In the end it wasn't exactly just copy&pasting v0rtex and jelbrekTime :o
(https://twitter.com/tihmstar/status/1087973240927145984)
It is by no means necessary, but adds the missing flair ;)
Offsets hardcoded for:
Darwin Kernel Version 17.4.0: Fri Dec 8 19:35:52 PST 2017; root:xnu-4570.40.9~1/RELEASE_ARM64_S5L8960X
Get your own if you wanna run it on something else ;)
Note:
Exploit relies on a specific structure of ipc_port_t, it might be neccessary to update more than just offsets, if that changed in iOS 12.
One technique used here stopped working in iOS 12 because of the changes made to os_refcnt
PS: If you run the project as it is it might end up in a black screen after the app exits. Device shouldn't panic, just doublepress the home button to get back to the app launcher and close the app.
Special thanks to:
@S0rryMybad
@s1guza