Twitter | Search | |
iH8sn🌸w
Senior Security Researcher @ Cellebrite’s SRL | Email: iH8sn0w@iH8sn0w.com | PGP: | Tweets made from this account are my opinions.
68,482
Tweets
317
Following
248,584
Followers
Tweets
iH8sn🌸w Oct 13
Replying to @icj_
🔥🌸
Reply Retweet Like
iH8sn🌸w retweeted
Shahar Tal Sep 30
Tired of virtual functions with no xrefs? Introducing PacXplorer for IDA by our own Ouri Lipner to make your iOS PAC-reversing day better!
Reply Retweet Like
iH8sn🌸w Sep 16
nah. They were not doing that since it was live in the earlier betas
Reply Retweet Like
iH8sn🌸w Sep 16
trueeeeee
Reply Retweet Like
iH8sn🌸w Sep 16
I can confirm though that iPhone12,1 (N104AP) is still being signed. Unless the policy is not synced across all servers yet?
Reply Retweet Like
iH8sn🌸w Sep 16
There were the additional “Ap,SystemVolumeCanonicalMetadata” and “SystemVolume” keys that were added since b1. However, it could just be that TSS is responding to the bot’s request *without* these keys, which should still be fine for at least telling if its being signed or not.
Reply Retweet Like
iH8sn🌸w Sep 16
Replying to @icj_ @TSSstatus
Maybe the tss request is missing some newly introduced iOS 14 values
Reply Retweet Like
iH8sn🌸w Sep 16
Replying to @icj_ @TSSstatus
:D
Reply Retweet Like
iH8sn🌸w Sep 16
Replying to @TSSstatus
whaaa?
Reply Retweet Like
iH8sn🌸w Sep 15
Reply Retweet Like
iH8sn🌸w Aug 31
I need answers as to what happened to the “Chips Ahoy Chewy Double Chocolate” features. It has been years. Thank you for your time 🍪. Please don’t ever remove the rainbow cookies from your line-up ♥️
Reply Retweet Like
iH8sn🌸w Aug 19
Replying to @chronic @msolnik
👀
Reply Retweet Like
iH8sn🌸w Aug 18
Replying to @msolnik
My guess is they will keep the RootFS stock and have alternative plans for enabling research/magical utils on said devices.
Reply Retweet Like
iH8sn🌸w Aug 18
Replying to @msolnik
And they’ve patented it! 😉
Reply Retweet Like
iH8sn🌸w Aug 18
Replying to @msolnik
Also, I do not think there are "Research" RootFS images that would contain these magical binaries (yet?).
Reply Retweet Like
iH8sn🌸w Aug 18
Replying to @msolnik
Even if it was the case, the fact that TrustCaches are external IM4Ps now, means Apple can prevent production units from running those binaries by preventing the TrustCache IM4P digests from being signed by TSS. Research devices are likely to have an allow-list for those images.
Reply Retweet Like
iH8sn🌸w retweeted
AppleSEPROM Aug 7
D97470A7EC5CBA1A3A975E3F53459ACDD54F95B49B56D05EC9EE0595E097AA7B89ED8914963C35C5ACFCB7582E62788A T8012 PROD SEPGID
Reply Retweet Like
iH8sn🌸w retweeted
qwertyoruiop Jul 31
6C594985CF95F4832E82235F67C26F7A5F18080DB668178D99F1E5D4E5D300B7E71C89854D08F8D4ACDEF2508551808A T8010 SEPGID PROD
Reply Retweet Like
iH8sn🌸w Jul 16
Replying to @gabe_k @yifanlu
Interesting that the Twitter client automatically re-attempted to tweet that. It must have been queued since yesterday :P
Reply Retweet Like
iH8sn🌸w Jul 16
Replying to @gabe_k @yifanlu
bro
Reply Retweet Like