather than sending you to multiple sources.
- DNS
https://github.com/ESign-khoindvn/ESign-Khoindvn.github.io/raw/main/Tool/khoindvn.mobileconfig - Esign
https://khoindvn.bio.link - Certs
https://github.com/dns-khoindvn/dns-khoindvn/raw/main/dns/ESign-cert.zip - Repo
https://raw.githubusercontent.com/alphastark/IPAs/main/apps_esign.json
About: This is a DNS Profile from Khơindvn (GitHub) via the courtesy of a YouTuber named ‘Pork the Jork’ meant to filter Apple Servers which verifies the bundle ID of an app that’s going to be signed before getting installed since on iOS or iPadOS, apps aren’t signed locally unlike on a PC or Mac post iOS 13. So, if you’re blacklisted then this should get you back in the line as well.
- Make sure Safari is your default browser or is used before tapping on the link.
- Go to Settings → General → VPN, DNS, Device Management
- Install the profile and let it work.
So, you can see based on user feedback I’ve solely resorted to Khơindvn’s solution instead of copycats (like Khomod) forking from his original GitHub repository. His website might be in non-english (in a clever way to avoid internet scans that issue notices from US) but his repo has everything authored in clean english as an open project for all to inspect and replicate.
About: Esign is a signing app that can download, unzip, package, import, sign and install iPA files to become apps in addition to accessing public repos directly.
- Tap on the link to install Esign (Sunshine Insurance Group) directly after following the steps above of using the custom DNS filters or grab a different one from here.
- Go to Settings → General → VPN, DNS, Device Management → Enterprise App
- Tap on the Certificate Name and there should be a Trust button.
- Now open the Esign app and under the ‘Download’ Tab in the bottom navigation bar, find the ellipses ••• on the top then ‘Settings’ to enable both ‘Auto Import’ & ‘Auto Delete’
Download Setting for Esign
About: Cert is simply short for certificate where we’ll use the expired ones instead of the latest one… presumably HDFC Life Insurance (Indian) or older like Sunshine Insurance Group (Chinese) but you’ll be downloaded with all of them.
- Tap on the link here or copy from above then go to your:
- Esign → Download → ••• → URL › Paste
- A zip file should be in your ‘File’ section, there’s inbuilt uncompressor so you just need to tap after which there will be an extracted folder by the same name.
- There should be a list of certificates, we used the Sunshine cert to install Esign so we will only import the “Sunshine Insurance Group Certificate”.
- If you used a different cert for Esign installation (say HDFC) then use that one.
- After successful import, you can delete both the folder and the zip file.
- Now go to the main ‘Settings’ in the app (bottom bar) for “Sign Default Config” where you’ll enable “Install after signed” and get out.
About: Repo stands for repository which should allow to act like an App Library of sort, the one I have mentioned here for instance is TrollStore iPA Library from GitHub.
- Tap on the link or manually copy from above to Esign → App Source (Top Left) → +
- Now see yourself being able to search and download natively.
About: If you’ve been following attentively up to here then you’d notice you’re yet to install an app and that’s because unlike the AppStore itself the search function only downloads the app as you’d need to sign it first.
- You’d notice on the initiation of this final process is the ‘Signature’ button above the ‘Install’ one. This is what’s more important and would be used more unless you’re duplicating (more on that later) an already signed app like WhatsApp.
About: There are instances when you’d like to have duplicate apps because you want to keep the original, have the flexibility of multiple messaging accounts or want to maintain two separate use cases. Usually, I use this Shortcut called Signed Installer but Esign can allow duplicating apps too.
- Modify the App name to your custom name (for example: YouTube Red) or add + symbol after the original app name, just make sure to change the original name used.
- Add “ .1 “ to the bundle identifier, if example bundle identifier is “com.google.ios.youtube” then change it to “com.google.ios.youtube.1”
There are a couple of things that you might want to remember which is just basic common sense:
- If one certificate doesn’t work for you, then simply try another… in the end, it works out for everybody but older the better.
- There can be instances when you’re still failing to initiate, the Esign app itself is pretty much not that polished because it has only one function to perform. Simply uninstall the app, cert or even DNS involved in this process and start fresh with a different certificate but this is an issue only for virgin sideloaders.
- If you’re only stuck somewhere in the middle, remind yourself with the following basic questions:
- Did you finish reading?
- Did you try with another attempt?
- Did you explore everything laid out to you?