• So Much for "Rootless," iOS Hacker ih8sn0w Demonstrates Untethered Jailbreak on iOS 9

    by
    Anthony Bouchard
    Published on 2015-09-10 04:38 PM
    15 Comments Comments


    So much for what was supposed to be called "Rootless;" iOS 9 has been pwned.

    iOS hacker ih8sn0w has shared a video on his YouTube channel Thursday morning showing what appears to be an untethered jailbreak on his iPhone 5 running iOS 9 Golden Master, which was released to developers for final testing stages just yesterday. The video demonstrates a reboot, opening Cydia, and confirms the device type and firmware version.

    It's worth noting that ih8sn0w says iOS 9 was much like iOS 8 internally, but there's one major caveat. 64-bit devices have a KPP (Kernel Patch Protection) system, which would theoretically cause a kernel panic should the kernel on the device appear modified to the device in any way.

    Originally Posted by ih8sn0w
    Poking into iOS 9 is fun. A little annoyed at some new things. But very surprised at how similar it is to iOS 8 internally.

    Worth noting, iOS 9+ arm64 iDevices now enforce a checksum on __TEXT/DATA.const regions of the kernel through the use of TrustZone. Modifying said sections will cause the device to panic (either at kernel or EL3 will force a reboot if the kernel refused to gracefully panic). Essentially, it's KPP (Kernel Patch Protection). You can race it though if you want to play with things. Just be quick! ;P

    Also, there should technically now be two additional partitions (baseband_data [s1s3] and logs [s1s4]) but didn't really bother with those as they weren't critical.
    At the very least, the video shows that there could be a light at the end of the tunnel for the future of jailbreaking. It'll just take a skilled hacker to get around the safeguards.

    This jailbreak demonstration was for demonstration purposes only and likely will not see the public. It will most likely be the work of a hacking team like TaiG or Pangu to release an actual tool in the future for the public to use.

    Source: YouTube via ih8sn0w
    This article was originally published in forum thread: So Much for "Rootless," iOS Hacker ih8sn0w Demonstrates Untethered Jailbreak on iOS 9 started by Anthony Bouchard View original post
    1. Categories:
    2. iPhone,
    3. iPad,
    4. iOS,
    5. Apple,
    6. Cydia,
    7. iPad,
    8. Software
    Comments 15 Comments
    1. corona37fam's Avatar
      corona37fam - 2015-09-10, 04:53 PM
      Take that apple!!!

      Omg I can't wait till they all start working on the jailbreak.

      iOS 9 is looking good though. iOS 7 was my favorite though.
    1. TDH Advocate's Avatar
      TDH Advocate - 2015-09-10, 04:55 PM
      So as of right now his jailbreak would only work for any device running iOS 9 below the 5s?
    1. Anthony Bouchard's Avatar
      Anthony Bouchard - 2015-09-10, 05:14 PM
      Quote Originally Posted by TDH Advocate View Post
      So as of right now his jailbreak would only work for any device running iOS 9 below the 5s?
      That's what I'm getting from it. There would have to be some kind of workaround for 64-bit devices, which would require additional work and time.
    1. mazzanic's Avatar
      mazzanic - 2015-09-10, 06:06 PM
      like i said about 3 days ago.. we all will have JB on ios 9 before the end of the year.. i mean sooner lol..
    1. Truckerbear's Avatar
      Truckerbear - 2015-09-10, 06:19 PM


      Watch the video close or you may miss it!
    1. crslaeme's Avatar
      crslaeme - 2015-09-10, 08:41 PM
      A Jailbreak is best for business for Apple don't think it will ever die
    1. Assassination's Avatar
      Assassination - 2015-09-11, 05:34 AM
      Jailbreaking will last FOREVER!!!! YEAHHHHHHH
    1. Eonhpi's Avatar
      Eonhpi - 2015-09-11, 05:43 AM
      Quote Originally Posted by corona37fam View Post
      Take that apple!!!

      Omg I can't wait till they all start working on the jailbreak.

      iOS 9 is looking good though. iOS 7 was my favorite though.
      yes ios 7 is my fav as well
    1. nealh's Avatar
      nealh - 2015-09-11, 12:14 PM
      Was the iPhone 64 but? I can't recall, if not there still is a big hurdle.
    1. Anthony Bouchard's Avatar
      Anthony Bouchard - 2015-09-11, 09:10 PM
      Quote Originally Posted by nealh View Post
      Was the iPhone 64 but? I can't recall, if not there still is a big hurdle.
      All iPhones post iPhone 5 are 64-bit. The iPhone 5 demonstrated in the video is 32-bit.
    1. TDH Advocate's Avatar
      TDH Advocate - 2015-09-12, 03:51 AM
      So it's only possible for anything below 5s to be jailbroken currently because the 64-bit kernel patch. Interesting. Since 9.1 is in beta, hopefully when Pangu finds the jailbreak they will save it for 9.1 to come out publicly.
    1. Julcello692's Avatar
      Julcello692 - 2015-09-12, 04:05 AM
      Quote Originally Posted by TDH Advocate View Post
      So it's only possible for anything below 5s to be jailbroken currently because the 64-bit kernel patch. Interesting. Since 9.1 is in beta, hopefully when Pangu finds the jailbreak they will save it for 9.1 to come out publicly.
      I agree, that would be a smart move. Maybe Taig will be involved in finding a jailbreak for iOS 9 as well.
    1. TDH Advocate's Avatar
      TDH Advocate - 2015-09-12, 05:55 AM
      Quote Originally Posted by Julcello692 View Post
      I agree, that would be a smart move. Maybe Taig will be involved in finding a jailbreak for iOS 9 as well.
      It would be really nice if they all just teamed up and worked together. That way we could find longer lasting exploits to save faster so the next jailbreak can possibly come out faster.
    1. rocky5's Avatar
      rocky5 - 2015-09-12, 01:41 PM
      I guess Apple really don't want, hackers finding out that there touted 6s features work on all other 64bit models.
      (3D touch would be the only one that wouldn't, if in fact it uses a pressure sensitive screen, as it could be done via software using the finger area as the enabler, ie, if you press down your finger will cover more screen area, would be inaccurate as hell most likely but it could work.)
    1. Julcello692's Avatar
      Julcello692 - 2015-09-12, 09:08 PM
      Quote Originally Posted by TDH Advocate View Post
      It would be really nice if they all just teamed up and worked together. That way we could find longer lasting exploits to save faster so the next jailbreak can possibly come out faster.
      Yeah, true. But that hasn't happened in a while. Maybe it'll be different this time since it'll be harder to jailbreak iOS 9 for 64-bit devices.

  • Connect With Us

  • Discord

    Join our Discord

  • Twitter Box

  • Facebook