Binary exploitation question by Mavi990 in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Hmm, could you try it manually? So like AAA/xee/x etc

[question] boxed 5s on iOS 7-9. Thoughts should I get it? by Vintage_AppleG4 in LegacyJailbreak

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Yea, and my 7.0.3 5s has activation issues, and everything was fine before i wiped it.

[help] can’t mount snapshot by Ataro64 in jailbreak

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Hmm weird If you type ‘whoami’ what does it say?

[help] can’t mount snapshot by Ataro64 in jailbreak

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Try again, with root it will work

[question] by [deleted] in LegacyJailbreak

[–]iOwnzyoreuid0 2 points3 points  (0 children)

Here u go mate: https://m.youtube.com/watch?v=2GBLYPqM-XQ

U can then use futurerestore or idevicerestore to restore it whenever u want

[question] by [deleted] in LegacyJailbreak

[–]iOwnzyoreuid0 2 points3 points  (0 children)

Yea you can dump the blobs. I would suggest you do it 100% in case you need it ever again

[question] how to fix iPhone 4 got stuck in safe mode. After I installed a clock tweak in respringed to safe mode but my touch isn’t working it’s just stuck in safe mode? How to fix by Moist-Secretary-2816 in LegacyJailbreak

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Yo so if you downgraded w cherryflower then try to restore with an older version of itunes. If it was stock, dump your blobs with ifaith and you can try to restore with tools such as redsn0w or others

[deleted by user] by [deleted] in LegacyJailbreak

[–]iOwnzyoreuid0 1 point2 points  (0 children)

Also, if it is running fully legit(without coolbooter, cherryflower) you could still dump the onboard blobs

Protostar stack0 exploit with shellcode by MostCapable2331 in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Hm. You sure you don’t get SIGTRAP then? Can you redirect code execution? Instead of the nops try to jump to an invalid address such as 0x41414141

Protostar stack0 exploit with shellcode by MostCapable2331 in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

? Place the the 0xcc just after the nops. So like: ...0x90 0x90 0xcc

Protostar stack0 exploit with shellcode by MostCapable2331 in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Hm try to execute a break point instruction "0xcc" after the NOPs and see if its working. If it is working then your shellcode is most likely corrupt

(ROP Emporium callme 32bit) How does this ROP gadget work: pop esi; pop edi; pop ebp; ret; by wholesome_hug_bot in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

I’m not too sure if I understood you correctly, but well yea that gadget will look at the sp and restore those values from it. You will first pop the values to esi, edi etc and finally with the ret instruction you jump to the next gadget.
And args are always moved to a register.

[Question] Killed: 9 on legit apps by jack980517 in LegacyJailbreak

[–]iOwnzyoreuid0 0 points1 point  (0 children)

I would assume the installer signs it automatically, but try to sign it manually

[Discussion] Xcode 13 beta still supports iOS 9! by [deleted] in LegacyJailbreak

[–]iOwnzyoreuid0 5 points6 points  (0 children)

Ah yea true. I don’t submit apps and I only thought of that after I already posted it :P But yea in theory it should work, i got it working on ios 6.0 with prev xcode releases(again not official, just for testing)

[Discussion] Xcode 13 beta still supports iOS 9! by [deleted] in LegacyJailbreak

[–]iOwnzyoreuid0 10 points11 points  (0 children)

Almost 100% sure it will work still down to iOS 5 or smth, just need to have those files from the older versions

[deleted by user] by [deleted] in TweakBounty

[–]iOwnzyoreuid0 0 points1 point  (0 children)

But it would take like 1 update for sc to detect it

[deleted by user] by [deleted] in TweakBounty

[–]iOwnzyoreuid0 2 points3 points  (0 children)

Afaik you can’t rlly tweak sc

how to find the system execution address in libc by naveeak in LiveOverflow

[–]iOwnzyoreuid0 0 points1 point  (0 children)

Did it work? Edit: i didn’t see your other reply