checkra1n.dmg ? - Githubissues

kok3shidoll / ra1npoc

A tool for re-jailbreak devices jailbroken by checkra1n/odysseyra1n on iOS/iPadOS/macOS platforms. (opensource pongo loader)

Other

207 stars 28 forks source link

checkra1n.dmg ? #18

Open blackndoor opened 1 year ago

blackndoor commented 1 year ago

I run ra1npoc with Pongo.bin (from pongoOS) and request a pongo shell. Then, I use the following cmds with pongoterm:

sep auto
/send ../../PongoOS/build/checkra1n-kpf-pongo
modload
/send ../rdsk/rdsk.dmg // extracted from the checkra1n binary
ramdisk
xargs rootdev=md0
bootx

It works but how the checkra1n jailbreak load the checkra1n.dmg (with loader.dmg) ? at which stage ?

dora2-iOS commented 1 year ago

are you talking about stage4? so yes, ra1npoc doesn't support it. but It works because there is already a dmg under /var/ on an already checkra1n jailbroken device.

blackndoor commented 1 year ago

Yes, I was talking about the stage4, how / when they transfert and load it ? (if you have some information)