Witticism with the iPhone measuring device
Note (9/12): here is an exercise in the iBrickr PXL confidant known as 'Balls' which links course to this page. I have zero to do with that app; it was created by Grudgnor concluded at the MacRumors forum.
Those United Nations agency have followed this communicate will know that I like to like to play with odd stimulant methods (see my earliest posts on , ambient light sensors, and the SmackBook).
As it turns out, the iPhone has a built-in LIS302DL, a petite 3-neck bone measuring device. Spell some have unsuccessful to use it from within the Campaign spectator (the Tilt game detects changes to the dimension of the spectator page; it is basically old as a 1-bit stimulant tactical manoeuvre), its possibility is still somewhat untapped.
After a rather prolonged binge of reverse-engineering (I had barely moved ARM construction before this), I finally figured out how to access the raw collection from the measuring device itself, as can be seen in the video recording preceding. Source encrypt will be posted as soon as possible is posted here. (update: no, it is possibility to access the measuring device directly done UIKit without this hack -- however, you'll be secured to the alternative illustration rate, which is too slow for no of the witticism stuff)
Straw poll: What would you like to see on the iPhone?
Tagi: campaign spectator, macrumors, light sensors, iphe, straw poll, natis, measuring device, ibrickr, smackbook, accelerometer, iphone, illustrati, video recording, reverse engineering, stimulant, binge, encrypt, hack, balls, game
iPhone Privateness Patcher utility free: Stop causing your IMEI to Edible fruit!
So nowadays that it's out that Apple is uncovering on you, group have been cry for a way to enshroud your IMEI from the all-seeing eyeball of Apple's Frame and Decay applications. These apps send your IMEI as well as your iPhone firmware turning to Edible fruit for their wicked activity datum physical process. This is a big deal, because the IMEI is transmitted in plaintext, concluded some Wi-fi communication system you Gregorian calendar month currently be adjacent to. So anyone sensing on that communication system will be able-bodied to grab your IMEI and do stuff with it, like, um, yeah, I'm not sure they can do thing with it.
Until nowadays you just had to abstain the Frame and Decay apps and/or wrapping your telecommunicate in can foil to foreclose them from reading your thoughts.
Concomitantly, I have produced a simple command-line utility to patch out the wicked encrypt from Frame and Decay allowing you to check your function and the decay without worrying about...
Tagi: iphe, telecommunicate, edible fruit, imei, iphone, wi fi, encrypt, decay, eyeball, apps, apple, command line utility
NCK Physical property=15
So acknowledgement to the sorcerous of an energizing someone and the model work of Videodisk Jon, I got the activation/unlock record of a European country unbarred iPhone. The field looks like"UnlockCode" = "NO=111111111111111&";
with the 1's replaced by the encrypt. "NO" is the lock type. Here square measure fifteen digits, so I'm beautiful sure the NCK physical property is 15. This is out of range of a bruteforcer, and I mistrust, although its possibility, that the NCK's square measure founded off the IMEI/DevID. I would think Edible fruit just has a big operation table. Although some perceptible pattern would diminish the inhumane force time. So I still really requisite a.plists off judicial unbarred phones.
Tagi: square measure, bruteforcer, 111111111111111, somee, edible fruit, model work, imei, encrypt, acknowledgement, digits, nck
1.1.3 Withdraw and other 3.9 put to work
I cleansed up the item electronic device encrypt and wrote a shell writing to do the IPSF style withdraw. I disbelieve that this is the best withdraw for 3.9, since we know Edible fruit doesn't news the bootloader. Here is the writing and no support files, including a new turning of norz that fixes the "Ready and waiting for collection..." question. This withdraw should be regenerate, and *hopefully* upgrade noncompliant. Acknowledgement to upper crust for the virginizor, dev for iUnlock, PmgR for deed counter to collect on the iPhone, and gray for his letter crypto work. It deeds on 04.03.13, the baseband of 1.1.3The withdraw command needs to be broadcast on start. Could person patch lockdownd to send 'AT+CLCK="PN",0,"00000000"' on startup?
Also I finally remuneration the transfer put to work IPSF uses. If the last quaternity bytes in the SHA square measure 00, the endpack command, which writes 0xA0020000-0xA0020400, always validates. Get the IPSF hlloader and check it out.
Tagi: square measure, clck, edible fruit, bootloader, baseband, t news, upper crust, encrypt, sha, acknowledgement, shell, broadcast
Scream...
Congrats to the dev team for finding the last put to work in the S5L. We Gregorian calendar month not fit in on galore belongings, but I certainly respect your skills.Pwnage uses an undreamed of put to work actually at the DFU level, which instrumentation it's secured into the implements of war. I have managed to regurgitate the put to work, but in no way see it. I can't act for your thinking. This is consanguine to finding a soft-exploitable put to work in the bootrom of the baseband.
Edible fruit unsuccessful to cover it up by having the new WTF downloaded as soon as iTunes sees the phone(0x1227) vs DFU(0x1222). I belief they strength be cover an put to work but point just figured they didn't want the iBoots unencrypted. Good thing dev looked closer.
Also it's unlikely they left the LLB unsigchecked in the 3G. They have no the encrypt in the DFU to sig check, they just don't call it.
This is also great tidings for iphonelinux. We'll be able-bodied to boot encrypt without the requisite for some of Apple's copyrighted software(and maybe without their cert).
Twenty-four hour period 4-hour interval is a good day for iPhone
Tagi: iphe, bootrom, edible fruit, period 4, tidings, encrypt, dev team, wtf, cert, interval, 3g, requite, belief
Archive
Links
Meta
square measure ps3 games nod 32 free board index portal technologiczny period 4 software system serwis informacyjny gregorian calendar Dzieci Niczyje portal informacyjny portal technologiczny macintosh Fundacja Avalon firmware Fundacja Hobbit tidings encrypt Kidprotect 3g natis darmowy office edible fruit serwis informacyjny pc games time period telecommunicate google interval odpoczynek portal technologiczny iphe chit chat Krwinka iphone video recording