GitHub - dborca/ios-kexec-utils: I'm taking a break, I swear

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
.gitignore		.gitignore
Makefile		Makefile
README		README
common.h		common.h
fwpatch.sh		fwpatch.sh
helper.h		helper.h
iboot_patcher.c		iboot_patcher.c
ibootsup.c		ibootsup.c
ibootsup.h		ibootsup.h
img3maker.c		img3maker.c
kloader.c		kloader.c
multi_kloader.c		multi_kloader.c
patch.c		patch.c
patch.h		patch.h
structs.h		structs.h
tfp0.plist		tfp0.plist
util.c		util.c
util.h		util.h

Repository files navigation

ios-kexec-utils
===============

A miscellany of utilities designed to help you bootstrap
another operating system on an iOS device. They're probably crap.

You deal with them. No support/warranty implied/given. 

Warning: there are severe caveats with this method.

Utilities included (and duplicated from opensn0w-X):

	* img3maker - Image3 file maker, needed for the decrypted boot chain.
	* ibsspatch - iBSS patcher for iOS 7, creates a generic patched iBSS for boot.
	* kloader - Image loader for the kernel, bootstraps custom image in RAM.
	* multi_kloader - Image loader for two images in memory. See source for boot
	                  protocol convention.

Using these utilities in unison will let you do awesome things.

(This is one of the last public projects I will push for now.
 Personal reasons, mainly stress related.)


Example usage:
==============

Extract, decrypt and patch the necessary files:
    user@Linux$ ./fwpatch.sh

Copy loader files to iPhone:
    user@Linux$ scp kloader iBSS.n90ap.RELEASE.pwn mobile@iPhone:/var/mobile/

Run kloader:
    root@iPhone:/var/mobile# ./kloader iBSS.n90ap.RELEASE.pwn

Wait for device to enter DFU mode, and then send iBEC:
    root@Linux# irecovery -f iBEC.n90ap.RELEASE.dfu.pwn

Wait for device to enter Recovery mode and bootstrap:
    root@Linux# irecovery -b bootstrap.irs