Wednesday, July 1, 2009

project sn0wy 0wl

were unknown developments. Were making a tethered hombebrew jailbreak to relieve you people who want a 3Gs jailbreak now. Were a DAY into the project and we have already

patched all sig checked files with a unique ECID
team member Derek and I did this Derek made the method we use
Derek said:
"so i noticed that in the iBSS the "HSHS" string also exists. here's the hex string found in the iBSS, iBoot, and the purplera1nyday file... "48 53 48 53 8C 00 00 00 80 00 00 00". i'm gonna take a look at the other img3s as well.
a few minuetes later he ran a test restore
and said this:
the iBoot i created using the method described above worked for me. the phone is currently restoring... been copying files and progressing for a while now. it's gonna fail because i used a decrypted 018-5302-002.dmg file and when you do this it fails verification with apple at about 50% progress bar (iphone). i guess this means we can "patch" all of the files containing that hex sequence.

Later I made a patched iBoot and sent it to Team member Arthur. It was HIS unique ECID I encoded into iBoot.

For examples of my ECID patched system pieces go to http://www.megaupload.com/?d=EI25M3Y9 it has no jailbreaking data as of yet but we are still working on patching :)

50 Comments:

Blogger Maximilian said...

whea - yet another blog ;)
good luck guys.. my 3gs is waiting here for your progress

July 1, 2009 at 12:43 AM  
Blogger the chef said...

Sn0wy0wl
nice name

thechef

July 1, 2009 at 12:44 AM  
OpenID mateen110 said...

Is there anyway I could help? If I could just let me know. Best of luck!

July 1, 2009 at 12:46 AM  
Blogger DBDtheAbyss said...

@mateen110

Well were really trying to get through this asap so if you could make help make bundles that would be cool :)

July 1, 2009 at 1:01 AM  
Blogger Vcxz said...

Great works Keep Continue ^^

July 1, 2009 at 1:03 AM  
Blogger DBDtheAbyss said...

Thanks for your support :)

July 1, 2009 at 1:06 AM  
Blogger voesschen said...

yes, nice name !
iam with you guys, you will make it. but try a little bit to sleep :)

can you post a progressbar in percent? that would be nice!

July 1, 2009 at 1:09 AM  
OpenID schlafenwolf said...

Being a developer for the iPhone, and then reading through this post, you literally made my BRAIN HURT with the computational INACCURACIES of your statements. But, hey, to each his own. It's just laughable to see people so desperate that they're willing to send their ECIDs to a group of strangers.

July 1, 2009 at 1:14 AM  
Blogger Maximilian said...

we like the product.. thats all..

apple is like cigarettes .. you get addicted really quick - until now it does not cause cancer - but who knows what mobile radiation does really

;)

July 1, 2009 at 1:17 AM  
Blogger DBDtheAbyss said...

I never slee...Zzzzz

July 1, 2009 at 1:17 AM  
Blogger voesschen said...

@schlafenwolf

kkthxbb!

(in germany is 10 AM! :))

July 1, 2009 at 1:19 AM  
Blogger DBDtheAbyss said...

Hater #1 hooray!

I may have made some grammer mistakes and for that I'm sorry but I am quite accurate go to geohots blog and read Son...

July 1, 2009 at 1:20 AM  
Blogger DBDtheAbyss said...

Ha very funny Maximillian :)

July 1, 2009 at 1:21 AM  
Blogger DBDtheAbyss said...

They havnt sent their ECIDs -.- I think you must be an Apple Dev buzz off this is a jailbreaker blog.

July 1, 2009 at 1:24 AM  
Blogger doraemon said...

Break a leg guys!

July 1, 2009 at 1:27 AM  
Blogger DBDtheAbyss said...

Ow my bone broke in my leg :(

I broke a leg :o

July 1, 2009 at 1:31 AM  
Blogger DBDtheAbyss said...

xD

July 1, 2009 at 1:33 AM  
Blogger doraemon said...

...the Italian way to wish good luck not much better: "in bocca al lupo", i.e. in the mouth of the wolf! Anyway, you got my point!

July 1, 2009 at 1:40 AM  
Blogger DBDtheAbyss said...

Thanks :)

July 1, 2009 at 1:42 AM  
Blogger Maximilian said...

any updates?

July 1, 2009 at 4:25 AM  
Blogger joe dirt said...

guys if I can help on any way let me know pls

July 1, 2009 at 5:36 AM  
Blogger Manu1986 said...

Same thing if i can help i'm here.
you've already done a very good job.

July 1, 2009 at 5:41 AM  
Blogger Brad said...

I'm here to package this in an app / installer when you reach that point like I said in IRC. email me @ brad457@gmail.com

July 1, 2009 at 6:24 AM  
Blogger Arthur said...

So guys I heard you got what we needed from usb dump
and also if even fail on 50% with new iBoot, it means its actually working (new iBoot). But its still just regular iBoot without exploit (only signed with apple cert)
So now goal is to make sence of rsa sigchecks adressed that geohot gave us

July 1, 2009 at 7:15 AM  
Blogger zeke said...

I think it's great what you guys are doing. Solving problems when others either won't or can't. Don't let the machine beat you. I am a registered developer, so if you need anything(wink wink) just let me know.

July 1, 2009 at 7:23 AM  
Blogger Brian said...

You Guys are doing Great work. Thanks alot for all your hard work.

July 1, 2009 at 8:06 AM  
Blogger DBDtheAbyss said...

