iOS 10.1.1 Jailbreak Released!
this is likely (nah not really but pretend it is) to your device up forcing you to restore, so better safe than sorry. wait for stable release
The jailbreak currently supports the iPhone 7 on iOS 10.1.1 but it appears to support the iPhone 6s and iPad Pro on any 10.x firmware.
“First beta will only support iPhone 7 on 10.1(.1), iPhone 6s and iPad Pro on any iOS 10 fw. Support for more devices will be added at a later date. The vuln used on 7 is fixed on 10.2, pre-7 is a full KPP bypass which I consider hard to fix, and is 0day.”
We’ll be posting tutorials and more information shortly.
● Where to Download Yalu Jailbreak From
● How to Jailbreak Your iPhone on iOS 10 Using Yalu and Cydia Impactor (Mac)
yalu + mach_portalfor iOS 8.4.1 iOS 10.(1(.1)) by ian beer (sb/root/kern) & qwertyoruiop (hypv/memprot)
task_for_pid_0 is sooo 2014 2017 (6s)
that means __TEXT_EXEC, for the researchers out there! (6s)
on 7, things are different. but ya still got __DATA_CONST!
also decided to not obfuscate
no warranty implied blah blah blah i am not a lawyer
beta1: glitchy, mobilesubstrate not working (on purpose), super fucking unstable, glitchy again
(!!!) DO NOT INSTALL UNLESS YOU KNOW WHAT YOU ARE DOING (!!!) this is likely (nah not really but pretend it is) to fuck your device
up forcing you to restore, so better safe than sorry. wait for stable release
DO NOT DOWNLOAD THIS SOFTWARE FROM OTHER SOURCES OTHER THAN THESE LINKS UNDER ANY CIRCUMSTANCE.
IT IS VERY EASY TO BACKDOOR THIS SORT OF SOFTWARE TO CONTAIN MALWARE. PLEASE BE EXTREMELY CAREFUL.
THESE MIRRORS ARE TRUSTED, BUT STILL CHECK SHA
– it may now work (in theory/maybe). It may fail a few times; hard reset with home(pre-i7)/volume down(i7) + power
– added mobilesubstrate support
– device support still unchanged
– procexp hangs rather than panicing
– OS should be way more stable
– it may have some new issues. If OS does not come back after reloading, reboot and try again.
planned features for next release (gamma):
– more devices supported
– fix procexp
– fix mmap() hook amfi checks
– mobilesubstrate works thanks to a dirty hack. better solution?
mirror (my own) – beta3mirror (my own) – beta4-1 – BROKEN$ shasum -a 256 mach_portal+yalu-b4-1.ipa
cydia impactor my patches and additions on top of Ian’s code are licensed under the ABSE (“Anyone But Stefan Esser”) license.
note that an additional exception to the license is added, forbidding use/redistribution of said content to his
trainees as well, but only when in a 5 mile radius from “Stefan Esser” or while holding any sort of (video)conference/chat with him.
note that this license will only be used as long as what would capstone decode / that one other arm64 ida
plugin thing by i0n1c (“Stefan Esser”) are not under the MIT license.
afterwards, all exceptions are cleared and basically WTFPL applies
if you need a copy of the rest of the license feel free to google it or something.
(c) KJC Research