Skip to content
star and saffron
C Python Objective-C Assembly Shell
Find file
Latest commit 3243b19 @comex README
Failed to load latest commit information.
catalog -3
chain more chain stuff
common -3
config RELEASE
data @ 9731118 fix tars
datautils add README
datautils0 @ e6d05a9 submodules I guess
dejavu RELEASE
dsc ipv6
fs -3
headers pivot AGAIN
install -3
locutus fix tars
mroib upgrade data
otool otool update/fix
pdf I forgot to add this directory to git
starstuff oops
upgrade-data awful
white @ 97270ec submodules I guess
.gitignore head
.gitmodules starstuff
README README go all the way -3 okay


How to use:
- git submodule init -u
- ln -s /Developer/Platforms/iPhoneOS.platform/Developer/SDKs/iPhoneOS4.3.sdk /var/sdk
- add binaries to bs, e.g.
    mkdir iPhone2,1_4.3.3_8J2
    cp decrypted_kernel iPhone2,1_4.3.3_8J2/kern
    cp dyld_shared_cache_armv7 iPhone2,1_4.3.3_8J2/cache
    OR import an ipsw:
    install "xpwntool", "hfsplus", and "dmg" to ~/xpwnbin/
    in here: cd config; python whatever.ipsw

- get t1utils and apply this patch:
- get and point fs/xnu to it
- ./ pdf

external repositories:
data:       mach-o handling
white:      load dylibs into the kernel
datautils0: make kernel patches, port over symbols

in here:
catalog: ROP code and kernel exploit
    kcode.S:    kernel payload
chain: unused
    common.h:   _log, _assert, etc
datautils:   python interface to data
dejavu: FreeType exploit
    dsc.c:      mount dyld shared cache via fuse
goo:    the "string with pointers, relocations, etc." abstraction     doing ROP with the abstraction  specific gadgets     creating mach-o files with the abstraction
headers: external headers
    install.m:  install the jailbreak
    locutus.c:  download files / communicate with locutus_server / run install
    inject.c:   inject a dylib into a process
    locutus_server.m: injected into SpringBoard
mroib: unused
otool: patch to otool that supports "force ARM" mode
starstuff: build the saffron-jailbreak-xxx debian package
    mount_nulls.c:    do so
upgrade-data: unused

Something went wrong with that request. Please try again.