Ok do NOT upgrade (sorry) 3.1 has a new baseband rendering unltrasn0w useless although we will check iBoot to see if it's exploitable stillexploitable for those who HAVE NOT gotton their purplera1n ECID

July 1, 2009 at 8:22 AM  
Blogger doraemon said...

Coffee anyone?

July 1, 2009 at 8:27 AM  
Blogger DBDtheAbyss said...

Me! :)

July 1, 2009 at 8:38 AM  
Blogger Arthur said...

@DBDtheAbyss
So i found and error in iBoot you sent me
There are 3 HSHS sections instead of 1
Also we got UsbDump for Derek phone

July 1, 2009 at 8:44 AM  
Blogger DBDtheAbyss said...

Zeke if we could get a Beta copy of 3.1 for disassembling that would be very gracious also we NEED an apple datacenter cert for this (could you help?)

July 1, 2009 at 8:44 AM  
Blogger Arthur said...

I will create chat room again

July 1, 2009 at 8:44 AM  
Blogger DBDtheAbyss said...

Ok awesome! We should get to work with Making and applying jailbreaking patches in iBoot and iBss

July 1, 2009 at 8:47 AM  
Blogger Arthur said...

actually derek sent you usb dump already...so right now i will properly patch iBSS and iBOOT with my ecid and you can look for certificate thing

July 1, 2009 at 8:49 AM  
Blogger DBDtheAbyss said...

apply the permissions tags and rsa sigs into iBoot I think that's how you should patch it :)

July 1, 2009 at 8:50 AM  
Blogger DBDtheAbyss said...

Kk

July 1, 2009 at 8:51 AM  
Blogger DBDtheAbyss said...

Screw it I'll apply georges help :)

July 1, 2009 at 8:51 AM  
Blogger floyd25 said...

@Arthur,

where did you create the chat room? Are you on irc again? I'd like to help out but this blog thing is way to slow to correspond.

July 1, 2009 at 9:03 AM  
Blogger Arthur said...

Yeah, i have to leave now for like 2-3 hours, getting test 3G phone with my friend. This way we can do pwnage tool and grab some stuff like cydia, openssh and etc

July 1, 2009 at 9:07 AM  
Blogger Arthur said...

i will create private iRC server so it will be always up and nobody will create duplicate rooms

July 1, 2009 at 9:10 AM  
Blogger floyd25 said...

I was searching some known faqs and wikis and found this "old" information regaring xpwn. I think this could be a solid base we actually could learn from and build uppon because it supports 3G jailbreak. What do you think?

Org Info:
______________

xpwn 0.3 sources are now up
Hey guys,

The development sources for xpwn 0.3, the firmware 2.0 version of our cross-platform jailbreaking library/command-line utility have been pushed onto github. We’ve tested it on Linux, Windows XP, and Windows Vista for both the iPhone 2G and iPhone 3G thus far, but since it uses the same FirmwareBundles files as PwnageTool, and we know those work for the iPod touch, there ought not be any problems.

Being a suite of command-line utilities, this release is meant primarily for developers. While you can certainly jailbreak (both 3G and first-gen) and unlock (first-gen) with it, it’s not really something you want to try without reading the lengthy, detailed README. If you don’t have the patience to do that, this release is not for you.

We’re hoping the community will use this to create useful, easy-to-use jailbreak related applications for all platforms. This is an open source endeavor and you are more than welcome to fork it, fix our bugs, submit patches, etc. Now it’s time for you guys to step up to the plate. :)

July 1, 2009 at 9:35 AM  
Blogger DBDtheAbyss said...

all right guys i haver created a Custom iBoot for derek if this works with the phone we will work on the jailbreaking fun part otherwise its back to the drawing board...

-DBDtheAbyss.

-unknown dev.

July 1, 2009 at 9:35 AM  
Blogger DBDtheAbyss said...

that really is useless...but interesting. besides xpwn 3.0 isnt out, were talking about the 3gs not the 3g,3gs uses differant hardware so xpwn would need adaptation...

July 1, 2009 at 9:38 AM  
Blogger floyd25 said...

of course it would need adaptation but there is so much to learn from it. It can actually work the phone in dfu-mode, prepare IPSW-Files, Hash them, patch every img3 - file, iboot etc... and has a bunch of patch-files delivered. It may be old but it actually is something to stand on.

We could extend it to include the ECID in IMG3 - Files etc... If it worked for a 3G it could actually be extended to work with our 3GS, right?

July 1, 2009 at 9:53 AM  
Blogger DBDtheAbyss said...

Yes but it uses conventional pwnage which the 3gs does NOT understand

July 1, 2009 at 9:57 AM  
Blogger voesschen said...

hey awesome team.
can you tell us your actual progress in a percent bar or something like that?
that would be awesome, :) thank you, and you will make it!

July 1, 2009 at 10:45 AM  
Blogger UKnow said...

It's funny how people rush rush rush something that can't be rushed.

July 1, 2009 at 2:06 PM  
Blogger fiya said...

abyss is right, this goes beyond flashing in DFU, when you flash the 3GS in dfu and reboot the phone, the boot knows the file is no good and automatically kicks it into recovery mode. In theory, it should work, but it's pretty complex.

Glad to see the unknown team making progress with this, congrats and thank you for the hard work.

July 1, 2009 at 2:12 PM  
Blogger Dmacpro91 said...

I'm back online...

July 1, 2009 at 6:27 PM  
Blogger DBDtheAbyss said...

Yes I'm alive :)

July 1, 2009 at 10:38 PM  

Post a Comment

Subscribe to Post Comments [Atom]

<< Home