Iphone 5s (A7) fails entering pwnDFU mode

LukeZGD / Legacy-iOS-Kit

An all-in-one tool to restore/downgrade, save SHSH blobs, and jailbreak legacy iOS devices

GNU General Public License v3.0

1.17k stars 110 forks source link

Iphone 5s (A7) fails entering pwnDFU mode #245

Closed rivciks closed 1 year ago

rivciks commented 1 year ago

* based on checkm8 exploit by axi0mX pwned dfu for 32-bit devices based on belladonna by synackuk ** improved by dora2_yururi

exploiting checkm8... [================================================= ] 99% ERROR: exploit failed! device is "NOT" in pwned DFU mode.

ERROR: failed to enter pwned DFU mode. failed to enter pwned DFU mode [Error] Failed to enter pwnDFU mode. Please run the script again

I have an error message "Failed to enter pwnDFU mode. Please run the script again" I am on Arch Linux: 5.15.88-2-lts

LukeZGD commented 1 year ago

Linux is the issue, use a Mac or an iOS device with ipwnder lite as mentioned in the Troubleshooting page

rivciks commented 1 year ago

OK. Thank you. Since I have only Linux, I have to try to solve it differently.

rivciks commented 1 year ago

I've installed ipwnder lite on my iOS device. But how can it be used? I can't find any documentation whatsoever.

LukeZGD commented 1 year ago

1674346494889

In the picture, the iPhone 6 is the host device where ipwnder_lite is installed and USB lightning to camera adapter is plugged in. It is jailbroken with Chimera/Odysseyra1n.
The iPad mini 2 is the target device I will be pwning with checkm8, plugged into the iPhone 6 via the adapter with a lightning cable. I have also put it in DFU mode.

Install ipwnder_lite, and follow the setup in the picture above
- Get ipwnder_lite from my repo: https://lukezgd.github.io/repo
Install and open NewTerm or MTerminal in the host device
Run the command ipwnder_lite -p
If successful, this will pwn the target with checkm8

Note that I have only gotten ipwnder_lite to work on Procursus jailbreaks (Chimera, Odyssey, Taurine)

rivciks commented 1 year ago

Thanks, Since the latest update on Linux the device at least reconnects and the Apple logo appears but then a different error message appears "failed execute payload" and the device again enters the DFU mode.

[Log] Finding device in DFU mode... [Log] Found device in DFU mode. [Log] Placing device to pwnDFU mode using ipwnder * based on checkm8 exploit by axi0mX pwned dfu for 32-bit devices based on belladonna by synackuk ** improved by dora2_yururi

exploiting checkm8... [================================================= ] 99% ERROR: failed execute payload.

ERROR: failed to enter pwned DFU mode. failed to enter pwned DFU mode [Error] Failed to enter pwnDFU mode. Please run the script again.

rivciks commented 1 year ago

And yet it works also on Linux since A7 devices only need quick disconnecting and reconnection during the checkm8 exploit in order to make this exploit work. I tried that with gaster tool during the downgrade process and it worked. if anyone is interested, here is the log. log.log

scineram commented 1 year ago

And yet it works also on Linux since A7 devices only need quick disconnecting and reconnection during the checkm8 exploit in order to make this exploit work. I tried that with gaster tool during the downgrade process and it worked.

Thank You! I could indeed proceed at Stage: PATCH with a quick Lightning replug even using gaster, which was really my only option to downgrade.